MobileIron CA management

Question

Hello,

After pushing all our CA by mobileiron MDM on iphones and ipads, we noticed that internal website signed by our CA are not trusted, we followed your KB https://support.apple.com/en-in/HT210176 and https://support.apple.com/en-us/HT211025, however while installing all the chain in one file or one by one and pushing it as a certificates config by the MDM to concerned devices the cert alert still exist, same issue by installing the internal root CA directly on apple devices.

Do you have any advice?

Thanks.

1.4k

Posted by

frederic.mefiant@saftbatteries

Reply

Add a Comment

Answer 1

I suggest using the Console app to view the log events on a test device. You can filter the log so it only shows errors and search for trust in the message. Trust evaluation failure errors that occur at the time the device tries to contact the internal website may give more details about why the failure occurred.

Posted by

Systems Engineer

Add a Comment

Answer 2

Here is the log from a test device:

error_ca_cert.txt

Can you tell me what's wrong during the trust evaluation ?

Regards.

Posted by

frederic.mefiant@saftbatteries

Add a Comment

Answer 3

There isn't enough context in that log for me to determine the issue. If you're certain that the certificate that the server presents to the device meets all the requirements in the KB articles you mentioned and that's the certificate that the server is using, I suggest reproducing the issue, taking a sysdiagnose, and filing feedback at http://feedbackassistant.apple.com.

Posted by

Systems Engineer

Add a Comment

Answer 4

Hello,

Can you tell me, what the solution was for your problem please ? I have now exactly the same issue...

Thank you

Posted by

PFischer1986

Add a Comment

MobileIron CA management

Replies