Help

Mac enrollment page does not work with CNAME/Alias?

powellbc
Contributor II

Posted on ‎05-02-2013 12:49 PM

We created a friendly CNAME record for our JSS, so that users who need to self enroll do not need to know the complicated FQDN of our server. We discovered that when using this CNAME (i.e. Friendlyname.company.com/enroll) instead of the FQDN, clicking the login button redirects the people to a 403 error. I assume something is passed from the FQDN URL for the download, which is breaking the quickadd download when not using it.

Anyone done this and have a workaround?

0 Kudos
Reply
1 REPLY 1

jgleason
New Contributor

Posted on ‎05-02-2013 04:07 PM

I would think that this is because you can't specify the port (8443) or the fact that the site requires HTTPS in a CNAME record. I too have run into the same issue. The thought I had to "fix" it (although I have not implemented this fix to test) is to point your CNAME record to another website that you can host a page with a simple redirect.

In example:
you have two servers
web1 and casper1

Host a PHP website on web1 with a CNAME record pointing at your website on web1 (e.g. enroll.yourdomain.com)
the PHP code for the website would be:
<?php header('Location: https://casper1.company.com:8443/enroll'); ?>

This should simply perform a redirect to anyone navigating to enroll.yourdomain.com

Hope this helps.

0 Kudos
Reply