CPANEL-39993 - Manage Service SSL Certificates > iOS Push for Mail wrong hostname
Use this interface to manage SSL certificates for services other than Apache.
- Daemons (cpsrvd, Dovecot, and Exim)
- iOS Mail Push Notifications (APNs)
- Daemons (cpsrvd, Dovecot, and Exim)
- iOS Mail Push Notifications (APNs)
-
Hey hey! I'm seeing some potential issues with this page as well. Let me do some more testing and I'll get back with you on this. 0 -
Sure thing! 0 -
Alright - I've confirmed this behavior and created case CPANEL-39993 with our developers. If you're signed in to our ticket system you can follow along with that here:
- If I update the Certificate from the hostname certificate (copy and paste in that section), will the hostname change or no ? Thanks Spiro
0 -
Oooh that's a good question - I didn't test that part...let me check! No, apparently it's not that easy. I get the following error when I try that: The SSL certificate update failed. iOS Push for Mail (XID 3bf7pj) The certificate must be issued by Apple.
I'll remove that workaround section for now.0 -
Oooh that's a good question - I didn't test that part...let me check! No, apparently it's not that easy. I get the following error when I try that:
The SSL certificate update failed. iOS Push for Mail (XID 3bf7pj) The certificate must be issued by Apple.
I'll remove that workaround section for now.
@cPRex any update on this how can I change the hostname ? it still shows server2. mydomain . com instead of server1. mydomain . com Thanks Spiro0 -
I've poked the team about this and I hope to hear something soon. 0 -
In the short term, the mail team is going to see if this is something that is fixable without completely redoing that area of the system, as Apple has made some changes on their end. In the long term, though, I would expect that feature to get removed as it has very minimal support even from Apple at this point. 0 -
In the short term, the mail team is going to see if this is something that is fixable without completely redoing that area of the system, as Apple has made some changes on their end. In the long term, though, I would expect that feature to get removed as it has very minimal support even from Apple at this point.
ok so if they remove it, then this won't allow us to get IOS email and notifications from Cpanel ? ?0 -
That's correct - the push notification feature would not work. You can see more details on how Apple essentially stopped this service in our documentation here: How to Set Up iOS Push Notifications | cPanel & WHM Documentation 0 -
My guess, and it is a guess at this point, is that this will be removed in the future since it seems there is very limited support even from Apple for this feature now. 0 -
That's correct - the push notification feature would not work. You can see more details on how Apple essentially stopped this service in our documentation here: [quote]* Legacy ports 2195 and 2196 are deprecated and will not be supported after March 2021. Published Date: November 20, 2020
[quote]TCP port 5223 to communicate with APNs. TCP port 443 or 2197 to send notifications to APNs.*0 -
Hello; Sorry for bringing up that issue again. Is there any solution or work around for that issue now? There's no option to delete or modify anything for that certificate. Best Regards 0 -
@fokakmeny - the most likely thing that will happen is that the tool gets removed from WHM as even Apple only has very limited support for it at this time. 0 -
I think i have same or similar issue, i elevate my server from centos 7 to alma and the push notifications stopped working, this is the time of the year that i need to renew my certificate, so i renewed it (i have a old mac that i have for this purpose only as cpanel never updated the process to get the apn cert) and installed it on two servers, one with centos 7 and the one that i elevated to alma, thinking that reinstall the new cert on this server will make the push notifications work again but no, the push notifications only works on the centos 7 server but no on the elevated alma server, even with the new certificate 0 -
Any update on this? 0 -
Since Apple no longer supports the push certificate system, I doubt this is something we're going to fix. The official word from Apple is this: "You cannot create APNs certificates in macOS Server" version 5.7.1 and later. The macOS" Mojave 10.14 operating system requires version 5.7.1 or later. For more information, read Apple"s 0 -
Much like tui, I updated from CentOS to Alma 8 (with a updated cPanel) and push notifications no longer work. An old Mac is carefully kept just to create new certificates each year. I updated the push certificate and that did not resolve the issue. As customers are less than enthused about their iOS devices using more battery to get email statuses (and being delayed too) and Apple unwilling to implement IMAP IDLE, it would be greatly appreciated if cPanel at least looked into what it would take to correct the push notifications. Bill 0 -
As I mentioned in my last reply, this was an Apple decision, so it's not something we're going to fix on our side. 0 -
As I mentioned in my last reply, this was an Apple decision, so it's not something we're going to fix on our side.
This response is not acceptable from cpanel side, push notification is a very important feature on every app and mails, its vital for everyday tasks and business, mail specially, and a lot and almost every service i know (including your competitors) support it except cPanel. cPanel has not updated this feature since its release, and on September 2018, apple changed the way to create/obtain the key (almost 5 years ago) cPanel virtually dropped this feature one year later after its release blaming Apple for their changes and giving the option to obtain the key only to users that keeps their devices with a older/unsupported macOS version. Push notifications are a must this days, and there are tons of mails providers that support it directly on ios mail app. As cPanel updates its versions and force users to adapt to new things even if they dont like (like jupiter theme), Apple, Linux developers and servers/services developers do the same, so blaming Apple to update the way to create/obtain the key to drop this feature is not acceptable. As cPanel force us to keep updated, cPanel should do the same, adapting the features to changes and not dropping them because laziness or because they already worked on it in past and they dont want to adapt or update them. I just update my keys in other service past week and actually its more easy than in past, and the new keys (p8) do not expire, and now you don"t need to create multiple keys, just one key that works for everything and btw you are allowed to use and create the old keys (p12 that expires every year) its on you if you to choose to create which version. So this is no blame on Apple or Apple decision as you say, it"s cPanel laziness, if it was Apple, then push notifications will not exist anymore on any other services, again, it just the laziness cPanel has been living since it was acquired; if it was other provider then i will understand, but its apple, apple its the most accurate, informative and precise provider, with every change Apple need to do or is going to do there is a very compressive window to give the developers time to change, with every change coming in future there is a full documentation of the changes, i dont see hotmail, gmail, yahoo, zoho, and many many other providers (as said before, including your competitors) blaming apple for changes and dropping the push support on mail app, even if they have they own app they still supporting push notifications on ios native mail app, and again, its Apple, implementing everything that is from they ecosystem is very very easy (im a developer too) so this problem its just the laziness of cPanel because they want that the things are made like in past but everything evolves and technology evolves very quickly, cPanel is just living in past and is little by little falling behind with an obsolete product just as they want to keep a old OS/Mac to obtain the keys In first place, cPanel did wrong the way to implement this, cPanel should provide the keys with the daily cPanel updates as keys are not attached to a hostname or single server, a single key works for every server in the world, so cPanel shouldn"t ask us to create the keys. With every cpanel update, cpanel disappointed me more, with every negative reaponse in here and in features request cpanel disappointed me more, i really miss the old cpanel, as a developers everything is possible0 -
and btw you are allowed to use and create the old keys (p12 that expires every year)
tui, Can you document the method to create the p12 through the Apple Website? If cpanel is shown a method to create a valid p12 (without an old Mac Server), then they might consider fixing the push notifications.0 -
tui, Can you document the method to create the p12 through the Apple Website? If cpanel is shown a method to create a valid p12 (without an old Mac Server), then they might consider fixing the push notifications.
Sorry for my late reply, as cPanel is not going to support and fix it, i was working on my own solution for this and i just finished it (details down) Answering your question, there are only 3 ways to create the p12 certificate 1) With old Mac Server 2) From Apple website BUT you need to be your own MDM vendor (i am) it requires an Apple-approved MDM software, a registered company, an Enterprise Apple Developer membership (costly), manual approval and many other requirements 3) My new solution About my new solution, if anybody interested, as i am my own MDM vendor, i can provide as many p12 i want so, you can now get p12 certs from the website i just created for this purpose and install them on your servers, certs are generated almost instantly (few secs) and they are valid for 1 year (apple limit)... Now, better than have a new way to get p12 certs: As cPanel is going to remove the support for push notifications, and push notifications do not work anymore on new systems (AlmaLinux, RockyLinux, etc.) even if you have a valid p12 certificate, i created my own push service (you can get from my website too) and with it you dont need to create and install, renew and install the p12 cert every year, my service just works while you have it active So, i created 2 solutions, retrieve p12 certs or the full push service, its on you... in my case, push notification stopped working when upgraded to AlmaLinux, so, a valid p12 cert for AlmaLInux (at least for me) did not worked, p12 only worked on centos, but now i have push notification back thanks to my solution. At the moment, my full push notification solution only works on RHEL based systems (alma and rocky) on version 8.x, i will add support for ubuntu and RHEL based system in version 9 on the next weeks, also, you need to have a ip with a matched rdns0 -
Hi! I'm interested in this push notifications topic. I just registered as a developer with Apple. I generated the .p12, but when I install it, it says "iOS Push for Mail (XID upazr5) The certificate userId field (0.9.2342.19200300.100.1.1) must begin with “com.apple.mail.”"
Could you explain the steps to generate the .p12 for CentOS 7 servers? Thanks.
-1 -
If you read my older replys, there is no way to generate a .p12 if you are not a mdm provider, apple developer users are not mdm providers..
Also, cpanel already removed the push cert option on latest version, so, even if you get a .p12 there is no way you can install it anymore on cpanel, CentOS 7 is deprecated also cPanel on that system, but, if you want to get push notifications on cPanel CentOS7, or Alma8 on older or newest cpanel version, the only way you have is with this service:
https://my.tui.guru/index.php/order/config/index/General/?group_id=3&pricing_id=50
Please sign in to leave a comment.
Comments
26 comments