Manualshelf

User Guide

ManualsBrandsApple ManualsOtherIPHONE OS
21222324252627282930
Chapter 1 Deploying iPhone and iPod touch 25
Phase 3 – Certificate Installation: In step 1, the profile distribution service responds
with specifications that the device uses to generate a key (RSA 1024) and where to
return it for certification using SCEP (Simple Certificate Enrollment Protocol).
In step 2, the SCEP request must be handled in automatic mode, using the challenge
from the SCEP packet to authenticate the request.
In step 3, the CA responds with an encryption certificate for the device.
For a sample configuration profile for this phase, see “Sample Phase 3 Server Response
With SCEP Specifications” on page 85.
Profile service
Certificate
issuing service
Phase 3 - Device Certificate Installation
Challenge
Key generation specs
URL for response
Challenge
Certificate Signing Request
Public key
Device certificate
RSA: 1024
Challenge: AnneJohnson1
URL:http://ca.example.com/
getkey.exe
sample
1
2
3