We encountered a problem with our APN certificate; it was mistakenly replaced rather than renewed. We had to track down the previous Apple ID to renew and restore it, preventing the need to re-enroll all devices.
Additionally, an automated enrollment token expired. A technician uploaded a new token from our Apple Business Manager account and created a new pre-stage profile, assigning all devices to it. However, the old token still appears in settings > global > automated enrollment, marked with a yellow alert and a "sync failed" message; the last sync for both tokens occurred one minute ago.
A iOS device was wiped for re-enrollment and is now stuck on the remote management screen displaying
"Jamf Pro enrollment issues, the configuration profile could not be downloaded the MDM server certificate is invalid."
Although initially enrolled with the now expired token, it was assigned to to the new profile using the non expired automated enrollment instance. No devices remain assigned to the expired token.
We've confirmed the device's assignment to Jamf in ABM and its pre-stage enrollment. Has anyone resolved a similar issue? Could removing the expired token resolve this?