Jamf Nation Community

EricF · ‎05-23-2024

Hi there,

we are trying to set up the Jamf-Proxy for Venafi PKI and we are running into issues.

We set up everything according to the manual. From my understanding Jamf-Cloud is getting connected to the Proxy as I can see a request on the Proxy itself. There is a POST command in the direction of the Venafi PKI which then is stopped with an error : x509: certificate signed by unknown authority.

Also we are able to connect to the Venafi PKI from the Proxy via API.

Has anyone ever seen the same error and knows what we might have to configure?

EricF · ‎08-06-2024

@bradtchapman @sdagley The outcome was to get another server running on windows. With that we identified two issues. There was a firewall on the loadbalancer, which stopped the traffic from proxy to venafi, and after resolving this we got an errormessage which has lead us to a wrong ID in the setup. We used the Token-Data before but we had to set up the Application ID instead.

View solution in original post

sdagley · ‎05-23-2024

@EricF Does the log on your Venafi system show the same error?

EricF · ‎05-27-2024

@sdagley We have to wait till wednesday, then I have an appoitment with the Venafi-Admins.

bradtchapman · ‎06-05-2024

@EricF : what was the outcome of this?

EricF · ‎08-06-2024

@bradtchapman @sdagley The outcome was to get another server running on windows. With that we identified two issues. There was a firewall on the loadbalancer, which stopped the traffic from proxy to venafi, and after resolving this we got an errormessage which has lead us to a wrong ID in the setup. We used the Token-Data before but we had to set up the Application ID instead.

Jamf Nation Community

Issues setting up Jamf-Proxy for Venafi