Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 9 replies
  • Subscribers 5 subscribers
  • Views 25713 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

iOS 8.4: Registration running ...

Detlef

Hi there,

when I try to register a new device, the mail is going out to the device, I can setup the ipad and the smc app says that the synchronization was successful. But the SMC-Server says "Registration running ..." and no new firmware-version is displayed, no information about the ipad. Is there an issue with ios 8.4? My setup went quite fine until yesterday morning when I updated my ipads to ios 8.4 (all of them).

cheers

Detlef

:57798


This thread was automatically locked due to age.
  • 0

    Hm, never change two things on one day. My new SSID created especially for my exam-situation seems to be the problem. I think something is blocked by some ACLs. All is fine when I use another wifi-configuration (SSID->IP-address-range).

    :57806
  • 0

    Hi Detlef,

    I retested the enrollment with an iPad mini running iOS 8.4 and it works just fine.

    Maybe the APNS port (5223) required for the device communication are blocked within your new WiFi?

    Best regards

    Stefan

    :57809
  • 0

    Stefan,

    I see that the smc-server and my iPad are talking with each other. The server sees that the iPad is compliant and I am able to set the device to "not managed" on the smc-server. When I open the mobile control-app on the iPad it says that this device is not managed by the smc anymore. So they are communicating but there's something missing.

    cheers

    /Detlef

    :57838
  • 0

    Hi Detelf,

    maybe a look into the iOS device log helps to identify the issue?

    At the moment, I have no clue what might be wrong.

    Best regards

    Stefan

    :57849
  • 0

    Some more info: Our SSID has private addresses (192.168.x.x), the smc has a public IP. The private network has no NAT but is routed to our public network. To contact external addresses I have to use a proxy-server. Today we realized that we cannot reach the APNS (check within the control app on the iPad). We have no ACLs on the interfaces. The SMC says that there was communication between the SMC and the iPad some minutes ago.

    When I join the iPad to the SMC via another wifi-network then the iPad is shown as managed. When I switch the iPad back to the new SSID and send an iOS-Profile to it this profile does not reach the iPad (for e.g. a kiosk-mode-profile). There is a "missing link", some communication does not work.

    Cheers

    /Detlef

    :57872
  • 0

    OK, more things we learned:

    Wifi-network with private addresses NO NAT but Proxy: Problem as described above.

    Wifi-network with public addresses: Works fine.

    Wifi-network with private addresses NAT no Proxy: Works fine.

    So: Does the ipad need to have a connection to another server then the SMC for the checkin? APNS? Something else?

    Cheers

    /Detlef

    :57876
  • 0

    Hi Detelf,

    yes, a connection to the APNS server is required to get an APNS token / tell Apple how the device is reached via APNS.

    Best regards

    Stefan

    :57917
  • 0

    And here's what apple says (german version):

    https://support.apple.com/de-de/HT203609

    Proxy-Connections do not work for the connection to the APNs.

    /Detlef

    :57926
  • 0

    Hi Detlef,

    thanks for sharing. The English version can be found here:
    https://support.apple.com/en-us/HT203609

    Best regards

    Stefan

    :57929
Unfiltered HTML