Enable Certificate-Based Communication, a few devices fail to recon/inventory

Valued Contributor

Today, I enabled Enable Certificate-Based Communication on our JSS (8.52) and since then a few devices fail to communicate to the server when running "sudo jamf recon" from the command line.

I believe that running "jamf enroll" will fix the issue, but is that the proper fix or is that a big hammer approach?

A week ago I enabled the Extension Attribute (EA) of "Verify Certificate Based Communication". I could create a smart group were the Verify Certificate Based Communication is not "Enabled" and run the jamf enroll command if that fix is acceptable.


Contributor III

Tech. Support had me run

jamf enroll -prompt

on the few I had that behaved this way after applying certs.