APN/DEP certificate

An APN (Apple Push Notification) / DEP (Device Enrollment Program) certificate is used by ESMC MDM for iOS device enrollment. You must create an Apple-provided push certificate and get it signed by Apple before you can enroll iOS devices in ESMC. Also make sure you have a valid license for ESMC.

Click the More tab > Peer Certificates, click New and then select APN/DEP Certificate.


To acquire an APN certificate, you will need an Apple ID. This ID is required for Apple to sign the certificate.

APN Certificate has 1-year validity. If your certificate is close to expiring, follow the steps below and in the Certificate part step 2, select Renew.

To acquire a DEP enrollment token, you will need an Apple DEP Account.

Create Request

Specify the certificate attributes (Country code, Organization name, etc.) and click Submit Request.



Download your CSR (Certification Signing Request) and Private Key.



1.Open the Apple Push Certificates Portal and log in using your Apple ID.

2.Click Create a Certificate.

3.Fill in the note (optional). Click Choose File, upload the CSR file you downloaded in the previous step and then click Upload.

4.After some time, you will see a new confirmation screen with the notification that your APNS certificate for ESET Mobile Device Management server was successfully created.

5.Click Download and save the .pem file to your computer.

6.Close the Apple Push Certificate Portal and continue to the Upload section below.


validation-status-icon-warning IMPORTANT

APNS certificate is required for both DEP and non-DEP MDC policy.

If you are creating a DEP Enrollment certificate, continue here.



Once you have completed the steps above, you can create a Policy for MDC to activate APNS for iOS enrollment. You can then Enroll any iOS device by visiting https://<mdmcore>:<enrollmentport>/unique_enrollment_token from the device's browser.