UPDATE: It turns out that this expiration extension does not actually extend the life-time of individual distribution profiles. Please see the comments below this article for more details.
I discovered this today and figured it was worth sharing with the Enterprise iOS community because it has such a profound impact on Enterprise app deployment strategies...
If you have ever dealt with iOS Enterprise In House distribution, you have undoubtably had to deal with the dreaded "Provisioning Profile Is About To Expire" message that appears on user devices every day for 30 days until the expiring profile is removed or the expiration date lapses.
I was pleased to find out today that Apple has changed the life of the underlying iOS Enterprise Distribution Certificate expiration date from one year to three years!
This means you only have to deal with this (nightmare) every three years instead of every one year.
Practically speaking, this means the recommended enterprise app update lifecycle (in which you have users update their apps and/or remove the old provisioning profile) changes from six months to 1.5 years; a much more reasonable timeframe.
It appears that Apple made this change at the beginning of 2013 or late 2012; either way it seems like this change has been made across all enterprise iOS Developer accounts.
I'm using Apple Configurator to deploy iPads with a third-party app installed as well.
After preparing the iPads in Apple Configurator, I have to touch each iPad in order to
configure the settings of the third party app.
Is there a way to pre-configure the settings of a third-party app before installing it
on an iOS device using Apple Configurator or MDM? If so, how do you do this?
Thanks in advance,
Here are the details for the live, in-the-flesh Enterprise iOS meetup in San Francisco on Thursday, January 31. (I'll be in town at the MacIT Conference.)
When: Thursday 1/31 from 8-10 PM
Where: 83 Proof, 83 First Street, between Market & Mission
Who's Invited: All readers and contributors, present and future, of Enterprise iOS
Who's Buying: Tekserve!
When I started this sire two years ago I wasn't sure how long it would last. At that time, nobody had the job title "iOS Administrator." Now, we're over 20K unique visitors each month. Our Comparison of MDM Providers has been viewed over 220,000 times. And our forums receive a healthy number of questions and knowledgable answers.
I'm proud of how far we've come! Come help me celebrate, discuss the state of the technology, and directions to take the site in 2013.
Thanks to all of you who make the community what it is. Looking forward to seeing you on Thursday!
Really Useful links from Apple Support!! - Everyone who admins Apple devices needs these!
VPP Program Links
Volume Purchase Program Education Store
Volume Purchase Program Overview
Volume Purchase Program FAQ
Apple Configurator: Using Volume Purchase Program (VPP) Redemption Codes
iTunes Store Customer Service - Volume Purchase Program for Business customers
Apple Configurator Resources
Introduction and how to video
Education Seminars and Events (Video Links)
Download Apple Configurator
Apple Configurator: Backing up and restoring data
Apple Configurator Help
Apple Configurator - Using VPP Help
Apple Configurator - Coordinating Device Names
iPhone Configuration Utility Links
iOS 5 Deployment Guide (the guide for iOS 6 hasn’t been released yet)
iPhone Configuration Utility 3.3 for Mac OS X
iPhone Configuration Utility 3.3 for Windows
iOS Deployment Resources
iPhone Configuration Profile Reference
iPhone Configuration Utility Guide
iPhone in Business: Device Configuration Overview
iPhone OS: Enterprise Deployment Guide
iPhone Support: Enterprise
For Additional Questions:
Contact name/phone number
AppleID being used
1.800.275.2273 - AppleCare Consumer Line
1.800.800.2775 - AppleCare Education
1.866.752.7753 - AppleCare Enterprise Server Support
Related to my master's thesis at University of Koblenz-Landau - Chair of Media and Service Management (http://www.uni-koblenz-landau.de/koblenz/fb4/institute/ifm/agkilian/home-en) - I carry out a survey among Apple iOS, Android and Facebook app developers.
I would be very happy if you would participate in my survey, which takes about 10 minutes.
Here is the link to the questionnaire (valid until 03.02.2013):
Btw: Among all participants, we are raffling vouchers for Apple iTunes, Google Play, and Amazon with a total value of € 200!
Thank you for your support!
We have the following network setup:
Windows 2003 & 2008 Domain, Exchange & AD servers.
Wireless running WPA2 Enterprise / 802.18, PEAP with AES across Cisco ISE with Certificate.
When a user is connected with an iPhone; pulling Exchange mail (with ActiveSync) & browsing the web changes his domain password on Windows based laptop/desktop, the iPhone Exchange email immediately prompts for a new password, but the wireless connection itself does not, it will after a reboot of device, re-enable of the wireless connection or fairly long extended period of time, this is obviously a security risk as outlined in post: http://enterpriseios.com/forum/topic/Exchange_Passwords_after_iOS_501_Up... - the reason for the new post is the difference in exchange mail prompting for new password, but wireless connection now.
Is this Apple iOS standard or is there a fix for this either on the Windows AD/Domain side or device config?
How and where does resolution of conflicting restrictions or multiple email settings take place?
In theory, the resolution could take place on an MDM server or on the device. So where does it take place? I have seen reference to a file called the ProfileTruth.plist. What do people know about this file and where is it generated?
I am assisting with the rollout of a large number of iPads in several schools.
For the limited pilots we have done so far, we have used MacBooks as sync stations and one Apple ID per sync station. We have spreadsheets of VPP codes to comply with licensing, but they are essentially unused.
Ideally we would like to do installation and updating of apps over the air and gather reporting data, and as such want to use an MDM. I really like the idea that specific groups will get certain apps. However, i am seeing several roadblocks that are due to Apple's restrictions and the limitations of their API:
- how can we push apps and app updates without requiring the kids to confirm and enter an Apple ID and password?
- how can we get all of these student iPads to look the same post deployment so that the teachers have consistency? Essentially folders would need to be moved, etc.
- how to view iPads like with ARD?
- Even if we were to stick with the sync station model, the new EULA for iBooks doesn't let us use purchased iBooks on all of the same devices. Textbooks will be a major component of this project.
We are using Airwatch for ours iPad.
Users register to Airwatch with their MS Active Directory account. Airwatch pushes a X509 Certificate (based on the user account and issued by our MS PKI) on the device.
We have two use cases :
- users access email via MS Exchange Activ Sync : authentication is done using MS Active Directory user/password
- users access extranet web applications : authentication is done by CA SiteMinder using the iPad X509 certificate
If the AD password expires, users don't have the possibility to change it with the iPad. They need to connect to corporate network on the LAN with their desktop.
I have several questions
1) Can we use the certificate to authenticate on Exchange?
What we need to do on Exchange, on Airwatch (if necessary) and on the iPad?
2) Can we use the fisrt certificate pushed by Airwatch or we need to issue another one for Exchange with specific caracteristics?
Thanks for your help
we are a company with 150 blackberrys and 50 ipads. We are searching for a mdm for our global company. We have the solution airwatch and famoc but the support for airwatch is in germany very bad. The next hting is that famoc is good but the handling is very complex.
With famoc can we manage blackberrys and ipads.
What is the best solution currently?
MobileIron or an antohter MDM solution.
Thanks for your help
Hello EnterpriseiOS.com Professionals,
The Enterprise Device Alliance is conducting its annual Fall survey of IT professionals at http://www.surveymonkey.com/s/B8HQV6D.
As always, we will share the results with the community.
This year, we're collaborating with Ryan Faas, a veteran consultant and journalist for Computerworld, to develop a survey that will discover how the pervasiveness of mobile devices and non-Windows systems has affected IT management in large organizations. Your experiences and opinions, collected in these survey results, can influence product development in solution providers and decision-making by enterprise IT management.
The survey is comprehensive and thorough. To thank you for your contribution we will raffle one $50 gift certificate for every 100 respondents. We will, of course, provide you a copy of the results. Please make a difference and give us your thoughts.
Please take the Survey here: http://www.surveymonkey.com/s/B8HQV6D
On December 12 at 2 pm ET/11 am PT. Ryan Faas will discuss the survey results with me, T. Reid Lewis, president of the Enterprise Device Alliance and co-founder of GroupLogic. This webcast will explore the results in detail, offering examples of how other companies are tackling the challenges presented by mobile device management.
Sign up for the Webcast here: https://centrify.webex.com/centrify/onstage/g.php?t=a&d=828848995
Thank you on behalf of the members of the Enterprise Device Alliance!
T. Reid Lewis
Creators and publishers of:
activEcho: File Sharing and Syncing for Enterprise http://www.grouplogic.com/activecho
mobilEcho: Mobile File Management for iPhone & iPad http://www.grouplogic.com/mobilecho
ArchiveConnect: Macintosh integration for file archiving solutions http://www.grouplogic.com/archiveconnect
ExtremeZ-IP: Macintosh file & print server for Windows http://www.grouplogic.com/extremez-ip
MassTransit: automated file transfer solution for Windows & Macintosh http://www.grouplogic.com/masstransit
I am new here but have a problem I am sure others have encountered or will encounter....so I wanted to see if anyone had any other suggestions.
We have the need to push a 500 MB video file to about 50 iPads as quick as possible. These iPads will be on a plane, traveling home. So, if it is a physical device using usb it must have a small footprint. We can create our own WiFi segment on the plane, however my testing below will show the issues there.
Testing the iPad2 and it's Wifi capabilites I have come to the conclusion that max transfer rate on the device itself is about 38 Mbps. I tested on a network that has 200 MB of bandwidth and tested with multiple iPads. So, if you have a 500 MB file you want to move to the iPad via WiFi it will take 105 seconds or one minute and 45 seconds. Here in lies the problem.....if you need to get 50 iPads that file..that download stream is not autonomous. Every iPad you join will denegrate that transfer speed and once you join 10 or so the transfer will take much too long.
If you had enough bandwidth for 10 iPads to join and all get thier own 38 mbps of bandwidth...why can you not tranfer to all 10 iPads in one minute and 45 seconds?
Thanks for any thoughts on this....
We just wanted to let you know about a few new updates that we have made to SimpleMDM, a free iOS-only Mobile Device Management solution. SimpleMDM is designed to allow you to quickly and easily configure iOS devices with essential configurations such as WiFi and Email, and now, push Apps!
To learn about all of the capabilities of SimpleMDM, please visit http://www.simplemdm.com.
This update allows a SimpleMDM administrator to:
- Select iTunes AppStore apps to be pushed to managed devices
- Over-the-air deploy In-house Enterprise iOS apps, with automatic provisioning profile update handling
- Effectively manage deployment of apps by groups of devices
Read more about how it works here: SimpleMDM App Deployment
The feature is free addition to SimpleMDM, and you can have an account set up and configured in minutes.
Note that paid AppStore apps (via VPP) are not yet supported, though the feature is road-mapped (let us know if this would be a valuable addition to your organization).
We hope you enjoy it, and please feel free to ask any questions in the comments below.
About This Site
- Comparison of MDM Providers (536,851)
- Complete List of iOS User-Agent Strings (207,505)
- How to get remote viewing/control of the IPAD screen via internet or preferably 3G? (132,194)
- Apple Configurator vs. MDM (104,072)
- Mobile Device Management (70,849)
- AirWatch (57,337)
- Apple Profile Manager (56,423)
- Absolute Manage (52,648)
- Gartner Magic Quadrant for MDM (2014, 2012, 2011) (51,271)
- Batch Apple ID Creator (47,428)
Comparison of MDM Providers
Wiki Page comment by DaYipper 7 hours ago
Forum topic comment by notachancegp 9 hours ago
Forum topic comment by splatzgame 12 hours ago
Forum topic comment by cbrooks385 17 hours ago
Forum topic comment by cbrooks385 19 hours ago
Forum topic added by splatzgame 19 hours ago
Forum topic comment by biz 21 hours ago
Forum topic comment by biz 21 hours ago
Story comment by kimsonbob 23 hours ago
Forum topic comment by JS73 1 day ago
Forum topic comment by jp_LubbockISD 1 day ago
Story comment by criscarter 4 days ago
Forum topic comment by codeproof 4 days ago
Forum topic added by jbostian 4 days ago
Forum topic comment by scottlewis 5 days ago
Forum topic comment by jbourdon 5 days ago
Forum topic comment by HomeBru 5 days ago
Forum topic comment by afurbee 5 days ago
Forum topic comment by cbrooks385 5 days ago
Forum topic comment by afurbee 5 days ago