MobileIron CA management

Question

frederic.mefiant@saftbatteries OP

Created Oct ’21

Replies 4

Boosts 0

Views 1.7k

Participants 3

Hello,

After pushing all our CA by mobileiron MDM on iphones and ipads, we noticed that internal website signed by our CA are not trusted, we followed your KB https://support.apple.com/en-in/HT210176 and https://support.apple.com/en-us/HT211025, however while installing all the chain in one file or one by one and pushing it as a certificates config by the MDM to concerned devices the cert alert still exist, same issue by installing the internal root CA directly on apple devices.

Do you have any advice?

Thanks.

Boost

Answer 1

Device Management Engineer OP

Apple

Oct ’21

I suggest using the Console app to view the log events on a test device. You can filter the log so it only shows errors and search for trust in the message. Trust evaluation failure errors that occur at the time the device tries to contact the internal website may give more details about why the failure occurred.

0

Answer 2

frederic.mefiant@saftbatteries OP

Oct ’21

Here is the log from a test device:

error_ca_cert.txt

Can you tell me what's wrong during the trust evaluation ?

Regards.

0

Answer 3

Device Management Engineer OP

Apple

Oct ’21

There isn't enough context in that log for me to determine the issue. If you're certain that the certificate that the server presents to the device meets all the requirements in the KB articles you mentioned and that's the certificate that the server is using, I suggest reproducing the issue, taking a sysdiagnose, and filing feedback at http://feedbackassistant.apple.com.

0

Answer 4

PFischer1986 OP

Aug ’23

Hello,

Can you tell me, what the solution was for your problem please ? I have now exactly the same issue...

Thank you

0