Posted on 12-11-2023 01:21 PM
This just recently started. Wipe a test machine and go thru the setup. The jamf framework loads but not self service nor do policies run. config profiles load including MDM.
The Macbook is in ABM assigned to our Jamfcloud server. DEP runs and JamfConnect in the Prestage makes the end user account based on Entra ID.
Here is the log file. Not sure what has changed to make this occur.
mac.test@MacBook-Air ~ % cat /var/log/jamf.log
Mon Dec 11 12:39:58 MacBook Air jamf[733]: The SSL Certificate for https://domain.jamfcloud.com must be trusted for the jamf binary to connect to it.
Mon Dec 11 12:39:58 MacBook Air jamf[733]: Enrolling computer...
Mon Dec 11 12:39:59 MacBook Air jamf[733]: Skipping trustJSS command...
Mon Dec 11 12:40:00 MacBook Air jamf[733]: JMFCommons.JamfKeychain.JamfKeychainSecurityError.failedToReadJmfKeychainPassword
Mon Dec 11 12:40:01 MacBook Air jamf[733]: JMFCommons.JamfKeychain.JamfKeychainSecurityError.failedToReadJmfKeychainPassword
Mon Dec 11 14:40:32 MacBook Air jamf[733]: An error occurred while enrolling computer: Connection failure: "The operation couldn’t be completed. ( error 502.)"
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Error Domain=com.jamf.jamfsecurity.error Code=-25300 "searchForItems:conversionBlock:error: : The specified item could not be found in the keychain." UserInfo={NSLocalizedDescription=searchForItems:conversionBlock:error: : The specified item could not be found in the keychain.}
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Security Error - A security error has occurred.
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Error Domain=com.jamf.jamfsecurity.error Code=-25300 "searchForItems:conversionBlock:error: : The specified item could not be found in the keychain." UserInfo={NSLocalizedDescription=searchForItems:conversionBlock:error: : The specified item could not be found in the keychain.}
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Device Signature Error - A valid device signature is required to perform the action.
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Removing existing launchd task /Library/Application Support/JAMF/tmp/com.jamfsoftware.task.policy.plist...
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Enroll return code: 70
Mon Dec 11 14:40:32 MacBook Air jamf[733]: JAMF Enrollment Error: Error creating configuration file.
Mon Dec 11 14:40:32 MacBook Air jamf[733]: Enrollment Complete. Exiting.
Mon Dec 11 14:40:32 MacBook Air jamf[905]: Checking for policies triggered by "enrollmentComplete"...
Mon Dec 11 14:40:34 MacBook Air jamf[905]: Error Domain=com.jamf.jamfsecurity.error Code=-25300 "searchForItems:conversionBlock:error: : The specified item could not be found in the keychain." UserInfo={NSLocalizedDescription=searchForItems:conversionBlock:error: : The specified item could not be found in the keychain.}
Mon Dec 11 14:40:35 MacBook Air jamf[905]:
There was an error.
Device Signature Error - A valid device signature is required to perform the action.
tried jamf manage and jamf enroll and jamfcloud/enroll and none of them seem to help. Wipe and it repeats again. Started with 1 machine, now we have 2.
Posted on 12-12-2023 06:34 AM
The first line in the log raises a lot of concerns to me. However, I'd assume that with you being JAMF Cloud the SSL certificate should be fine. Still check it to make sure. Also check the time and date on the device, make sure it's not too far off as that time skew can screw all kinds of things up.
Posted on 01-04-2024 06:08 AM
I swear this error has been seen for the longest time, I only just noticed two known issues for the similar log result you posted.
One is to do with enrollment -> smart groups - smtp notification (of all things) and the other is to do with upgrade path of Jamf server itself (so on prem).
See if that helps it all, good luck!