Deploy the Root and Issuing Certificates
  • 13 Dec 2024
  • 1 Minute to read
  • Dark
    Light
  • PDF

Deploy the Root and Issuing Certificates

  • Dark
    Light
  • PDF

Article summary

Once you've added your device to Axiad Conductor, you can start using it to enable a passwordless experience across your ecosystem. 

The deployment of the certificate chain (Root and Issuing) can be done automatically and remotely using Jamf PRO.

Prerequisites:
  1. The macOS Workstation must be already enrolled with Jamf Pro for management (see Ref5) 
  2. Axiad Conductor Root and Issuing certificates delivered by Axiad Professional Services in PEM (base64) format

To Deploy the Certificate Chain

  1. In Jamf PRO, navigate to Computers > Configuration Profiles1config-ext-external-app
  2. Click New to create a new configuration profile.
  3. Enter a Name and Description, and select the Distribution Method.
    cert2-name-description-dist
  4. From the list of available configuration profiles, click Certificate, then click Configure:
    cert3-configure
  5. Enter a name for the certificate and select Upload from the Select Certificate Options drop-down.
    cert4-assign-name
  6. Click Upload Certificate.
    cert5-upload-cert-button
  7. Navigate to the PEM certificate file.
  8. Click Save.
    cert6-save-cert-upload
  9. Click + on the top-right of the page.
    cert7-add-cert-upload
  10. Repeat steps 3 through 6 for the Issuing certificate from Axiad Conductor.
  11. Navigate to the Issuing certificate from Axiad Conductor.
  12. Click Save.
  13. When done uploading all certificates, click Scope.
    cert8-scope
  14. Click Add toadd a target.cert8-scope-add
  15. Click Add next to all of the target groups of computers you to provision.
    cert9-add-targets
  16. Once you'e added all target groups, click Done.
    cert9-done-targets
  17. Click Save.
    cert9-finalThe new configuration profile saves.
  1. Download the Root CA certificate to your Mac in PEM (base64) format.
  2. Obtain your Axiad Conductor Root and Issuing certificates from your system administrator.
  3. On your computer, navigate to Finder > Applications > Utilities.
  4. Click Keychain Access.
  5. On the left menu, in the Keychains section, select System.
  6. On the left menu, in the Category section, select Certificates.
  7. Click File > Import Items.
  8. Navigate to the certificate you want to import and click Open.
    The certificate imports, but is not yet trusted.
  9. Right-click the newly-imported certificate and select Get Info.
  10. Expand the Trust section.
  11. Next to When using this certificate, select Always Trust.
    All options automatically change to Always Trust.
  12. Close the Get Info dialog box.
  13. If prompted, enter your machine credentials and click Update Settings.
    The certificate is imported and trusted on the machine.

Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.