Setting up the X.509 Certificate Integration Kit
The Jamf Integration Kit requires the X.509 Certificate IdP Adapter to get device information from the device’s client certificate.
Steps
-
Follow the steps in Deploying the integration files in the X.509 Certificate Integration Kit documentation.
-
Configure an adapter instance.
Follow the general steps in Configuring an adapter instance in the X.509 Certificate Integration Kit, with the following details:
-
On the IdP Adapter tab, in the Advanced Fields section, select the Include Subject Alternative Name (SAN) check box.
-
On the Extended Contract tab, check that the device identifier and device type is available in the core or extended contract.
In the Jamf IdP Adapter configuration, you can specify that the device identifier is contained in one of the following attributes:
-
deviceId
-
macAddress
-
serialNumber
-
udid
Depending on your certificate configuration, you might need to add one of these attributes to the extended contract.
Optionally, you can also include an attribute that contains the device type. The value must be
computers
ormobiledevices
.
-
-