Once a device is enrolled in AirWatch, the AirWatch Scheduler will ensure that the device checks into the Admin Console periodically to ensure that all information is up-to-date. During this check in process, each device will supply up-to-date information to AirWatch, including data such as a list of all applications, certificates, or profiles installed on a device, the latest security information on a device (such as password complexity or if it is encrypted), or information such as GPS data points or telecom data usage for certain device types. For iOS devices, the check-in rate varies for each data type and is configurable with the MDM Sample Schedule . For other device types, this is configurable in the AirWatch Admin Console under Settings > Devices & Users > {Platform} > Agent Settings for the various device types. Note that some of these settings are non-configurable on SaaS environments.
However, an environment may experience issues where devices are not checking in according to the configured schedule. In these cases, the AirWatch Admin Console may not have the most up-to-date information on these devices, and certain configured compliance checks may ultimately fail. Also, check below settings
- An APNs certificate has become invalid
- A network restriction is blocking device communication
- AirWatch Services are not properly running
- Database performance issues
Additionally, please ensure there is no network issue blocking the devices from communicating with AirWatch.
- TCP port 5223: For communicating with Apple Push Notification services (APNs)
- TCP port 2195: For sending notifications to APNs
- TCP port 2196: For the APNs feedback service
- TCP port 443: For a fallback on Wi-Fi only, when devices can't reach APNs on port 5223
- The APNs servers use load balancing, so your devices won't always connect to the same public IP address for notifications. It's best to allow access to these ports on the entire 17.0.0.0/8 address block
