Jamf Pro uses the following certificates to ensure security:
- SSL Certificate —
Jamf Pro requires a valid SSL certificate to ensure that computers and mobile devices communicate with the Jamf Pro server and not an imposter server. The SSL certificate that you can create from the built-in CA secures communication using a 2048-bit RSA encryption.
- Device Identity Certificates —
Device identity certificates allow Jamf Pro to verify the identity of computers and mobile devices each time they communicate with the Jamf Pro server.
- Device Certificates —
Device certificates are stored in the
JAMF.keychainthat is used by the Jamf management framework to secure communication between Jamf Pro and a managed computer. - CA Certificate —
This certificate establishes trust between the CA and computers, and between the CA and mobile devices.
- Signing Certificate —
This certificate is used to sign messages passed between the Jamf Pro server and Mac computers, and between the Jamf Pro server and mobile devices.
- Push Certificate —
Jamf Pro requires a valid push certificate to communicate with Apple Push Notification service (APNs).
- Anchor Certificate —
This certificate allows mobile devices and computers to trust the SSL certificate.