EDU Profile Installation Error for Incorrect Certificate Password
Updated: 23 November 2021
Product: Jamf Pro
Symptoms
For Jamf Pro 10.33.0 or earlier on-premise environments with installations of OpenJDK 11.0.12 or later, the EDU profile installation may fail when pushing an EDU profile to devices (PI-010141). The EDU profile command fails with the following reason: "The password for the certificate "(null)" is incorrect."
Solution
Because OpenJDK 11.0.12 changed the default encryption used for PKCS12 identities, you must specify a JAVA_OPT system property using the -Dkeystore.pkcs12.legacy
syntax to ensure encryption is supported on macOS and iOS.
Configuring the JAVA_OPTS System Property for Linux Using the System Command Line
Configuring the JAVA_OPTS System Property for Windows Using the Tomcat Monitor Application
- Open the Tomcat monitor application, located at: C:\Program Files\JSS\Tomcat\bin\tomcat8w.exe
- In the Apache Tomcat 8.5 Properties window, click the Java tab.
- Append the text in the Java Options field with "-Dkeystore.pkcs12.legacy", and then click Apply.
- Click the General tab, and then click the Stop and Start buttons to restart Tomcat and apply the changes.