Creating, Renewing, or Deleting an Apple Push Certificate

This guide describes how to create, renew, or delete an Apple push certificate. You must have a push certificate in Jamf School to manage devices with Jamf School. Devices enrolled prior to May 2, 2017 are managed by a push certificate in Jamf School. To check if your devices are managed by Jamf School, navigate to Organization > Settings > Apple Push Notification Service. If the Push Topic is “com.apple.mgmt.XServer.01ab0995-0663-4e2d-a001-25e9ef3eaf9e”, the devices are managed by Jamf School. You can choose to create your own certificate for future enrollments, but this is not required. If a new certificate is created, enrolled mobile devices will not be able to receive MDM commands unless they are re-enrolled. Apple requires the Apple Push Notification service (APNs) certificate to be renewed every year.

Requirements

To create or renew a push certificate, you need a valid Apple ID (a corporate Apple ID is recommended).

Note: If you are renewing a push certificate that was originally obtained from Apple’s iOS Developer Program (iDEP), you must use the Apple ID for the iDEP Agent account used to obtain the certificate.

Creating an Apple Push Certificate

  1. Log in to Jamf School.

  2. Click Organization in the sidebar.

  3. Click Settings.

  4. Click the Apple Push Notification Service payload.

  5. Click Create own Certificate.

  6. On the pop-up dialog, click Download Certificate Signing Request.
    The certificate signing request (.csr) downloads.

  7. Open another tab in your browser and navigate to the Apple Push Certificates Portal:
    https://identity.apple.com/pushcert

  8. Log in to the portal with your Apple ID.

  9. Click Create a Certificate.

  10. Upload the certificate signing request you downloaded from Jamf School.

  11. Click Upload.

  12. Click Download.
    The Apple push certificate (.pem) downloads.

  13. Return to the Jamf School tab in your browser.

  14. On the pop-up dialog, upload the Apple push certificate and enter your Apple ID username in the Apple ID field.

  15. Click Apply.

Renewing an Apple Push Certificate

Important: If the original Apple push certificate expires, you must manually re-enroll all managed devices.

  1. Log in to Jamf School.

  2. Click Organization in the sidebar.

  3. Click Settings.

  4. Click the Apple Push Notification Service payload.

  5. Click Renew Push Certificate.

  6. On the pop-up dialog, click Download Certificate Signing Request.
    The certificate signing request (.csr) downloads.

  7. Open another tab in your browser and navigate to the Apple Push Certificates Portal:
    https://identity.apple.com/pushcert

  8. Log in to the portal with your Apple ID.

  9. Click Renew next to the current Jamf School certificate.

  10. Upload the certificate signing request you downloaded from Jamf School.

  11. Click Upload.

  12. Click Download.
    The Apple push certificate (.pem) downloads.

  13. Return to the Jamf School tab in your browser.

  14. On the pop-up dialog, upload the Apple push certificate and enter your Apple ID username in the Apple ID field.

  15. Click Apply.

Deleting an Apple Push Certificate

Important: If the original Apple push certificate is deleted, you must manually re-enroll all managed devices.

  1. Log in to Jamf School.

  2. Click Organization in the sidebar.

  3. Click Settings.

  4. Click the Apple Push Notification Service payload.

  5. Click Delete Push Certificate.

  6. Click Delete.

Copyright     Privacy Policy     Terms of Use     Security
© copyright 2002-2019 Jamf. All rights reserved.