How to Use This Guide
For the best learning experience, follow the topics in order using the Contents panel on the left (mobile users: tap Table of Contents). Each topic builds on the previous one to guide you through the complete workflow. You can also use the search box in the top-right corner to find specific topics quickly.
This guide is designed for IT administrators who want to integrate Jamf Pro with Venafi TPP to use as the certificate authority (CA) for distributing and managing certificates on computers and mobile devices. Venafi is a service provider that gives a single interface for many certificate authorities, enabling the request, renewal, and revocation of certificates. Venafi TPP operates as a certificate manager between Jamf Pro and a certificate provider, such as Active Directory Certificate Services (AD CS) and DigiCert.
You can use the PKI Certificates settings in Jamf Pro to integrate with Venafi TPP. The procedure requires configuring Jamf Pro and Venafi TPP simultaneously. Each configuration is unique to your environment, and additional steps may be necessary.
Integrating Jamf Pro with Venafi TPP involves the following steps:
Configuring Venafi TPP
Installing and configuring the Jamf PKI Proxy and configuring Venafi TPP settings in Jamf Pro
Creating a configuration profile including a certificate payload in Jamf Pro