Meraki

Community

iPhones will not apply Profiles or complete commands

Solved
ekour1
Comes here often
‎Apr 2 2024 8:20 AM
‎Apr 2 2024 8:20 AM

iPhones will not apply Profiles or complete commands

I have multiple iPhones that, when I apply a profile, nothing seems to happen on the device. In MDM, the profile list does not update or change.

I can see in the Activity log pending commands but, however long I wait, they never complete. I can only cancel them.

I recently renewed the MDM Push Ceritificate, the ADE token and the VPP token.

Labels:
0 Kudos
1 Accepted Solution
ConnorL
Meraki Employee
Meraki Employee
‎Apr 3 2024 9:29 AM
‎Apr 3 2024 9:29 AM

@ekour1 and I spoke off-thread.

It was due to a new APNS token being applied to Dashboard rather than the existing one being renewed, once this has been reverted and the correct token renewed, MDM communications should start working again without requiring a re-enrollment. 

View solution in original post

0 Kudos
6 Replies 6
alemabrahao
Kind of a big deal
Kind of a big deal
‎Apr 2 2024 8:23 AM
‎Apr 2 2024 8:23 AM

Maybe this will help you with troubleshooting.

https://documentation.meraki.com/SM/Profiles_and_Settings/Managed_device_does_not_receive_deployed_a...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
ConnorL
Meraki Employee
Meraki Employee
‎Apr 2 2024 8:41 AM
‎Apr 2 2024 8:41 AM

Mind dropping me a DM with a link to the specific device? There can be several reasons as to why this is happening:

  • APNS is expired/invalid
  • Profile isn't valid for the device (e.g. it's a BYOD device and the profile requires supervision)
  • The device simply isn't syncing with Dashboard due to it being offline or connected to a network performing SSL inspection or content filtering
  • iOS issue, try a reboot etc
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Apr 2 2024 12:00 PM
‎Apr 2 2024 12:00 PM

Are the devices recently enrolled in Systems manager or have they been enrolled for a while and just stopped working? 

You mentioned you renewed your APNS cert, had it expired before you renewed it? If so you will need to re-enroll your devices, once a push notification certificate expires the MDM can no longer communicate with any of the enrolled devices. 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
In response to BlakeRichardson
ekour1
Comes here often
‎Apr 2 2024 12:57 PM
‎Apr 2 2024 12:57 PM

The APNS expired before I renewed it. I tried reenrolling another iPhone with Apple Configurator and it worked.

Is there a way to not reenroll the devices? I don't want to erase all of them.

0 Kudos
In response to ekour1
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Apr 2 2024 8:13 PM
‎Apr 2 2024 8:13 PM

@ekour1 ok the expiring cert is the reason. There is no way to fully enrol iOS devices without erasing them. You could try going to m.meraki.com and entering in your MDM code found in Systems Manager > Manage > Add devices  IOS but that will only give you limited management if it works. 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
ConnorL
Meraki Employee
Meraki Employee
‎Apr 3 2024 9:29 AM
‎Apr 3 2024 9:29 AM

@ekour1 and I spoke off-thread.

It was due to a new APNS token being applied to Dashboard rather than the existing one being renewed, once this has been reverted and the correct token renewed, MDM communications should start working again without requiring a re-enrollment. 

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.