我处于MDM的最后(丢失)阶段,现在设备正在请求最终配置文件,并且发送包含SCEP和MDM有效内容的.mobileconfig文件。 SCEP工作正常,并且在MDM有效载荷中,我被迫将URL作为HTTPS。安装的证书是自签名的,我还安装了verisign的一些试用证书。现在在安装最终配置文件(特别是MDM有效负载)时,出现错误,配置文件未安装。我在部署最终配置文件时遇到一些疑问发送到设备的最终配置文件
1 - 是否必须在服务器中使用https链接网址?通过多次询问这个问题真的让我感到震惊。 2-当安装MDM负载时,我们应该将什么响应发送回设备? 3 - 我是否面临任何证书问题?
任何人都可以给我带头。请
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadContent</key>
<dict>
<key>Challenge</key>
<string>XXXXX</string>
<key>Key Type</key>
<string>RSA</string>
<key>Key Usage</key>
<integer>0</integer>
<key>Keysize</key>
<integer>1024</integer>
<key>Name</key>
<string>CA</string>
<key>Subject</key>
<array>
<array>
<array>
<string>O</string>
<string>ABC</string>
</array>
</array>
<array>
<array>
<string>CN</string>
<string>ABC</string>
</array>
</array>
</array>
<key>URL</key>
<string>CA url(http://)</string>
</dict>
<key>PayloadDescription</key>
<string>Configures SCEP</string>
<key>PayloadDisplayName</key>
<string>SCEP (CA)</string>
<key>PayloadIdentifier</key>
<string>com.one.profile.scep1</string>
<key>PayloadOrganization</key>
<string>ABC</string>
<key>PayloadType</key>
<string>com.apple.security.scep</string>
<key>PayloadUUID</key>
<string>XXXXXXXXXXXXX</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
<dict>
<key>AccessRights</key>
<integer>2047</integer>
<key>CheckOutWhenRemoved</key>
<false/>
<key>IdentityCertificateUUID</key>
<string>XXXXXXXXXXX</string>
<key>PayloadDescription</key>
<string>Configures MobileDeviceManagement.</string>
<key>PayloadIdentifier</key>
<string>com.one.profile.mdm2</string>
<key>PayloadOrganization</key>
<string>ABC</string>
<key>PayloadType</key>
<string>com.apple.mdm</string>
<key>PayloadUUID</key>
<string>XXXXXXXXXXXXXXXXX</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>ServerURL</key>
<string>https://192.168.1.68/X/check.html</string>
<key>SignMessage</key>
<false/>
<key>Topic</key>
<string>com.apple.mgmt.abc.abcd</string>
<key>UseDevelopmentAPNS</key>
<false/>
</dict>
</array>
<key>PayloadDescription</key>
<string>This Profile consists of the MDM payload which will control your devices</string>
<key>PayloadDisplayName</key>
<string>MDM Profile</string>
<key>PayloadIdentifier</key>
<string>com.abc.profile</string>
<key>PayloadOrganization</key>
<string>ABC</string>
<key>PayloadRemovalDisallowed</key>
<false/>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>XXXXXXXXXXXXXX</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</plist>
我已经使用iPCU和一些其他工具来检查请求和响应。我在iPCU中遇到的错误是MCFatalError,MCProfileErrorDomain,配置文件无法安装。 我没有得到你的第三点。而且我没有详细说明签入,我正在讲述服务器URL。 – Cyril 2012-03-19 17:28:15
我错过了有效载荷中的任何东西吗?我通过iPCU配置了SCEP和MDM负载。 – Cyril 2012-03-19 17:42:24
如果我没有看到你的有效载荷,我怎么能告诉你它可能缺少的东西? – Abstractec 2012-03-19 23:09:02