[Sophos Notification] Advisory: Sophos Central Mobile - Apple DEP enrollment fails and token is shown as expired

Overview

Trying to enroll an Apple DEP device with Sophos Central fails. Looking into the Sophos Central Mobile section the following error is shown:

Going through the procedure to update the Apple DEP server token results in the following error message:

  • Could not request account details with uploaded DEP server token. The token seems to have the correct format, but might have expired or has been revoked.

Applies to the following Sophos product(s) and version(s)
Central Mobile

Current status

Sophos is aware of the issue. According to current findings this is caused by the Apple backend not reacting correctly on TLS 1.3 communication.

A resolution is currently scheduled for January 14, 2020.

Next update

This article will be updated on Wednesday 14th January 4PM GMT.