I've been tasked with setting up AD Certificates for Macs and after working a bit on it I now have it working where the computer gets a config profile installed that then requests from AD a certificate. Everything is working fine, but now I am at the point where I am not sure what needs to be done when the certificate expires 1-year from now. I need some type of workflow for renewing these as it will be impossible to keep track of all the expiration dates.
After doing some searching on JN, there are some posts a few years old where users recommend scripting this, but there was no one that could get it working.
There is also a feature request to have the JSS auto renew, but that is from 2013 and I don't think that will happen.
If anyone is out there who has put together a workflow for getting this to work I would love to hear about it.
