Operation Manual

ManualsBrandsApple ManualsOtheriOS Implementierung

Chapter 2 Deployment models 16

An advantage of using MDM to enroll personal iOS devices is that it keeps corporate resources

separate from the user’s personal data and apps. You can enforce settings, monitor corporate

compliance, and remove corporate data and apps, while leaving personal data and apps on each

user’s iOS device.

The following table illustrates the responsibilities of both the administrator and the user for a

personalized device (BYOD) deployment:

Prepare

Administrator:

•

Evaluate your existing infrastructure including Wi-Fi,

VPN, and mail and calendar servers.

•

Investigate, procure, and deploy an MDM solution.

•

Enroll in VPP.

Users:

•

Unbox and activate the iOS device.

•

Create Apple ID, iTunes Store, and iCloud accounts,

if applicable.

Set up and congure

Administrator:

•

Organizations can provide settings for individual

accounts to users, and policies can be pushed with

Exchange or installed using a conguration prole.

Users:

•

Enroll iOS devices using self service and congure

accounts, settings, and restrictions wirelessly using

MDM based on user/group policies dened by your

organization.

•

iOS device settings and congurations are

automatically received from MDM.

•

Alternatively, users can install conguration proles

manually or congure settings as provided by you.

Distribute apps and books

Administrator:

•

Purchase apps and books using VPP and assign

them to users with MDM.

•

Send VPP invitation to users.

•

Distribute in-house apps from the iOS Developer

Enterprise Program (iDEP) and in-house books

by hosting them on a web server or your MDM

solution.

•

Install Caching Server to speed up content delivery

over the local network.

Users:

•

Accept invitation to VPP.

•

Download and install apps and books assigned by

the organization.

Ongoing management

Administrator:

•

Revoke and reassign apps to other users as needed

with MDM.

•

With MDM, you can query managed iOS devices to

monitor compliance, or trigger alerts if users add

unapproved apps or content.

•

MDM can also lock iOS devices or remotely wipe

any managed accounts or data, or wipe an iOS

device entirely.

Users:

•

Back up the iOS device to iTunes or iCloud, to save

documents and other personal content.

•

If the device is lost or stolen, the user can locate it

with Find My iPhone.

•

When the MDM relationship is removed, managed

accounts and data are removed, but the user’s

personal apps, books, data, and content are kept.

100% resize factor