Help

Can't activate Macs after wipe du to old certificate

jonros
Contributor II

Posted on ‎06-09-2024 11:13 PM

Restored about 40 Macs last week via our cloud-hosted Jamf. When it is finished, you must activate the Mac before you can set up a new account, to verify with Apple. All machines could not complete it due to void certificate. It was something I had never experienced before. But it should still work out, right? Anyone know, experienced the same thing? The computers are not even a year old and more computers are to be restored this week.

I've checked all our certificates and they're up-to-date, so it hasn't anything todo with that. The error comes in recovery mode after selected Wi-Fi when it tries to activate. 
0 Kudos
Reply
9 REPLIES 9

Tangentism
Contributor III

Posted on ‎06-10-2024 01:39 AM

I've seen this before and it was that the device needed a firmware update but couldnt download it.

Does your wifi have SSL inspection and not all Apple URLs are whitelisted? Try connecting the device using a mobile hotspot to see if thats the issue.

0 Kudos
Reply

jonros
Contributor II
In response to Tangentism

Posted on ‎06-10-2024 01:48 AM

In this case I don’t think it has to do with firmware. I’ve reset about 20 Macs today in same batch and now it seams to work. Using the same Wi-Fi as last week. 

0 Kudos
Reply

Lasse
Contributor II

Posted on ‎06-10-2024 05:14 AM

Is the APNS / Apple Push notification certificate in your Jamf Pro updated? It sounds like it might be expired and in need of renewal.

0 Kudos
Reply

jonros
Contributor II
In response to Lasse

Posted on ‎06-10-2024 07:09 AM

All certificates are up-to-date. Seams to work as it should today, but I didn't Friday last week. We haven't done any changes.

0 Kudos
Reply

Lasse
Contributor II

Posted on ‎06-11-2024 04:48 AM

Good it got resolved. The only thing I could think of would be a local network certificate that was automatically or remotely updated. Try to pull logs from the devices affected for later investigation.

0 Kudos
Reply

jonros
Contributor II

Posted on ‎06-12-2024 12:21 AM

The problem is not really solved. When the problem occurred, we were at school A and connected to the guest network. The following week we were at school B and connected to the same guest network where it worked.

Today I was down at school A again and tried - still not working there. Took a computer with me up to my office which is in another building, there it works perfectly just like in school B.

Currently, we only have one firewall for all buildings. But we have a lot of access points around the buildings. Anyone experienced the same problem and know what could be causing it?

0 Kudos
Reply

Lasse
Contributor II

Posted on ‎06-12-2024 12:58 AM

Pull network logs for an affected device at the time of the event. Worst case, gather diagnostics logs from the device and start a case with Apple Support. In my experience, these cases are best dealt with using Feedback Assistant on a Mac. Also, I would try to renew the APNS certificate and DEP/ADE token regardless of validity. 

Reply

jonros
Contributor II
In response to Lasse

Posted on ‎06-13-2024 01:48 AM

With pulling network logs, do you mean from the affected device or anything else?

0 Kudos
Reply

Lasse
Contributor II

Posted on ‎06-12-2024 01:00 AM

My two cents are on network, but never stop thinking wide before it has been definitely isolated to that. Is enrolling from a home network an option? Try if possible.

0 Kudos
Reply