MDM

Mobile Device Management

Complete Listing of iOS 10.3 MDM Features

taylor's picture
No votes yet

We're managing a listing of all new MDM-specific features to be included in iOS 10.3, slated for release shortly. We'll be updating the article as we learn more:

Article: Apple iOS 10.3 Brings New MDM Features

The Challenges Of A Bring Your Own Device (BYOD) Policy

taylor's picture
No votes yet

I have the pleasure of speaking with many of our customers at the outset as they plan their iOS management strategy. For customers interested in implementing a bring-your-own-device (BYOD) policy, there are serious implications worth devoting some consideration to before proceeding.

To both share this information as well as provide our customers with a resource they can refer back to, we've published a guide outlining these pros and cons. Even a quick glance will better prepare you for your deployment, and may help you avoid common technical and organizational issues.

Blog: The Challenges Of A Bring Your Own Device (BYOD) Policy

Taylor
simplemdm.com

Deano's Confused!

dean.witherden's picture
No votes yet

Hi All,

Looks like I've finally found an forum that talks about the important stuff in iOS land instead of the new Jet Black iPhone 7 and how it will get tiny scratches on it if you don't put it in a case!

I'm embarking on a journey to tidy up the use of iOS devices in our company and it's bloody confusing! MDM, Apple Configurator, VPP..... I need help!

If someone could point me in the direction of some threads that will help address the following challenges it would be much appreciated.

Company issued iOS devices and Apple Id's - our admin girls have looked after issuing these up until now and I've just ignored it but from what I've found i should be able to use VPP or Apple Configurator 2 to use a company Apple Id to keep control of the device? And I'm fairly certain I don't want to go down the path of DEP.

App deployment - We're about to subscribe to Azure AD Premium which includes M$ InTune, and while it looks great it seems to rely on having the install package for each app rather than linking with the App Store. Is it possible to get the packages? And what if the package you have isn't compatible with all used versions of iOS?

Version Locking - Is it possible to lock devices to a version of iOS to avoid compatibilty issue?

In general, I'm starting from scratch (Except for InTune) and any assistance would be appreciated!

Thank in advance.

AppleID - i`m still not get it

TrK's picture
No votes yet

Hello folks.
First of all - i`m can`t believe that every iOS user need AppleID in corporate environment. Why? I tell you.
My problem is:
I have 20-30 iPads (iOS 9 and 10) and i need support them remotely (we have branches in 20 cities).

If i just give those devices to user and he (or she) will use personal AppleID, then when user will leave company we can face a problem with Activation Lock.

If i use corporate AppleID, then i need to tell password to user, because when iOS update or just reboot, AppStore will ask for that. And we still can face the Activation Lock (in sabotage scenario from fired user) or some .. ransom-fraud?.. if stupid user let for someone to know password.

I just need sometimes push our apps (from public AppStore) to this devices and see its location.
Ok, i have one OS X and i can setup a simple MDM with Profile Manager. Is it absolutely necessary to use AppleID on those iPads?
Can you to advice me something?

IOS10 Wifi profile issues

hazy2k16's picture
No votes yet

has anyone come across wifi issues with managed devices?

Some of our users have recently updated ipads to IOS10 and from then on cant connect to wifi even though they still have the wifi profiles installed which are pushed out from MDM.

VPP redemption code migrated apps not available in getVppAsset

Mahesh's picture
No votes yet

Problem 1
Apps are migrated from VPP redemption to managed distribution.The getVPPAssetsSrv does not give the adam Id for these apps. These apps are paid apps which were originally purchased around 2012 and migrated in Jan 2016. Few other apps which were purchased around 2012 and migrated in Jan 2016 work fine.
Problem 2
Could not get app details for few apps in getVPPAssetsSrvUrl. Tried getting app details via https://vpp.itunes.apple.com/lookup
and through contentMetadataLookupUrl.
Anyone have any ideas?

Plan for Data Usage Tracking

Mahesh's picture
Your rating: None (1 vote)

What is the plan for supporting data usage fetching - device-wise or app-wise - for MDM providers? Any ideas? When can we expect this in the MDM Protocol?

Adding Existing iOS and macOS Devices to your DEP Account

taylor's picture
Your rating: None (4 votes)

We regularly receive questions from our customers asking if it's possible to add the Apple devices they already own to their DEP account. We had a chance to speak with Apple Business Services recently to understand the specific situations where this is possible and want to share it with anyone who it might be of use to:

http://simplemdm.com/2016/07/12/add-existing-apple-devices-to-your-dep-a...

Taylor
simplemdm.com

Using Mobile Safari "device identity certificates"

jpref's picture
No votes yet

We have deployed a certificate to devices that is generated on the Microsoft CA through a SCEP request. When browsing on safari on an ios device, no prompt when using MFA request through ADFS is done. Is there any way to have the browser call to the device identity certificate store where these are sitting. Thanks.

How Single App Lock and Autonomous App Mode Work

taylor's picture
No votes yet

We've received a number of questions about what Single App Lock is and what features it comes along with. We put together an informative guide to answer these questions. I appreciate your feedback on it!

http://simplemdm.com/2016/04/14/how-to-use-ios-single-app-mode/

Iphone Configuration utility for Windows?

neeraj79's picture
Your rating: None (4 votes)

I am looking to deploy wifi connection profiles to iOS 9 users in my company. It looks like there was a utility called IPHONE CONFIGURATION UTILITY available for earlier IOS versions but it's not available anymore. Can someone pls advise what tool can i use on a windows platform (preferred) to create such wireless connection profiles for mass deployment ?

Thanks in advance

New MDM Features in iOS 9.3

taylor's picture
Your rating: None (7 votes)

There's been a lot of press on the new features coming out for iOS 9.3, but most of this hasn't covered the more subtle, MDM functionality enhancements. Namely:

  • Ability to enable/disable apps from running
  • Ability to reconfigure icon layout on the Home Screen
  • Control over notification settings
  • Additional restriction options
  • Safari auto-fill domain control

We go into more depth in the following article:

http://simplemdm.com/2016/03/04/ios-9-3-to-bring-new-mdm-features/

Feel free to respond, I'll answer any questions the best that I can Laughing out loud

MDM APNS push notification problem.

Shivam's picture
No votes yet

Hi,
We are trying to enroll iPhone devices with our 3rd party server,I downloaded the APNS certificate in the PEM format form the portal and installed it in the keychain access. I selected the APNS certificate (APSP:an23.....) and the private key that is associated with the MDM vendor certificate(Am i doing any mistake here???) and exported those into .p12 file. Using this .p12 file i am sending the wakeupcall to the iOS devices by sending push notification using python-apns library. I am getting feedback that the message is been delivered but the iOS device is not hitting back to the Checkin-url with the Idle status.Help is appreciated.
Thanks,

OS X Server Profile Manager as lightweight MDM?

wchestnutt's picture
No votes yet

Hello,

I am looking into some cost effective ways of providing MDM functionality over the air (Profile push, lock, wipe etc) and wondered if OS X Server Profile manager would work as apparently it can provide some sort of OTA management? Has anyone had any hands on experience with this as an MDM software, and are there any real gotchas?

Previously I have used configurator to supervise device with base restrictions, and then used MDM software to manage fleets, so have plenty of experience with that.

The cost and support for a full MDM platform would be tough to justify at this point in time, but it would be good to get a level of management on the fleet of roughly 100 users. They are mostly office based with a handful of remote workers, which is why the OTA piece is important.

Thanks

How to silently update enterprise app on supervised devices without VPP?

ryanwaggoner's picture
No votes yet

We have a couple dozen iPads installed as kiosks at various locations, remotely managed via Meraki. We've used Apple Configuration to put the devices in supervised mode, however, we did setup a shared Apple ID that all the devices were logged into upon setup, and we also set passcodes on the device.

Our kiosk app is an enterprise app, and I'm pushing from Meraki by creating a managed app linking to our manifest.plist file.

However, as we push out updates, we're getting inconsistent behavior. What I'd like is to have the app silently update without any user intervention, which does sometimes happen. But sometimes it requires the user to accept the update. I don't believe we've been asked to re-enter the password, but I'm not sure, as I have to wait for the user reports to trickle in from the various locations.

Again, we're not using VPP, which is what all the silent update sources I can find seem to assume. Just a standard enterprise distribution app.

Would love any suggestions!

Recent Activity