To identify the satellite, the portal automatically includes
the device serial number in the CSR request to the SCEP server.
Because the SCEP profile requires a value in the
Subject
field,
you can leave the default
$USERNAME
token
even though the value is not used in client certificates for LSVPN.