Enterprise Application on offline iOS devices

Hi everybody,


I'm deploying in-house applications via MDM servers (currently testing Jamf and macOS Server profile manager) and came accross the information that the provisioning profile is valid for 1 year and needs to be updated either on the server (and be pushed to the devices) or within the app bundle file (and then the app needs to be updated on the devices).


Here https://developer.apple.com/support/certificates/ they say, that whne the provisioning profile expires:


iOS Distribution Certificate (in-house, internal use apps)
Users will no longer be able to run apps that have been signed with this certificate. You must distribute a new version of your app that is signed with a new certificate.


Does that apply for offline devices too? So that when I deploy an in-house application to a device via MDM and the device then goes offline permanently, that the app will stop working, when the provisioning profile in the apps .ipa file expires? Did anybody experience that? Would that mean, that the app would compare the provisioning profile expiering date with the date, that is set in the device settings, every day? What if I manually change the clock on the device to 10 years earlier, would the app then work for another 10 years?


Does anybody has a more elegant solution, how I keep an in-house developed app running, even when it's offline permanently and the provisioning profile is not beeing updated on the device?


I read, that this is not an issue for App Store purchased applications. But I prefer to not make the application available for everybody in the App Store...


Thank you very much, I appreciate any help and suggestions 🙂

>Does that apply for offline devices too?


Yes - the profile sits on the device, affecting the app whether it phones home or not. Expired provisioning and the app goes dark.


No comment on changing the date on the device, I'd instead recommend working within the constraints of Enterprise distribution.

You will have problems running an Enterprise App "permanently offline". The device must be able to to connect to Apple's servers (or perhaps your MDM server, not sure about that) occasionally (Apple hasn't said exactly how often) to validate the Enterprise certificates and profiles. If the device is off line long enough, the app will stop working until the device is online again and the device can verifty the certs/profiles are trusted again.


EDITED to add: Based on anecdotal evidence, occasionally seems to mean a few days to few weeks.

Enterprise Application on offline iOS devices
 
 
Q