User Guide

Chapter 1 Deploying iPhone and iPod touch 23

Phase 1 – Begin Enrollment: Enrollment begins with the user using Safari to access

the URL of the profile distribution service you’ve created. You can distribute this URL via

SMS or email. The enrollment request, represented as step 1 in the diagram, should

authenticate the user’s identify. Authentication can be as simple as basic auth, or you

can tie into your existing directory services.

In step 2, your service sends a configuration profile (.mobileconfig) in response. This

response specifies a list of attributes that the device must provide in the next reply and

a pre-shared key (challenge) that can carry the identity of the user forward during this

process so you can customize the configuration process for each user. The device

attributes that the service can request are iPhone OS version, device ID (MAC Address),

product type (iPhone 3GS returns iPhone2,1), phone ID (IMEI), and SIM information (ICCID).

For a sample configuration profile for this phase, see “Sample Phase 1 Server Response”

on page 84.

Profile service

Attributes required: UDID,

OS version, IMEI

Challenge token: AnneJohnson1

URL for response:

https://profiles.example.com

Phase 1 - Begin Enrollment

User: Anne Johnson

Enrollment request

Device information

request

sample