How is JDS Support working for you?

[eahrold]

We have a pre-release up, and in combination with the new Python-JSS has support for JDS.
Pleas let us know how it's working for you.

[donparfet]

I downloaded and updated AutoPkgr 1.1.2 and configured my JSS/JDS and attempted to download Firefox.jss and GoogleChrome.jss with the following results (seems I need to configure some certificates perhaps?):

---

AutoPkgr error:

---

/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/contrib/requests/packages/urllib3/connectionpool.py:730: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html (This warning will only appear once by default.)
A Python exception occurred during the execution of autopkg, see the console log for more details.

[ERROR] jss.contrib.requests.exceptions.SSLError: [Errno 185090050] _ssl.c:340: error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib

---

console log

---

12/2/14 7:42:40.130 AM AutoPkgr[58866]: (FULL AUTOPKG TRACEBACK)
File "/usr/local/bin/autopkg", line 1334, in
sys.exit(main(sys.argv))
File "/usr/local/bin/autopkg", line 1328, in main
exit(subcommands[verb]'function')
File "/usr/local/bin/autopkg", line 1152, in run_recipes
autopackager.process(recipe)
File "/Library/AutoPkg/autopkglib/init.py", line 466, in process
self.env = processor.process()
File "/Library/AutoPkg/autopkglib/init.py", line 295, in process
self.main()
File "/Library/AutoPkg/autopkglib/JSSImporter.py", line 658, in main
self.package = self.handle_package()
File "/Library/AutoPkg/autopkglib/JSSImporter.py", line 344, in handle_package
self.copy(self.env["pkg_path"], id=package.id)
File "/Library/AutoPkg/autopkglib/JSSImporter.py", line 384, in copy
self.j.distribution_points.copy(source_item, id=id_)
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/distribution_points.py", line 198, in copy
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/distribution_points.py", line 539, in copy_pkg
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/distribution_points.py", line 567, in _copy
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/contrib/requests/api.py", line 94, in post
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/contrib/requests/api.py", line 49, in request
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/contrib/requests/sessions.py", line 457, in request
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/contrib/requests/sessions.py", line 569, in send
File "/Library/Python/2.7/site-packages/python_jss-0.4.3-py2.7.egg/jss/contrib/requests/adapters.py", line 420, in send
jss.contrib.requests.exceptions.SSLError: [Errno 185090050] _ssl.c:340: error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib
12/2/14 7:42:40.144 AM secd[250]: securityd_xpc_dictionary_handler AutoPkgr[58866] copy_matching The operation couldn’t be completed. (OSStatus error -34018 - client has neither application-identifier nor keychain-access-groups entitlements)
12/2/14 7:42:40.144 AM AutoPkgr[58866]: SecOSStatusWith error:[-34018] The operation couldn’t be completed. (OSStatus error -34018 - Remote error : The operation couldn‚Äôt be completed. (OSStatus error -34018 - client has neither application-identifier nor keychain-access-groups entitlements))

---

---

[eahrold]

@donparfet is your JDS using a self signed cert?
Is your JDS the same server as your JSS?

[eahrold]

@donparfet,
I just realized I'm also getting this error with our jss. I've opened an issue at on the autopkg-jss-addon page. So keep an eye on this jssimporter/JSSImporter#14

For me it fixed things when I did

defaults write com.github.autopkg JSS_VERIFY_SSL -bool False

But since you were already seeing the insecure connection warning, it implies it was already set to False, so it probably won't help.

[donparfet]

@eahrold yes to both questions

[donparfet]

@eahrold I found a JSS AutoPkg add-on update available today so installed it. i also ran the defaults command you suggested. Just a reminder; my JSS/JDS is on the same RHEL Vm
I get these errors today:
Autopkgr error

---

/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/contrib/requests/packages/urllib3/connectionpool.py:734: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html
InsecureRequestWarning)

---

console log

---

12/4/14 1:18:35.462 PM AutoPkgr[7740]: (FULL AUTOPKG TRACEBACK)
File "/usr/local/bin/autopkg", line 1334, in
sys.exit(main(sys.argv))
File "/usr/local/bin/autopkg", line 1328, in main
exit(subcommands[verb]'function')
File "/usr/local/bin/autopkg", line 1152, in run_recipes
autopackager.process(recipe)
File "/Library/AutoPkg/autopkglib/init.py", line 466, in process
self.env = processor.process()
File "/Library/AutoPkg/autopkglib/init.py", line 295, in process
self.main()
File "/Library/AutoPkg/autopkglib/JSSImporter.py", line 601, in main
self.package = self.handle_package()
File "/Library/AutoPkg/autopkglib/JSSImporter.py", line 328, in handle_package
self.copy(self.env["pkg_path"], id=package.id)
File "/Library/AutoPkg/autopkglib/JSSImporter.py", line 342, in copy
self.j.distribution_points.copy(source_item, id=id_)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/distribution_points.py", line 196, in copy
repo.copy_pkg(filename, id_)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/distribution_points.py", line 533, in copy_pkg
self.copy(filename, id=id_, file_type=PKG_FILE_TYPE)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/distribution_points.py", line 560, in _copy
headers=headers)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/contrib/requests/api.py", line 99, in post
return request('post', url, data=data, json=json, *_kwargs)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/contrib/requests/api.py", line 49, in request
response = session.request(method=method, url=url, *_kwargs)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/contrib/requests/sessions.py", line 461, in request
resp = self.send(prep, *_send_kwargs)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/contrib/requests/sessions.py", line 573, in send
r = adapter.send(request, *_kwargs)
File "/Library/Python/2.7/site-packages/python_jss-0.5.1-py2.7.egg/jss/contrib/requests/adapters.py", line 431, in send
raise SSLError(e, request=request)
jss.contrib.requests.exceptions.SSLError: [Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed

---

[charliwest]

You might want the new add-on https://github.com/sheagcraig/jss-autopkg-addon/releases

The JDS part actually uploads to the JSS (like casper admin I believe) so the username and password should be the JSS API user, although with this newest update you don't need that info.

[eahrold]

@donparfet,
Looks like @sheagcraig go to the bottom of this, and it should be fixed soon. The JSS_VERIFY_SSL setting wasn't getting carried over to requests made to the JDS part.