Directory payload settings for Apple devices
You can configure Directory settings for Mac computers enrolled in a mobile device management (MDM) solution. Use the Directory payload to add directory servers to a user’s Mac.
OS and channel | Supported enrolment types | Interaction | Duplicates |
|---|---|---|---|
macOS device | User Device Automated Device | Exclusive | Multiple |
The directory server must be available to the Mac when the profile is installed, or installation will fail. To add LDAP servers for iPhone and iPad devices, use the LDAP payload.
Setting | Description | Required |
|---|---|---|
Directory type | You can choose from LDAP or Active Directory. | Yes |
Hostname | The IP address or fully qualified domain name (FQDN) of the server. | Yes |
Username and password | The username and password are optional for LDAP connections and required for Active Directory connections. | Varies |
Client ID | The directory server client ID. | No |
For information about using an Active Directory payload, see the Directory Utility User Guide. To add advanced Active Directory options, see Adding Microsoft Active Directory payload options for Apple devices.
Profile Manager variables
On Mac computers, you can use the following Profile Manager variables in the Directory payload. These variables are resolved on the device during installation, letting you dynamically customise fields. You can combine these variables with static text, such as Mac. %ComputerName%, to create a compound name. Consult your MDM vendor’s documentation to learn which variables they support.
Variable | Substitution |
|---|---|
%ComputerName% | The computer’s name, as set in System Preferences > Sharing |
%HardwareUUID% | The computer’s unique identifier |
%HostName% | The computer’s DNS name, such as mac1.example.com |
%LocalHostName% | The computer’s local network name, such as Mac1.local |
%MACAddress% | The computer’s Ethernet (en0) MAC address |
%SerialNumber% | The computer’s serial number |