Jamf Nation Community

kinghippos3 · ‎05-04-2022

In preparation for the JAMF bind apocalypse... I'm looking to find machine certificate alternatives for 802.1x wired and wireless.

Currently, for 802.1x wired and wireless, we use machine certificates requested from a Windows PKI server. It has worked quite well. However, in the future when we are unable to bind MAC's to AD... we are looking at alternatives.

Has anyone been able to use the machine certificates generated from the JAMF PRO Built-in CA for 802.1x using configuration profiles??

boberito · ‎05-04-2022

Bind apocalypse has been canceled. Microsoft offered a patch and fixed the kerberos issue for Macs and Linux machines that bind.

kinghippos3 · ‎05-04-2022

really??? When/where was that announced?

The last article I saw is...

https://www.jamf.com/blog/advisory-macos-ad-cve/

boberito · ‎05-04-2022

Jamf wants you to buy Jamf Connect....

https://support.microsoft.com/en-us/topic/march-22-2022-kb5011558-os-build-20348-617-preview-8bb6ded...

https://support.microsoft.com/en-gb/topic/march-22-2022-kb5011551-os-build-17763-2746-preview-690a59...

tylalonde · ‎09-20-2022

Hey I know this is old but is there something specific in these two links that indicates specifically that the issue creating bind apocalypse was resolved? Nothing stood out to me.

Jamf Nation Community

JAMF Pro - Machine Certificates from Built-in JAMF CA for 802.1x