Can the JSS built-in CA be used in the SCEP configuration profile payload?

Infra
New Contributor

I would like to issue device certificates which will be used to authenticate the device on the wifi. Now, according to the Casper Suite Administrator's Guide the JSS built-in CA supports SCEP:

The JSS includes a preconfigured PKI that uses a built-in CA with support for SCEP.

Unfortunately i couldn't find any information about how to set the SCEP configuration payload to use the JSS built-in CA to request a certificate. Now i'm curious how i would need to configure the SCEP payload to use the built-in CA.

6 REPLIES 6

sdiver
New Contributor III

We've been trying to figure this out for the last few days as well...to no avail. Now, working with a Jamf Support Engineer to see if we can figure anything out. Will post details if we come to a solution.

joshua
New Contributor

Please let us know what you find.

znilsson
Contributor II

Yep I'm bookmarking this thread too.

joshua
New Contributor

Please let us know what you find.

friveraLC
New Contributor III

Anyone get an answer on this?

wdeneys
New Contributor II

Ditto; we have Wifi all configured to allow JSS issued certificates... but I just cannot figure out any way to automate using them, users have to pick them manually which we want to avoid.