MobileIron CA management

App & System Services Core OS
frederic.mefiant@saftbatteries OP
Created Oct ’21
Replies 4
Boosts 0
Views 1.6k
Participants 3

Hello,

After pushing all our CA by mobileiron MDM on iphones and ipads, we noticed that internal website signed by our CA are not trusted, we followed your KB https://support.apple.com/en-in/HT210176 and https://support.apple.com/en-us/HT211025, however while installing all the chain in one file or one by one and pushing it as a certificates config by the MDM to concerned devices the cert alert still exist, same issue by installing the internal root CA directly on apple devices.

Do you have any advice?

Thanks.

Replies  4
Boosts  0
Views  1.6k
Participants  3
Device Management Engineer OP
Apple
Oct ’21

I suggest using the Console app to view the log events on a test device. You can filter the log so it only shows errors and search for trust in the message. Trust evaluation failure errors that occur at the time the device tries to contact the internal website may give more details about why the failure occurred.

0
frederic.mefiant@saftbatteries OP
Oct ’21

Here is the log from a test device:

error_ca_cert.txt

Can you tell me what's wrong during the trust evaluation ?

Regards.

0
Device Management Engineer OP
Apple
Oct ’21

There isn't enough context in that log for me to determine the issue. If you're certain that the certificate that the server presents to the device meets all the requirements in the KB articles you mentioned and that's the certificate that the server is using, I suggest reproducing the issue, taking a sysdiagnose, and filing feedback at http://feedbackassistant.apple.com.

0
PFischer1986 OP
Aug ’23

Hello,

Can you tell me, what the solution was for your problem please ? I have now exactly the same issue...

Thank you

0
MobileIron CA management
First post date Last post date
 
 
Q