To manage iOS and iPadOS mobile devices (by sending commands to devices or modifying device settings), an Apple Push Notification service certificate (APNs certificate) must be created and uploaded to Kaspersky Endpoint Security Cloud Management Console. The activities of creating and uploading a certificate are performed once for each workspace.
Without an APNs certificate, it is not possible to manage iOS and iPadOS devices.
The scenario of creating, renewing, or uploading an APNs certificate proceeds in stages:
Prerequisite
To create an APNs certificate, you must obtain an Apple ID. If you do not have an Apple ID, register on Apple Push Certificates Portal. We recommend that you avoid using your personal Apple ID.
Creating or renewing an APNs certificate
The procedures for creating a new APNs certificate and renewing an existing APNs certificate that has expired are similar.
If you have an active APNs certificate, you can upload it to Kaspersky Endpoint Security Cloud Management Console without having to create or renew an APNs certificate. See the second procedure in this section.
The APNs certificate is created in one run. You must follow the steps for its creation without interruption, because the signing process has a time stamp that will expire if the creation process takes too long.
To create or renew an APNs certificate:
The Create, renew, or upload an Apple Push Notification service certificate (APNs certificate) Wizard starts with a page listing possible actions.
This opens a page containing a list of steps to complete to obtain an APNs certificate.
If you only want to upload a prepared APNs certificate to Kaspersky Endpoint Security Cloud Management Console, use the Uploading a previously prepared APNs certificate procedure below.
The Create a CSR page opens.
By default, the Company field specifies the name of your company, and the Country and region field specifies the name of the country and the region where your company is located. All of these entry fields are required.
A CSR file is created. The CSR file you created is saved to a folder on your computer. By default, all downloaded files are saved in the Downloads folder.
The Request the public key of the APNs certificate page opens.
The new browser tab displays the Sign In window with the Apple ID and Password entry fields.
The Create a New Push Certificate window opens.
The Certificates for Third-Party Servers window opens, showing your certificate.
The APNs certificate is saved to the folder on your computer.
This opens the Apple Push Notification service certificate details page that contains the name of the downloaded file, the name of the certification center, and the certificate validity start and end dates.
This opens a page prompting you to create a password-protected backup copy of the APNs certificate on your computer hard drive.
The Create a password-protected copy of the APNs certificate on your computer's hard drive option is selected by default.
If you chose the option that includes creating a copy of the APNs certificate, a password-protected copy of the APNs certificate is saved on your computer's hard drive. The APNs Certificate Preparation Wizard closes.
The creation or renewal of the APNs certificate is complete. The APNs certificate is uploaded to Kaspersky Endpoint Security Cloud Management Console.
At each step of the procedure for creating or renewing an APNs certificate, you can return to the previous step by clicking the Back button.
After the successful creation or renewal of an APNs certificate, you can connect iOS and iPadOS devices to Kaspersky Endpoint Security Cloud, send commands to iOS and iPadOS devices, install apps on iOS and iPadOS devices, and configure these devices by using a security profile.
Uploading a previously prepared APNs certificate
To upload a previously prepared APNs certificate to Kaspersky Endpoint Security Cloud Management Console:
The Create, renew, or upload an Apple Push Notification service certificate (APNs certificate) Wizard starts with a page listing possible actions.
This opens the Upload a previously prepared APNs certificate page.
If the APNs certificate file is password-protected, a page with the password request opens.
This opens the Details of downloaded certificate file page that indicates the name of the downloaded file, the name of the certification center, and the certificate validity start and end dates.
If the APNs certificate file does not correspond to the workspace with which you are currently working, an error message is displayed.
The APNs certificate is uploaded to Kaspersky Endpoint Security Cloud Management Console.
At each step of the procedure for uploading an APNs certificate, you can return to the previous step by clicking the Back button.
After the successful upload of an APNs certificate, you can connect iOS and iPadOS devices to Kaspersky Endpoint Security Cloud, send commands to iOS and iPadOS devices, install apps on iOS and iPadOS devices, and configure these devices by using a security profile.
Page top