+6Hello!
In the last 2 years, I have had some Macs lose all configuration Profiles (including the MDM profile) when they try to renew the MDM Certificate (and fail for some reason)
Mostly that could be fixed cancelling the “Renew MDM Certificate”-Pending task in the Management-Tab and then have the User run “profiles renew -type enrollment”.
But it surely seems like a bug, when the (non-removable) MDM profile is gone.
Has anybody seen something similar and a fix for it?
Bye, Frido.
+15Not the same issue, but in the same vein, we have had the supposedly automatically renewing MDM profile not renew, then expire, causing a fair amount of problems...
+3Hi Frido,
I've encountered this exact issue before. The root cause is typically related to how macOS handles MDM profile renewal failures - when the renewal process fails mid-way, macOS may end up removing the MDM profile entirely, which cascades to all dependent configuration profiles being removed as well.
What worked for me:
sudo profiles renew -type enrollmentalbert.apple.com, deviceenrollment.apple.com)Prevention tips:
This does behave like a bug where the MDM profile removal shouldn't happen on renewal failure. I'd recommend opening a support case with Jamf to document this behavior - the more reports they receive, the more likely it gets addressed.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.