If you have renewed your Apple Push Notification Service certificate and dashboard is reporting that your devices are out of compliance, this means that something went wrong with the renewal process and another certificate was generated rather than an actual renewal. This article walks through recovering the APNS communications chain and reestablishing contact with these devices through APNS.
APNS certificates are generated uniquely, but all certs for a given certificate chain will share a common Subject which includes the Push Topic (generally a common identifier for the set of devices this push request can communicate with). Dashboard presents the current push topic under Organization > MDM > Apple MDM:
Before renewing, you can use this value to ensure you're renewing the appropriate certificate by checking this Topic against the values listed in Apple's Identity Portal:
Following an APNS Certificate renewal, if you see the following message under Systems Manager > MDM > Add Devices > iOS or OSX, you may have renewed with the wrong certificate:
If this is the case, there are two simple recovery options:
If you have access to the previous APNS certificate, you can put it back into Dashboard and reestablish communication using the following steps:
This will reestablish communication with your enrolled devices while you determine what went wrong with the previous renewal.
If you don't have access to a copy of the old APNS Certificate, Meraki Support can provide you with a copy of the old APNS Topic which you can use to identify the correct APNS certificate for renewal by using the information above. You can then follow the normal process for renewing an APNS certificate.