Deploy the Root and Issuing Certificates
- 13 Dec 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Deploy the Root and Issuing Certificates
- Updated on 13 Dec 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
Once you've added your device to Axiad Conductor, you can start using it to enable a passwordless experience across your ecosystem.
The deployment of the certificate chain (Root and Issuing) can be done automatically and remotely using Jamf PRO.
Prerequisites:- The macOS Workstation must be already enrolled with Jamf Pro for management (see Ref5)
- Axiad Conductor Root and Issuing certificates delivered by Axiad Professional Services in PEM (base64) format
To Deploy the Certificate Chain
- In Jamf PRO, navigate to Computers > Configuration Profiles.
- Click New to create a new configuration profile.
- Enter a Name and Description, and select the Distribution Method.
- From the list of available configuration profiles, click Certificate, then click Configure:
- Enter a name for the certificate and select Upload from the Select Certificate Options drop-down.
- Click Upload Certificate.
- Navigate to the PEM certificate file.
- Click Save.
- Click + on the top-right of the page.
- Repeat steps 3 through 6 for the Issuing certificate from Axiad Conductor.
- Navigate to the Issuing certificate from Axiad Conductor.
- Click Save.
- When done uploading all certificates, click Scope.
- Click Add toadd a target.
- Click Add next to all of the target groups of computers you to provision.
- Once you'e added all target groups, click Done.
- Click Save.
The new configuration profile saves.
- Download the Root CA certificate to your Mac in PEM (base64) format.
- Obtain your Axiad Conductor Root and Issuing certificates from your system administrator.
- On your computer, navigate to Finder > Applications > Utilities.
- Click Keychain Access.
- On the left menu, in the Keychains section, select System.
- On the left menu, in the Category section, select Certificates.
- Click File > Import Items.
- Navigate to the certificate you want to import and click Open.
The certificate imports, but is not yet trusted. - Right-click the newly-imported certificate and select Get Info.
- Expand the Trust section.
- Next to When using this certificate, select Always Trust.
All options automatically change to Always Trust. - Close the Get Info dialog box.
- If prompted, enter your machine credentials and click Update Settings.
The certificate is imported and trusted on the machine.
Was this article helpful?