pfm_description Use this section to define settings for configuration access to SCEP servers. pfm_title SCEP pfm_format_version 1 pfm_version 1 pfm_domain com.apple.security.scep pfm_subkeys pfm_name PayloadDescription pfm_title Payload Description pfm_description Description of the payload pfm_type string pfm_default Configures SCEP settings pfm_name PayloadDisplayName pfm_title Payload Display Name pfm_description Name of the payload pfm_type string pfm_default SCEP pfm_require always pfm_name PayloadIdentifier pfm_title Payload Identifier pfm_description A unique identifier for the payload, dot-delimited. Usually root PayloadIdentifier+subidentifier pfm_type string pfm_default com.apple.security.scep pfm_require always pfm_name PayloadType pfm_title Payload Type pfm_description The type of the payload, a reverse dns string pfm_type string pfm_default com.apple.security.scep pfm_require always pfm_name PayloadUUID pfm_title Payload UUID pfm_description Unique identifier for the payload (format 01234567-89AB-CDEF-0123-456789ABCDEF) pfm_type string pfm_default pfm_require always pfm_format ^[0-9A-Za-z]{8}-[0-9A-Za-z]{4}-[0-9A-Za-z]{4}-[0-9A-Za-z]{4}-[0-9A-Za-z]{12}$ pfm_name PayloadVersion pfm_title Payload Version pfm_description The version of the whole configuration profile. pfm_type integer pfm_default 1 pfm_require always pfm_name PayloadOrganization pfm_title Payload Organization pfm_description This value describes the issuing organization of the profile, as displayed to the user pfm_type string pfm_name PayloadContent pfm_title Payload Content pfm_description This dictionary contains the payload contents pfm_type dictionary pfm_default Key Type RSA Keysize 1024 Retries 3 RetryDelay 10 pfm_subkeys pfm_name URL pfm_title URL pfm_description The base URL for the SCEP server pfm_type string pfm_require always pfm_name Name pfm_title Name pfm_description The name of the instance: CA-IDENT pfm_type string pfm_name Subject pfm_title Subject pfm_description Representation of a X.500 name pfm_type array pfm_subkeys pfm_name SCEPSubjectArrayInnerArray pfm_title Array Inside SCEP Subject Array pfm_description This array holds another array which holds an OID value pair pfm_type array pfm_subkeys pfm_name SCEPSubjectArrayPair pfm_title Subject Array Pair pfm_description An array representing an OID and value pair. pfm_type array pfm_subkeys pfm_name SCEPSubjectArrayPairItem pfm_title SCEP Subject Array Pair Item pfm_description One item in the array representing a pair of OID and value pfm_type string pfm_repetition_min 2 pfm_repetition_max 2 pfm_name Challenge pfm_title Challenge pfm_description Used as the pre-shared secret for automatic enrollment pfm_type string pfm_name Keysize pfm_title Key Size pfm_description Key size in bits pfm_type integer pfm_default 1024 pfm_range_list 1024 2048 pfm_name CAFingerprint pfm_title Fingerprint pfm_description Enter hex string to be used as a fingerprint or create fingerprint from Certificate pfm_type data pfm_name Key Type pfm_title Key Type pfm_description Key Type pfm_type string pfm_default RSA pfm_name Key Usage pfm_title Key Usage pfm_description A bitmask indicating the use of the ky. 1 - signing, 4 - encryption, 5 - signing and encryption pfm_type integer pfm_default 0 pfm_name SubjectAltName pfm_title Subject Alt Name pfm_description Specifies the Subject Alt Name for the certificate pfm_type dictionary pfm_subkeys pfm_name rfc822Name pfm_title RFC 822 Name pfm_description RFC 822 (email address) string pfm_type string pfm_name dNSName pfm_title DNS Name pfm_description DNS Name pfm_type string pfm_name uniformResourceIdentifier pfm_title URI pfm_description Uniform Resource Indentifier pfm_type string pfm_name ntPrincipalName pfm_title NT Principal Name pfm_description NT Principal Name pfm_type string pfm_name Retries pfm_title Retries pfm_description The number of times the device should retry if the server sends a PENDING response pfm_type integer pfm_default 3 pfm_name RetryDelay pfm_title Retry Delay pfm_description The number of seconds to wait between subsequent retries. The first retry is attempted without this delay pfm_type integer pfm_default 10