.uk is the DNS name of your Jamf Pro server..uk is the DNS name of your AD Certificate Services server.\deploy.ps1 -fqdn .uk -jamfProDN .uk -cleanInstall When running the installation the PowerShell command will look something like PS C:\Jamf\adcs-connector-1.0.0\ADCS Connector>. Setting up the link between Jamf and AD CS The latter has the advantage that the machine in question doesn’t need to be directly connected to AD CS to renew its cert, which could prove useful in future as well. We don’t have SCEP \ NDES enabled on our CA (which appears to be required for the older Jamf AD CS method) so the Connector looked a better option. You have two methods to do this either use the original Jamf payload or the new Jamf Pro AD CS Connector. We’re using Active Directory Certificate Services (AD CS) to issue certs to our devices using an auto-enrollment policy. All the information to do this with AD CS and macOS devices is out there but it’s a bit scattered so this post aims to bring it all together in one handy step-by-step guide. I decided to look into certificate-based authentication (EAP-TLS) to achieve this. Now we have Jamf Pro fully operational the task looked much more manageable. eduroam for organisation owned devicesĪfter configuring eduroam for BYOD I was intrigued by the possibility of using the same SSID to also onboard our college-owned devices a mixture of Windows 10 domain-joined laptops and MacBooks on macOS Mojave. One of those tasks involved moving to policy-defined Wi-Fi connections for our internal devices. After procuring a new Ruckus Wireless network to replace our soon-to-be EOL Aruba equipment my attention turned to simplifying the current setup in preparation for the changeover.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |