Windows Device Communication with MDM: Push (WNS) and Poll Notifications

Learn how to configure push (WNS) and poll notifications for Windows devices to communicate with MDM. In Windows device management, communication between managed devices and the Mobile Device Management (MDM) server happens through two notification mechanisms: push notifications and poll notifications. Configuring notification is essential for delivering commands, enforcing compliance, and keeping devices up to date.

WNS credentials for push notifications

Push notifications are real-time alerts sent from the MDM server to a device using the Windows Notification Service (WNS). They instantly inform the device to take action—such as install an app, apply a policy, or perform a remote wipe.

In BigFix MCM, Windows MDM service must be authenticated with Windows Notification Service (WNS) credentials. Once authenticated, the Windows MDM service receives a token that it can use to initiate communication with the Windows MDM devices.

To learn more about WNS, see https://docs.microsoft.com/en-us/windows/client-management/mdm/push-notification-windows-mdm

To authenticate BigFix MDM server with Microsoft WNS server, organizations must provide client_id, client secret, and PFN string in JSON format as follows:

{

"client_id": "ms-app://<Package SID>",
"client_secret":"<Application Secrets>",
"PFN":"<PFN>"
}

For detailed steps for creating WNS credentials, see Generating WNS credentials. The WNS credentials can then be uploaded to the BigFix MDM server via the WebUI. See Install BigFix MDM Service for Windows.

The WNS credentials can then be uploaded to the BigFix MDM server via the WebUI. See Install BigFix MDM Service for Windows.

Poll notifications

Poll notifications are periodic check-ins initiated by the device itself. Even if push fails (for example, due to network issues or device being offline), polling ensures that pending actions are eventually retrieved and executed.

Configure Windows MDM Notification Type to Use Polling