ADCS - Failed to inject certificates into the profile

Hi guys

I am out of ideas, I'm hoping someone here can help me.

We use Global Protect in our company, and have set up the jamfconnector to retrieve the certificates.

We have an ADCS configuration profile, which has been working fine up until now. Newly enrolled computers aren't getting their certificates anymore. When I go to check this in 'management' for that computer, I get the error 'Failed to inject certificates into the profile'. Any ideas where the issue could be? Connection to the jamfconnector and issueing server should still be ok.

Thanks!

Valérie

Page 2 / 2

My issue turned out to be a firewall problem. Adjusting the firewall traffic resolved the issue. Even if the machine has a long name like "Brandon Wood's Macbook Pro", it still get the cert within seconds.

@bwoods we have an issue where the JAMF team is suspecting a firewall issue, like the certificate provided by jamf is getting dropped and in ADCS we are getting 403, can you please tell any what changes were made in firewall.

@varun fixing this issue really depends on what type of relationship you have with your network team. I had to have three 4 hour sessions with my team. Luckily, we had the Jamf Infrastructure Manager configured and used it as a reference for how traffic should move through the firewall. You will need to send them Jamf's documentation and navigate through the firewall rules one by one.

we are getting a similar issue using JAMF AD CS but so far have been unable to resolve it.

will probably contact JAMF support and see if they can help out.

I'm still fighting with this as well going back and fourth with them for months. Is there a timeout setting within the ADCS Connector?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded