...
- Go to the Apple Push Certificate Portal at https://identity.apple.com/pushcert/ and login and log in with your customer account details.
You do not need to have an enterprise account for this purpose. - Upload the the the encoded
.plistfile and download the generated MDM signing certificate (MDM_Certificate.pem).
The MDM signing certificate, is certificate is a certificate for 3rd party servers provided by Apple.
Note down theAnchor MDM_APNS_TopicID MDM_APNS_TopicID USERID(TOPIC ID) from the MDM signing certificate (MDM_Certificate.pem)as it will be used later in the configuration. The MDM signing certificate can be decoded to obtain theUSERIDby executing the following command:Code Block openssl x509 -in MDM_Certificate.pem -text -noout
Remove the password from the your from your private key file (e.g.,
customerPrivateKey.pem).Code Block openssl rsa -in customerPrivateKey.pem -out customerKey.pem
Merge the customer key file that was derived in the latter step, with the MDM signing certificate to generate the MDM Apple Push Notification Service (APNS) Certificate.
For example, merge thecustomerKey.pemfile with theMDM_Certificate.pemfile to generate theMDM_APNSCert.pemfile.Code Block cat MDM_Certificate.pem customerKey.pem > MDM_APNSCert.pem
- Open the MDM Apple Push Notification service (APNs) Certificate (
MDM_APNSCert.pem) and ensure that there is a line break between the contents of the two files.
Example:
The content will look as follows:-----END CERTIFICATE----------BEGIN RSA PRIVATE KEY-----
Therefore, add a line break to separate the 2 certificate so that the content will look like what's shown below:Code Block -----END CERTIFICATE----- -----BEGIN RSA PRIVATE KEY-----
Convert theAnchor pem_pfx pem_pfx MDM_APNSCert.pemfile to theMDM_APNSCert.pfxfile. You will need to provide a password when converting the file. Thereafter, follow the steps mentioned under iOS Platform Configurations.Code Block openssl pkcs12 -export -out MDM_APNSCert.pfx -inkey customerPrivateKey.pem -in MDM_APNSCert.pem