Lion server profile manager, device enrollment doesn't work

Posted by user964406 on Server Fault See other posts from Server Fault or by user964406
Published on 2012-06-04T03:58:03Z Indexed on 2012/06/04 4:42 UTC
Read the original article Hit count: 533

Filed under:
|
|

I am in the process of setting up Lion Servers profile manager to manage iPads on our local school network. I don't need to manage them while they are outside the network.

I have successfully had it working on my personal network.

The school network is behind a proxy which we have no control over.

I can get the iPads to view the mydevices page and install a trust cert. I have managed to get an iPad to successfully install the remote management profile. After this the profile manager bugs out.

It will list the active task of 'new device (sending)' but it's unable to complete the task. If I click on the device on profile manager and try any of the actions out they will all fail to complete.

I am using the auto generated certificates and this works if I bring the server and iPad outside of the school network.

Shortly after device enrollment the system log on the Lion server reports the following

Replaced the actual ip address with INTERNALIP

Jun  4 08:40:53 mini sandboxd[760] ([778]): applepushservice(778) deny network-outbound INTERNALIP:8080
Jun  4 08:40:53 mini sandboxd[760] ([778]): applepushservice(778) deny network-outbound INTERNALIP:8080
Jun  4 08:40:53 mini applepushserviced[778]: Got connection error Error Domain=NSPOSIXErrorDomain Code=1 "The operation couldn\u2019t be completed. Operation not permitted" UserInfo=0x7fa483b1a340 {NSErrorFailingURLStringKey=https://albert.apple.com/WebObjects/ALUnbrick.woa/wa/deviceActivation?device=Mac OS, NSErrorFailingURLKey=https://albert.apple.com/WebObjects/ALUnbrick.woa/wa/deviceActivation?device=Mac OS}
Jun  4 08:40:53 mini applepushserviced[778]: Failed to get client cert on attempt 2, will retry in 15 seconds

Does anyone have any ideas on how to get past this stage?

Thanks in advance.

© Server Fault or respective owner

Related posts about profile

Related posts about iPad