I am currently having a problem with deploying SCEP payload for a Wifi Profile.
The profile failed with this error
OSS Error 67701 points to An invalid record was encountered.
My SCEP Payload
I have uploaded the SCEP signing Cert under the external CA PKI Certificate setting by following this article link
Any feedback would be greatly appreciated.
I had a similar issue with the AD CS connector. I went to the certificate server, opened server manager, clicked on tools and opened Certificate Authority. In there I was able to see the failed request. I discovered it was my subject name giving error then my template was wrong. Once I fixed those, it was able to deploy the configuration profile.
Not sure if this will help or not. Using SecureW2 as our vendor and Active Directory.
We went through this last year. Took for.ev.ah. to get it working. Lots of trial and error and many hours on the phone with SecureW2 and our network guys.
Anyway, now that its working for us, one thing I note that's different between my config and yours is the formatting of the content in Subject Alternative Name Value.
In my config we use different separators (though its entirely possible this is either vendor specific or makes no difference whatsoever);
Note; the double ;; is intentional.
also note; $EXTENSIONATTRIBUTE_25 is the LDAP attribute variable, capturing our assigned user AD UUID.