This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 87%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hey Everyone,
I just have a question I am pretty sure the answer is not needed but wanted to validate. I have a client who wants to set up Intune for all his users Iphones, He would like to start with deploying a certificate to the phones and deploying an application to the phone. Is ADConnect required for this?
thanks for the help
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 84%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ADConnect is not necessary for deploying a certificate to the phones and deploying an application for Intune standalone management scenario. But it might be used via hybrid scenario. For example, Azure AD Connect will provide the function of Federation, which is an optional part of Azure AD Connect and can be used to configure a hybrid environment using an on-premises AD FS infrastructure. It also provides AD FS management capabilities such as certificate renewal and additional AD FS server deployments.
Reference: https://video2.skills-academy.com/en-us/azure/active-directory/hybrid/whatis-azure-ad-connect
By the way, for deploying a certificate, the following certificate Connector is necessary for deploying a certificate:
To use the following certificate profile types, you must install the Microsoft Intune Certificate Connector:
o SCEP certification profile
o PKCS certificate profile
To use PKCS imported certificates:
o Install the PFX Certificate Connector for Microsoft Intune.
Reference: https://video2.skills-academy.com/en-us/mem/intune/protect/certificates-configure
While technically correct, @CiciWu-MSFT 's answer is probably not suitable as it depends on the details.
Users, in most cases need to sign into the Company Portal using an Azure AD identity.
So, the first question here is do your users already have Azure AD identities? If not, do they have on-prem AD identities?
Next, how exactly will you be enrolling the devices? Assuming they are existing devices, ADE is not possible and you probably don't want to set up Apple configurator meaning that the users will have to download Company Portal and enroll their devices (which, as noted, requires an Azure AD identity).