Anyone know what the DeclarationType string values are for the Asset declarations?
UserIdentity asset defines the type as com.apple.asset.useridentity.
There is no such value for UserNameAndPasswordCredentials.
Has anyone been able to install this type of declaration?
Explore the intersection of business and app development. Discuss topics like device management, education, and resources for aspiring app developers.
Post
Replies
Boosts
Views
Activity
Hi Team, The User Enrollment introduced by Apple back was really great I was trying to test out that .As per the implementation details provided by apple for Simple Authentication - User Enrollment Flow.
Below are the steps I followed to implement it.
Step 1) Making a /.well-known/com.apple.remotemanagement url and sending a json as for byod which apple has detected successfully.
Step 2) Apple making a POST request to BaseServer URL of MDM to get enrollment profile ( At this Step as there is not Authorization header I sent a 401 with WWW-Authenticate header with scheme and url as mentioned by apple)
Step 3) Apple has requested With GET to get the html page to show to the user from the url mentioned in WWW-Authenticate header.
Step 4) Here there is a tweak the HTML page I actually shown doesn't contains any form as it is for testing purposes. I Simply had a button which upon clicking sends a POST to my url with empty JSON using axios library where from the server I sent a 308 redirect with Location header as mentioned by apple apple-remotemanagement-user-login://authentication-results?access-token=dXNlci1pZGVudGl0eQ
Where after I expect the ASWebAuthenticationSession to end and apple to start Second Enrollment attempt with acces token as Authorization Bearer token But the Screen showing the HTML page doesn't go away and neither apple started any steps to get the Enrollment profile from MDM server . Am I commiting any mistakes here.Could you please help on going with it.
I am experiencing issues when pushing the "WiFi Lock" profile via MDM or the "Join only Wi-Fi networks installed by a Wi-Fi payload'" Restriction via Apple configurator 2.
I am pushing a WiFi Authentication profile along side it which means that the wifi lock profile is suppose to force the device to only be able to connect to the wifi authentication profile that was pushed to the device via MDM.
However, what end up happening, the device "forgets" or does not recognize the pushed wifi auth profile that it has after device reboot. It ends up not showing any available wifi networks and wont allow the device to connect to wifi.
The only way i can fix it, is if i push the wifi authentication profile to the device again via cellular. It then remembers it and will connect. But as soon as the device reboots and sometimes it does not even need to reboot it will forget it.
What could be going on with this?
Здравствуйте коллеги! Кто-нибудь знает как подписать соглашение Paid Applications Agreement если его нет в App Store Connect? Спасибо.
IMAP is again broken... this has happened with many prior iOS betas
We are facing issue SSO from some days its was working fine few days before.
In apple devices, we are facing issue that once user enters the username and password, it is asking again when user logs in.
All things were fine no changes in system only thing, this issue started happening for may be iOS 16 updated.
We have implemented SSO using Microsoft AD.
Things working for all other OS (Windows, Android) except iOS.
We are creating our own server for MDM, we followed apple suggested approach with following link [https://it-training.apple.com/tutorials/deployment/dm055] After uploading .pem file in ABM portal, new server token is generating but my question is where we need keep that server token(.P7M) in our servers...is there any specific path we have...if we gone through apple documents they are suggesting to follow vendor documentation but in my case we did't take any third party server's...so we don't have any vendor document.
Can you please help me to achieve this scenario.
How to Re-sign a ipa file with our apple account and install on physical device for testing , as apps like BrowserStack does, Thanks.
Hello there,
I have a developer account that the Apple team terminated due to not renewing at that time. But for the last 3 months, I have been trying to contact Apple support to reinstate the account but didn't get any response from their side. So there are any possibilities to get my account back.
Team id - GV7A28A5MP
Regards
Chirag
Good afternoon, I think I've already read about this on the forum, but I'll write about our situation. We have not been able to pay for the developer account for 2 weeks, we have confirmed all the company's data and everything necessary, but apple does not want to debit money from the card and does not recognize the error on its side, tell me who somehow solved this problem? Israel region - I read that many people have problems in different regions
I place an order and a message comes that I have to wait two days, but nothing happens...
Apple please help solve the problem!
We would like to be able to control when MDM-enrolled Mac users are notified that their passcode is going to change. The current MDM password settings available for macOS devices does not allow MDM Admins to define when a user should be notified that their passcode is going to change.
After assigning VPP application license and installing the app in device, I revoked the license while it was still installed.
However, I was able to use the app even after 30 days.
I think this app is not available in ASM(Apple School Manager) specification.
Is this specification applied in ABM(Apple Business Manager)?
I found this discription in ASM, but I couldn't find it in ABM.
https://www.apple.com/au/education/docs/VPP_Education_Guide_EN_Oct13.pdf
“When apps you’ve assigned are no longer needed by a user, you can revoke and reassign them to different users. The user gets a 30-day grace period to continue to use the app, save data, or buy a personal copy. ”
Greetings,
As our company grows, we created an Apple Business Manager account to better manage company devices and staff iCloud accounts.
Business Manager detected there are pre-existing Apple IDs using our domain and offers to reclaim their usernames. Among those: our developer accounts which are used to manage and publish our apps.
Business Manager says that reclaiming the usernames will invite the users to pick a new username.
My questions, to anyone having experience or knowledge on the matter: Is there any chance that we find ourselves locked out of our Developer Account? Is there any recommendation against reclaiming the developer account addresses?
Thank you in advance for any insights and suggestions.
(Sadly, Business Manager does not allow picking which usernames to reclaim individually. It is an all or nothing kind of situation. It does not even list the usernames, merely the total count of them)
We are working with MDM service using VPP API, and trying to migrate Legacy APIs to new App and Book Management APIs.
This document says
Send the public key you generate to your Apple contact in a plain-text file. Do not share the private key. Also provide a brief description of your use case and product.
I generated a key-pair and sent the public key to Apple Developer Program support, however they didn't know how to handle it.
What means "your Apple contact" here?
I already understand how to generate JWT token for the api.ent.apple.com. I want to know who authorize the public key for the organization.
Thank you,
I have an ad-hoc app that our company uses internally. I am at a different physical location than where the app is used (on iPad mini 4 units). Is there any way I can remotely update the app from my location?
One solution I thought of was to use TestFlight, but that creates an app that will expire in 90 days and has potential for long term problems if it expires before an update.
Currently I have to go and gather all the iPads and bring them to my location, install the updates by plugging each unit into my iMac.
Is there a better way to do this? Can this be done with DeviceManagement? (assume I know nothing about this)
AI in Apple products revolutionizes user experiences, enhancing Siri's intelligence, facial recognition in iPhones, and personalized recommendations through machine learning. This transformative integration underscores Apple's commitment to innovation, elevating device functionality and user engagement to unprecedented levels.
Hello Apple Community,
I've been delving into the realm of time-based activation predicates through DDM. In my recent pursuits, I've been experimenting with the device's local time to evaluate a predicate expression and apply activation configurations. Is it possible to achieve this?
Our DDM currently leverages device status items and server management properties to activate predicates. These predicates come to life when the logic becomes true, initiating activations seamlessly. While the Apple Predicate Guide provides a solid foundation, I've encountered some challenges when it comes to time-based expressions. The guide covers basics such as context and numerical-based predicates, but I find myself seeking more clarity on implementing time-based logic effectively.
If any of you have insights, tips, or experiences to share regarding time-based activation predicates expressions in declarative device management, your input would be immensely valuable. I'm particularly interested in understanding practical approaches and gaining a deeper comprehension of the nuances involved.
Thank you in advance.
◆premise
① We are planning to use self-produced App (published in AppStore) which is installed on our iPad in a closed network.
② We will implement the update of the app automatically.
◆Question
In order to allow the automatic update of the app in AppStore, do we need to allow communication with servers or domains? If it is a case, could you tell us the port number for this connection?
Does any Apple API support the Location management for the business?
I am interested in if I am able to integrate an Apple business into my application.
The first thing I care about is business location management (I would like to create/edit the location via an API call)
We are an MDM and are trying to migrate to the new App and Book Management APIs.
In this doc mentioned below it asking us to send the public key generated to my Apple contact in a plain-text file. https://developer.apple.com/documentation/devicemanagement/app_and_book_management/apps_and_books_for_organizations/generating_developer_tokens?language=objc
I'm not sure who my Apple contact is? I already understand how to generate JWT token for the api.ent.apple.com. I would like to know who can authorize the public key for the organization.
Thank you