Skip to content

Add the Intune flow diagram to the Intune docs #474

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
tashian wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add the Intune flow diagram to the Intune docs #474

tashian wants to merge 1 commit into from

Conversation

@tashian
Copy link
Contributor

@tashian tashian commented Jan 5, 2026

No description provided.

@tashian tashian requested a review from a team as a code owner January 5, 2026 20:44
@tashian tashian requested review from dopey and joshdrake January 5, 2026 20:44
tashian
tashian commented Jan 5, 2026
View reviewed changes
tutorials/connect-intune-to-smallstep.mdx
Comment on lines +11 to +24
In this tutorial, we will:
- Connect Microsoft Entra ID to Smallstep via an Entra ID App Registration.
- Configure Smallstep to sync your devices from Intune
- Configure Intune to deploy the Smallstep agent to your devices
- Configure Intune to add your Smallstep CA certificate to your devices
- Configure Intune to issue a provisional SCEP certificate to your devices from your Smallstep CA.

Once you've completed this tutorial, your devices will get a provisional SCEP certificate from Smallstep:

![](/graphics/Intune_flow_diagram.png)

This certificate allows our agent to silently bootstrap trust with Smallstep.
Once bootstrapped, the Smallstep agent obtains a device certificate using ACME Device Attestation.
The device certificate is used to issue resource-specific certificates.
Copy link
Contributor Author

@tashian tashian Jan 5, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dopey or @joshdrake could you confirm the language here is correct? Thanks.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andysmallstep andysmallstep andysmallstep approved these changes

@joshdrake joshdrake Awaiting requested review from joshdrake

@dopey dopey Awaiting requested review from dopey

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@tashian @andysmallstep