memdocs icon indicating copy to clipboard operation
memdocs copied to clipboard

Published 20 hours ago verified publisher icon MicrosoftDocs

Management Point Options

Open dereklangMSFT opened this issue 2 years ago • 0 comments

The paragraph below in the EHTTP MP section seems to imply that an internet client with a PKI client cert, but no AAD auth, could connect to the CMG even when the internal MP is configured for EHTTP, but I don't believe this is correct.

Excerpt taken from this section: https://docs.microsoft.com/en-us/mem/configmgr/core/clients/manage/cmg/configure-authentication#configure-the-site-for-enhanced-http

"Configure the site for Enhanced HTTP

Internet-based clients using Azure AD or a client authentication certificate can securely communicate through the CMG with this management point over HTTPS."

Suggestion: Remove the reference to client authentication certificate from this Enhanced HTTP section of the doc

"Internet-based clients using Azure AD authentication can securely communicate through the CMG with a management point configured for Enhanced HTTP"

dereklangMSFT avatar Jun 18 '22 17:06 dereklangMSFT