Jamf Pro requires a valid SSL certificate to ensure that computers and mobile devices communicate with the Jamf Pro server and not an imposter server.
The Apache Tomcat settings in Jamf Pro allow you to create an SSL certificate from the certificate authority (CA) that is built into Jamf Pro. You can also upload the certificate keystore for an SSL certificate that was obtained from an internal CA or a trusted third-party vendor.
Note: If your environment is hosted in Jamf Cloud, the Apache Tomcat settings are managed by Jamf Cloud and are not accessible.
Creating or Uploading an SSL Certificate
To create or upload an SSL certificate, Jamf Pro must be installed as the “ROOT” web app, and the user running the Tomcat process must have read/write access to Tomcat’s server.xml file.
Log in to Jamf Pro.
In the top-right corner of the page, click Settings .
Click System Settings.
Click Apache Tomcat Settings .
Click Edit .
Select Change the SSL certificate used for HTTPS and click Next.
Follow the onscreen instructions to upload or create an SSL certificate.
Restart Tomcat for the changes to take effect.
For instructions, see the Starting and Stopping Tomcat Knowledge Base article.
For related information, see the following Knowledge Base article:
Using OpenSSL to Create a Certificate Keystore for Tomcat
Find out how to use OpenSSL to create a certificate keystore that you can upload to Jamf Pro.