Forum Discussion

km1990199's avatar
km1990199
Copper Contributor
Aug 02, 2023

Endpoint integration with ABM - All devices now non compliant

In June we updated an expired certificate and now it's not allowing devices to connect to Endpoint Manager or receive any form of commands or application updates. Majority of devices are now showing as non-compliant. 

 

 

1 - Apple Business Manager and Endpoint Manager sync is correct and token is the latest but I assume this only affects enrolment. 

2) Devices can be enrolled but wanted to show this step was covered. 

3) Apple VPP Token properties is showing as below. It shows the correct Apple ID also at this point. 

4) MDM Push Certificate has been updated also, but I don't know if this would affect the devices connecting to InTune and reporting to Endpoint manager. 

 

I'm really confused because all of the signs inside of Endpoint Manager look correct, I've followed full re-installation guides step by step and I feel like I'm missing something? 

 

Anyone experience this before? 

 

Regards,

Kurtis

 

  • Mathg76's avatar
    Mathg76
    Brass Contributor

    km1990199 

     

    Never see this before, first i would see what are not compliant, you should be able to see it and click on device who is not compliant or in grace period on each device you should see like this

    If nothing there you should raise a ticket at Microsoft.

    • km1990199's avatar
      km1990199
      Copper Contributor

      Mathg76 Thanks for the reply, I think we know what's causing it. The cert was generated as new from Apple Business Manager/Apple Cert manager instead of renewing the old cert. 

       

      Problem is getting back into the correct cert manager. Struggling with that currently. 

      • Mathg76's avatar
        Mathg76
        Brass Contributor
        Hi.
        Well those certs drive me nuts sometimes but its a safe way to see if device is ok in the system.
        Thanks for the news! i appreciate it!

Resources