Managing the SSL certificate for Apple push notifications

The administrator monitors the log files and emails for messages about the approaching certificate expiry date, and updates the certificate when needed.

About this task

The SSL certificate for Apple push notifications is valid for 12 months from the date when it was issued by Apple. Fourteen days before the certificate expiry date, the Cognos® Mobile server starts logging warnings in the c10_location\logs\mob.log file about the approaching certificate expiry date. To ensure that the warnings about the certificate expiry date are logged, server logging must be set to the Warn level at minimum. When the logging level is set to Error, the certificate expiry messages are not logged.

In addition to the log file warnings, the Cognos Mobile server can also be configured to send emails to administrators about the approaching certificate expiry date.

The text of the warning in the log file or in the email body, in English only, specifies the certificate expiry date and the URL of the IBM® Support website (http://www.ibm.com/support/) where the latest IBM Cognos Mobile fix pack with updated Apple SSL certificate is available.

Procedure

Ensure that the following configuration settings are specified in IBM Cognos Administration. These settings are used to configure the Cognos Mobile server to send email messages to administrators about the certificate expiry date.
- Notification email for Apple push notifications
- Frequency check for Apple push notification certificate expiry date in hours
- Expiry threshold for Apple push notifications in days
For more information, see Enabling Apple push notifications.
Monitor the log messages and emails for information about the certificate expiry date.
To update the certificate, go to the IBM Support (http://www.ibm.com/support) website, and download the latest Cognos Mobile fix pack that includes a valid certificate for Apple push notifications.
Install the new certificate on all affected servers.