SSL Certificate

The JAMF Software Server (JSS) requires a valid SSL certificate to ensure that computers and mobile devices communicate with the JSS and not an imposter server.

The Apache Tomcat settings in the JSS allow you to create an SSL certificate from the CA that is built into the JSS. You can also upload the certificate keystore for an SSL certificate that was obtained from an internal certificate authority (CA) or a trusted third-party vendor.

Note: If your environment is hosted on the JAMF Cloud, the Apache Tomcat settings are managed by the JAMF Cloud and are not accessible.


To create or upload an SSL certificate, the JSS must be installed as the “ROOT” web application, and the user running the Tomcat process must have read/write access to Tomcat’s server.xml file.

Creating or Uploading an SSL Certificate

  1. Log in to the JSS with a web browser.

  2. In the top-right corner of the page, click Settings images/download/thumbnails/10126401/Settings_icon.png .

  3. Click System Settings.
    On a smartphone or iPod touch, this option is in the pop-up menu.

  4. Click Apache Tomcat Settings images/download/thumbnails/10126401/Apache_Tomcat_Settings.png .

  5. Click Edit.

  6. Select Change the SSL certificate used for HTTPS and click Next.

  7. Follow the onscreen instructions to upload or create an SSL certificate.

  8. Restart Tomcat for the changes to take effect.
    For instructions on how to restart Tomcat, see the following Knowledge Base article:
    Starting and Stopping Tomcat

Related Information

For related information, see the following Knowledge Base article:

Using OpenSSL to Create a Certificate Keystore for Tomcat
Find out how to use OpenSSL to create a certificate keystore that you can upload to the JSS.

Copyright | Privacy | Terms of Use | Security
Copyright JAMF Software, LLC 2016