If you push out the cert using a configuration profile your Macs will
trust the new cert as soon as it's loaded. And the configuration profile
can go out either automagically or via Self Service. Unless, I
misunderstand your situation....? The old sc...
Are your Macs bound to AD? Unless your in a custom environment DNS and
DHCP are both live to service AD. If you are bound to AD, unbind then
rename, then bind with new name, then JAMF recon.
That term "auditable events" makes me think they are looking for the
items included in BSM auditing. The best reference to get started with
BSM is on Der Flounder. See
https://derflounder.wordpress.com/2012/01/30/openbsm-auditing-on-mac-os-x/
If you ...
Oh one last thought. If you don't have a /Library/
(or similar directory someplace else) on your Macs already, you are
making things hard on yourself needlessly. Its old school but there are
countless uses.... ;-)
Hi - Your initial workflow description is a little vague so you will
have to forgive me for posting a response that is a little vague. ;-)
I've spent years messing around with this sort of thing because I want
my Macs to do everything for me because ...
