Skip to main content
Jamf Nation, hosted by Jamf, is a knowledgeable community of Apple-focused admins and Jamf users. Join us in person at the ninth annual Jamf Nation User Conference (JNUC) this November for three days of learning, laughter and IT love.

Change to the SSL Certificate Verification Setting in Jamf Pro 9.98 or Later

Explanation of Change

As of Jamf Pro 9.98, the Enabling SSL certificate verification checkbox has been changed to the SSL Certificate Verification pop-up menu with the options: "Always", "Always except during enrollment", and "Never". To configure SSL certificate verification, log in to Jamf Pro and in the top-right corner of the page, navigate to Settings > Computer Settings > Security.

If performing a fresh install of Jamf Pro 9.98 or later, the SSL Certificate Verification setting is set to "Always except during enrollment" by default.

If upgrading from Jamf Pro 9.97 or earlier to 9.98 or later and you previously enabled SSL certificate verification, the setting is set to "Always" by default. If you did not enable SSL certificate verification before upgrading, the setting is set to "Always except during enrollment" by default.

Important: If the Enable SSL certificate verification checkbox was deselected and other changes were made to the Security settings in Jamf Pro before upgrading to version 9.98 or later, the SSL Certificate Verification setting is set to "Never" by default. This will not protect computers against man-in-the-middle attacks.

If your environment is hosted on the Jamf Cloud, the SSL Certificate Verification setting is set to "Always" by default.

Additional Information

Safely Configuring SSL Certificate Verification
Learn about why it is important to configure SSL Certificate Verification in Jamf Pro and how to do so without putting your environment at risk.

Like Comment
Order by:
SOLVED Posted: by donmontalvo
There doesn't seem to be any Beta Programs available at this time.

Wait. Wat? Did we miss 9.98? :D:D:D

Like
SOLVED Posted: by brock.walters

For more background on this change we created this blog post:

Enhancements to certificate security for mobile device management (MDM) enrollment

enjoy!

Like