com.atlassian.confluence.content.render.xhtml.migration.exceptions.UnknownMacroMigrationException: The macro 'next_previous_link3' is unknown.

Device Enrollment Program

Owned by Former user (Deleted)
Last updated: Jul 16, 2018
4 min read

Device Enrollment Program (DEP) is a program provided by Apple to allow device management solutions to have control over corporate-owned devices. Let's take a look at what you need to do, to get started and understand why you need DEP.

Getting started guide on Apple DEP for EMM administrators

The diagram given below guides you on what you need to do get started with Apple DEP and on how to configure WSO2 IoT Server's EMM solution for DEP.

Before you begin!

  • You need to configure WSO2 IoT Server with the iOS features. For more information, see iOS Configurations.
  • Enroll an iOS device and check if the server is successfully configured with the iOS features. Try out the iOS quick start guide.

Benefits of using DEP

  • Provides zero touch device enrolments for IT administrators.

  • Provides better control over iOS devices and provides the features described in the features section.

  • Restrict the user from removing EMM management from the device.

Features available with DEP

The following features are available with DEP devices also known as supervised devices.

  • Block users from removing the Mobile Device Management (MDM) profiles from the device.

  • Restricts users from:

    allowPodcasts

    If set to false, disables podcasts. Defaults to true.
    Availability: Available in iOS 8.0 and later.

    allowDefinitionLookup

    If set to false, disables definition lookup. Defaults to true.
    Availability: Available in iOS 8.1.3 and later and in macOS 10.11.2 and later.

    allowPredictiveKeyboard

    If set to false, disables predictive keyboards. Defaults to true.
    Availability: Available in iOS 8.1.3 and later.

    allowAutoCorrection

    If set to false, disables keyboard auto-correction. Defaults to true.
    Availability: Available in iOS 8.1.3 and later.

    allowSpellCheck

    If set to false, disables keyboard spell-check. Defaults to true.
    Availability: Available in iOS 8.1.3 and later.

    forceWatchWristDetection

    If set to true, a paired Apple Watch will be forced to use Wrist Detection. Defaults to false.
    Availability: Available in iOS 8.2 and later.

    allowMusicService

    If set to false, Music service is disabled and Music app reverts to classic mode. Defaults to true.
    Availability: Available in iOS 9.3 and later and macOS 10.12 and later.

    allowNews

    If set to false, disables News. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowUIAppInstallation

    When false, the App Store is disabled and its icon is removed from the Home screen. However, users may continue to use Host apps (iTunes, Configurator) to install or update their apps. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowKeyboardShortcuts

    If set to false, keyboard shortcuts cannot be used. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowPairedWatch

    If set to false, disables pairing with an Apple Watch. Any currently paired Apple Watch is unpaired and erased. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowPasscodeModification

    If set to false, prevents the device passcode from being added, changed, or removed. Defaults to true. This restriction is ignored by shared iPads.
    Availability: Available in iOS 9.0 and later.

    allowDeviceNameModification

    If set to false, prevents device name from being changed. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowWallpaperModification

    If set to false, prevents wallpaper from being changed. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowAutomaticAppDownloads

    If set to false, prevents automatic downloading of apps purchased on other devices. Does not affect updates to existing apps. Defaults to true.
    Availability: Available in iOS 9.0 and later.

    allowRadioService

    If set to false, Apple Music Radio is disabled. Defaults to true.
    Availability: Available in iOS 9.3 and later.

    allowNotificationsModification

    If set to false, notification settings cannot be modified. Defaults to true.
    Availability: Available in iOS 9.3 and later.

    allowRemoteScreenObservation

    If set to false, remote screen observation by the Classroom app is disabled. Defaults to true.
    This key should be nested beneath allowScreenShot as a sub-restriction. If allowScreenShot is set to false, it also prevents the Classroom app from observing remote screens.
    Availability: Available in iOS 9.3 and later.

    allowDiagnosticSubmissionModification

    If set to false, the diagnostic submission and app analytics settings in the Diagnostics & Usage pane in Settings cannot be modified. Defaults to true.
    Availability: Available in iOS 9.3.2 and later.

    allowBluetoothModification

    If set to false, prevents modification of Bluetooth settings. Defaults to true.
    Availability: Available in iOS 10.0 and later.

    allowDictation

    If set to false, disallows dictation input. Defaults to true.
    Availability: Available only in iOS 10.3 and later.

    forceWiFiWhitelisting

    If set to true, the device can join Wi-Fi networks only if they were set up through a configuration profile. Defaults to false.
    Availability: Available only in iOS 10.3 and later.

    allowAirPrint

    If set to false, disallow AirPrint. Defaults to true.
    Availability: Available in iOS 11.0 and later and macOS 10.13 and later.

    allowAirPrintCredentialsStorage

    If set to false, disallows keychain storage of username and password for Airprint. Defaults to true.
    Availability: Available only in iOS 11.0 and later.

    forceAirPrintTrustedTLSRequirement

    If set to true, trusted certificates are requiredm for TLS printing communication. Defaults to false.
    Availability: Available in iOS 11.0 and later and macOS 10.13 and later.

    allowAirPrintiBeaconDiscovery

    If set to false, disables iBeacon discovery of AirPrint printers. This prevents spurious AirPrint Bluetooth beacons from phishing for network traffic. Defaults to true.
    Availability: Available in iOS 11.0 and later and macOS 10.13 and later.

    allowSystemAppRemoval

    If set to false, disables the removal of system apps from the device. Defaults to true.
    Availability: Available only in iOS 11.0 and later.

    allowVPNCreation

    If set to false, disallow the creation of VPN configurations. Defaults to true.
    Availability: Available only in iOS 11.0 and later.

    allowAccountModification

    If set to false, account modification is disabled.
    Availability: Available only in iOS 7.0 and later.

    allowAirDrop

    If set to false, AirDrop is disabled.
    Availability: Available only in iOS 7.0 and later.

    allowAppCellularDataModification

    If set to false, changes to cellular data usage for apps are disabled.
    Availability: Available only in iOS 7.0 and later.

    allowAppInstallationWhen false , the App Store is disabled and its icon is removed from the Home screen. Users are unable to install or update their applications. This key is deprecated on unsupervised devices.
    allowAssistantUserGeneratedContent

    When false, prevents Siri from querying user-generated content from the web.
    Availability: Available in iOS 7 and later.

    allowBookstore

    If set to false, the iBooks Store will be disabled. This will default to true.
    Availability: Available in iOS 6.0 and later.

    allowBookstoreErotica

    Supervised only prior to iOS 6.1. If set to false, the user will not be able to download media from the iBooks Store that has been tagged as erotica. This will default to true.
    Availability: Available in iOS and in tvOS 11.3 and later.

    allowChat

    When false, disables the use of the Messages app with supervised devices.
    Availability: Available in iOS 6.0 and later.

    allowFindMyFriendsModification

    If set to false, changes to Find My Friends are disabled.
    Availability: Available only in iOS 7.0 and later.

    allowGameCenter

    When false, Game Center is disabled and its icon is removed from the Home screen. Default is true.
    Availability: Available only in iOS 6.0 and later.

    allowHostPairing

    If set to false, host pairing is disabled with the exception of the supervision host. If no supervision host certificate has been configured, all pairing is disabled. Host pairing lets the administrator control which devices an iOS 7 device can pair with.
    Availability: Available only in iOS 7.0 and later.

    allowUIConfigurationProfileInstallation

    If set to false, the user is prohibited from installing configuration profiles and certificates interactively. This will default to true.
    Availability: Available in iOS 6.0 and later.

    forceAssistantProfanityFilterWhen  true, forces the use of the profanity filter assistant.
    allowEraseContentAndSettingsIf set to  false, disables the “Erase All Content And Settings” option in the Reset UI.
    allowSpotlightInternetResults

    If set to false, Spotlight will not return Internet search results.
    Availability: Available in iOS and in macOS 10.11 and later.

    allowEnablingRestrictionsIf set to false, disables the "Enable Restrictions" option in the Restrictions UI in Settings.

com.atlassian.confluence.content.render.xhtml.migration.exceptions.UnknownMacroMigrationException: The macro 'next_previous_links2' is unknown.