Many Apple devices, including iPhone and iPod touch (iOS 5 or later, iPad (iOS 5 or later or iPadOS 13.1 or later), Apple TV (tvOS 9 or later), and Mac computers (OS X 10.7 or later) have a built-in framework that supports MDM. This framework allows IT administrators to update software, change device settings, ensure compliance with organizational policies, remotely erase or lock devices, and deploy apps and content through Apple School Manager or Apple Business Manager.
With a recent study saying that 3 out of 4 employees choose an iPhone or iPad as their work device, an MDM service managing iOS devices is critical. Codeproof has partnered with Apple to integrate several iOS MDM features within its platform.
Apple Business Manager
Enroll your devices running iOS and provision them using DEP token enrollment. Requiring an Apple Business Manager account, this method is recommended for company-owned devices.
Enroll single or multiple iOS devices by sending an MDM profile through email or SMS. This method is suitable for employee-owned (BYOD) devices, as only end-user can disable the MDM.
Enroll a device by installing the Codeproof MDM app on an existing iPhone and iPad. This method is suitable for employee-owned devices, as only end-user can disable the MDM.
Enterprise Use Cases
Default BYOD Containerization
By default, Apple devices run in BYOD/containerization mode when installing MDM on iOS devices.
Manage corporate-owned devices with a complete MDM/EMM control with controls like turning off AirDrop or preventing access to the App Store. It also provides additional device configurations and features, like silently updating apps or filtering web usage.
Kiosk mode (Single App Mode)
Run a single app or a small number of apps in the supervised device without any distractions. Includes disabling touch, microphone, notifications, etc.
Centrally enable or disable various device features including account modification, iMessage or Game Center etc. Additional device configurations and features include web content filtering, prevent users from deleting apps, silently install & remove apps, disable access to AirDrop, configuring a global proxy and enabling a single-app kiosk mode.
Deploy or install apps silently on all the enrolled devices simultaneously. Silently remove installed apps remotely from the cloud console without any security prompt in the device. Disable the App Store from all enrolled devices, preventing the user from installing unauthorized apps.
Enterprise App Store
Purchase and/or approve apps from ABM and deploy them to all enrolled devices, including BYOD devices. In case of ABM enrolled devices, Codeproof creates the ”App Catalog” shortcut in the device so the end-user can install or update apps.
App Restrictions & Whitelisting/Blacklisting Policies
Block users from changing device settings and configurations, installing apps, accessing web browsers, and task manager, among other features per custom organizational policies for whitelist/blacklist.
Configure Microsoft Office365, Exchange, or Gmail email accounts remotely.
iOS system updates
Remotely manage the iOS software updates on hundreds of supervised iPhone and iPad devices simultaneously.
MDM Activity log
Manage and view activity on enrolled devices using an MDM activity log. Using the activity log, the IT administrator can troubleshoot for any MDM related errors.
Track the physical location of iPhone, iPad and iPod Touch devices. GPS tracking is used when it is available in the device.
Remotely enable the passcode lock and unlock feature of the device.
Remotely wipe the data in the device when lost or stolen.
Remotely enable storage encryption in the device.
Web filter and website blocking
Remotely define a blacklist/whitelist of websites to block in the devices using Safari.