What is the lift required to change ADCS connectors in Jamf Pro? The situation is that the current ADCS connector is in a dev environment but we want to switch to new prod ADCS connector going forward. Nothing about the certificates being assigned would change, just the connector itself. What would be involved with this? From what I can find, I would need to update the ADCS URL and upload the certificates generated on the new prod ADCS connector. Is that all? Also, what would the end user experience? Would they be prompted for anything or would the certificates automatically renew? Thanks.
@abfajerman once you make the switch to your production server, your test server certs will most likely disappear/fail, because the connection to your CA has been cut short. Your users will notice if you've already deployed test certs to them. I suggest making the switch on a weekend and have them receive the new certs as they check-in.
Quick question - what is the expected behavior for certs deployed to registered devices, in case the CA server hostname changes (not ADCS Connector, but Issuing CA server hostname)? The CA itself stays the same, only the hostname changes.
Is cert re-issuance and re-reployment triggered, does JAMF treat this as a new CA and decides a re-push is needed? I've seen a similar behavior with other MDM platforms using NDES, if the SCEP URL would change, all certs would be re-issued and redeployed...
Thanks in advance for your help and support!