I struggle with this and need some help. Basically I created a certificate from trusted authority (comodo) which in theory meet all requirements, added to the MDM server successfully. However, when I tried to enroll the phone, I’m getting an error message:
When I look ad MDM logs (trace.log), they show me the error:
“HttpsCertCheck: Extended key usage must contain TLS Server Auth”
But certificate properties show the Extended key usage does contain TLS Server Auth.
I've tried to find procedure how to create a request to public authority and only one which I was able to get is:
Which not necessarily is correct for MDM. Could you help me with this please?