Hello Hexnode Community,
We are thrilled to announce a highly requested security feature for our Windows administrators: Certificate Policy for Windows! With this new release, IT admins can seamlessly deploy root and intermediate certificates directly to Windows 10 and 11 (Pro, Enterprise, and Education editions).
Why it matters:
When you configure enterprise Wi-Fi, SCEP, or a VPN that requires certificate-based authentication, the device needs a trusted authority to verify the connection. By deploying your root certificates via this new policy, your Windows devices will automatically check against the deployed root certificate for secure, seamless verification.
Key Capabilities:
- Supported Formats: Upload your certificates in .cer or .crt formats.
- Flexible Store Deployment: You have complete control over where the certificate lives on the endpoint. Choose from the following certificate stores:
- System Store – Intermediate: Installs certificates to the local machine to complete the chain of trust between the root CA and your end-entity certificates.
- System Store – Root: Deploys trusted root certificates at the device level, applying globally to all users on that specific machine.
- User Store – Root: Deploys trusted root certificates specifically to the profile of the currently logged-in user.
How to configure it:
Ready to secure your network authentication? Head over to your Hexnode UEM portal and navigate to: Policies > New Policy > Create a fully custom policy > Windows > Security > Certificate.
As always, if you have any questions or need a hand setting this up, our support team is just a message away.
Cheers,
Eden Pierce
Hexnode UEM
8 Views
