Modern Workplace Brewer, MVP & MCT

👋 Today a blog post about renewing the Apple Push Notification Service certificate in Microsoft Intune.

I have had an Apple Business Manager account for a long time and have renewed the certificate a few times. But what struck me this week, for the first time, is that there is also an email sent from Apple saying that the certificate is about to expire.

Figure 01 - APNS expiration email

In this blog post, I will show you how to renew this certificate.

What do we need?

Let's go!

  1. Open the The Intune portal and go to Devices -> iOS/iPadOS -> iOS/iPadOS enrollment -> Apple MDM Push Certificate

Here you can also see that the certificate is about to expire.

  1. At step 2, click on Download your CSR.
  2. At step 4, enter the email address you used to create the previous APNS certificate.
  3. Browse and log on the Apple Push Certificates Portal and click on the Renew button.
  4. Upload the IntuneCSR.csr from step 2 and click Upload.
  1. The new APNS certificate is created.
  2. Then click on the Download button to download the new certificate.
  1. Go back to the Intune portal.
  2. In step 5, upload the new APNS certificate.
  3. Click on the Upload button.

If all went well, the Status would now show Active again instead of Expiring.

There is also a solution build by MVP Peter van der Woude, where he is explaining how to receive these kind of expired certifcate notifications as an adaptive card in Microsoft Teams on his website.

That is it for now. Until next time.

You’ve successfully subscribed to Jeroen Burgerhout
Welcome back! You’ve successfully signed in.
Great! You’ve successfully signed up.
Success! Your email is updated.
Your link has expired
Success! Check your email for magic link to sign-in.