But I figured a user with read and enroll permission would be fine but that was not the case. This might be a bit stupid on my part as some of the tutorials out there shows that they are using sccmadmin as the enrolling account. After changing this, I was able to enroll the Macs. So I used an admin account (non-domain admin but localĪdmin to all machines and has AD read permissions) with read and enroll permissions instead of the individual users or a group that contained all mac users/computers. Point and the log stated that the user trying to enroll wasn't able to authenticate with the CA.Īfter reading through the step by step certificate setup on, I realized the instruction said to add an admin user that will perform the enrollment. The config manager site system status was showing error for enrollment I was trying all kinds of things like domain computers, domain users, the individual user, all with read and enroll permissions but none of those worked. On the security pane for the certificate template, The problem was with the Config Manager Mac certificate template. I had everything setup correctly including going to the FQDN on a browser on the Mac client and the site SSL is trusted by the enterprise CA. I was successfully able to enroll both Yosemite and El Capitan Machines. The CU2 was a necessity for Yosemite and El Capitan machines. I have an SCCM 2012 R2 SP1 CU2 enrivonment installed on Server 2012 R2. Select Yes on the confirmation window to finalize this action. I FINALLYYYYYYYYYYYYYYYYYYYYYYYY got it to work!!!! Scroll through the same list of certificates, this time looking under the Issued By column, and ensure that there are NO certificates that reference 'DoD Interoperability.' If you find any certificates with this text, please select the certificate and choose the Remove button. I figured it should have showed the system name. The certificate shows up under system in the keychain, the only strange thing is it shows for name the user who enrolled in the certificate. Requested certificates not available in storeĬertificate not found in store. Not found" If i check the ccmclient log file on the mac it shows the following errorsįailed to GetProperty Mode from Configuration Provider : 80070490 After the enrollment when I open System Preferences > Configuration Manager it says "Certificate Army Knowledge Online - Windows Internet Explorer https.
#No client certificate presented ako mac install#
Everything from the install and the enrollment seems to complete fine no errors.
#No client certificate presented ako mac how to#
I followed the instructions on how to install clients on mac computer from technet. The site is 2012 SP1 RTM however since there is no release yet of the mac client i'm using the mac client install from the SP1 beta install folder (Suggested by Microsoft) Hey all, i'm trying to install the ConfigMgr client on a mac system.