Forum Discussion
Endpoint integration with ABM - All devices now non compliant
In June we updated an expired certificate and now it's not allowing devices to connect to Endpoint Manager or receive any form of commands or application updates. Majority of devices are now showing ...
Martin Front Yeah that looks the way, unfortunately the original configurators decided to use a personal phone for 2FA into the cert system. So now Apple won't allow us back into that system to renew the cert and re-upload it.
I assume we´re talking about the APN-certificate here (what you refer to as MDM Push certificate). That´s the most crucial certificate to manage.
If you don´t get any help from Apple you need to re-enroll all devices, you have two options there:
1. Do a full reset of the device and go through the automated enrollment again to have it in supervised mode.
2. Re-enroll the devices manually with company portal, it will not be supervised but at least you can manage the devices in some way and the users don´t need to reset their devices.
And over time you can reset the devices when it comes in for change or whatever. But you do lose the supervised features.
If you don´t get any help from Apple you need to re-enroll all devices, you have two options there:
1. Do a full reset of the device and go through the automated enrollment again to have it in supervised mode.
2. Re-enroll the devices manually with company portal, it will not be supervised but at least you can manage the devices in some way and the users don´t need to reset their devices.
And over time you can reset the devices when it comes in for change or whatever. But you do lose the supervised features.
