What happens when a signed mobileconfig expires?

Hi,


I'm in the process of setting up a MDM server for iOS devices using this guide http://bit.ly/2nAEl15


Part of that process is generating a SSL cert from lets encrypt.


I plan on signing a mobileconfig using the above certificate and pushing OTA to all my devices.


As its signed, all my iPods should auto install this configuration profile without the 'trust' message.


What happens when the letsencrypt certificate expires after 90 days?

Does my installed mobileconfig become invalid and previous settings restored?

Does it require trusting?


Thanks,

Ryan

Replies

Ryan, did you ever resolve your question one way or another? If so, would you mind posting what you determined?

By default, nothing will happen other than the profiles will get a red "Untusted" label on them. If you have set a policy to only allow trusted profiles then they are removed.


In short, it's totally up to you what happens.