![]() Select the organization group your where your end users authenticate. If you set Authentication to On, then configure:ĭetermines the ownership type of the device upon enrollment, which can be either Corporate-Dedicated or Employee-Owned. If you turn off Authentication, you can enable staging of all devices under a single user account, and extra configuration options appear on the Settings page to accommodate this option. If you turn on Authentication, each user must tie a DEP device to their own user account. If devices running iOS 7.0 and earlier are assigned an authentication profile, the devices are automatically enrolled using staging authentication. ![]() Authentication settings are only available for devices running iOS 7.1 or later. For more information, seeĬonfigure the Authentication settings, based on whether you turn authentication On or Off. You can set the console notifications for DEP token expiry. Note: DEP tokens expire each year and must be renewed annually. Only add multiple tokens if your organization has a complex configuration, or if you are enrolling devices with multiple DEP accounts. Now Workspace ONE UEM and Apple can authenticate each other.įor clarity, use only one token at the customer organization group. Select Upload and select Apple Server Token File (.p7m). In the Workspace ONE UEM console, navigate to Groups & Settings > All Settings > Devices & Users > Apple > Device Enrollment Program. If needed, you can create more profiles later. To provide a customized experience to users enrolling into Workspace ONE UEM with devices added to Apple Business Manager, see Custom Enrollment in DEP.Ĭreate a DEP enrollment profile or edit an existing profile. An enrollment profile is a collection of DEP settings assigned to your registered devices. If the correct DEP profile is not assigned to the device prior to Wi-Fi configuration, a factory wipe is required (using iTunes or directly on the device).Īfter you register devices with the Apple Business Manager portal, use the DEP Enrollment Program wizard to create a DEP enrollment profile in Workspace ONE Express or Workspace ONE UEM powered by AirWatch. Devices only reach out to Apple's server once after configuring Wi-Fi to receive the DEP profile. You must assign this DEP profile before configuring the device's Setup Assistant that appears after you switch on the device for the first time. Create or Edit the DEP Enrollment ProfileĪfter assigning devices to the Apple Business Manager portal, use the Device Enrollment Program wizard in the Workspace ONE UEM console to create an initial DEP profile to configure authentication, MDM features, and the Setup Assistant to push down to devices. What next : Configure your devices and the UEM console to create an initial profile. In MDM Server Settings, upload the public key by browsing from your local repository.Navigate to Settings > Device Management Settings > Add a MDM Server.The Device Enrollment Program portal screen appears. Confirm your identity by entering the verification code.Sign in with your organization's Apple credentials.Log into Apple Business Manager portal.Using the public key you have downloaded, you must next enable and configure the Apple Business Manager Portal so that you can manage your DEP-enrolled devices in the Workspace ONE UEM does not encourage using Internet Explorer to complete this process. To configure the Apple Business Manager Portal, begin integrating with the Apple DEP program by creating a virtual MDM server for devices that links to your own MDM servers, so you can manage devices directly in the UEM console. You must download the Publick Key to integrate with Apple Business Manager. Then move to the Apple Business Manager portal to create a virtual MDM server container for your organization's devices. Start in the UEM console to begin integrating your Workspace ONE UEM deployment with Apple Business Manager. Configure the Apple Business Manager Portal You cannot save your activity until you complete the final configuration step, so it is important to finish the entire configuration in one browser session. Also, once you begin configuring the Apple Business Manager wizard in the UEM console, keep the browser session open. During the integration, Workspace ONE UEM suggests you not use Internet Explorer as your browser. Your organization must already be registered with Apple Business Manager Deployment Programs. ![]() Integrating with Apple's Device Enrollment Program (DEP) requires completing tasks in both the UEM console and in Apple Business Manager portal.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |