Skip to main content

Manage a Device Enrollment Program

Through the Device Enrollment Program (DEP) from Apple, the manager can configure devices through a management solution. The users then enroll to an Enterprise Mobility Management (EMM) system, for example Snow Device Manager, when they turn on their device for the first time.

With customized device profiles, the users are guided through the activation process. Furthermore, the administration of the devices is made easier when the manager does not have to send text messages or email registrations. DEP also puts the device in a supervised mode, which unlocks more EMM functionality for the administrators.

Prerequisites

To set up a DEP service, the company or organization must have a DEP account and their devices supplier must be DEP connected.

Read more about DEP: https://www.apple.com/education/docs/DEP_Guide.pdf

Set up a DEP

This procedure describes how to connect the DEP virtual server to the Snow Device Manager DEP service. The procedure consists of four steps:

  1. Create DEP service.

  2. Connect virtual MDM Server to the MDM domain.

  3. Upload DEP Server token and profile.

  4. Add DEP devices.

The MDM enrollment process will begin when the end-user turns on their device for the first time.

Create DEP service

Perform the following procedure to create a DEP service:

  1. On the Domain Admin tab, click Service management.

    The Service management workbench appears.

  2. Click the Domain services tab.

  3. Click Add and then select appledep.

    A new appledep is created with a temporary name and the Apple Device Enrollment Program Service dialog box appears.

  4. Configure the service:

    1. Type a Name (optional) for the service to make it easier to locate it.

    2. Type a name for the Device group.

      Note

      The DEP devices will be organized into this device group in the Domain browser. It is possible to later change the name or the device group in the Domain browser.

    3. Select Auto-assign users to enrolling devices check box and type an Assignment text.

      The user will be prompted to enter credentials during enrollment to enable auto assignment of a Snow Device Manager user to this device.

  5. Click Generate a public key certificate, and then click Apply.

Connect virtual MDM Server to the MDM domain

  1. Log in to https://deploy.apple.com

  2. Click Get Started.

    image164.png

  3. Click Device Enrollment Program, and then click Manage Servers.

    image166.png

  4. Click Add MDM Server.

    The Add MDM Server dialog box appears.

  5. Type a name in the MDM Server Name box, and then click Next.

    Note

    The MDM Server name does not have to have the same name as the MDM Domain.

    image168.png

  6. Click Choose File and select the public key generated in the SDM Manager in the previous steps to upload the key, and then click Next.

  7. Click Your Server Token to download the token, and then click Done.

Upload DEP Server token and profile

  1. In the Apple Device Enrollment Program Service dialog box, click Upload DEP server tokens and wait for it to complete.

    A default, non-editable DEP profile is created.

    image170.png

  2. To configure the new DEP Profile, click Add.

    The Add a DEP Profile dialog box appears.

    image172.png

  3. Enter the following information:

    1. Type a Profile name and a Support email address. Department and Support phone no. are optional information.

    2. Check the Supervised and Mandatory check boxes.

    3. Clear the Removable and Pairing check boxes.

  4. Click OK.

  5. Switch to the Apple Device Enrollment Program Service dialog box.

  6. Select the new profile and click Toggle Default to make the new profile the default profile.

Add DEP devices

  1. Switch to https://deploy.apple.com.

  2. On the Device Enrollment Program submenu, click Manage Devices.

  3. To import the devices to the SDM domain, perform one of the following actions:

    • Select Serial number and type a serial number.

    • Select Order number and type an order number.

    • Select Upload CSV File and upload a file.

  4. Select which MDM server to import to.

    image176.png

Manual DEP synchronization

To start the synchronization of devices manually:

  1. On the Domain services page, click the appledep service.

  2. Click Execute.

Add DEP devices to deployment

  1. In the Domain browser, double-click the folder that contains the DEP devices.

  2. Perform one of the procedures in Add devices to one deployment.

In this section: