{"id":48525,"date":"2024-03-28T05:16:01","date_gmt":"2024-03-28T04:16:01","guid":{"rendered":"https:\/\/kb.apptec360.com\/manual\/knowledgebase\/scep\/"},"modified":"2024-12-04T05:03:59","modified_gmt":"2024-12-04T04:03:59","slug":"scep","status":"publish","type":"knowledgebase","link":"https:\/\/kb.apptec360.com\/manual\/sk\/knowledgebase\/configuration-windows-10-pc\/general\/security-management\/certificate-management\/scep\/","title":{"rendered":"SCEP"},"content":{"rendered":"\n\n\n\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t
Upravi\u0165<\/a><\/caption>\n
\n

Popis<\/p>\n <\/td>

\n

Popis servera SCEP<\/p>\n <\/td>\n<\/tr>\n

\n

Rozsah nasadenia<\/p>\n <\/td>

\n

Rozsah nasadenia certifik\u00e1tu: Aktu\u00e1lne zariadenie vs. pou\u017e\u00edvate\u013e<\/p>\n <\/td>\n<\/tr>\n

\n

Adresy URL servera SCEP<\/p>\n <\/td>

\n

Jeden alebo viac serverov, ktor\u00e9 vyd\u00e1vaj\u00fa certifik\u00e1ty prostredn\u00edctvom protokolu SCEP<\/p>\n <\/td>\n<\/tr>\n

\n

Predmet<\/p>\n <\/td>

\n

Reprezent\u00e1cia n\u00e1zvu X.500. Napr. „C=US, O=Microsoft Corporation, CN=foo, 1.2.5.3=bar“ <\/p>\n <\/td>\n<\/tr>\n

\n

Alternat\u00edvne n\u00e1zvy predmetov<\/p>\n <\/td>

\n

Typ<\/p>\n <\/td>

\n

E-mailov\u00e1 adresa<\/p>\n <\/td>\n<\/tr>\n

\n

DNS<\/p>\n <\/td>\n<\/tr>\n

\n

URI<\/p>\n <\/td>\n<\/tr>\n

\n

Hlavn\u00e9 meno pou\u017e\u00edvate\u013ea (UPN)<\/p>\n <\/td>\n<\/tr>\n

\n

Odtla\u010dok prsta CA<\/p>\n <\/td>

\n

Odtla\u010dok SHA1 certifik\u00e1tu certifika\u010dnej autority. E.g. 31:8F:1E:78:5C:D5:12:9F:7E:3B:AD:F3:1C:C0:19:03:96:43:A9:E5 <\/p>\n <\/td>\n<\/tr>\n

\n

Jednotky obdobia platnosti<\/p>\n <\/td>

\n

Dni, mesiace alebo roky<\/p>\n <\/td>\n<\/tr>\n

\n

Obdobie platnosti<\/p>\n <\/td>

<\/td><\/td><\/td><\/td>\n<\/tr>\n
\n

V\u00fdzva<\/p>\n <\/td>

\n

Pou\u017e\u00edva sa ako vopred zdie\u013ean\u00e9 tajomstvo pre automatick\u00fa registr\u00e1ciu<\/p>\n <\/td>\n<\/tr>\n

\n

Opakovan\u00e9 pokusy<\/p>\n <\/td>

\n

Po\u010det pokusov, ktor\u00e9 m\u00e1 zariadenie opakova\u0165, ak server odo\u0161le odpove\u010f PENDING. Predvolen\u00e1 hodnota je 5. Maxim\u00e1lna hodnota je 30. <\/p>\n <\/td>\n<\/tr>\n

\n

Oneskorenie opakovania<\/p>\n <\/td>

\n

Po\u010det min\u00fat, ktor\u00e9 sa maj\u00fa po\u010dka\u0165 pred opakovan\u00edm pokusu. Predvolen\u00e1 hodnota je 5. Minim\u00e1lna hodnota je 1. <\/p>\n <\/td>\n<\/tr>\n

\n

Ve\u013ekos\u0165 k\u013e\u00fa\u010da<\/p>\n <\/td>

\n

Ve\u013ekos\u0165 k\u013e\u00fa\u010da v bitoch<\/p>\n <\/td>\n<\/tr>\n

\n

Algoritmus Hash<\/p>\n <\/td>

\n

Rodina ha\u0161ovac\u00edch algoritmov<\/p>\n <\/td>\n<\/tr>\n

\n

K\u013e\u00fa\u010dov\u00e9 pou\u017eitie<\/p>\n <\/td>

\n

Roz\u0161\u00edrenie pou\u017eitia k\u013e\u00fa\u010da definuje \u00fa\u010del (napr. \u0161ifrovanie, podpis) k\u013e\u00fa\u010da obsiahnut\u00e9ho v certifik\u00e1te. Je potrebn\u00e9 vybra\u0165 aspo\u0148 jedno z t\u00fdchto nastaven\u00ed: „Digital signature“ (digit\u00e1lny podpis) alebo „Key encipherment“ (\u0161ifrovanie k\u013e\u00fa\u010da). <\/p>\n <\/td>\n<\/tr>\n

\n

Roz\u0161\u00edren\u00e9 pou\u017e\u00edvanie k\u013e\u00fa\u010dov<\/p>\n <\/td>

\n

\u0160pecifikuje roz\u0161\u00edren\u00e9 pou\u017eitie k\u013e\u00fa\u010dov.Podlieha konfigur\u00e1cii servera SCEP. Zadajte zoznam zodpovedaj\u00facich OID, napr. 1.3.6.1.5.5.7.3.2 (Autentifik\u00e1cia klienta) <\/p>\n <\/td>\n<\/tr>\n

\n

K\u013e\u00fa\u010dov\u00e9 umiestnenie<\/p>\n <\/td>

\n

Poskytovate\u013e \u00falo\u017eiska k\u013e\u00fa\u010dov, do ktor\u00e9ho sa m\u00e1 nain\u0161talova\u0165 s\u00fakromn\u00fd k\u013e\u00fa\u010d.<\/p>\n <\/td>\n<\/tr>\n

<\/td>\n

TPM. Zlyh\u00e1, ak nie je pr\u00edtomn\u00fd TPM <\/p>\n <\/td>\n<\/tr>\n

\n

TPM. Ak nie je pr\u00edtomn\u00fd TPM, vr\u00e1ti sa k softv\u00e9ru KSP <\/p>\n <\/td>

<\/td>\n<\/tr>\n
\n

Poskytovate\u013e softv\u00e9rov\u00e9ho \u00falo\u017eiska k\u013e\u00fa\u010dov<\/p>\n <\/td>

<\/td>\n<\/tr>\n
\n

Windows Hello pre firmy<\/p>\n <\/td>

\n

N\u00e1zov kontajnera<\/p>\n <\/td>

\n

Ur\u010duje n\u00e1zov kontajnera Windows Hello for Business (predt\u00fdm zn\u00e1my ako Microsoft Passport for Work).<\/p>\n <\/td>

<\/td>\n<\/tr>\n
\n

Text v\u00fdzvy PIN<\/p>\n <\/td>

\n

Ur\u010duje vlastn\u00fd text, ktor\u00fd sa m\u00e1 zobrazi\u0165 na v\u00fdzve na zadanie PIN k\u00f3du Windows Hello for Business po\u010das registr\u00e1cie certifik\u00e1tu.<\/p>\n <\/td>

<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n
<\/div>\n","protected":false},"parent":48528,"menu_order":0,"template":"","class_list":["post-48525","knowledgebase","type-knowledgebase","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/knowledgebase\/48525","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/knowledgebase"}],"about":[{"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/types\/knowledgebase"}],"version-history":[{"count":2,"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/knowledgebase\/48525\/revisions"}],"predecessor-version":[{"id":50208,"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/knowledgebase\/48525\/revisions\/50208"}],"up":[{"embeddable":true,"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/knowledgebase\/48528"}],"wp:attachment":[{"href":"https:\/\/kb.apptec360.com\/manual\/sk\/wp-json\/wp\/v2\/media?parent=48525"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}