Archive for January, 2015

Renew Apple Push Notification Certificate in SCCM / Microsoft Intune

31/01/2015 2 comments


A couple of weeks ago I had to renew the Apple Push Notification certificate used for Microsoft Intune/SCCM for a customer. The certificate has to be renewed once a year and I google’d for a guide. I was not able to find one, so I created this small guide to do the trick.

You do get an email warning from Apple, that the certificate will expire. But do yourself a favor and create a calendar entry, reminding you to renew the certificate.

This guide will help you renewing the Apple certificate used by SCCM/Microsoft Intune to manage Apple devices. You can use this guide to create a new Apple Push Notification certificate as well.

Create APN certificate request

Start the SCCM Console and go to the Administration node. Expand "Cloud Services" and click at "Windows Intune Subscriptions"

Select "Create APNs certificate request"



Download the CSR file.



Login with your Microsoft Intune admin account to download the request file (CSR).






Renew Apple certificate

Sign in to Apple Push Certificates Portal




Click "Renew" and browse to the newly created Request File and select "Upload"




A json file will be presented to be downloaded. Save the file beside the request file.

Go back to the Certificates Portal and hit F5. The certificate is now renewed.




Click "Download" to download the certificate (.pem file)



Importing the renewed Apple certificate into SCCM Console

Start the SCCM Console and go to the Administration node. Expand "Cloud Services" and right click at "Windows Intune Subscriptions" and select "Properties". Go to the IOS tab and import the renewed certificate. Click "Ok".


Save your APN Files in a secure place.