Device Enrollment payload list
Payload settings for Apple devices are detailed in the table below, which contains the following five columns. To learn which MDM payloads are supported for your devices, consult your MDM solution’s documentation. Before you review the table below, understand what each column contains.
Column titles and descriptions:
Payload name
The name of the payload in Apple Configurator 2 or Profile Manager. If you’re using a third-party mobile device management (MDM) solution, the payload name may be different.
OS and channel
iOS and tvOS have no way to recognize more than one user. Configuration profiles created from iOS and tvOS payloads and settings are always device profiles. While iPadOS profiles are also usually device profiles, in education, iPad devices configured for Shared iPad can support profiles based on the device or the user. macOS can also have multiple users, so payloads and settings for macOS profiles can be based on the Mac or the user.
This column notes the Apple device operating system and specifies whether the macOS payload can be used for a device configuration profile or a user configuration profile. iOS, iPadOS, and tvOS devices can be managed by Apple Configurator 2. iOS, iPadOS, macOS, and tvOS devices can be managed by Profile Manager.
Interaction
When you apply several different payloads to a device, the settings interact in a variety of ways. Multiple payloads of the same kind can be applied to a device. If payloads contain account, certificate, or network configurations, each of the payloads’ settings are applied simultaneously. Some network payloads may conflict with others. For example, if two payloads define different network settings for the same SSID, the result is undefined. iOS and iPadOS payloads containing restrictions don’t conflict, because each payload uses the most restrictive value possible. In combined payloads for macOS, most restriction settings (versus account settings) are undefined if more than one value exists across payloads.
You can use combined payloads to add usage restrictions together to form a restrictive environment where the user has very limited options on what can be used on the device.
Combined payloads: Combined payload items aren’t mutually exclusive. These payload items are linked together, keeping all the payload items. Combined payloads are usually things like mail or LDAP accounts, where the existence of one doesn’t preclude your having additional accounts.
Exclusive payloads: Exclusive payloads can have only one possible version of a setting (just like device names, password policies, or specific network settings), and this setting can be applied only once. For example, a device can’t simultaneously have more than one global HTTP proxy. Any duplicate payload settings overwrite previous settings.
Note: On iOS, iPadOS, and tvOS, if combined payloads have the same account description (or display name), they’re treated as exclusive payloads.
Duplicates
Some payloads allow for more than one to be delivered to a user or device. For example, you can add more than one Subscribed Calendars payload to a configuration profile. This allows you to subscribe the user to, in this case, more than one calendar.
User-approved MDM
User-approved MDM enrollment requires users to accept the MDM enrollment profile on their Apple device. Acceptance can’t be completed with remote management, (for example, using Apple Remote Desktop). Apple devices that appear in Apple School Manager or Apple Business Manager, don’t require user-approved MDM enrollment. When an MDM enrollment profile is removed, all payloads are removed with it. When a device is reenrolled, the following user-approved MDM payloads will be rejected if the devices don’t appear in Apple School Manager or Apple Business Manager:
Note: These payloads are listed above, not in the table.
Payload | OS | Interaction Duplicates | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
 | iOS iPadOS tvOS macOS device macOS user | Exclusive No | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | macOS device macOS user | Exclusive Yes | |||||||||
 | iOS iPadOS macOS device macOS user | Combined No | |||||||||
 | tvOS | Exclusive No | |||||||||
 | iOS iPadOS | Combined No | |||||||||
 | iOS iPadOS tvOS | Exclusive Yes | |||||||||
 | macOS device macOS user | Exclusive Yes | |||||||||
 | macOS device | Exclusive No | |||||||||
 | iOS iPadOS macOS user | Combined Yes | |||||||||
 | iOS iPadOS | Exclusive No | |||||||||
 | iOS iPadOS tvOS macOS device macOS user | Combined Yes | |||||||||
 | iOS iPadOS tvOS macOS device | Combined Yes | |||||||||
 | iOS iPadOS macOS user | Combined Yes | |||||||||
 | macOS device | Exclusive No | |||||||||
 | macOS device macOS user | Combined Yes | |||||||||
 | macOS device | Exclusive Yes | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | iOS iPadOS | Combined No | |||||||||
 | macOS device | Combined No | |||||||||
 | iOS iPadOS | Combined Yes | |||||||||
| macOS user | Combined Yes | |||||||||
 | macOS device macOS user | Exclusive Yes | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | iOS iPadOS macOS device macOS user | Combined No | |||||||||
 | iOS iPadOS | Combined Yes | |||||||||
 | macOS device macOS user | Exclusive No | |||||||||
 | macOS device | Exclusive No | |||||||||
| iOS iPadOS macOS user | Combined Yes | |||||||||
 | macOS user | Combined No | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | iOS iPadOS macOS user | Combined Yes | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | iOS iPadOS tvOS macOS device macOS user | Combined Yes | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | iOS iPadOS macOS device macOS user | Combined No | |||||||||
 | macOS device macOS user | Combined No | |||||||||
 | macOS device | Exclusive Yes | |||||||||
 | macOS device macOS user | Exclusive No | |||||||||
 | iOS iPadOS tvOS macOS device macOS user | Combined Yes | |||||||||
| macOS device macOS user | Some No | |||||||||
 | iOS iPadOS Unavailable in Apple Configurator 2 | Exclusive No | |||||||||
 | iOS iPadOS macOS Unavailable in Apple Configurator 2 | Exclusive No | |||||||||
 | macOS device | Exclusive No | |||||||||
 | macOS device | Combined No | |||||||||
 | iOS iPadOS | Combined Yes | |||||||||
 | macOS device | Combined No | |||||||||
 | macOS device | Combined No | |||||||||
 | iOS iPadOS macOS device macOS user | Combined Yes | |||||||||
 | iOS iPadOS macOS user | Combined Yes | |||||||||
 | macOS device | Exclusive No | |||||||||