An extensive review of AirWatch

Your rating: None (2 votes)

Lisa Phifer has published an extensive review on AirWatch for iOS Mobile Device Management. (It is notable that she reports the common limitations of all iOS MDM technology at this time.)

New iPhone Configuration Utility excludes original iPhone and iPod touch

Your rating: None (2 votes)

More discoveries about the updated iPhone Configuration Utility: A little box in Apple's iPCU documentation notes:


Note: Configuration profiles created with iPhone Configuration Utility 3.2 or later are for use only with devices that have iOS 4.2 or later.

Take a look at our table of iOS Devices to see the significance: the original iPhone and the original iPod touch max out at iOS 3.1.3. So the latest version of iPCU can't manage these devices.

I expect Mobile Device Management providers to follow suit and drop support for these original iOS devices in short time.


Your rating: None (2 votes)

The iPhone Configuration Utility 3.2 included support for F5 SSL VPNs. Like other SSL VPNs (Juniper or Cisco AnyConnect), an iTunes Store App is required, in this case the BIG-IP Edge Client.

The iPCU can be configured with the default settings for the BIG-IP Edge Client. In addition, VPN On-Demand can be configured to automatically connect the SSL VPN client when certain domains are requested. For more information see the developer documentation on iPCU.

Related F5 KB Articles

Apple updates the iPhone Configuration Utility

Your rating: None (2 votes)

Apple has updated the iPhone Configuration Utility (that works with iPad and iPod touch too) to version 3.2.

No word yet what's new. We'll post release notes when we find them.


Seems the VPN now includes integration for F5 SSL VPN.

And was Cisco AnyConnect there earlier?

The Weekly EiOS 12.17.10

Your rating: None (2 votes)

Apple is hiring a Verizon iPad Engineer. This has been blown out of proportion a bit. As Electronisa says, "The position doesn't indicate any hardware strategies for Apple directly, but it hints that the company is currently happy with its early Verizon iPad relationship."

News hit that Apple dropped jailbreak detection from their MDM API. Perhaps Apple decided there was no guarantee they could provide any sort of reliable detection?

Apple updated the iBooks app to 1.2, adding inline images to eBooks. This makes it appropriate for technical documentation and other manuals. Search the iBooks store for "Apple Developer Publications" for some free (and useful) examples.

Elsewhere, Tangoe SVP Julie Palen described "Today's MDM Landscape" in a 10-minute YouTube video. It's straight from the source here, no editing whatsoever. ReadWriteMobile posted a tutorial on Ad-Hoc app installs. BrightHub published an overview of the iPhone Enterprise Development program.

The Weekly EiOS 12.10.10

Your rating: None (3 votes)

Citrix surveyed its own community of iPad users, and they like their iPads, but it increased productivity for only 46%. Hmm. Maybe workers don't like being productive.

Gerry sizes up iPad Business Intelligence apps,

Both Mobile Iron and Zenprise updated their MDM solutions (see our Comparison of MDM Providers).

Juniper Networks announced their SSL-VPN iPad client, Junos Pulse for iPad. Can someone explain why they need this when the client is build into the OS, too?

According to unsubstantiated rumors, the iPad 2 is coming in February. Or maybe it's April.

Interesting Links

Also, I can across some interesting sites worth browsing.

IEAR is an active community of people working with iOS devices in education. In addition to app reviews they have a wiki and forum. This is a worthwhile visit for business-types too. (Thanks, Jim).

The iPod & iPad User Group is a related site for K12 iOS use. They've posted a thorough report from their deployment of 840 iPod touches, definitely worth checking out if you planning on doing any deployment.

Enterprise iPhone and iPad Administrator's Guide Now Shipping

Your rating: None (2 votes)

APress's Enterprise iPhone and iPad Administrator's Guide, by IT consultant Charles Edge, is now shipping. Here is an excerpt from the blurb:


The guide begins with an introduction to basic deployment concerns, then moves into actual methods and tools that you can use to streamline the deployment process. Next, an in-depth discussion of configuration and provisional profiles helps you deliver solid device setup, security, and adherence to organization policies. Finally, you’ll learn how to use existing help desk teams to provide effective user support. Also included is coverage of the latest iPhone- and iPad-specific enterprise technologies (such as push notification and calendaring tools) as well as internal iPhone and iPad applications and web-based solutions for businesses.

Mobile Device Management

Your rating: None (7 votes)

All Apple iOS MDM providers use the same method for managing iOS devices, an XML document called the configuration profile with iOS MDM management. That XML spec is defined by Apple. The iOS MDM specification is allowed by request to Apple. Because of this, all MDM providers will provide basically the same basic features. It's also important to note the (somewhat severe) limits of the configuration profile-based management:

  • Root configuration profile can be removed by the user
  • Device may be erased using iTunes
  • No OTA OS updates
  • Free and Paid apps cannot be pushed from the MDM Server (iOS 4 supports OTA in-house distribution)
  • No screen sharing to the device
  • No "Find my iPhone" functionality through MDM (For example, locate and alert sound )

So how will MDM providers differentiate themselves? That's an interesting question explored in the sections below, starting with the Comparison of MDM Providers. For example, they could differentiate client agent feature, easy enrollment, enterprise integration, rule based policy changes, app life cycle management or scalability.

Please help us complete these reviews by adding your experiences.


In order to utilize MDM capabilities built-in to iOS 4, enterprises need to create push notification certificate from Apple. (visit and sign in with a verified Apple ID. refer: for detail)

If you are only implementing SCEP and MDM configuration management, iOS Developer Enterprise Program is not required. To build company app distribution over-the-air using enterprise appstore, your organization must enroll in the iOS Developer Enterprise Program (iDEP) iOS Developer Program. See Apple IOS Enterprise Developer Program Overview for requirements. The regular iOS Developer Program is for publishing apps to the iTunes App Store.

App Reviews

Your rating: None (2 votes)

We've added a section on Business App Reviews to the site. Our first reviews is on OmniGraffle, an innovative, if expensive, demonstration of the creative power of the 'Pad. Please consider adding a review of your own favorite app for work.

The Weekly EiOS 12.3.2010

Your rating: None (2 votes)

In When the iPad Is the Only Computer Your Employees Need—or Want, Bloomberg BusinessWeek understands the tension iPad bring to business:


There is a hint of freedom in this view of the future—a secret thrill in having a way, finally, to escape the shackles of corporate technology policy. However, from a business standpoint, the presence of consumer technologies in the enterprise, and the increasing inclination of workers to "go rogue," are not unqualified pluses—by a long shot.

ZDNet writes about New York's Long Island University deployment of 6,000 iPads. The article links to a very interesting spreadsheet of iPad Pilots, and observes "Apple doesn’t give God discounts."

Also, JPMorgan is giving iPads to its investment bankers, and Old Navy begins piloting iPod Point of Sale. (We think they are piloting Global Bay, not some Apple-designed software.) AppleInsider reviews the state of POS on iOS. NetworkWorld prints a case study of how RehabCare uses its 9,000 iOS devices.

More discussion on Apple poaching RIM salespeople, including Geoff Perfect, former RIM head of strategic sales.

Jamf Software released Casper 8, which include Mobile Device Management features.

Finally, Computerworld shares a list of iPad apps for business. Sybase evangelist Ian Thain shares his thoughts on must-have features of iPad enterprise apps. (Consider submitting these to our — anemic — list of Business App Reviews!)


Your rating: None (2 votes)


SonicWALL is a manufacturer of firewalls, VPN concentrators, SSLVPN devices, and the like. The following was created on my NSA 3500 running SonicOS Enhanced

The built-in SonicWALL GroupVPN policy may be set up to allow connections from iOS devices. Unlike Cisco VPN and Juniper VPN devices, however, these cannot be configured to use certificate authentication, and cannot be configured for on-demand VPN access. However, for customers with existing SonicWALL infrastructure, this can be useful information.

To configure, we need to do the following steps:

  1. Set up the L2TP server
  2. Create a group with VPN access
  3. Assign users to this group
  4. Modify the built-in GroupVPN policy for iOS

Comparison of MDM Providers

Your rating: None (125 votes)

Note (2017): This table is now quite a bit out of date. I'm leaving it here for posterity. — Aaron

More Resources: See also our pages on Sandbox Environments and Mobile Application Management for alternatives and complements to MDM. you may also find our page on Apple Configurator vs. MDM helpful.

Legend: Yes (has this feature) / No (does not have this feature) / Coming Soon

TUAW interviews SAP CIO on iPads in Enterprise

Your rating: None (2 votes)

TUAW has a long interview with SAP CIO Oliver Bussmann on iPads in enterprise. SAP now has over 2,000 iPads in use by their employees.

Updated Apple Enterprise Resources on Developer Site

Your rating: None (2 votes)

Apple has a number of updated guides for business deployment in their development reference library. No developer account is necessary to view these.

Welcome to Enterprise iOS!

Your rating: None (3 votes)

I was going to use the tag line "Help for oxymorons," but I was afraid you'd find that insulting.

But an apparent contradiction it is: commodity devices from a consumer company penetrating a huge number of the world's largest businesses.

And right at the intersection of IT standards and user expectations is...a tremendous abyss.

As IT professionals, we can't manage these devices the old way. How would you deploy 50, 500 or 1,000 iPads? How do you update intranet apps to run on the new devices? VPN? Certificates? Policies?

Welcome to the neighborhood. Enterprise iOS is a community of IT Pros working to integrate the iPhone, iPad and iPod touch. We've set up a blog (for news), forums (Q&A), and a wiki (for resources and best practices). We're going to keep the marketing to a minimum and focus on the technical. We're not going to have ads.

I encourage your contributions: posts, corrections, questions, answers. Welcome!

Recent Activity