Introduction
The certificate requirements when setting up a CMG can be a little confusing at times and the aim of this post is to help shed some light on this. Below you can see the different kinds of certificates at play including their source and intended destination
CMG Certificate Setup
Certificate Compatibility Matrix
There are 3 certificate scenarios that need to hold true. Check the matrix below for more details
Notes
CCP is the cloud connection point role in SCCM
When using PKI certificates, the client auth certificate and the web certificate are two different certs
EHTTP certificates require version 1810 above
Token based authentication required version 2002 or above