Skip to main content
Answer

Your web server certificate expires in 19 days.

  • July 17, 2012
  • 3 replies
  • 28 views
M
Forum|alt.badge.img+6

When I log into the JSS I am greeted with this message

Your web server certificate expires in 19 days.

I thought I could go to Settings -> Global Management Framework Settings -> Public Key Infrastructure and renew it. I'm not seeing the option there. The old certificate was generated by the JSS. How can I renew it?

BTW we are not using Certificate-Based Communication in Settings -> Computer Management Framework Settings -> Security. So I don't know that an expired certificate will be any problem.

Thanks,
-- jmca

Best answer by McAdams

Got the answer from Greg Haugen of JAMF support:

The certificate issue is a fairly simple fix. We will need to go to the JSS and follow this path:

1.) JSS >> Settings >> General Settings >> Server Configuration to replace the certificate (if using the built-in certificate, if not contact support for further assistance)

2.) We will need to restart Tomcat as well. This can be completed on a Mac server by:

To restart Tomcat using the JSS Database Utility (v8.4 or later):

  1. Open the JSS Database Utility on the server hosting the JSS.

-Cmd+Shift+G: Library/JSS/bin/JSSDatabaseUtility.jar Go to Utilities (top bar)

-Restart Tomcat

    3 replies

    T
    Forum|alt.badge.img+5
    • tsd25108
    • Contributor
    • July 17, 2012

    Not sure why you're cert won't renew, however you should be able to log into Apple Identity and check the expiration date of your cert and renew it if you need to.

    https://identity.apple.com/pushcert/

    M
    Forum|alt.badge.img+6
    • McAdams
    • Author
    • Contributor
    • Answer
    • July 18, 2012

    Got the answer from Greg Haugen of JAMF support:

    The certificate issue is a fairly simple fix. We will need to go to the JSS and follow this path:

    1.) JSS >> Settings >> General Settings >> Server Configuration to replace the certificate (if using the built-in certificate, if not contact support for further assistance)

    2.) We will need to restart Tomcat as well. This can be completed on a Mac server by:

    To restart Tomcat using the JSS Database Utility (v8.4 or later):

    1. Open the JSS Database Utility on the server hosting the JSS.

    -Cmd+Shift+G: Library/JSS/bin/JSSDatabaseUtility.jar Go to Utilities (top bar)

    -Restart Tomcat

    John_Wetter
    Forum|alt.badge.img+33
    • John_Wetter
    • Hall of Fame
    • July 19, 2012

    I guess I'm going to be 'that guy' here and say that using self-signed certificates is generally a bad thing to do operationally. There were a couple excellent sessions at the NUC last year talking about this. With the low cost of Public CA signed certs now, I'd really suggest you look into getting a public cert so trust isn't an issue going forward.

    Terms & ConditionsCookie settingsAccessibility statement