Environment
Novell ZENworks Mobile Management
Situation
Cannot update the Apple Push Notification service (APNs)
certificate through the dashboard (UI).
ZMM Console > System > iOS Management area > APNs Certificate > Edit
Modify these settings and select "Submit".
This does not update to the latest information (Certificate Topic or Expiration Date).
ZMM Console > System > iOS Management area > APNs Certificate > Edit
Modify these settings and select "Submit".
This does not update to the latest information (Certificate Topic or Expiration Date).
Resolution
In the ZMM Console
Automation enhanced in ZMM v3.2.9. The only process outside the dashboard is the signing by Apple.
This should renew the certificate successfully.
- System > System Administration > System Settings
- Select the Organization to update > Setup
- Complete the form and upload the new certificate
Automation enhanced in ZMM v3.2.9. The only process outside the dashboard is the signing by Apple.
Additional Information
Basically, these steps include: running a query, changing two (2)
PHP files, uploading the renewed APNs certificate file (in .pfx
file format), reverting changes, and then reset IIS. The IIS reset
(step 7) was included ensure the socket we use to communicate with
Apple is recreated with the new APNs certificate data.
The IIS reset (step 9) was included ensure the socket we use to communicate with Apple is recreated with the new APNs certificate data.
Please note, the APNs service will be down for the time it takes to complete these steps along with the time to complete the IIS reset.
Note: Automated process fixed in v3.2.9.
Renewing certificate before expiration will happen in the background allowing the profile to update in the background and continue to work seamlessly with no interaction required or noticed by users.
They won’t lose mail sync or anything. "New" or Replacement certs will require devices to reenroll.
The IIS reset (step 9) was included ensure the socket we use to communicate with Apple is recreated with the new APNs certificate data.
Please note, the APNs service will be down for the time it takes to complete these steps along with the time to complete the IIS reset.
Note: Automated process fixed in v3.2.9.
Renewing certificate before expiration will happen in the background allowing the profile to update in the background and continue to work seamlessly with no interaction required or noticed by users.
They won’t lose mail sync or anything. "New" or Replacement certs will require devices to reenroll.