Intro to users in Apple School Manager
Users in Apple School Manager can be created manually. They are also created after you:
Upload .csv files using the Secure File Transfer Protocol (SFTP)
Integrate with your Student Information System (SIS)
sync with Google Workspace
Sync with Microsoft Entra ID or your identity provider (IdP) using Open ID Connect (OIDC)
Sync with your IdP using System for Cross-domain Identity Management (SCIM)
If you are integrated with your SIS, each user has read-only information from the source. Additional information, such as the Managed Apple ID and associated password, is added to the user information in Apple School Manager. At no time is data written back to your SIS.
Each user account may have the following information associated with it, which can be viewed in the account list or when an account is selected:
status (with the user’s image, if provided) and source
first, middle and last name
Managed Apple ID
Roles and Locations
authentication type
email address, if provided
Managed Apple ID password policy
school/academic year level, if provided
person number and person ID
When an account is copied from Google Workspace, Microsoft Entra ID or your IdP (using SCIM) to Apple School Manager, the following user attributes can be edited:
roles
school/academic year level
SIS username
User status
Users can have a status that varies. Depending on the status and the account source, you may be able to perform certain actions on that user account.
New: this user account is new, and the user has not yet signed in.
Active: this user account is active, and the user has signed in at least once.
Deactivated: this user account has been deactivated, and the user is unable to use their Managed Apple ID to sign in.
Locked: this user account has been locked because of too many unsuccessful sign-in attempts.
When the status is “New”
Source | Actions |
|---|---|
SIS | Deactivate |
SFTP | Deactivate |
Manual | Delete |
When the status is “Active”
Source | Actions |
|---|---|
SIS | Deactivate |
SFTP | Deactivate |
Manual | Deactivate Delete |
When the status is “Deactivated”
Source | Actions |
|---|---|
SIS | Reactivate Delete |
SFTP | Reactivate Delete |
Manual | Reactivate Delete |
When the status is “Locked”
Source | Actions |
|---|---|
SIS | Reset password |
SFTP | Reset password |
Manual | Reset password |