MT.1092 - Intune APNS certificate should be valid for more than 30 days
Overviewβ
Check the validity of the Apple Push Notification Service (APNS) Certificate for Intune. The Apple Push Notification Service (APNS) Certificate is required for managing Apple devices with Microsoft Intune. This test checks if the APNS certificate is valid and not expired.
Remediation actionβ
It is critical that you renew your APNs certificate, not request a new one. This means you must ensure that you use the same Apple ID and renew the same certificate from Appleβs site. If you request a new certificate instead of renewing your existing certificate, you will be forced to unenroll and re-enroll all of your existing iOS devices.
See the Microsoft learn instructions to Renew Apple MDM certificate.
Test Metadataβ
| Field | Value |
|---|---|
| Test ID | MT.1092 |
| Severity | High |
| Suite | Maester |
| Category | Intune |
| PowerShell test | Test-MtApplePushNotificationCertificate |
| Tags | Intune, Maester, MT.1092 |
Sourceβ
- Pester test:
tests/Maester/Intune/Test-MtIntuneConnectorHealth.Tests.ps1 - PowerShell source:
powershell/public/maester/intune/Test-MtApplePushNotificationCertificate.ps1