Certificate Revocation Checking Configuration
This configuration allows the administrators to check an array of certificates revoked from a device. Administrators can specify a certificate authority (CA) which allows the configuration to enable revocation checking for all the certificates which are linked to that CA.
Applicable to: iOS 14.2+ and visionOS 1.1+
Procedure
- Go to Configurations > +Add.
- Type certificate in the search field, and then click the Certificate Revocation Checking configuration.
- Enter a Name and Description of the configuration.
- Select algorithm as SHA 256 and enter the Hash of the root certificate.
In Hash, you have to enter a Base64 encoded (binary) SHA-256 hash of the certificate’s public key. See Apple documentation for the available trusted root certificates for Apple operating systems. You can add multiple root certificates in this configuration.
- Click Next.
- Select Enable this configuration option.
- Select one of the following distribution options:
- All Devices
- No Devices (default)
- Custom.
- Click Done.