Skip to main content
Jamf Nation, hosted by Jamf, is a dynamic and knowledgeable community of Apple-focused IT admins and Jamf Pro users. Join us in person, in October, for the annual Jamf Nation User Conference (JNUC) to discover new and better ways to manage Apple devices.

importCACert.sh -- Import CA Certficate to the System Keychain

Synopsis

sudo importCACert.sh
sudo importCACert.sh <mountPoint> <computerName> <currentUsername> <caCertLocation>

If no hardcoded values are specified for the above parameters, and there is a value passed for the parameters by the Casper Suite, the values passed will apply.

If there are hardcoded values specified for the above parameters, those values will supersede any value passed by the Casper Suite.

The value specified for "caCertLocation" should be a path to the certificate, formatted in the
".pem" format on a machine. It is assumed that this script is being run after deploying the
CA certificate via a package to a location such as "/Library/Application Support/JAMF" on the machine.

Description

This script will import a ".pem" or ".cer" certificate from a given location on the machine to the system keychain. This script assumes the following workflow is taking place: 1.) Create a package of the ".pem" or ".cer" formatted certificate being deployed to a location such as: "/Library/Application Support/JAMF" 2.) Upload the package to Casper Admin 3.) Edit the "caCertLocation" variable located within this script to reflect the location of the CA cert as it was packaged. For example, if we have a certficate named "CompanyCA.cer" that was packaged to be installed to "/Library/Application Support/JAMF", we would set the "caCertLocation" variable to "/Library/Application Support/JAMF/CompanyCA.cer" 4.) Upload the script to Casper Admin and ensure that a script priority of "After" is selected 5.) Create a policy that will install the package containing the CA cert and run this script after installing the package.

Download

Preview

Generating Preview...