Help

Jamf and ADCS for Machine based certs

KyleEricson
Valued Contributor II

Posted on ‎03-12-2018 10:32 AM

See my attached guide. Hope it helps.
cd854505931f4cb1bd18b7817ac43b8e
af16090551b443a69484390596d7f6e9
ba925eec82024a629c190de9f5c8069f
e7fd7161b8ff4d88b502d77cbde00a73
2258948468ee4531a273ea099d3718e1
94c1265c56ff4c1fb677333987583cfc
33cf93fd37ae4412b9d773f5e8d290e5
a254c89daa7c4133876102ab18ce455c
3a26e5083e5746bf9128e27ff68ad170
949a30b7e48e404a939b9b3fcfeb216c
76c0d7fdd4754ac7a6fa3a00fbb335c2
13289934d2c8468abc13705d7bf1ac9f
7f34b95cb8924d9485fb4fbe51a5e3b0
102757a6b7b64678aa2ae357369ed176
fe4c42f5ed924606a19e39261cec1d34
42ea23deaa0f4ba68b4ef7ab9b4ff1d5
921f0d8aaf904a35ba90b9f1702badc2
77cb2c476f3141fd892711d2113b382e
798c768af2ce4b159492fcd0aed2d56b
e7b4d5e930d94cf08d5f771c15da1e28
eb5c27263b554469ad19f3e5a916c209

Read My Blog: https://www.ericsontech.com
0 Kudos
5 REPLIES 5

arubatim
New Contributor

Posted on ‎03-14-2018 05:15 AM

Great doc!

Two suggestions
1) Don't allow the private key to be exported
2) Include the SPN as a SAN (SPN is more machine centric than UPN)

0 Kudos

dgreening
Valued Contributor II

Posted on ‎03-29-2018 10:54 AM

Awesome! Can you link to a downloadable PDF of this?

0 Kudos

KyleEricson
Valued Contributor II

Posted on ‎03-29-2018 11:02 AM

See if this works.
PDF Download

Read My Blog: https://www.ericsontech.com

bmarks
Contributor II

Posted on ‎03-29-2018 11:27 AM

Pardon my ignorance, but does this require binding to AD? Or, does this work even without binding?

0 Kudos

KyleEricson
Valued Contributor II

Posted on ‎03-29-2018 11:31 AM

Unfortunately, this requires AD Binding AirWatch allows this which I put in a feature request for this Here please vote this up.

Read My Blog: https://www.ericsontech.com
0 Kudos