NDES Server - works with "localhost", but fails to authenticate with FQDN
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 69%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWV%3C/text%3E%3C/svg%3E)
Ward Verduyn
0
Reputation points
It's the first time I'm setting up a CA in combination with NDES.
I am trying to set up SCEP in JAMF. I've checked the security settings on the template and made sure the template I want to use is in the MSCEP registry entry on the NDES server.
I've set up my CA and NDES servers, and everything seems to be going well. I'm able to authenticate to https://localhost/certsrv/mscep_admin and obtain the thumbprint and code for SCEP set up, however, whenever I access the mscep_admin site through the Entra Private Connector App, I also get the login window, but when I enter my credentials, it just shows the login window again, each time. I've checked the credentials, and I'm 100% sure they are correct.
I got a little further now, on the server itself, when accessing it through FQDN, it seems to work now, but only on Firefox, so not on Edge, there I also get the login window each time.
I've run Microsoft's NDES configuration validation script, as well. Everything's come back working, except for Intune specific things (such as NDESPolicy module registry entry).
Has anyone here run into this before, or can just offer some insight?
Windows for business | Windows Server | Directory services | Certificates and public key infrastructure (PKI)
Sign in to answer