We have confirmed the operation using iOS18 beta devices regarding the item "allowVideoConferencingRemoteControl" which is implemented for iOS18 beta.
Remote control can be requested even if “allowVideoConferencingRemoteControl" is set to "true" or "false".
Please tell me the following.
Is it an expected behavior that there is no control regarding remote control whether "allowVideoConferencingRemoteControl" is true or false?
I have confirmed the operation by following the procedure below, but is the procedure to confirm the control of "allowVideoConferencingRemoteControl" correct?
Steps taken
Create a profile with "allowVideoConferencingRemoteControl" set to "false" in the restriction settings
Distribute to the terminal
Make a video call with facetime between iOS18 beta devices
One device performs screen sharing of the device with Share Play, and the other device requests remote control.
Even if "allowVideoconferencingRemoteControl" is set to "false" in the restriction settings, remote control requests are still made.
Explore the intersection of business and app development. Discuss topics like device management, education, and resources for aspiring app developers.
Post
Replies
Boosts
Views
Activity
Hi everyone,
I maintain an app that is developed and distributed with an Apple Developer Enterprise subscription and delivered via my institution’s private site, where users download the .ipa file after logging in. From what I see, we use automatic signing in Xcode where possible.
On the 1st of January 2024, the provisioning profile expired, and the developer before me had to rush to renew it because the app stopped working.
Now, I have some questions about how to prevent this from happening again:
When should I renew the provisioning profile?
Can I renew it before the expiration without blocking the current app version that users have already downloaded?
How do I renew it? If I need to download a certificate, does it need to be converted into a different format?
Do we need to build a new .ipa file that users will have to download before the expiration date?
here a screenshot clearance and guide:
Inquiry about Running Enterprise Apps in Killed State and MDM Payload Management:-
I am developing an enterprise iOS application that needs to perform specific tasks or network calls even when the app is in a killed state (i.e., when it is not actively running in the foreground or background). I understand that standard iOS restrictions prevent apps from executing code while in this state, but I am exploring potential solutions within the scope of enterprise apps and MDM (Mobile Device Management) capabilities.
Inquiry about Running Enterprise Apps in Killed State and MDM Payload Management:- I am developing an enterprise iOS application that needs to perform specific tasks or network calls even when the app is in a killed state (i.e., when it is not actively running in the foreground or background). I understand that standard iOS restrictions prevent apps from executing code while in this state, but I am exploring potential solutions within the scope of enterprise apps and MDM (Mobile Device Management) capabilities.
Hi,
We made a MDM Capability request a few months ago and still haven't heard back. Is there a way to check what the status of the request is?
Thanks,
Dave
Hi Apple Team ,
We have a. Bunch of macOS devices in our Fleet Which has MDM Passcode Payload Applied. We have observed a huge delay in unlocking the user account at login Screen after the Credentials are presented, Where as Removing the Passcode Payload makes the User to unlock their account at login Screen Immediately.
Can someone help with this issue any OS Updates helps this ?
Have Filed a FeedBack:
FB15143190 (MDM Passcode Payload Causing Delay In Device Unlock)
Also there is a Discussion reg this Passode Policy Issue
I integrated the Apple in app SDK, but when using SK Products Request to obtain the product ID, it was empty and invalid. I checked the app backend status and product status, and they are both normal. What's going on?
I hope to receive an effective answer and solution as soon as possible.
Thank you very much!
I was checking the operation of items that are now available on devices with iOS 18 or later, but when I distribute to Shared iPad devices, the following 3 items are not installed on the device and cannot be controlled.
allowiPhoneMirroring
allowPersonalizedHandwritingResults
allowWritingTools
Please let us know the following.
Are the above 3 items available on Shared iPad?
If so, please tell us how to solve the problem that the items are not installed on the Shared iPad device and the control does not work.
The specifications of the device used are as follows
OS : iOS18.1 beta3
Model : iPad Air 13-inch(M2)
I am trying to use Apple Intelligence on a shared iPad.
I cannot use Apple Intelligence even though I have registered my Apple Acount.
Apple Intelligence does not appear in the device settings.
Please tell me the following
Can I use Apple Intelligence on my Shared iPad device?
If so, is it an expected behavior that Apple Intelligence settings are not displayed on the Shared iPad device?
The specifications of the devices used are as follows
OS: iPadOS 18.1 beta3
Model: iPad Air-13inch(M2)
On the "What's new for enterprise in iOS 18" page here: https://support.apple.com/en-am/121158, one of the new features mentioned is:
"On supervised devices, organizations can disable a user’s ability to hide and lock apps."
Despite reviewing the developer documentation surrounding device management (https://developer.apple.com/documentation/devicemanagement), as well as going through the latest changes to schema definitions (https://github.com/apple/device-management), I have been unable to find a restriction that corresponds to this functionality.
This is a feature that I'd like to implement, has anyone found any details about this restriction and what key may need to be inserted in the restrictions payload to use it?
New Local Network Privacy Setting has been added in Privacy & Security Section of system Settings. I just want to know if this permission be managed through MDM mobileconfig profile.
Let me know if any suggestions are there, in respect to this.
I was able to successfully pass a PAT token challenge with my iPhone in iOS 18. However, after installing a corporate profile via Google Device Policy, it no longer passes the challenge. Is this expected? I.e. does Apple consider a device with a profile to be less secure than one without it?
I am currently working on a Visual Basic .NET project and aim to integrate an internal application with the Apple Business Manager API to access DEP (Device Enrollment Program) device data.
Specifically, I would like to request any guidance on the following aspects:
Generating a Valid Access Token: I am aware that JSON tokens are required to interact with the API, but I am unsure of the correct procedure to create a valid token for accessing the Apple Business Manager data.
How to set permissions for accessing DEP Device Data: What steps do I need to follow to obtain the necessary permissions to read DEP device data from Apple Buiness Manager? Are there specific configurations or approval processes that need to be completed within Apple Developer Account oder Apple Business Manager account (which both uses same Apple ID)?
API Endpoints and Documentation to access Business Manager by API: Could you please point me to the relevant APIs and endpoints for interacting with the DEP data? Which web requests to send where? Any documentation that outlines the API structure fur Business Manager access and how and where to obtain access tokens for it.
Thanks for any assistance as I stuck here since it is ma first project accessing Apple APIs.
With iPhone 16, there is Camera Control page when setting up a phone.
In https://developer.apple.com/documentation/devicemanagement/skipkeys?language=objc, there is listed skip keys for different setup pages, but there is no mention of Camera Control.
Is there skip key for Camera Control? If there is, what is it?
Importing an existing self- signed trusted root certificate no longer triggers option to trust cert in Settings / About / Certificate Trust Settings In iOS 18.
Cert installed manually from internal website, as email attachment, and using profile in Configurator all produce same result.
Same cert and processes work on iOS 16.7.10, iOS 17.6.1 and iPadOS 18.0
But not on iOS 18.0 nor beta iOS 18.1 beta5 on iPhone 16
Also tried regening a new test root on macOS Sonoma and installing using Configurator. No difference.
It’s broken - I’ve reported it by Feedback - it’s a vital security flaw.
Anyone else see this or have a workaround?
world.place(Portal(color: #colorLiteral(red: 1.0004385709762573, green: 0.22760793566703796, blue: 0.18670153617858887, alpha: 1.0)), at: Coordinate(column: 0, row: 0))
I get the following error from the above little piece of code :
“There was a problem running this code. Check for problems …. Start over”
WHY
Hello team! I am trying to update an app via MDM on macOS sequoia. It has always worked fine for me since macOS 13. But now I get this error in the console when trying to update the app:
Preflight canceled with coordinator: (null) error: Error Domain=ASDErrorDomain Code=663 "The app is running and we don't have the context to quit it, failing install." UserInfo={NSDebugDescription=The app is running and we don't have the context to quit it, failing install.}
Always updated even if the app was open without problems before macOS 15.
Regards
The original text is in Chinese, and below is the content translated using OpenAI.
問題描述:
因為一些因素,所以公司申請了兩個企業憑證,其中Entity Name一樣,但Team ID不一樣。現在發現iPhone16系列裝置的使用者,無法同時使用兩個憑證打包出來的APP,不是都會閃退就是其中一個會閃退。
重現問題的逐步說明:
測試的情況有兩種:
從iPhone16之前的裝置轉移資料到iPhone16,這兩個APP打開都會閃退
直接在iPhone16安裝這兩個APP,則第一個安裝的APP可以正常使用,第二個安裝的APP會閃退。如果想要切換能使用的APP,需要到 一般-VPN與裝置管理-INNOLUX CORPORATION ,點擊”刪除App”,然後更換安裝順序。
如果是舊裝置升級到iOS 18,則不會有該問題
期望的結果:
兩個APP都能正常使用
實際看到的結果:
如果是舊裝置移轉資料到iPhone16,則都會閃退:如果是直接在iPhone16安裝這兩個APP,則第一個安裝的APP可以正常使用,第二個安裝的APP會閃退。
OpenAI Translation:
Problem Description: Due to certain factors, the company applied for two enterprise certificates, which have the same Entity Name but different Team IDs. It has now been discovered that users of the iPhone 16 series devices are unable to use apps packaged with both certificates simultaneously; either both apps crash or one of them crashes.
Step-by-Step Reproduction of the Issue:
There are two testing scenarios:
Transferring data from a device prior to the iPhone 16 to the iPhone 16 results in both apps crashing upon opening.
Directly installing both apps on the iPhone 16 allows the first installed app to function normally, while the second installed app crashes. To switch to the functioning app, one must go to Settings - VPN & Device Management - INNOLUX CORPORATION, click "Delete App," and then change the installation order.
If an older device is upgraded to iOS 18, this issue does not occur.
Expected Result: Both apps should function normally.
Actual Observed Result: If data is transferred from an older device to the iPhone 16, both apps crash. If both apps are directly installed on the iPhone 16, the first installed app works normally while the second installed app crashes.
I would like to contact about an issue with the iOS 18 update.
With the release of the new iPhone 16, camera controls have been added.
however, when using MDM, there is an issue where the camera control button settings change after blocking and unblocking the camera.
1. If the camera control button is originally set to 'Camera', when you block and unblock the camera through MDM, the button setting changes to 'None'.
Shouldn't the camera control settings be maintained even after blocking and unblocking the camera?
If this is a known issue, can you tell me when it will be fixed and updated?
Opening a fresh post as the other seem old/abandoned. I’m trying to add a fail-safe URLprobe to DNS setting profile (DNS over http) for the case that the iPhone/iPad connects to a wifi hotspot with captive portal without internet access. I use OnDemandRules to circumvent known problematic SSID names a specific (wildcard) domains - both working just fine and the requests are falling-back to a system resolver for such a requests.
I’ve added a URLStringProbe which supposed to check availability of the internet.
The probe should trigger on 200 OK response code and use the DNSSettings or fallback to a system resolver in the case of any other outcome, according to the documentation:
A URL to probe. If this URL is successfully fetched (returning a 200 HTTP status code) without redirection, this rule matches.
https://developer.apple.com/documentation/devicemanagement/dnssettings/ondemandruleselement
https://developer.apple.com/business/documentation/Configuration-Profile-Reference.pdf
Tested on iPhone 14 (iOS 18.1) but it doesn’t work. I’m using Clouflare https://1.1.1.1/index.html for the sake of simplicity and do some adjustment in IP/path for testing purposes
using https to enforce TLS (to avoid hijack/MitM from a captive portal)
using a direct IP (in this case Cloudflare) so I don't need to resolve a domain to execute the probe itself
Anyway, I’ve changed the URL for a testing purposes to return either 404, redirect or timeout and in all cases cases the probe acts the same way like for 200 OK response.
My expectation is that probe should test negative and go to next rule which is
<key>Action</key>
<string>Disconnect</string>
and thus use the system resolver which will allow the system to detect a captive portal and display sign-in popup to the captive portal
Any idea where might be the issue?
Example 1 - with all rules
<key>DNSSettings</key>
<dict>
<key>DNSProtocol</key>
<string>HTTPS</string>
<key>ServerURL</key>
<string>https://dnsserverexample.com/v1/something/id/dns-query</string>
<key>ServerAddresses</key>
<array/>
<key>SupplementalMatchDomains</key>
<array/>
</dict>
<key>ProhibitDisablement</key>
<true/>
<key>OnDemandRules</key>
<array>
<dict>
<key>Action</key>
<string>Disconnect</string>
<key>SSIDMatch</key>
<array>
<string>whitelistedSSID1</string>
<string>whitelistedSSID1</string>
</array>
</dict>
<dict>
<key>Action</key>
<string>EvaluateConnection</string>
<key>ActionParameters</key>
<array>
<dict>
<key>DomainAction</key>
<string>NeverConnect</string>
<key>Domains</key>
<array>
<string>*.whitelisteddomainexample.com</string>
<string>*.whitelisteddomainexample2.com</string>
</array>
</dict>
</array>
</dict>
<dict>
<key>URLStringProbe</key>
<string>https://1.1.1.1/index.html</string>
<key>Action</key>
<string>Connect</string>
</dict>
<dict>
<key>Action</key>
<string>Disconnect</string>
</dict>
</array>
</dict>
Example 2 - just URL probe and fail-open for iphone
<key>DNSSettings</key>
<dict>
<key>DNSProtocol</key>
<string>HTTPS</string>
<key>ServerURL</key>
<string>https://dnsserverexample.com/v1/something/id/dns-query</string>
<key>ServerAddresses</key>
<array/>
<key>SupplementalMatchDomains</key>
<array/>
</dict>
<key>ProhibitDisablement</key>
<true/>
<key>OnDemandRules</key>
<array>
<dict>
<key>URLStringProbe</key>
<string>https://1.1.1.1/index.html</string>
<key>Action</key>
<string>Connect</string>
</dict>
<dict>
<key>Action</key>
<string>Disconnect</string>
</dict>
</array>
Also I’ve tried to debug similar issue in the past on MacOS. I’ve tried to add debug profiles NetworkDiagnostic.mobileconfig and mDNSResponder.mobileconfig but I don't see any logs related to OnDemandRules processing - any clue how to get some insight into the rules processing/evaluation?