Windows Configuration Options for Running the Jamf PKI Proxy

This section describes how to run the Jamf PKI Proxy as a background service for Windows if you do not want the Jamf PKI Proxy to run in an active Command Prompt.

Using Windows Task Scheduler to Run the Jamf PKI Proxy in the Background

Requirements
  • Windows requires port :9443 or a specified port in the configuration opened for communication to work.

  • The certificates "keys" and the jamf-pki-proxy configuration file must be stored in the following location:
    C:\Users\YourUser\AppData\Local\Jamf
  1. Place the jamf-pki-proxy in a suitable location for the current user (e.g., C:\Users\yourUser\Jamf\jamf-pki-proxy).
    Note:

    Create the Jamf directory in the Users directory if it does not exist.

  2. Create the task in Windows Task Scheduler.

    The following image shows the General tab for the scheduled task.

    Ensure that the Run whether user is logged on or not option is selected to enable the jamf-pki-proxy to continue running after the user logs out.

    Screenshot of the General tab, showing the "Run whether user is logged on or not" button is selected.

    The image below shows an example of the action to be performed. Set the location to the jamf-pki-proxy and add the arguments start > dev/null. Adding the redirect > dev/null will prevent output from the jamf-pki-proxy being displayed in a new command prompt. All output from the jamf-pki-proxy will still be logged in Windows Application logs.

    Screenshot of the Actions tab, displaying the options for editing an action.

  3. Set a trigger action depending on preference of how and when this task should run.

    You can also manually start or stop this task via the Actions toolbar for this task.

  4. When the task starts to run, refresh the page in Jamf Pro to confirm that the connection was successful.

Running the Jamf PKI Proxy in a Docker Container on Windows

If you want to run the Jamf PKI Proxy in a Docker container, execute the following command:
docker run -d -v $env:LOCALAPPDATA\Jamf\:/.jamf -p 9443:9443 jamfllc/jamf-pki-proxy:latest start

Logging Information for Windows

To view the logs from the jamf-pki-proxy, open Event Viewer > Window Logs > Application. The Jamf PKI Proxy will be logged next to the "Source" with the name "proxy", as shown in the following image:

Screenshot of the Event Viewer displaying the Jamf PKI Proxy log.