browser certificate prompt when trying to connect with Gp portal

ilovegppa — Tue, 28 May 2024 06:36:34 GMT

the scenario

NDES server

SCEP certificate profile intune

auto enrolled windows 11 machine with business hello configured

our setup is look for certificates in the machine store and specific OID (registry setting and PA end)

when trying to connect via vpn, the browser prompts for certificate (user cert in this) you can select it , press ok and it connects, or if you click cancel, it vpns in ok

it seems to be ignoring the registry settings? we issue 2 certs (user and machine with ip security) that OID doesnt exist in other certs deployed to the machine, so i am at a loss why the prompt

if i delete the user cert it prompts for, it vpns in right away,

topic browser certificate prompt when trying to connect with Gp portal in GlobalProtect Discussions

browser certificate prompt when trying to connect with Gp portal