The Device Enrollment Program (DEP) server token is only valid for a year (365 days). Therefore, you need to renew it and , update the DEP portal, and the WSO2 IoT Server's iOS platform configurations with the new details once a server token is generated. Let's take a look at the steps you need to follow to generate a new server token.
Generating the public key
The public key you generated when Adding the WSO2 EMM Solution to the DEP Portal was configured to expire in a year. Therefore, you need to generate a new public key in the .pem
format.
Create a new directory to generate the public key.
Create a file named
openssl.cnf
in the directory you just created.Copy the code given below to the
openssl.cnf
and save it.Code Block [ v3_req ]# Extensions to add to a certificate request basicConstraints=CA:TRUE keyUsage = digitalSignature, keyEncipherment [ v3_ca ] # Extensions for a typical CA # PKIX recommendation. subjectKeyIdentifier=hash authorityKeyIdentifier=keyid:always,issuer # This is what PKIX recommends but some broken software chokes on critical # extensions. basicConstraints = critical,CA:true # So we do this instead. #basicConstraints = CA:true # Key usage: this is typical for a CA certificate. However since it will # prevent it being used as an test self-signed certificate it is best # left out by default. keyUsage = digitalSignature, keyCertSign, cRLSign
- Navigateintothe directory
Navigate into the directory and run the commands given below in the given order.
Code Block openssl genrsa -out dep_private.key 4096 openssl req -new -key dep_private.key -out dep.csr openssl x509 -req -days 365 -in dep.csr -signkey dep_private.key -out dep.crt -extensions v3_ca -extfile ./openssl.cnf openssl x509 -in dep.crt -out dep.pem
Now, you see the
dep.pem
file created in the directory you created.
Generating the new DEP server token
Follow the steps given below to generate the new DEP server token from the DEP portal:
Navigate to the Apple Deployment Programs.
Note title Note! Do not close this browser session until you are done configuring the DEP portal. If you do close the browser session, you need to enter the verification code again and start configuring the DEP portal from where you stopped.
Sign in with your organization's Apple credentials.
Click Get Started to automate the Mobile Device Management (MDM) enrollment.
- Confirm your identity by entering the verification code that was sent to the device you entered when creating an account for DEP, and click Continue.
The DEP portal screen appears. - In the left-navigation pane, select Manage Servers.
Click on the server you created for WSO2 IoT Server's EMM solution.
Click Replace Key and upload the
.pem
file you just generated.
- Click Generate New Token to download the new DEP server token.
An encrypted Apple server token file in the.
p7m
file format downloads. Make sure to save it in a convenient location.
- Click OK.
Updating WSO2 IoT Server with the token
Follow the steps given below to update the token details in the WSO2 IoT Server:
Insert excerpt Linking the WSO2 EMM Solution with Apple DEP Linking the WSO2 EMM Solution with Apple DEP nopanel true