I was troubleshooting the following two errors when I noticed that in my production environment (JSS v9.3), the Tomcat settings in the JSS are blank using the Built-in Certificate.
Errors from when the Macs are failing to complete any policy or check-in:
1.) "Failed to enforce the management framework: Device Signature Error - A valid device signature is required to perform the action
2.) There was an error. *** -[__NSArrayI objectAtIndex:]: index 1 beyond bounds [0 .. 0]
My Dev environment, which was created by restoring a backup of the Production environment, shows me the JSS Built-in Certificate, but I only have a handful of Macs enrolled there and since this issue is so sporadic I can't really tell if this is the cause or not. Either way, something doesn't seem right with the JSS not showing the Tomcat settings. I've tried the following so far:
- Restarted Tomcat on my Windows Server.
- sudo update_dyld_shared_cache -force on the client
- Removed the JAMF framework, plist, /Library/Application Support/JAMF - which includes the JAMF keychain.
- Deleted the Built-in Certificate from the System Keychain.
- Re-enrolling using sudo jamf enroll -prompt and the QuickAdd package
- Everything from (https://jamfnation.jamfsoftware.com/discussion.html?id=8225)
- Restored the same db in Production that I used in Dev where the Tomcat setting do appear. The Dev environment is running JSS v9.31, but when I remove the JAMF framework from client in Prod (JSS v9.3) having the issue and try to enroll into Dev, I get the same error(s).
I have an open ticket with JAMF support, but want to see if anyone else has seen this before or had any additional thoughts/recommendations.
Thanks!
Paul
