Jamf RDN Format

As explained in Configuring Jamf in PKIaaS, adding a digital identifier requires a Relative Distinguished Name (RDN) format to build certificate Subject Names. See below for considerations on this value.

• Custom variable names
• Automated renewal
• Request values

Custom variable names

Subject Names support custom variable names using the <variable> syntax – for example:

CN=<var1> <var2> <var3> SampleStaticText

See RDN Variables for how to set the value of each variable in the Jamf portal.

⚠ Entrust PKIaaS will only process enrollment requests containing values for all variables.

Automated renewal

Add the idprofile variable to support automated certificate renewal – for example:

CN=<var1> <profileid>

See RDN Variables for how to set the value of this variable in the Jamf portal.

Request values

Jamf enrollment requests will always contain values for the following RDN variables.

• The igusername name of the device user.
• The iggroup group of enrolled devices.
• The devicetype type of enrolled device.

For example:

CN=<igusername> <iggroup> <devicetype>

ℹ You don’t need to inform these variables in the Jamf portal.