Adding Apple Devices


Use the Apple platform to enroll and manage your Apple devices running either iOS (8.0 or later) or macOS (10.12 or later).

This section contains the following topics and folders:

When managing Apple devices, you must install the Apple Push Notification Service (APNS) certificate on SOTI MobiControl before you can create an add devices rule. The APNS certificate facilitates communication between SOTI MobiControl and Apple servers.

Apple devices do not require a device agent for enrollment, however you can choose to install an agent on iOS devices after enrollment. Simply create an app policy that contains the device agent and targets the enrolled device.

You can use LDAP or IdP (backed by LDAP) to enroll your devices. After you have configured your LDAP connection or your IdP connection, enroll devices in specific device groups based on their LDAP or IdP groups. You can also use the LDAP or IdP groups for device authentication.

Automated Device Enrollment

Automated Device Enrollment (ADE) allows for zero-touch, large scale deployment of Apple devices that your organization has purchased directly from Apple, from an Apple Authorized Reseller, or from a carrier. After you order the devices from your preferred channel, configure all the management settings in SOTI MobiControl (including the ability to prevent users from un-enrolling their devices), and have the devices shipped directly to the user’s home address. After the device is unboxed and activated, the device is automatically enrolled in SOTI MobiControl, and all the management settings and apps are ready for the user. You can further simplify the setup process for users by removing specific steps in Setup Assistant, so users get up and running quicker.

For more information about ADE, see Apple documentation on Automated Device Enrollment.

For more information on how to use ADE with SOTI MobiControl, refer to Using Apple Automated Device Enrollment.