3 weeks ago
I am helping setup a JAMF solution with a SCEP server. We have everything setup, seemingly, but the assignment of the certificate fails from the SCEP server with the 400.0.64 error code.
I was wondering if the fact that the MACs are not in DNS is causing this issue. I ask because I know certificate servers normally need to see the device in DNS that they are giving a certificate to.
Could that be it?
3 weeks ago
There may be an issue with your SCEP settings in the profile. It could be a problem with the subject or the subject alternative name value. I fat fingered some SCEP settings once. I entered an incorrect value in the SAN. When I corrected my error, it worked. Fortunately, I screwed it up when testing, not when the profile was in production. I am using SCEP with Sectigo, not a local server.