I have few questions regarding Apple Configurator 2.0.
Can we pre-enroll devices to the MDM like AirWatch and MobileIron with a staging users and then use of a 'sign in' method where the end user will take ownership of the device and get their personalized content?
Configurator 2 allows you to save all of your Configuration Profiles in iCloud Drive for easy synchronization between multiple Configurator stations. Does this mean we have to use same apple id if we are using multiple stations to configure the devices?
We all need to begin getting familiar with the upcoming release of iOS 9, which we expect to arrive in late September. I just found this great place to begin — David Pogue on Yahoo Tech gives us a Deep Plunge of the "57 Coolest Features" in the new OS.
The new iOS version looks and feels just the same as before, and everything’s in the same places; nothing new will confuse you. But don’t let appearances fool you; Apple’s software plastic surgeons have made hundreds of little tweaks that are intended to make its mobile devices faster, smarter, and more stable.
Do you have an iOS 9 beta on any of your devices? How is it holding up for you so far?
iOS 8 was released this morning with a new music streaming service. Our database of iOS Devices has already updated itself with direct download links. The release notes are below!
This update introduces Apple Music—a revolutionary music service, 24/7 global radio, and a way for fans to connect with their favorite artists—all included in the redesigned Music app. iOS 8.4 also includes improvements for iBooks and bug fixes.
- Become an Apple Music member to play from millions of songs in the Apple Music catalog, or keep them offline for playback later
- For You: Members can see playlist and album recommendations, handpicked by music experts
- New: Members can find the latest, greatest new music available—direct from our editors
- Radio: Tune in to music, interviews, and exclusive radio shows on Beats 1, play radio stations created by our editors or create your own from any artist or song
- Connect: See shared thoughts, photos, music, and videos from artists you follow, then join the conversation
- My Music: Play from all of your iTunes purchases, songs from Apple Music, and playlists in one place
- Completely redesigned music player that includes new features such as Recently Added, MiniPlayer, Up Next, and more
- iTunes Store: Still the best place to buy your favorite music—one song or album at a time
- Availability and features may vary by country
iBooks improvements and fixes
- Browse, listen and download audiobooks from inside iBooks
- Enjoy the all-new Now Playing feature, designed specifically for audiobooks
- Books that are Made for iBooks now work on iPhone in addition to iPad
- Find and pre-order books in a series right from your library
- Improves accessibility of widgets, glossary and navigation in books made with iBooks Author
- New default Chinese font
- New setting to turn off Auto-Night theme in your library
- Resolves an issue that may have prevented Hide Purchases from working
- Resolves an issue that may have prevented downloading books from iCloud
Other improvements and bug fixes
- Fixes an issue where receiving a specific series of Unicode characters causes device to reboot
- Fixes an issue that prevented GPS accessories from providing location data
- Fixes an issue where deleted Apple Watch apps could re-install
For information on the security content of this update, please visit this website:
I hope someone can help.
I am trying to deploy and manage iPhones. I've tested out using:
1) Firstly Apple Configurator. At this stage, I found it still asks for an iTunes sign in. Is there a way for silently building in this signin?
2) Meraki Systems Manager - this stage works fairly well. But when apps are pushed to the handsets, the handset again asks for iTunes username & password. Is it possible to ensure the handset does not ask for this?
Apple has posted all the WWDC session videos online, and there a lot in there. The Tuesday morning session on "What's New in Managing Apple Devices" contains especially important new announcements for the community of iOS administrators. There's a lot of great changes coming to iOS 9 and OS X "El Capitan."
In the spirit of the new, more open, WWDC Non-NDA, I'm linking to the full video and offering a short summary of the topics covered. It's really good to keep in mind that beta software is not production software, and may change before release.
In my opinion there were three big announcements. They are....drumroll:
- Devices can receive apps WITHOUT an Apple ID
- Apple is making supervision MUCH more important. Supervise your devices NOW.
- A whole new Configurator 2
If your job depends on managing Apple devices, I encourage you to watch the entire hour session.
Presenter: Todd Fernandez, Senior Manager, Device Management
Apple's Device Enrollment Program: A request to pronounce it by its letters "D.E.P." and not as a word "dep." DEP is now available in 26 countries
Enrollment optimization: New key in MDM to wait until device is fully configured. MDM commands now wait until..Apple ID, etc.
Automated Enrollment: enroll in MDM without screen taps. How does it work?
- Set up DEP
- Connect to Apple Configurator
- Configurator completes setup
- Focus on VPP Managed Distribution. 3 big changes
- VPP now in 26 countries
- Multinational app assignment: Purchase VPP apps in any country, distribute to any country where app is sold
Assign VPP distribution apps to devices (#1 Big announcement of the day)
- No invitation process
- No Apple ID required on device
- Does not appear in users purchase history
- Installation and updates controlled by MDM server
- Need to buy app for each device
- Can be revoked and re-assiigned
- "Smooth migration" from user assignment: app and data stays in place
NOTE: Requires Opt In from App developer on iTunes Connect. Best for apps to store app data in cloud.
Now also caches iCloud data, documents, CloudKit data, Photo Library, on-demand app resources
- Can convert apps from unmanaged to managed without losing user data
- Can install via MDM or Configurator while app store is disabled. (This is a biggie!)
New explicit user trust flow for apps, prevent user from trusting apps, Apps installed via MDM do not require explicit trust (finally)
New MDM Commands
- Available software updates
- Update to latest iOS (DEP supervised devices only)
- Network usage rules
- Restrict:Screen recording, trust new enterprise app authors, treat airdrop as unmanaged, automatic app downloads, iCloud photo library, keyboad shortcuts, modify device name, passcode, wallpaper, news, pair with Apple Watch
Deprecating MANY profile restrictions: these will require supervision in the future. (#2 Big announcement of the day)
- Restrict App Installation
- Restrict App Removal
- Restrict FaceTime
- Restrict Safari
- Restrict iTunes
- Restrict Explicit Content
- Restrict iCloud documents and data
- Restrict Multiplayer Gaming
- Restrict Add GameCenter Friends
Configurator 2 (#3 Big announcement of the day)
- “We’ve received a lot of feedback"
- Completed reinvented. "Apple Configurator 2” — New blue logo
- Devices front and center
- discrete tasks
- easy automation
- multiple stations
- companion to DEP and MDM
- Command line tool, scripting library, automator.
More information about automating workflows with Configurator is available in Session 306.
There wasn't a too much enterprise meat at yesterday's WWDC keynote buffet, but the feast isn't over yet! A session focused on enterprise and education is going to give us a lot more to chew on. The session begins at 11:00 San Francisco time, and if we are lucky it may be live-streamed for Apple Developer Program members.
What's New in Managing Apple Devices
Learn about the latest developments in managing Apple devices in large organizations. Learn the latest techniques to wirelessly configure settings, monitor compliance with policies, install apps and bulk configure devices with ease.
On the enterprise developer page, Apple is teasing a guide to "What's New — Coming Soon." By "Soon" I assume they mean "this afternoon." At the same time, as last year, Apple may be updating their prerelease reference guide for configuration profIles. It isn't updates yet, but when they do I'll post a summary here.
Apple today announced the next version of iOS — iOS 9 — at it's annual Worldwide Developers Conference. There's a lot of info posted on the usual news sites covering the marquee features. But there's also some great info available to the public, if you can find it. Never fear; I've found it for you.
(There's much more available if you are a member of the relaunched Apple Developer Program. Those are still under NDA so we won't be discussing them here.)
- Prerelease documentation
- iOS 9 Release Notes
- Apple Configuration 2.0 beta
- New Enterprise Development Page
The public release notes contain a line I found to be quite interesting:
The AvailableOSUpdates MDM command fails on unsupervised devices as an unknown command. The command succeeds only on supervised DEP-enrolled devices.
Does that mean MDM will be able to manage iOS updates with iOS 9? One can hope.
Of course if you are in San Francisco for WWDC, join us at our annual WWDC meetup Wednesday night!
Apple's annual Worldwide Developer Conference — WWDC — kicks off Monday morning. For the past, oh, eight or so years, Apple's used the Monday morning conference keynote to showcase a major new revision to its Mac and iOS operating systems. Last year Tim Cook dedicated a good portion of the presentation to the enterprise. Will he do the same this year? (Five bucks says someone from IBM comes on stage.)
If you are lucky enough to be one of the 5,000 winners of the lottery to choose attendees, well get in line early! But if you are going to stay at work on Monday, you can watch the live stream in (buffered) real time. There are two easy ways to do that:
- Visit http://www.apple.com/live from Safari on a Mac or iOS device
- Check out the "Apple Events" channel on an Apple TV
If you don't have a spare Apple device at hand, well, you are probably reading the wrong site. But giving you the benefit of the doubt, tech news sites such as 9to5mac.com and ArsTechnica have a high quality transcript with commentary and plenty of photos.
And as we do most every year, we're hosting an Enterprise iOS meetup. Come and dissect the announcements with us on Wednesday night, while enjoying great food and drink courtesy of GroundControl and Tech Data.
See you there!
Ever since Apple announced the iOS Beta Program, corporate iOS administrators have been fretting how to keep beta software out of their environments. While it is critical to test pre-release software for compatibility with enterprise apps and processes, most of us want that to be done in a way that is as controlled as possible. We don't want users upgrading corporate-liable devices to pre-release and possibly unstable software.
So is it possible to prevent this? Yes, but only on supervised devices. With supervision, you are able to push out the restriction preventing the manual installation of configuration profiles. (Supervise with DEP, Configurator, or GroundControl.)
If your devices aren't supervised, well good luck. The best you can do is a compliance policy in your MDM to quarantine devices with unapproved iOS versions.
We have a couple of apps functioning as lightweight clients to selected tasks in our Enterprise system, and to ease the deployment we are adding the option of pushing certain configurations using the technique Apple defined in iOS7.
But now I'd like to test this in the real world and thought I could find a MDM system that has a trial version were I could try this out on. But so far I haven't found many MDM's that actually say that they support this feature?
What are Your experiences?
Which MDM systems lets us manage App configurations?
(I'd to tell our customers which systems works and which don't)
And are there any that has a free tier/trial version?
Headed to Chicago next week for the HIMSS Healthcare IT Conference? I'll be there too — as GroundControl — sharing a booth with our generous friends from Bretford in booth 6427. (Bretford makes some of the most dependable USB hubs and cabinets on the planet.)
Come by Monday to say hi and see a demo of GroundControl. Or catch me one of the days after the show and I'll buy you a drink. You can use reach me using this form.
So far, Apple's hasn't updated the Configuration Profile Reference for iOS 8.3. But we did a diff on Configurator-generated restrictions, and here is what we found:
'New to iOS 8.3
- allowFingerprintModification (Supervised only)
Removed from iOS 8.3
If we figure out more we'll let you know.
- Comparison of MDM Providers (773,833)
- Complete List of iOS User-Agent Strings (394,008)
- How to get remote viewing/control of the IPAD screen via internet or preferably 3G? (253,723)
- Apple Configurator vs. MDM (156,980)
- iOS Devices (134,810)
- Mobile Device Management (100,004)
- Apple Profile Manager (97,772)
- Batch Apple ID Creator (90,584)
- Gartner Magic Quadrant for MDM (2014, 2012, 2011) (87,939)
- SimpleMDM (84,529)
Mobile Management Provider changed by 7PMDM 2 days ago
Mobile Management Provider changed by taylor 1 week ago
Story added by Aaron Freimark 1 week ago
Mobile Management Provider changed by taylor 1 week ago
Mobile Management Provider changed by MDMforALL 1 week ago
Story added by Aaron Freimark 2 weeks ago
Story added by Aaron Freimark 3 weeks ago
Story added by brendan 3 weeks ago
Story added by Aaron Freimark 4 weeks ago
Story added by Aaron Freimark 4 weeks ago
Wiki Page changed by Aaron Freimark 4 weeks ago
Forum topic added by taylor 5 weeks ago
Forum topic added by Mahesh 6 weeks ago
Story comment by taylor 7 weeks ago
Wiki Page changed by Aaron Freimark 7 weeks ago
Story added by Aaron Freimark 7 weeks ago
Mobile Management Provider changed by Aaron Freimark 7 weeks ago
Forum topic comment by Elizabeth Hale 23 weeks ago
Mobile Management Provider changed by Simo Kari 24 weeks ago
Forum topic comment by jpref 24 weeks ago