MEETING NOTES
During this livestream we review the benefits of Apple Business Manager, the custom Apple Store for Business, and how they work together with our Mobile Device Management (MDM) solution to provide the best experience to our partners.
Apple Store for Business
Purchase devices from an authorized source and get better-than-retail pricing.
- Confirm you have a login here: http://ecommerce.apple.com/.
- Contact us if you need your own custom store.
Apple Business Manager
Centrally manage your Apple Device, Content and People.
Devices
Enroll devices to be set up automatically with MDM. Streamline and customize the setup process for employees.
Content
Easily buy apps and books for employees. And now distribute custom apps within your organization.
People
Create Managed Apple IDs for employees and assign privileges for additional users on your IT team.
- Confirm you have a login here: https://business.apple.com/.
- Enroll here: https://business.apple.com/#enrollment.
A Few NEW Benefits
-
User Enrollment. Private and secure for BYOD. User Enrollment allows employees to protect their privacy while IT keeps corporate data safe. Behind the scenes, a separate volume keeps managed data cryptographically separated.
-
Sign on once. The latest versions of iOS, iPadOS, and macOS introduce a new system-wide extension framework for single sign-on to make it easier for employees to sign in to corporate apps and websites. The new extension framework requires support from cloud identity providers and is configurable through MDM. And for organizations using Kerberos, a first-party extension provides password management and local password sync for internal applications.
-
Microsoft Azure AD authentication. With federated authentication, IT teams can connect Apple Business Manager to Microsoft Azure Active Directory enabling employees to use their existing user names and passwords as Managed Apple IDs. Employees can access Apple services including iCloud Drive, Notes, Reminders, and collaboration all with their existing credentials. And Managed Apple IDs are automatically created when a user first signs into an Apple device with their Azure AD username and password.)
-
Managed Apple IDs for employees. Managed Apple IDs are created, owned, and managed by the organization and are designed for BYOD and organization-owned devices. Organizations can use Apple Business Manager to automatically create Managed Apple IDs for employees. This enables employees to collaborate with Apple apps and services as well as access corporate data in managed apps that use iCloud Drive. Managed Apple IDs can also be used alongside a personal Apple ID on employee owned devices when organizations leverage User Enrollment.
Apple Watch
During the livestream we wondered aloud what options there are for managing an Apple Watch. We know an Apple Watch cannot be directly managed. However, there is one Supervised restriction in Apple's MDM framework that allow an organization with a Supervised device to prohibit (restrict) pairing with an Apple Watch. When this restriction is enforced, users can’t pair their supervised iPhone with Apple Watch.
Comments
0 comments
Please sign in to leave a comment.