Another tomcat cert posting

Question

Hello,

I have a ticket with JAMF open. We have been having a large amount of issues lately, and I decided to drop our old Casper infrastructure and do a total overhaul.  So I have a brand new manually installed JSS (on rhel).  The main issue I'm having at this point is that the tomcat cert isn't seeming to work properly.

What I mean by this is that I have created a new java keystore and have imported signed tomcat and root certs signed by my AD CA.  Browser-wise everything seems to be working fine, however I start to see things fall apart when I try enrolling my JDS and running the jamfds policy command.  It says that the cert is bad... the server name either does not match, or it isn't signed.  The other place I see a problem is in the Tomcat Settings page where there should be specifics about the cert, see attachment.

Has anyone run into this issue?  Do you have any suggestions?

Kedgar · Accepted Answer

We are using certs signed by our Active Directory CA.  I figured out that the issue was regarding the server naming as I had thought.  This is no longer an issue.  I needed to set the name on the cert to match the cname of our JSS... this was the cause.

Anonymous · Answer

Does it say something like &#034;JAMF binary could not connect to the JSS because the web certificate is not trusted?&#034;I've been having that issue lately and can't figure out why.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded