Versions Compared

Old Version 1

changes.mady.by.user Former user

Saved on

compared with

New Version 2

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The Device Enrollment Program (DEP) server token is only valid for a year (365 days). Therefore, you need to renew it and update the WSO2 IoT Server's iOS platform configurations with the new token. 

Generating the public key

The public key you generated when Adding the WSO2 EMM Solution to the DEP Portal is configured to expire in a year. Therefore, you need to generate a new public key in the .pem format.

  1. Create a new directory to generate the public key.

  2. Create a file named openssl.cnf in the directory you just created.

  3. Copy the code given below to the openssl.cnf and save it.

    Code Block
    [ v3_req ]# Extensions to add to a certificate request
basicConstraints=CA:TRUE
keyUsage = digitalSignature, keyEncipherment
 
[ v3_ca ]
# Extensions for a typical CA
# PKIX recommendation.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid:always,issuer
# This is what PKIX recommends but some broken software chokes on critical
# extensions.
basicConstraints = critical,CA:true
# So we do this instead.
#basicConstraints = CA:true
# Key usage: this is typical for a CA certificate. However since it will
# prevent it being used as an test self-signed certificate it is best
# left out by default.
keyUsage = digitalSignature, keyCertSign, cRLSign

  4. Navigate into the directory and run the commands given below in the given order.

    Code Block
    openssl genrsa -out dep_private.key 4096 

openssl req -new -key dep_private.key -out dep.csr

openssl x509 -req -days 365 -in dep.csr -signkey dep_private.key -out dep.crt -extensions v3_ca -extfile ./openssl.cnf

openssl x509 -in dep.crt -out dep.pem

    Now, you see the dep.pem file created in the directory you created.

Generating the new DEP server token

Follow the steps given below to generate the new DEP server token from the DEP portal:

  1. Navigate to the Apple Deployment Programs.

    Note
    titleNote!

    Do not close this browser session until you are done configuring the DEP portal. If you do close the browser session, you need to enter the verification code again and start configuring the DEP portal from where you stopped.

  2. Sign in with your organization's Apple credentials.

  3. Click Get Started to automate the Mobile Device Management (MDM) enrollment.
    Image Added

  4. Confirm your identity by entering the verification code that was sent to the device you entered when creating an account for DEP, and click Continue
    Image Added
    The DEP portal screen appears.
  5.  In the left-navigation pane, select Manage Servers.

  6. Click on the server you created for WSO2 IoT Server's EMM solution.

  7. Click Replace Key and upload the .pem file you just generated.
    Image Added

  8. Click Generate New Token to download the new DEP server token. 
    An encrypted Apple server token file in the . p7m file format downloads. Make sure to save it in a convenient location.
    Image Added
  9. Click OK.

Updating WSO2 IoT Server with the token

Follow the steps given below to update the token details in the WSO2 IoT Server:

  1. Insert excerpt
    Linking the WSO2 EMM Solution with Apple DEP
    Linking the WSO2 EMM Solution with Apple DEP
    nopaneltrue