allowWebDistributionAppInstallation and forcePreserveESIMOnErase require supervision discrepantly with documentation

Business & Education Device Management
entomoxalis OP
Created 1d
Replies 0
Boosts 0
Views 102
Participants 1

We provide a MDM product. In our product, payloads and properties which require supervision display those requirements.

Two properties forcePreserveESIMOnErase and allowWebDistributionAppInstallation of the restriction payload don’t require a supervised device according to the descriptions in Apple Developer Documentation. However, in our observation, those properties seem to require it.

Are those OS bugs or documentation errors? (In which category should I submit a feedback?)

Steps to reproduce

Prepare a supervised device (I used an iPhone 12 mini with iOS 18.1) and a configuration profile contains the following restrictions:

<!-- Does not require a supervised device -->
<key>allowDiagnosticSubmission</key>
<false/>
<!-- Requires a supervised device -->
<key>allowESIMModification</key>
<false/>
<!-- Does not require a supervised device according to its description -->
<key>allowWebDistributionAppInstallation</key>
<false/>
<!-- Does not require a supervised device according to its description -->
<key>forcePreserveESIMOnErase</key>
<true/>

Then,

  1. Install the profile with Apple Configurator.
  2. Confirm 4 restrictions are shown in Settings > General > VPN & Device Management > PayloadDisplayName > Restrictions.
  3. Punch Settings > General > Transfer or Reset iPhone > Erase All Content and Settings, to unsupervise.
  4. Install the profile with Apple Configurator. It cannot be installed automatically because the device was not supervised.
  5. Manually install the downloaded profile.
  6. Check Settings > General > VPN & Device Management > PayloadDisplayName > Restrictions.

Expected results

3 restrictions—allowDiagnosticSubmission, allowWebDistributionAppInstallation and forcePreserveESIMOnErase—are shown.

Actual results

Only one restriction—allowDiagnosticSubmission—is shown.

Appendix: Restriction keys and their restricted message shown in Settings

  • allowESIMModification: eSIM modification not allowed
  • forcePreserveESIMOnErase: Preserve eSIM on erase enforced
  • allowWebDistributionAppInstallation: Web app distribution not allowed
  • allowDiagnosticSubmission: Diagnostic submission not allowed
Replies  0
Boosts  0
Views  102
Participants  1
allowWebDistributionAppInstallation and forcePreserveESIMOnErase require supervision discrepantly with documentation
First post date Last post date
 
 
Q