You may already be aware that the introduction of Azure Active Directory (Azure AD) integration with System Center Configuration Manager (SCCM) starts reducing the certificate requirements.
Well, this integration has been updated (with the current release – build 1806 – this is still a preview) to allow Azure AD Joined devices managed by SCCM to communicate using HTTP with the SCCM environment through the cloud management gateway
To implement this new capability, you need to have setup and configure at least one cloud management gateway and enable your SCCM site for HTTS or HTTP communication and enable the option Use Configuration Manager-generated certificates for HTTP site system
From the Administration workspace, reach out the Site Configuration\Sites section to then open the site properties
Then go to the Client Computer Communication to enable the “Use Configuration Manager-generated certificates” option