+2Hi all
I have a fleet of Mac Pros all sitting behind a firewall.
All traffic - IPs, ports have been allowed as per the Jamf documentation.
All Macs can sync and restart however apps can't be deployed or updated.
Am I missing something? I even have the entire APNS IP range allowed but still nothing.
Any help or advice would be much appreciated
+6Since your Macs can sync and restart but not deploy apps, the issue is likely with connectivity to Apple's CDN serversrather than APNs. App deployments require access to Apple's content delivery network hosts like *.mzstatic.com, *.phobos.apple.com, and *.itunes.apple.com.
APNs only handles push notifications to wake the device - the actual app download comes from Apple's servers.
Recommended steps:
*.mzstatic.com*.itunes.apple.com*.apple.comappldnld.apple.comconfiguration.apple.comiosapps.itunes.apple.comReference: Use Apple products on enterprise networks
+2Hi
Thank you very much for your advice, I will be sure to try what you have suggested and report back.
Thanks again
Running Mac Evaluation Utility will show you the state of the currently allowed network connetions required for Apple devices and services. I find this a very good tool for these situations.
+2Thank you both very much for your suggestions
Both of these tools are a huge help in getting me where I need to be, they provide so much more info and assistance than anything ive been using so far.
Once again thanks
+2Hi
So thanks to the above suggestions things are working much better than before. Im able to install App Installers, which I assume are coming from the App Store?
The remain issue is that I am unable to install custom apps.
Both Jamf Check and Mac Evaluation utility show connectivity to all required FQDNs.
Im seeing a whole bunch of IPs still being blocked and they relate to Cloudfront and AWS.
Des anyone know if custom apps get saved or stored on one of these cloud providers?
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
