Expired Apple Certificate

%3CLINGO-SUB%20id%3D%22lingo-sub-2041737%22%20slang%3D%22en-US%22%3EExpired%20Apple%20Certificate%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2041737%22%20slang%3D%22en-US%22%3E%3CP%3EWithout%20realizing%20it%2C%20I%20let%20my%20Apple%20Certificate%20expire%20for%20Intune.%20(side%20note%2C%20our%20prior%20MDM%20gave%20me%20warnings!)%26nbsp%3B%20Anyways%2C%20I%20realized%20this%20when%20a%20new%20device%20attempted%20to%20register%20and%20failed.%26nbsp%3B%20So%2C%20I%20updated%20the%20certificate%20and%20the%20token.%26nbsp%3B%20%26nbsp%3BThe%20new%20device%20was%20able%20to%20enroll.%20I%20checked%20my%20device%2C%20and%20it%20seems%20ok.%20Signed%20into%20the%20Company%20Portal%2C%20synchronized%2C%20etc.%26nbsp%3B%20No%20errors.%26nbsp%3B%20The%20article%20I%20read%20is%20if%20I%20let%20the%20certificate%20expired%2C%20I%20am%20up%20for%20a%20headache%20as%20every%20device%20would%20need%20to%20re-register%20again.%20All%20our%20devices%20are%20supervised%20mode.%26nbsp%3B%20%26nbsp%3BWhat%20exactly%20should%20I%20expect%20to%20see%20broken%20now%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2041737%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2042704%22%20slang%3D%22en-US%22%3ERe%3A%20Expired%20Apple%20Certificate%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2042704%22%20slang%3D%22en-US%22%3ENormally%20you%20need%20to%20re-enroll%20devices%20if%20the%20cert%20is%20expired%2C%20but%20I%20have%20heard%20there%20is%20an%2030%20day%20grace%20period.%20Could%20it%20be%20you%20were%20on%20time%3F%3CBR%20%2F%3E%3CBR%20%2F%3EBtw%3A%20I%20highly%20recommend%20this%20setup%3A%20%3CA%20href%3D%22https%3A%2F%2Fmsendpointmgr.com%2F2018%2F03%2F26%2Fmonitoring-apple-mdm-push-certificates-in-microsoft-intune-with-powershell%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fmsendpointmgr.com%2F2018%2F03%2F26%2Fmonitoring-apple-mdm-push-certificates-in-microsoft-intune-with-powershell%2F%3C%2FA%3E%3C%2FLINGO-BODY%3E
Regular Contributor

Without realizing it, I let my Apple Certificate expire for Intune. (side note, our prior MDM gave me warnings!)  Anyways, I realized this when a new device attempted to register and failed.  So, I updated the certificate and the token.   The new device was able to enroll. I checked my device, and it seems ok. Signed into the Company Portal, synchronized, etc.  No errors.  The article I read is if I let the certificate expired, I am up for a headache as every device would need to re-register again. All our devices are supervised mode.   What exactly should I expect to see broken now? 

2 Replies
Normally you need to re-enroll devices if the cert is expired, but I have heard there is an 30 day grace period. Could it be you were on time?

Btw: I highly recommend this setup: https://msendpointmgr.com/2018/03/26/monitoring-apple-mdm-push-certificates-in-microsoft-intune-with...

@Thijs Lecomte  If that is the case, then I should be fine and would explain why I havent noticed any issues. It was only 5 days expired.  Thanks. 

 

I just put a reminder in my calendar for next year. A lot less work than building out a script, but thanks.   Not sure why MS did not just build something in for alerts.  I am in the Endpoint Portal daily.