ADE sync failure after ABM server token expiredSolved

Hi @jennifer,

You do not need to delete the existing Automated Device Enrollment (ADE) account in Hexnode. As long as you have access to the Apple Business Manager portal, you can renew the server token and upload it to the existing ADE account.

Here are the steps to renew and upload the token:

1. Log in to Apple Business Manager using an account with Administrator or Device Management Manager privileges.
2. Navigate to Devices > Management Services and select the relevant MDM server.
3. Click the ellipsis menu (…) and choose Download Token.
4. Confirm the prompt stating that downloading a new server token will reset the existing one, then download the file.
5. In your Hexnode UEM portal, go to Admin > Apple Business/School Manager > Automated Device Enrollment > Accounts.
6. Hover over the ADE server name and click the Edit button that appears.
7. Click Choose file under Upload Token, upload the newly downloaded token file, and save the changes.

After saving, the sync failure alerts should stop once the renewed token is accepted during the next ADE sync.

Please let me know if you have any questions about this process.

Best regards,
Eden Pierce
Hexnode UEM

So the old apple id does not need to be active as long as another abm admin can access the same mdm server and download a fresh token? 

Hi @jennifer,

That is correct. The important part is that the new token is generated from the same Apple Business Manager tenant and the same MDM server entry that is currently linked to Hexnode.

You can use any active Apple Business Manager Administrator or Device Management Manager account to download the renewed server token. Updating the existing ADE account in Hexnode with this new token is the recommended approach, as it restores the connection seamlessly without creating duplicate MDM server mappings.

Please feel free to reach out if you run into any issues while updating the token.

Best regards,
Eden Pierce
Hexnode UEM