The App Store is tonight listing an update to Apple Configurator, everyone's favorite iOS deployment tool. Today's update, 1.4.2, "improves configuration and MDM enrollment of Apple TV." The update to the free app is in the Mac App Store.
What? You didn't know that you can manage Apple TVs? Those little devices run iOS just like your trusted iPhones and iPads. And they accept many of the same configuration profile keys as their big brothers do.
To manage an Apple TV, you will need a micro USB cable. (Maybe you have one to charge that Android phone you never use.)
Launch Apple Configurator, then connect your Apple TV via USB. If you have a 2nd Generation Apple TV, USB is the only cable you need. If you have a 3rd Generation Apple TV (the one that does 1080p) you will need the power cable as well. Configurator will launch the "Apple TV Assistant."
(Now that said, I tried it and Configurator didn't see my Apple TV. Maybe it will work tomorrow?)
Are there any public MDM solutions (MDM providers that will provision profiles on an app store purchased app)? Once a user downloads, installs the app, and okays the provisioning, I need a service provider that will allow the .mobilconfig file to be created by user inputs and then returned from MDM for user to then install/download. I have looked into OSX profile manager but Im not sure how many devices / profiles it can support before crashing, and I dont like the ide of leaving the app in order to enroll via a url / browser.
Any direction and help is always appreciated.
Quote from Apple KB article found here:
Users with supervised iOS 6 devices
For devices that have not yet been updated to iOS 7, upgrade from iOS 6 to iOS 7.0.3 over the air. The devices will remain supervised.
Users with unsupervised iOS 7 devices
For devices that have already been upgraded to iOS 7 and lost supervision, AppleCare will create a profile to re-supervise your devices. This profile will require the serial numbers of the affected devices and verification of ownership. To verify that a device is supervised, see this article.
Collect the serial numbers of affected devices. To export the serial numbers of devices supervised by an Apple Configurator station:Optionally, if you want devices to be able to connect to a specific Apple Configurator station, export a Supervision Certificate. To export a certificate in Apple Configurator version 1.4.1 or later, hold down the Option key and choose File > Export > Supervision Certificate.
Go to the Supervise tab.
In the Supervised Devices list, select either All Devices or a Device Group which contains all the devices that have lost supervision. You can include a device even if you are not sure if it has lost supervision.
Choose Devices > Export Info....
Select Device Information and check the box for Serial Number.
Click Export and save the file.
Contact AppleCare and ask to speak to an Enterprise Support Advisor for instructions to submit your serial numbers and any necessary Supervision Certificates. AppleCare will require proof of purchase information if the devices were not purchased directly from Apple.
AppleCare will validate your proof of purchase information and create a customized Re-supervision Profile for your organization.
Update your devices to iOS 7.0.3.
When you receive the Re-supervision Profile, install it on your devices using the enclosed instructions.
After the necessary profiles are installed on your iOS devices, they will again be supervised.
Supervision Certificate A certificate that identifies your Apple Configurator station to an iOS device.
Supervision Profile A profile created by Apple Configurator used to supervise iOS 6 devices.
Re-supervision Profile A custom, Apple-signed profile used to re-supervise specific devices that lost supervision upon upgrading to iOS 7."
Today is a day that has been a long time coming! I will be testing and waiting a few days before I fully deploy!
So many updates, so little time!
Apple has updated its iOS mass-configuration tool Apple Configurator to version 1.4.1. The release notes:
What's New in Version 1.4.1
Apple Configurator 1.4.1 contains improvements and bug fixes including:
- Configure which Setup Assistant steps will display during device setup
To get an idea of what that means, take a look at the "Setup" tab in the "Prepare" tab:
When you turn on a new iPhone or iPad for the first time, it runs through a series of (many) setup screens to configure initial options. But using Configurator and/or MDM, you've always been able to configure many of these options yourself. So those setup screens are often redundant. Well, in Configurator 1.4.1, they are redundant no more.
I'm looking forward to the unspecified "bug fixes". Personally, I had Configurator 1.4 whipped into submission for my needs. But there is always room for improvement.
One of the canonical documents for iOS management is Apple's Configuration Profile Key Reference, available to all on Apple's developer site. In honor of OS X Mavericks and iOS 7.0.3 today, Apple has updated the document. The notable change? "Added information about the keychain syncing restriction."
Along with all the products today, Apple has released iOS 7.0.3 for all iOS 7-capable devices. (For download links, see our database of iOS Devices.) From the release notes:
This update contains improvements and bug fixes, including:
- Adds iCloud Keychain to keep track of your account names, passwords, and credit card numbers across all your approved devices
- Adds Password Generator so Safari can suggest unique, hard-to-guess passwords for your online accounts
- Updates lock screen to delay display of "slide to unlock" when Touch ID is in use
- Adds back the ability to search the web and Wikipedia from Spotlight search
- Fixes an issue where iMessage failed to send for some users
- Fixes a bug that could prevent iMessage from activating
- Improves system stability when using iWork apps
- Fixes an accelerometer calibration issue
- Addresses an issue that could cause Siri and VoiceOver to use a lower quality voice
- Fixes a bug that could allow someone to bypass the Lock screen passcode
- Enhances the Reduce Motion setting to minimize both motion and animation
- Fixes an issue that could cause VoiceOver input to be too sensitive
- Updates the Bold Text setting to also change dial pad text
- Fixes an issue that could cause supervised devices to become un-supervised when updating software
For information on the security content of this update, please visit this website:
That last one about supervision could be very interesting. We've heard of several organizations bitten by that when they first upgraded.
Please post your iOS 7.0.3 experiences here.
Apple announced plenty of product updates today — you can watch the presentation online if you want, or see the tech specs for both the iPad Air and the iPad mini. (Note for those with OCD: "Air" is capitalized, "mini" is not.)
Apple has a clear but lengthy comparison of models online. Here's our summary:
|Spec||iPad Air||iPad mini retina display||iPad 2||iPad mini|
|CPU||A7+M7 motion||A7+M7 motion||A5||A5|
|Weight||1.0 lb||0.73 lb||1.33 lbs||0.69 lb|
|Dimentions||6.6 x 9.4 x 0.29 in||5.3 x 7.87 x 0.29 in||7.31 x 9.5 x 0.34 in||5.3 x 7.87 x 0.29 in|
|Display||9.7 in||7.9 in||9.7 in||7.9 in|
|Resolution||2048 x 1536 px||2048 x 1536 px||1024 x 768 px||1024 x 768 px|
|Battery||10 hours||10 hours||10 hours||10 hours|
|WiFi||802.11a/b/g/n + MIMO||802.11a/b/g/n + MIMO||802.11a/b/g/n||802.11a/b/g/n|
|GPS||Cellular model only||Cellular model only||Cellular model only||Cellular model only|
|Colors||Space Gray, Silver||Space Gray, Silver||Black, White||Black, White|
|Availability||November 1||Later in November||Now||Now|
|Models||16 GB WiFi: $499||16 GB WiFi: $399||16 GB WiFi: $399||16 GB WiFi: $299|
|32 GB WiFi: $599||32 GB WiFi: $499||16 GB WiFi+3G: $529||16 GB WiFi+3G: $429|
|64 GB WiFi: $699||64 GB WiFi: $599|
|128 GB WiFi: $799||128 GB WiFi: $699|
|16 GB WiFi+Cellular: $629||16 GB WiFi+Cellular: $529|
|32 GB WiFi+Cellular: $729||32 GB WiFi+Cellular: $629|
|64 GB WiFi+Cellular: $829||64 GB WiFi+Cellular: $729|
|128 GB WiFi+Cellular: $929||128 GB WiFi+Cellular: $829|
Note none of the iPads have Touch ID, the fingerprint reader. And none are available in gold. Get an iPhone.
It is Apple Announcement Day! It has been almost exactly 1 year since the iPad 4 and iPad mini. Time for a refresh? Thinner, lighter, faster, longer battery life, more pixely, more biometric... We will find out at 10 PT/1 ET. Apple is broadcasting this announcement live via Apple TV, and perhaps via web stream too. If you don't have the attention span for video I recommended live blogs at [arstechnica.com Ars Technica] or [engadget.com Engadget].
It won't all be iPads, since we expect the release of OS X Mavericks too. But even that give us a perk: iCloud Keychain syncing, saving and syncing passwords and credit cards to all your devices. Depending on your point of view, iCloud Keychain will be an convenient enabler of complex, unique passwords, or it will be a security nightmare. Let's see.
I'll try to tweet the highlights at @EnterpriseiOS — follow along for the fun.
Just to 100% confirm this before I inform my users. Can you confirm for me that there is currently no way to prevent users manually removing configuration profiles that have not been deployed by Apple Configurator?
One person I spoke to claimed he had managed to stop MDM profiles being removed by using a certificate, but I can't find any reference to this anywhere else.
My apologies for the noob question. I am tasked with detection, enforcement, and validation that deployed devices only have approved applications installed. The MDM were using is MobileIron, which from my limited involvement seems fine to detected after an app is installed. I was looking for a solution similar to OTG that locksdown the device to only permit installs from an internal appstore that has approved applications.
Is there a solution that appstore requests only go to our internal appstore, not the official Apple appstore?
Any thoughts suggestions are welcome.
I'm pretty new to deployment, and the area I'm struggling with right now is supervised mode with apple configurator. All of the devices I'm working with right now are on iOS7, and will be enrolled in airwatch. There are a list of features in airwatch that are attractive, but require the device be in supervised mode.
I'm basically wondering what are the cons to supervised mode?
With iWork apps (Pages, Numbers, Keynote, iMove etc.) now free for new devices I was wondering how I can install the apps via Apple Configurator without paying for them.
I have 15 brand new iPads, but when I login to the VPP store I am still asked to pay for the apps.
Thank you for being so helpful in my last post.
I deployed about 30 devices using Apple Configurator to set the original image and restrictions, and then Meraki for MDM. Everything seems to be going great except that the automatic Web Content Filter is far more invasive than we realized. We'd like to roll the Web Content Filtering back, and allow access to all websites. Unfortunately Configurator is installed on a desktop in one city, and our users are in multiple different cities. Anyone have ideas of how we can remove the website restriction without messing with people's new settings or causing them undue annoyance? Basically, can we remotely remove the Web Content Filtering?
About This Site
- Comparison of MDM Providers (454,617)
- Complete List of iOS User-Agent Strings (163,775)
- How to get remote viewing/control of the IPAD screen via internet or preferably 3G? (93,232)
- Apple Configurator vs. MDM (88,459)
- Mobile Device Management (60,310)
- AirWatch (49,764)
- Absolute Manage (49,100)
- Apple Profile Manager (44,582)
- Gartner Magic Quadrant for MDM (2012, 2011) (38,867)
- iOS Device Management Open Source Way (36,046)
Comparison of MDM Providers
Mobile Management Provider changed by bugfrisch 3 weeks ago
Forum topic comment by tboyko 3 weeks ago
Forum topic comment by JMPATLANTA 3 weeks ago
Wiki Page added by Aaron Freimark 3 weeks ago
Forum topic comment by bprenger 3 weeks ago
Story comment by T. Reid Lewis 3 weeks ago
Story added by Aaron Freimark 3 weeks ago
Forum topic added by wchestnutt 4 weeks ago
Forum topic comment by codeproof 4 weeks ago
Forum topic comment by codeproof 4 weeks ago
Forum topic comment by Johan Gunverth 4 weeks ago
Forum topic comment by Johan Gunverth 4 weeks ago
Story comment by Joshua Elvey 4 weeks ago
Forum topic comment by ericbenfer 4 weeks ago
Ipads configured with apple configurator will not allow longer than 2 minutes before locking, despite settings in configurator.Forum topic added by ipadlaw 4 weeks ago
Forum topic comment by natevandam 4 weeks ago
Forum topic comment by jb 4 weeks ago
Wiki Page comment by msjustu90 4 weeks ago
Forum topic comment by Clark Kent 1974 4 weeks ago
Mobile Management Provider comment by Robyn 5 weeks ago