Help

Where are log files for .mobileconfig failures?

bbot
Contributor

Posted on ‎06-01-2015 02:18 PM

I have a casper policy that generates new Wifi certificates during first boot. Newly enrolled machines are still successfully receiving wifi certificates, but about 2 weeks, I have not been able to use the same .mobileconfig file on machines to generate new certificates. I am receiving a "profile installation failed. Active Directory Certificate payload could not be installed. Certificate request failed." Where are the log files on the Mac to help me troubleshoot this issue?

0 Kudos
Reply
3 REPLIES 3

davidacland
Honored Contributor II

Posted on ‎06-01-2015 03:15 PM

Hi, the log files for this issue will be on the CA server that the client is requesting the certificate from. I've had this at a few sites during initial setup and the client side logs are very vague.

This makes sense as you don't want too many clues being passed back to a client in case the certificate enrollment is malicious.

0 Kudos
Reply

bbot
Contributor

Posted on ‎06-01-2015 03:44 PM

Thanks! Not sure what happened...but the issue just resolved itself.

I'm running into another issue, and maybe it's me using the profiles tool improperly. I'm able to double click the .mobileconfig to generate new certificates. When I try using the /usr/bin/profiles -I -F /pathto/mobileconfig, i'm getting a Certificate request failed. The reason behind using the /usr/bin/profiles command as opposed to just double clicking it is because our client machines do not have access to profiles setting tab. (we restrict it)

Am i using the command wrong?

0 Kudos
Reply

bbot
Contributor

Posted on ‎06-01-2015 03:46 PM

Nevermind... just answered my own question. It works if i don't use sudo.

0 Kudos
Reply