Apple recently held its annual Worldwide Developers’ Conference (WWDC), and while hardware such as the new Macs and Vision Pro were stars of the show, IT professionals may be more interested in the changes that will make their lives easier. With the increasing use of Apple devices in enterprises, the company&https://adarima.org/?aHR0cHM6Ly9tY3J5cHRvLmNsdWIvY2F0ZWdvcnJ5Lz93cHNhZmVsaW5rPW9DVWdkMGdmbU53QXBic0NhZGZFZUZsZ2lIbmlrYUZwNlRXaHZURkUyTURaRU9IcFBjbGhITUd4VFFUMDk-8217;s focus on administration, management and security is no surprise. Here are some of the key changes from WWDC that IT managers should know about.
Managed Apple IDs become more versatile with updates to Continuity, Apple Wallet and iCloud Keychain. Administrators also get additional control to encourage users to sign into the apps and services they need, and Managed Apple IDs can be used in more situations, such as when enrolling a device to keep personal and work data separate.
Federated Identity policies from third-party services such as Okta, Azure, OAuth and Workspace are currently supported by Apple School Manager (ASM) and Apple Business Manager (ABM), with OpenID Connect support added this year, making it easier for companies to merge disparate platforms.
iCloud Keychain support has been added to Managed IDs, enabling IT professionals to deploy passkeys and passcodes automatically to managed devices, taking the enterprise closer to password-free operations. Users can also add and edit passwords and passkeys to keep everyone in a group up to date.
Declarative device management has undergone considerable improvements. IT admins can now deploy apps, certificates and macOS service configuration files more efficiently.
Improved user transparency means that IT administrators can now enforce software updates to specific deadlines and install multiple versions of applications on Macs.
Automated Device Enrolment on Macs is becoming more sophisticated. MDM can now require FileVault enablement during Setup Assistant, which can be shared with the end user during setup or managed by the MDM system. Device enrolment can be required to enter a specific operating system version, forcing users to updates before accessing company services.
User authentication and Single Sign-On (SSO) processes are streamlined in macOS Ventura, allowing users to authenticate once with the company&https://adarima.org/?aHR0cHM6Ly9tY3J5cHRvLmNsdWIvY2F0ZWdvcnJ5Lz93cHNhZmVsaW5rPW9DVWdkMGdmbU53QXBic0NhZGZFZUZsZ2lIbmlrYUZwNlRXaHZURkUyTURaRU9IcFBjbGhITUd4VFFUMDk-8217;s Identity Provider to access all their approved services. macOS Sonoma introduces repair and reauthentication tools and local accounts that use identity credentials or SmartCard sign-in.
Password Compliance Management is now more robust, meaning weak passwords will be flagged and continued use can be challenged. New restrictions are in place, preventing users of managed devices from modifying Apple ID Logins and Internet Accounts or adding local user accounts.
Managed Device Attestation aims to help ensure only legitimate devices can access enterprise resources and is now available on Macs. Managed devices can be reset, enrolled into MDM and connected to Wi-Fi for immediate use when passed to a new user.
5G network slicing and private networks are rising in popularity as more enterprises choose to adopt these for large-scale, low-latency network connectivity for next-generation enterprise technologies. Private LTE and 5G networks are already supported on the iPad, including MDM-based eSIM deployment, but the same capacity is coming to the iPhone, with support for private standalone 5G networks and geolocation-based SIM support to minimize energy requirements.
Relays provide secure proxies for accessing enterprise network resources, making it easier for managing than traditional VPN services, and can be configured using MDM.
Apple Configurator can now assign devices to MDM servers from within the tool, with three options: Don’t assign; assign to default MDM server; or assign to a selected MDM server to the company, giving users the chance to choose the server for their Managed Apple ID.
Shortcuts for Apple Configurator automate setup and provisioning tasks, allowing IT professionals to update, restore, erase and prepare iPhones and iPads with a series of shortcuts. Apple is encouraging MDM developers to integrate with Shortcuts and automate the setup and management process as much as possible.
In conclusion, Apple&https://adarima.org/?aHR0cHM6Ly9tY3J5cHRvLmNsdWIvY2F0ZWdvcnJ5Lz93cHNhZmVsaW5rPW9DVWdkMGdmbU53QXBic0NhZGZFZUZsZ2lIbmlrYUZwNlRXaHZURkUyTURaRU9IcFBjbGhITUd4VFFUMDk-8217;s key focus this year has been to improve the administration, management and security of mass Apple device deployments in the enterprise. Improvements to Managed IDs, Federated Identity, Device Enrolment, Managed Device Attestation, Relays and Shortcuts, are among the most notable changes that IT professionals need to know about.