Switching to Certificate-Based Communication

Question

All:

JAMF support says I'll be fine to do this and I don't necessarily doubtthem, but I also wanted to hear from anyone out there that's done this in aproduction environment.

To push policy to my 10.7 clients, I need to enable certificate-basedcommunication as well as enable push notification for Mac OS v10.7 clients.
 Thing is, I have a currently operating environment that's been upgraded afew times and now sits at 8.31.  My fear is that I'll enable this and losecommunication with all of my current devices.  JAMF support tells me thatthis won't be a problem.  Only caveat is that at this time, you can't turnthat off without having problems, but it will be fixed in a later release.

Again, it's not that I doubt what JAMF support is telling me, but I'd surelike to hear from someone that's done this &#034;live&#034; and hear what resulted.

TIA,

Drew

-- 
Drew LaneDirector of TechnologyDerby Public SchoolsiMessage and Facetime:  dlane at usd260.comOffice:  316.788.8591Find Me:  316.285.0017

Walter · Answer

If you have the JSS generate the cert and use that cert, do you need to wait a while between setting that step and enabling the requirement for a valid certificate? Do you need to populate anything on the clients to trust this CA? Does the JSS do that for you?
--
Walter Rowe, System Hosting
Enterprise Systems / OISM
walter.rowe at nist.gov<mailto:walter.rowe at nist.gov>
301-975-2885

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded