If you chose to enroll with User Affinity and Authenticate with Company Portal, the Install Company Portal with VPP option appears. Setup Assistant: Select this option to use Apple's provided basic HTTP authentication through Apple Setup Assistant.If you want the Company Portal application to update automatically on end users' devices, separately deploy the Company Portal as a required app to these users through Apple's Volume Purchasing Program (VPP). Company Portal: Select this option to use Multi-Factor Authentication, allow users to change passwords upon first sign-in, or prompt users to reset their expired passwords during enrollment.Decide if you want to Authenticate with Company Portal or Apple Setup Assistant. If you chose to enroll with User Affinity, the Select where users must authenticate option appears. If your users don't need the Company Portal or you want to provision the device for many users, choose Enroll without User Affinity. If your users will want to use the Company Portal for services like installing apps, choose Enroll with User Affinity. User Affinity is designed for devices that will be used by particular users. On the Management Settings page, decide if you want your devices to enroll with or without User Affinity. On the Basics page, enter TestProfile for Name and Testing ADE for iOS/iPadOS devices for Description. Select your token in the admin center, and then choose Profiles > Create profile > iOS/iPadOS. A device enrollment profile defines the settings applied to a group of devices during enrollment. Step 4: Create an Apple enrollment profileĬreate an enrollment profile for corporate-owned iOS/iPadOS devices. To start the sync yourself, select your token from the list in the admin center, and then choose Devices > Sync. You can wait for these devices to sync, or manually start the sync. Devices can take up to 12 hours to appear in the admin center. Microsoft Intune automatically syncs with Apple Business Manager. On Review + create, select Create to finish linking Microsoft Intune and Apple Business Manager.For more information about scope tags, see Use role-based access control (RBAC) and scope tags for distributed IT. Optionally, apply scope tags to the enrollment token to limit other admins from accessing or making changes to it.Under Apple token, upload the server token you saved earlier.In Apple ID, enter the Apple ID you used to create the token.After you upload the token, Microsoft Intune can sync and enroll iOS/iPadOS devices assigned to TestMDMServer. Return to the Microsoft Intune admin center to upload the MDM server token to Intune. When you're done assigning devices, continue to Step 3: Upload MDM server token. For details and instructions, see Assign, reassign, or unassign devices in Apple Business Manager(opens Apple Business Manager User Guide). While you're in Apple Business Manager, assign devices to your new MDM server ( TestMDMServer or whatever you named it). Save the server token locally as a P7M file (.p7m). For details and instructions, see Link to a third-party MDM server(opens Apple Business Manager User Guide). You'll return to it later.Īdd an MDM server called TestMDMServer and download the server token for it in Apple Business Manager. While you're in Apple Business Manager, don't close the browser tab with Microsoft Intune. Select Create a token via Apple Business Manager and sign in to Apple Business Manager with your company Apple ID. Select Download your public key to download the server's public key certificate (a. Select I agree to grant permission to Microsoft to send user and device information to Apple. Go to Devices > iOS/iPadOS > iOS/iPadOS enrollment. Sign in to the Microsoft Intune admin center. The token you download in this step will enable the connection between Microsoft Intune and Apple Business Manager in a later step. Step 1: Add MDM serverĬreate an MDM server profile for Microsoft Intune in Apple Business Manager. If you don't have an Intune subscription, sign up for a free trial account.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |