Apple Push Certificates Portal - Certificate Signature Verification failed

Developer Tools & Services General
RavikanthBollapragada OP
Created Feb ’21
Replies 5
Boosts 0
Views 4.9k
Participants 4
After uploading the PushCertificateRequest.plist file in the "Create a New Push Certificate" form under Apple Push Certificates Portal, we get "Certificate Signature Verification failed" error with details as: "Certificate Signature Verification failed because the signature is invalid."

We are making use of our Apple Enterprise Account for setting up MDM server, and the enterprise license has been expired on July 14, 2020 and we have renewed it on January 31, 2021. With the renewed enterprise license, we attempted to create a new push certificate afresh using the fresh MDM CSR and it is failing since then, even though we use exactly the same procedure like before. The push certificate which was successfully created last time has expired on Jan 12, 2021.

We are using the MicroMDM for setting up the MDM and any guidance would be much appreciated.

And we're not using old MDM CSR which seems to be a common pitfall as we started completely afresh.
Answered by RavikanthBollapragada in 662540022
Many thanks for the clue @golla!
That helps :-)
And there is a new version of MicroMDM released last week with the fix required
https://github.com/micromdm/micromdm/releases/tag/v1.8.0
[Update MDM Vendor CSR signing to SHA-2 and use new Apple intermediate cert (#723, #725)]
Replies  5
Boosts  0
Views  4.9k
Participants  4
ivansaroka OP
Feb ’21
We are having the same problem
2
invi OP
Feb ’21
Same issue here, we followed exactly the same process as previous years and our certificate expires the 19th of February, has anything changed since then?
2
golla OP
Feb ’21
We are having the same issue.Followed exactly the same process as previous times and the "Certificate Signature Verification failed because the signature is invalid" pops up. We tried renewal and new certificates, with the same result.
1
golla OP
Feb ’21
For anyone else having this issue, I had to add the latest AppleWWDRCAG3 certificate to the certificate chain on the plist needed for APNS renew.
This might clear things a bit for you https://developer.apple.com/support/expiration/

  • "The renewed certificate will be used to sign new software signing certificates issued after January 28, 2021"

2
RavikanthBollapragada OP
Feb ’21
Accepted Answer
Many thanks for the clue @golla!
That helps :-)
And there is a new version of MicroMDM released last week with the fix required
https://github.com/micromdm/micromdm/releases/tag/v1.8.0
[Update MDM Vendor CSR signing to SHA-2 and use new Apple intermediate cert (#723, #725)]
4
Apple Push Certificates Portal - Certificate Signature Verification failed
First post date Last post date
 
 
Q