Start Profile Manager in macOS Server
Use the Server app to start Profile Manager service and act as a mobile device management (MDM) service.
In the sidebar of the Server app
, select Profile Manager.Click the On button, click Next, enter your organization’s information, then click Next.
Select your certificate from the Certificate menu, then click Next.
Enter your Apple ID or Managed Apple ID and password to create an Apple Push Notification service (APNs) certificate.
If you don’t have an Apple ID for this, click Create one now.
Click Finish.
Authenticating to Profile Manager management requires the password to be stored in a less secure form. You can decide to change your password or skip this step.
To specify settings and assign them to users, devices, and groups, and to manage enrolled devices, click “Open in Safari” next to Profile Manager at the bottom of the window.
When Profile Manager opens in your web browser, sign in with your administrator account.
If required, make sure your organization’s firewall allows Apple Push Notification service.
Push notification uses port 5223, with a fallback option of port 443. The entire 17.0.0.0/8 address block is assigned to Apple, so it’s best to allow this range in your firewall settings.
If you’re unable to use Apple Push Notification service, see the Apple Support article If your Apple devices aren’t getting Apple push notifications.
In iOS 13.4, iPadOS 13.4, macOS 10.15.4, and tvOS 13.4, APNs can use a web proxy when it is specified in a PAC file.