I use Apple's MDM service.
There is no problem in iOS 11 and Mac OS 10.13.6 (17G65) in the same environment.
However, after updating iOS 12, MDM Profile Installation will fail.
The logs of the errored device are as follows.
--------------
デフォルト 11:42:16.114515 +0900 Preferences MCInstallProfileViewController _continueInstallAfterPresentingWarnings think we are in watch?: 0
デフォルト 11:42:16.115074 +0900 profiled Enrolling in OTA Profile service...
デフォルト 11:42:16.115715 +0900 profiled taking platform fast path for key: re6Zb+zwFKJNlkQTUeT+/w
デフォルト 11:42:16.118815 +0900 lockdownd handle_get_value: <private>
デフォルト 11:42:16.133122 +0900 lockdownd handle_get_value: <private>
デフォルト 11:42:16.153283 +0900 trustd cert[0]: MissingIntermediate =(leaf)[force]> 0
デフォルト 11:42:16.154546 +0900 profiled Trust evaluate failure: [leaf MissingIntermediate]
デフォルト 11:42:16.157129 +0900 profiled Task <DCA12810-5C78-44F7-84C9-E27AA7026522>.<1> resuming, QOS(0x15)
デフォルト 11:42:16.158747 +0900 profiled Task <DCA12810-5C78-44F7-84C9-E27AA7026522>.<1> {strength 1, tls 8, ct 0, sub 0, sig 0, ciphers 1, bundle 0, builtin 0}
デフォルト 11:42:16.161290 +0900 profiled TIC Enabling TLS [14:0x15bec01a0]
デフォルト 11:42:16.161568 +0900 profiled TIC TCP Conn Start [14:0x15bec01a0]
デフォルト 11:42:16.162447 +0900 profiled [C14 Hostname#333f7edc:443 tcp, url: https://*****/profile, tls] start
デフォルト 11:42:16.165363 +0900 profiled nw_connection_report_state_with_handler_locked [C14] reporting state preparing
デフォルト 11:42:16.170212 +0900 profiled Task <DCA12810-5C78-44F7-84C9-E27AA7026522>.<1> setting up Connection 14
デフォルト 11:42:16.190408 +0900 profiled nw_endpoint_flow_protocol_connected [C14.1 IPv4#ced1bf39:443 in_progress channel-flow (satisfied)] Transport protocol connected
デフォルト 11:42:16.197244 +0900 profiled TIC TLS Event [14:0x15bec01a0]: 1, Pending(0)
デフォルト 11:42:16.197561 +0900 profiled TIC TLS Event [14:0x15bec01a0]: 2, Pending(0)
エラー 11:42:16.202618 +0900 profiled boringssl_context_alert_callback_handler(3747) <private>[0x15beb2810] Alert level: fatal, description: handshake failure
エラー 11:42:16.203188 +0900 profiled boringssl_session_errorlog(224) <private>[0x15beb2810] [boringssl_session_handshake_incomplete] SSL_ERROR_SSL(1): operation failed within the library
エラー 11:42:16.203297 +0900 profiled boringssl_session_handshake_error_print(205) <private>[0x15beb2810] <private>
エラー 11:42:16.203435 +0900 profiled boringssl_session_handshake_error_print(205) <private>[0x15beb2810] <private>
エラー 11:42:16.203617 +0900 profiled boringssl_context_get_error_code(3504) <private>[0x15beb2810] SSL_AD_HANDSHAKE_FAILURE
デフォルト 11:42:16.206279 +0900 profiled nw_protocol_tcp_log_summary [C14.1:3]
[<private> <private>:53066<-><private>:443]
Init: 1, Conn_Time: 6.741ms, Syn's: 1, WR_T: 0/0, RD_T: 0/0, TFO: 0/0/0, ECN: 0/1/1, TS: 1
RTT_Cache: kernel, rtt_upd: 2, rtt: 12.906ms, rtt_var: 9.562ms rtt_nc: 6.000ms, rtt_var_nc: 2.250ms
デフォルト 11:42:16.206596 +0900 profiled nw_endpoint_flow_protocol_disconnected [C14.1 IPv4#ced1bf39:443 in_progress channel-flow (satisfied)] Output protocol disconnected
デフォルト 11:42:16.208818 +0900 profiled nw_connection_report_state_with_handler_locked [C14] reporting state failed error ハンドシェイクエラー
デフォルト 11:42:16.209988 +0900 profiled TIC TCP Conn Event [14:0x15bec01a0]: 3
エラー 11:42:16.210357 +0900 profiled TIC TCP Conn Failed [14:0x15bec01a0]: 3:-9824 Err(-9824)
--------------
What causes a handshake error?
Or is there a way to solve this?
