SSL Certificate

Jamf Pro requires a valid SSL certificate to ensure that computers and mobile devices communicate with the Jamf Pro server and not an imposter server.

The Apache Tomcat settings in Jamf Pro allow you to create an SSL certificate from the certificate authority (CA) that is built into Jamf Pro. You can also upload the certificate keystore for an SSL certificate that was obtained from an internal CA or a trusted third-party vendor.

  • If your environment is hosted in Jamf Cloud, the Apache Tomcat settings are managed by Jamf Cloud and are not accessible.

  • If your environment is clustered, you must log in to the Jamf Pro web app for each Apache Tomcat node and create or upload any SSL certificates for each node.

Creating or Uploading an SSL Certificate


To create or upload an SSL certificate, Jamf Pro must be installed as the “ROOT” web app, and the user running the Tomcat process must have read/write access to Tomcat’s server.xml file.

  1. In Jamf Pro, click Settings in the top-right corner of the page.
  2. In the System Settings section, click Apache Tomcat Settings .
  3. Click Edit .
  4. Select Change the SSL certificate used for HTTPS and click Next.
  5. Follow the onscreen instructions to upload or create an SSL certificate.
  6. Restart Tomcat for the changes to take effect.
 For instructions, see the Starting and Stopping Tomcat article.