ESET Online Help

Search English
Select the category
Select the topic

APN/ABM certificate

An APN (Apple Push Notification) / ABM (Apple Business Manager) certificate is used by ESET PROTECT MDM for iOS device enrollment. You must create an Apple-provided push certificate and get it signed by Apple before you can enroll iOS devices in ESET PROTECT On-Prem. Also ensure you have a valid license for ESET PROTECT On-Prem.

Click the More tab > Peer Certificates, click New and then select APN/ABM Certificate.


note

To acquire an APN certificate, you will need an Apple ID. This ID is required for Apple to sign the certificate.

APN Certificate has 1-year validity. If your certificate is close to expiring, follow the steps below and in the Certificate part step 2, select Renew.

To acquire a ABM enrollment token, you will need an Apple ABM Account.

Create Request

Specify the certificate attributes (Country code, Organization name, etc.) and click Submit Request.

APN_certificate

Download

Download your CSR (Certification Signing Request) and Private Key.

APN_certificate_download

Certificate

1.Open the Apple Push Certificates Portal and log in using your Apple ID.

2.Click Create a Certificate.

3.Fill in the note (optional). Click Choose File, upload the CSR file you downloaded in the previous step and then click Upload.

4.After some time, you will see a new confirmation screen with the notification that your APNS certificate for ESET Mobile Device Management server was successfully created.

5.Click Download and save the .pem file to your computer.

6.Close the Apple Push Certificate Portal and continue to the Upload section below.

APN_certificate_certificate


important

APNS certificate is required for both ABM and non-ABM MDC policy.

Follow these instructions to create an ABM Enrollment certificate.

apns_cert

Upload

After you have completed the steps above, you can create a Policy for MDC to activate APNS for iOS enrollment. You can then Enroll any iOS device by visiting https://<mdmcore>:<enrollmentport>/unique_enrollment_token from the device's browser.

APN_certificate_upload