application push certificat was expired, i don't have access to certificat - ios

my compagny buy a application from another account, recently certificate push expired and push doesn't work anymore on version on the store, when i access to apple developper i can't find certificat linked to the current application
i think the certificates is keepen on the original account witch publish the application
we cannot have access to old account
what options we have to update certificat ?
we had to create new certificat an push a new version on the store inevitably ?
thank you for your answers

I have found answer on the apple documentation
https://help.apple.com/itunes-connect/developer/#/deved688524f
Associated client SSL certificates for push notifications aren’t transferred. If the app uses Apple Push Notifications service (APNs), the recipient needs to create a client SSL certificate using the recipient’s developer account to reenable it.
Hope it will helps someone

Related

Apple Push Certificates Expiration

Today I got an email from appleid#id.apple.com saying that our Apple Push Service Certificate is about to expire.
I haven't seen any email from Apple like this. Wanted to see if it is legit?
Dear ***,
The following Apple Push Notification Service certificate, created for
AppleID [email address] will expire on April 11, 2018. Revoking or
allowing this certificate to expire will require existing devices to
be re-enrolled with a new push certificate.
Mobile Device Management - null
Please contact your vendor to generate a new request (a signed CSR),
then visit https://identity.apple.com/pushcert to renew your Apple
Push Notification Service certificate.
Thank You,
Apple Push Notification Service
I received this email as well and our application does not support APNS so it must be a phishing attempt.
Visit https://developer.apple.com/account/ and tap Certificates, IDs & Profiles and you will see which certificates need your attention.

What APNS Certificate should I use

My company has commissioned the development of an application to one of its suppliers and they have published using their developer to account, this application must receive push notifications.
The company is doing a web service that will send a notification when this is invoked, We're using PushSharp and we need a certificate for sending notifications.
Now, my question is: The provider must give me a certificate or we can use one from our developer account (The company has one).?
Thanks in advance

Implement an MDM server

I'm trying to implement a server side solution to remotely control permissions in and iOS device, on demand.
From what I've read it is possible using the MDM protocol and MDM push notifications, which allow my server to remotely change restrictions in an iOS device, for instance, or even lock the device, on demand.
I know that the iOS device must install an MDM configuration profile to be able to be remotely managed. I also know that the server must have an APNS certificate with MDM permissions.
My question is: do I have to be an MDM vendor and/or join the Apple Developer Enterprise Program in order to generate the APNS certificate with MDM permissions ?
Thanks in advance.
Yes, you need to have a company developer account registered with a DUNS number before you can be accepted into the MDM program.
You need to have Apple Developer Enterprise Program if you want implement MDM server by yourself. There is no need of Developer enterprise program to generate APNS certificate. You can generate APNS certificate from any apple id.
I don't believe you have to do anything to write your own personal MDM server except register for and receive an APNS certificate and follow the protocols.
If you want to sell your server and have it authorized by Apple, then you need to register obviously. I would certainly not buy one which wasn't.
You need an APNS (Apple Push Notification Service) certificate in order to connect to the APNS Servers to have your MDM server work. You use the certificate to validate who you are before you are allowed to send Push Notification messages. This requires an Apple Id.
Your MDM server also needs to be running on an TLS secured server and you use that certificate to sign the MDM profile you install on a device which you want to manage.
Yes, you will need Apple Developer Enterprise Account. Only Apple Account will not work. Contact Apple Support and ask them to provide you MDM Vendor rights.
In order to send MDM commands you will require Push Certificate Signed by MDM Vendor certificate.
This MDM Vendor tutorial will help you.

Contractor asking for private keys to develop push notifications

A contractor is asking for a private key and suggesting creating a new push certificate for this app with a new certificate signing request. Then to share the certificate and private keys with them.
I wondering how we can use these contractors without giving them private keys?
I am not sure how to manage this workflow. Any thoughts on how to manage would be greatly appreciated.
The certificates and keys used for the server side push service (interacting with Apple's APNS server) are different from the certificates and keys use to sign the app. If it's only for that your fine. You'll set this up when enabling push services on the app ID in the developer portal. You will however need to re-create your provisioning profiles in order to compile the app to receive the push messages.
If your contractor has their own dev account you might want to consider adding them as a team member so they can set up their own dev certificates.

Is it possible to create multiple SSL certificates for providers that send APNs to the same Application?

I realize there was a question about allowing multiple servers to send Push Notifications to the same application using the same SSL Certificate, but my question is different.
Suppose that the developer of a single iOS application would like to allow multiple providers to send Push Notifications to his application, but wants to control which providers have the authority to send APNs to his App (and to be able to revoke that privilege from any one of them).
If all the providers have the same certificate, in order to block one of them from sending APNs, he has to block them all (by revoking the Push SSL Certificate, and getting a new one).
Is it possible to get from Apple multiple Push SSL Certificates for the same Application?
That would make it possible to assign a unique certificate for each provider, which would allow to block a single provider without blocking the rest.
On the Apple Provisioning Portal there doesn't seem to be a possibility to create more than one Push SSL Certificate for the same Application and the same environment (Development/Production), but I wanted to be sure whether it can't be done.
Since no one answered my question, I'll answer it myself.
The answer to that question used to be no but it seems that Apple made some changes in the provisioning portal (which is now called Certificates, Identifiers & Profiles), and now it's possible to define multiple certificates for the same application and the same environment.
Actually you can create only 2 apple push certificates for one App ID and no more.
Apple developer center does not allow me to create more then two and same experience has my friend.
I don´t see how your task can be solved now. In my opinion Apple does not want to support such products. Maybe you can do more with Enterprise Developer account but I don´t have one. So maybe anyone else can tell us if it allows to create more push certificates for on iOS application.

Resources