Jamf Nation Community

This was happening to me constantly a few months ago. After working with JAMF support we cleared out all outstanding APN commands and then resent them. This seemed to resolve the issue for awhile at least. It just started coming back recently. We are using 8.73 though. I have tons of profiles pushing to various machines and seems sometimes these get caught up is my new theory.

Gabe Shackney
Princeton Public Schools

I tried this on one of the systems, rather than my test system and although everything looked right (used -verbose) it still says MDM Capability NO.

If you want to correct it set up a new policy that runs the sudo jamf mdm command or sudo jamf manage and it should get it back.

I'd contact JAMF support as well as I could not find anyone else with this issue either in the forums.

Gabe Shackney
Princeton Public Schools

@gshackney - did they give any indication of why this is happening? I'll try clearing the APN commands and resending but if this just keeps happening to machines that were once 'right', it will be a pain.

If you want to correct it set up a new policy that runs the sudo jamf mdm command or sudo jamf manage and it should get it back.

I'll try this. Thank you.

Here is my posts on the issue...
https://jamfnation.jamfsoftware.com/discussion.html?id=7301

Gabe Shackney
Princeton Public Schools

Thank for the link gshackney. It was helpful.

I just want to let you know that I've been testing with two computers. One on my desk, and one remote. I do the same things on both, and one will enroll MDM, the other not. I've tried every way I can think of. I noticed two things about the system that will not MDM. 1) under inventory>certificates nothing is listed 2) under History>Management History there is nothing. No completed, pending, or failed.

What do I need to do to get his MDM enrolled? Everything else seems to work. When I do the verbose output I never see any mention of enrolling with MDM. Do I need to clear something off to accomplish this?

I'm trying replacing the SSL cert on the Apache server. Just to see.

That didn't help. I tried going to the machine and re-running the quickadd.pkg and still no MDM.

I think they removed the jamf mdm command in version 9 of the JSS, but this was the only way I got them back.
I would call support, but let me know what the results are since I'm still seeing the issue. I have a policy that runs once a week that runs both the jamf mdm and jamf manage commands, the mdm one is the one that seems to fix it though and I don't know if there is another similar command that works in version 9.

Gabe Shackney
Princeton Public Schools

Hi,
Yes I noticed no mdm command in 9. I tried manage. Yeah I'll probably have to open a ticket over this. Thank you, Aaron.

Just as aside for those researching their own problems and stumbling upon this thread, I had these symptoms appearing due to intermittent interference from my content-filter/security-appliances. Can't hurt to double-check your ports and verify the traffic is actually getting through.
Apple, Unable to use APNs     http://support.apple.com/kb/TS4264
Apple, Troubleshooting Push Notifications     https://developer.apple.com/library/ios/technotes/tn2265/_index.html

In our case re-enrolling with a new quickadd.pkg for the device solved the problem

Researching this issue...cross-posting information that 10.7+ and a Recovery Partition are also needed
thanks Joel!

@joelreid 3 years later and your reply came up in my searches. That technote page gave me the evidence I needed to prove that the APN servers were being blocked by our network security teams. Thank you JamfNation for retaining old information because it all becomes relevant again to someone in the future!