{"id":1,"date":"2019-09-05T08:43:56","date_gmt":"2019-09-05T08:43:56","guid":{"rendered":"http:\/\/hcsid.com\/?p=1"},"modified":"2023-08-01T03:26:08","modified_gmt":"2023-08-01T03:26:08","slug":"home","status":"publish","type":"page","link":"https:\/\/hcsid.com\/","title":{"rendered":"Home"},"content":{"rendered":"<h1>Personal Device Enrollment Portal<\/h1>\n<div>\n<p>While zero-touch deployment is great for new and refreshed devices, Apple have something new to make the experience great for devices that are already in use. With account-driven enrollments, users can enroll their device using their Managed Apple ID right from Settings and System Settings.<\/p>\n<p>Enrollment uses a discovery process so, organizations can define if devices should be managed as organized-owned or personal. Personal devices have a curated set of management capabilities, specifically designed for BYOD. In both cases, organizational data is cryptographically separated from personal data, providing security and privacy for users and organizations.<\/p>\n<\/div>\n<p><img decoding=\"async\" src=\"\/wp-content\/uploads\/2023\/08\/remote_management.jpg\" alt=\"\"><\/p>\n<h2>Curated BYOD management capabilities<\/h2>\n<div>\n<p>        <img decoding=\"async\" src=\"\/wp-content\/uploads\/2023\/08\/sign-in.png\" alt=\"\"><\/p>\n<h3>MDM can:<\/h3>\n<div>\n<p><span uk-icon=\"icon: check\"><\/span> Configure accounts<\/p>\n<p><span uk-icon=\"icon: check\"><\/span> Configure Per App VPN<\/p>\n<p><span uk-icon=\"icon: check\"><\/span> Install and configure apps<\/p>\n<p><span uk-icon=\"icon: check\"><\/span> Require a passcode on iPhone or iPad<\/p>\n<p><span uk-icon=\"icon: check\"><\/span> Enforce certain restrictions<\/p>\n<p><span uk-icon=\"icon: check\"><\/span> Access inventory of work<\/p>\n<\/div>\n<\/div>\n<div>\n<p>        <img decoding=\"async\" src=\"\/wp-content\/uploads\/2023\/08\/browse.png\" alt=\"\"><\/p>\n<h3>MDM can&#8217;t:<\/h3>\n<div>\n<p><span uk-icon=\"icon: close\"><\/span> Access personal information<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Access inventory of personal apps<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Remove any personal data<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Take over personal apps<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Require a complex iPhone and iPad passcode<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Remotely wipe the entire device<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Collect any logs on the device<\/p>\n<p><span uk-icon=\"icon: close\"><\/span> Access device location<\/p>\n<\/div>\n<\/div>\n<h2>How users enroll their personal devices<\/h2>\n<p><img decoding=\"async\" src=\"\/wp-content\/uploads\/2023\/08\/iCloudDrive-Ipad.png\" alt=\"\"><\/p>\n<h3>\n<p>Account-driven user enrollment<\/p>\n<\/h3>\n<div>\n<p>In iOS 15, iPadOS 15 and macOS 14 or later, organizations can use a streamlined User Enrollment process, built right into the Settings app to make it easier for users to enroll their personal devices. To do this, the user navigates to Settings &gt; General &gt; VPN &amp; Device Management and then taps the Sign In to Work or School Account button. As they enter their Managed Apple ID, service discovery identifies the MDM solution\u2019s enrollment URL.<\/p>\n<p>The user enters their organization user name and password. After the organization\u2019s authentication succeeds, the enrollment profile is sent to the device. Additionally, a session token is issued to the device to allow ongoing authorization. After a user is signed in, the new managed account is displayed prominently within the Settings app.<\/p>\n<p>Users can access files in their personal iCloud Drive. The iCloud Drive for the organization appears separately in the Files app. In iOS and iPadOS, Managed Apps and managed web-based documents all have access to the organization\u2019s iCloud Drive, but the MDM administrator can help keep specific personal and organizational documents separate by using specific restrictions.<\/p>\n<\/div>\n<p><!--more--><br \/>\n<!-- {\"type\":\"layout\",\"children\":[{\"type\":\"section\",\"props\":{\"image_position\":\"center-center\",\"padding\":\"xsmall\",\"style\":\"primary\",\"title_breakpoint\":\"xl\",\"title_position\":\"top-left\",\"title_rotation\":\"left\",\"vertical_align\":\"middle\",\"width\":\"large\"},\"children\":[{\"type\":\"row\",\"children\":[{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\"},\"children\":[{\"type\":\"headline\",\"props\":{\"content\":\"Personal Device Enrollment Portal\",\"title_element\":\"h1\"}}]}]}]},{\"type\":\"section\",\"props\":{\"image_position\":\"center-center\",\"style\":\"default\",\"title_breakpoint\":\"xl\",\"title_position\":\"top-left\",\"title_rotation\":\"left\",\"vertical_align\":\"middle\",\"width\":\"large\"},\"children\":[{\"type\":\"row\",\"props\":{\"layout\":\"1-2,1-2\"},\"children\":[{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\",\"width_medium\":\"1-2\"},\"children\":[{\"type\":\"text\",\"props\":{\"column_breakpoint\":\"m\",\"content\":\"\n\n<p>While zero-touch deployment is great for new and refreshed devices, Apple have something new to make the experience great for devices that are already in use. With account-driven enrollments, users can enroll their device using their Managed Apple ID right from Settings and System Settings.<\\\/p>\\n\n\n<p>Enrollment uses a discovery process so, organizations can define if devices should be managed as organized-owned or personal. Personal devices have a curated set of management capabilities, specifically designed for BYOD. In both cases, organizational data is cryptographically separated from personal data, providing security and privacy for users and organizations.<\\\/p>\",\"margin\":\"default\"}}]},{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\",\"width_medium\":\"1-2\"},\"children\":[{\"type\":\"image\",\"props\":{\"image\":\"wp-content\\\/uploads\\\/2023\\\/08\\\/remote_management.jpg\",\"image_svg_color\":\"emphasis\",\"margin\":\"default\"}}]}]}]},{\"type\":\"section\",\"props\":{\"image_position\":\"center-center\",\"style\":\"primary\",\"title_breakpoint\":\"xl\",\"title_position\":\"top-left\",\"title_rotation\":\"left\",\"vertical_align\":\"middle\",\"width\":\"large\"},\"children\":[{\"type\":\"row\",\"children\":[{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\"},\"children\":[{\"type\":\"headline\",\"props\":{\"content\":\"Curated BYOD management capabilities\",\"text_align\":\"center\",\"title_element\":\"h2\"}}]}]},{\"type\":\"row\",\"props\":{\"divider\":true,\"layout\":\"1-2,1-2\"},\"children\":[{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\",\"width_medium\":\"1-2\"},\"children\":[{\"type\":\"panel\",\"props\":{\"content\":\"\n\n<p><span uk-icon=\\\"icon: check\\\"><\\\/span> Configure accounts<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: check\\\"><\\\/span> Configure Per App VPN<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: check\\\"><\\\/span> Install and configure apps<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: check\\\"><\\\/span> Require a passcode on iPhone or iPad<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: check\\\"><\\\/span> Enforce certain restrictions<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: check\\\"><\\\/span> Access inventory of work<\\\/p>\",\"content_column_breakpoint\":\"m\",\"icon_width\":80,\"image\":\"wp-content\\\/uploads\\\/2023\\\/08\\\/sign-in.png\",\"image_align\":\"left\",\"image_grid_breakpoint\":\"m\",\"image_grid_width\":\"1-3\",\"image_svg_color\":\"emphasis\",\"link_style\":\"default\",\"link_text\":\"Read more\",\"margin\":\"default\",\"meta_align\":\"below-title\",\"meta_element\":\"div\",\"meta_style\":\"text-meta\",\"title\":\"MDM can:\",\"title_align\":\"top\",\"title_element\":\"h3\",\"title_grid_breakpoint\":\"m\",\"title_grid_width\":\"1-2\",\"title_hover_style\":\"reset\",\"title_style\":\"h2\"}}]},{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\",\"width_medium\":\"1-2\"},\"children\":[{\"type\":\"panel\",\"props\":{\"content\":\"\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Access personal information<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Access inventory of personal apps<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Remove any personal data<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Take over personal apps<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Require a complex iPhone and iPad passcode<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Remotely wipe the entire device<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Collect any logs on the device<\\\/p>\\n\n\n<p><span uk-icon=\\\"icon: close\\\"><\\\/span> Access device location<\\\/p>\",\"content_column_breakpoint\":\"m\",\"icon_width\":80,\"image\":\"wp-content\\\/uploads\\\/2023\\\/08\\\/browse.png\",\"image_align\":\"left\",\"image_grid_breakpoint\":\"m\",\"image_grid_width\":\"1-3\",\"image_svg_color\":\"emphasis\",\"link_style\":\"default\",\"link_text\":\"Read more\",\"margin\":\"default\",\"meta_align\":\"below-title\",\"meta_element\":\"div\",\"meta_style\":\"text-meta\",\"title\":\"MDM can't:\",\"title_align\":\"top\",\"title_element\":\"h3\",\"title_grid_breakpoint\":\"m\",\"title_grid_width\":\"1-2\",\"title_hover_style\":\"reset\",\"title_style\":\"h2\"}}]}]}]},{\"type\":\"section\",\"props\":{\"image_position\":\"center-center\",\"style\":\"default\",\"title_breakpoint\":\"xl\",\"title_position\":\"top-left\",\"title_rotation\":\"left\",\"vertical_align\":\"middle\",\"width\":\"large\"},\"children\":[{\"type\":\"row\",\"props\":{\"margin_remove_bottom\":false},\"children\":[{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\"},\"children\":[{\"type\":\"headline\",\"props\":{\"content\":\"How users enroll their personal devices\",\"margin_remove_bottom\":false,\"title_element\":\"h2\"}}]}]},{\"type\":\"row\",\"props\":{\"column_gap\":\"small\",\"layout\":\"2-5,3-5\",\"margin_remove_top\":false},\"children\":[{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\",\"vertical_align\":\"middle\",\"width_medium\":\"2-5\"},\"children\":[{\"type\":\"image\",\"props\":{\"image\":\"wp-content\\\/uploads\\\/2023\\\/08\\\/iCloudDrive-Ipad.png\",\"image_svg_color\":\"emphasis\",\"margin\":\"remove-vertical\"}}]},{\"type\":\"column\",\"props\":{\"image_position\":\"center-center\",\"position_sticky_breakpoint\":\"m\",\"vertical_align\":\"middle\",\"width_medium\":\"3-5\"},\"children\":[{\"type\":\"headline\",\"props\":{\"content\":\"\n\n<p>Account-driven user enrollment<\\\/p>\",\"title_element\":\"h3\"}},{\"type\":\"text\",\"props\":{\"column_breakpoint\":\"m\",\"content\":\"\n\n<p>In iOS 15, iPadOS 15 and macOS 14 or later, organizations can use a streamlined User Enrollment process, built right into the Settings app to make it easier for users to enroll their personal devices. To do this, the user navigates to Settings &gt; General &gt; VPN &amp; Device Management and then taps the Sign In to Work or School Account button. As they enter their Managed Apple ID, service discovery identifies the MDM solution\\u2019s enrollment URL.<\\\/p>\\n\n\n<p>The user enters their organization user name and password. After the organization\\u2019s authentication succeeds, the enrollment profile is sent to the device. Additionally, a session token is issued to the device to allow ongoing authorization. After a user is signed in, the new managed account is displayed prominently within the Settings app.<\\\/p>\\n\n\n<p>Users can access files in their personal iCloud Drive. The iCloud Drive for the organization appears separately in the Files app. In iOS and iPadOS, Managed Apps and managed web-based documents all have access to the organization\\u2019s iCloud Drive, but the MDM administrator can help keep specific personal and organizational documents separate by using specific restrictions.<\\\/p>\",\"margin\":\"default\"}}]}]}]}],\"version\":\"4.0.8\"} --><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Personal Device Enrollment Portal While zero-touch deployment is great for new and refreshed devices, Apple have something new to make the experience great for devices that are already in use. With account-driven enrollments, users can enroll their device using their Managed Apple ID right from Settings and System Settings. Enrollment uses a discovery process so, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":6,"comment_status":"open","ping_status":"open","template":"","meta":{"footnotes":""},"class_list":["post-1","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/hcsid.com\/index.php?rest_route=\/wp\/v2\/pages\/1","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hcsid.com\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/hcsid.com\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/hcsid.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hcsid.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1"}],"version-history":[{"count":9,"href":"https:\/\/hcsid.com\/index.php?rest_route=\/wp\/v2\/pages\/1\/revisions"}],"predecessor-version":[{"id":1270,"href":"https:\/\/hcsid.com\/index.php?rest_route=\/wp\/v2\/pages\/1\/revisions\/1270"}],"wp:attachment":[{"href":"https:\/\/hcsid.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}