How to create an Apple MDM Push Certificate in Microsoft Intune

MICROSOFT INTUNEAPPLE

2/17/20251 min read

Step-by-Step Guide

Below the video, include a detailed guide in the description and a link to the official Microsoft documentation.

How to Create an Apple MDM Push Certificate in Microsoft Intune

An Apple MDM Push Certificate is required to manage Apple devices using Microsoft Intune. This certificate allows Intune to securely communicate with Apple devices. The process involves generating a certificate request from Intune, submitting it to the Apple Push Certificates Portal, and uploading the issued certificate back to Intune.

Follow these steps to create and configure your Apple MDM Push Certificate in Microsoft Intune.

Before starting, ensure you have:

  • An active Microsoft Intune subscription

  • An Apple ID (preferably a company-managed Apple ID)

  • Admin rights in Microsoft Intune

Steps to Create an Apple MDM Push Certificate

  1. Navigate to the Microsoft Intune Admin Center.

  2. Sign in using your Microsoft admin account.

Generate a Certificate Signing Request (CSR)

  1. In the Intune portal, go to Devices > Enrollment > Apple > .Apple MDM Push Certificate.

  2. Click Download your CSR to get the required certificate request file. This file will be used to request the Apple MDM certificate.

Step 3: Request an Apple MDM Push Certificate

  1. Click on Create your MDM push certificate and sign in using your Apple ID.

  2. Click Create a Certificate.

  3. Accept the terms and conditions, then click Next.

  4. Upload the CSR file that you downloaded from Intune.

  5. Once the certificate is created, download the MDM_ Microsoft Corporation_Certificate.pem file.

Step 4: Upload the Certificate to Intune

  1. Go back to the Intune portal.

  2. Enter the Apple ID used to create the certificate (for renewal purposes).

  3. Click Upload your APNs certificate.

  4. Select the downloaded MDM_ Microsoft Corporation_Certificate.pem file.

  5. Click Upload to complete the process.

Step 5: Verify the Certificate

Once uploaded, verify that the certificate is active by checking the status in Intune under Apple MDM Push Certificate.

Renewal and Maintenance

  • Apple MDM Push Certificates expire annually. It is crucial to renew the certificate before it expires to prevent device management disruptions.

  • Always use the same Apple ID to renew the certificate to avoid re-enrollment of Apple devices.

Conclusion

Creating an Apple MDM Push Certificate in Microsoft Intune is a straightforward process but requires careful attention to detail, especially when renewing. Following these steps ensures seamless management of Apple devices within your organization.

By maintaining an active Apple MDM Push Certificate, you can efficiently manage macOS, iOS, and iPadOS devices through Microsoft Intune without interruptions.