Device Management Profile

SCEP.PayloadContent

The SCEP dictionary.

Properties

AllowAllAppsAccess
boolean

If true, all apps have access to the private key.

CAFingerprint
data

The fingerprint of the Certificate Authority certificate.

Challenge
string

A preshared secret.

Key Type
string

Always `RSA`.

Key Usage
integer

A bitmask indicating the use of the key.

* 1: Signing

* 4: Incryption

Some certificate authorities, such as Windows CA, support only encryption or signing, but not both at the same time. 

KeyIsExtractable
boolean

If `false`, disables exporting the private key from the keychain.

Keysize
integer

The key size, in bits.

Name
string

A string that's understood by the SCEP server; for example, a domain name like example.org. If a certificate authority has multiple CA certificates, this field can be used to distinguish which is required.

Retries
integer

The number of times the device should retry if the server sends a PENDING response.

RetryDelay
integer

The number of seconds to wait between subsequent retries. The first retry is attempted without this delay.

Subject
[[[string]]]

The representation of an X.500 name as an array of OID and value.

For example, `/C=US/O=Apple Inc./CN=foo/1.2.5.3=bar` translates to `[ [ ["C", "US"] ], [ ["O", "Apple Inc."] ], ..., [ [ "1.2.5.3", "bar" ] ] ]`

OIDs can be represented as dotted numbers, with shortcuts for country (C), locality (L), state (ST), organization (O), organizational unit (OU), and common name (CN).

The SCEP payload can specify an optional `SubjectAltName` dictionary that provides values required by the CA for issuing a certificate. You can specify a single string or an array of strings for each key. The values you specify depend on the CA you're using, but might include DNS name, URL, or email values. For an example, see Sample Configuration Profile or Over-the-Air Profile Delivery and Configuration.

URL
string
(Required)

The SCEP URL. See Over-the-Air Profile Delivery and Configuration for more information about SCEP.

Topics

Profiles

object SCEP.PayloadContent.SubjectAltName

An optional dictionary that provides values required by the CA for issuing a certificate.

See Also

Supporting Objects

object SCEP.PayloadContent.SubjectAltName

An optional dictionary that provides values required by the CA for issuing a certificate.