Been noticing that Self Service has been failing and saw this in /var/log/jamf.log
Device Signature Error - A valid device signature is required to perform the operation.
I'm not seeing any expired certificates anywhere, in fact they were just renewed only a few months ago. I did sudo jamf -enroll -prompt. That got SS working again, but I need to understand what happened or where to check what might be expired, missing, etc.
Some of these are machines that were JUST enrolled through the pre-stage enrollment that was set up by our Jamf consultant.