Hello everyone,
Recently changed the JSS URL (Settings > Global Management > JSS URL) and am having a difficult time getting our DEP instance to update with the correct settings.
After changing the URL, I updated the Tomcat SSL cert (and restarted the tomcat service), downloaded the public key from Global Management > Device Enrollment Program, uploaded that cert into our DEP instance on apple, and downloaded the new apple cert to upload into the JSS. However, I'm finding that the "public key" certificate downloaded from the DEP page within the JSS still has the old URL. I can't seem to get it to update.
DEP enrolled machines are currently unable to apply the MDM profile because of the SSL error. If you inspect the publickey.pem file downloaded from the JSS, I can see that it's still using the old url in the CRL part of the cert. If I check the configuration profile info on the target mac (/var/db/ConfigurationProfiles/.cloudConfigRecordFound) I can see that it is indeed still using the old URL. If I manually edit this file to point to the new url, the mdm profile will suddenly start working, however when the machine originally goes to pull down the settings from apple, it's still getting the old information.
I've even tried restarting the box after doing the tomcat ssl cert to maybe trigger a new cert to be generated for dep, but I just can't get it to update to the new information. The DEP public key will not update with the new jss url.
Any thoughts on this?
