- Jamf Nation Community
- Products
- Jamf Pro
- Sign Quick Add Package
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 09:06 AM
Does anyone know the proper certificate format to sign a quick add package? I'm using a .pfx and it doesn't seem to be correct... is .cer correct?
Solved! Go to Solution.
Reply
2 ACCEPTED SOLUTIONS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 09:46 AM
I believe it also requires the Agent to create the CSR private/public key pair. So if your company already has a OS X Dev account, you must talk to the person who OWNS the account.
Correct me if I'm wrong!
- Justin
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 11:32 AM
Solved + Steps for future inquiries:
- Generate a Certificate Signing Request through Keychain Access
- Upload CSR to OS X Dev Center (follow apples guidelines and steps)
- Download Cert
- Export cert and private key as .p12
- Upload to QuickAdd in JSS User-Initiated Enrollment
Easy peasy.
Reply
8 REPLIES 8
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 09:44 AM
Can't just sign with any cert from any CA. You need to sign it with a certificate from Apple's Developer portal. Are you a member of the Apple Developer Program for Mac ($99/yr)?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 09:46 AM
I believe it also requires the Agent to create the CSR private/public key pair. So if your company already has a OS X Dev account, you must talk to the person who OWNS the account.
Correct me if I'm wrong!
- Justin
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 11:02 AM
Thanks for the replies all, will investigate further and go from there.
Cheers!
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2015 11:32 AM
Solved + Steps for future inquiries:
- Generate a Certificate Signing Request through Keychain Access
- Upload CSR to OS X Dev Center (follow apples guidelines and steps)
- Download Cert
- Export cert and private key as .p12
- Upload to QuickAdd in JSS User-Initiated Enrollment
Easy peasy.
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-21-2016 01:34 PM
@sam.clark does it matter what type of cert it is? I have a developer id installer and a mac installer distribution created. Looks like the security message still comes up the first time but if I click the installer again it runs correctly.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 07-12-2016 10:52 AM
Does an "Agent" in the Apple Dev Portal have to generate the CSR key pair? I've tried it a couple of times as an admin to no avail
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-26-2017 11:01 AM
@Canary This thread is a bit old, but I just went through this. They key pair has to be generated by the Team Agent, which there can only be 1 per developer account/company account.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 12-19-2017 07:46 PM
Great right up of how to do this with screenshots. https://www.hcsonline.com/images/How_to_Create_a_Signed_QuickAdd_Package.pdf
Christopher Holmes, Jamf Certified Trainer & Integrator
Reply
