Directory MDM payload settings for Apple devices
You can configure Directory settings for Mac computers enrolled in a mobile device management (MDM) solution. Use the Directory payload to add directory servers to a user’s Mac.
OS and channel
Supported enrollment types
The directory server must be available to the Mac when the profile is installed, or installation will fail. To add LDAP servers for iPhone and iPad devices, use the LDAP payload.
You can choose from LDAP or Active Directory.
The IP address or fully qualified domain name (FQDN) of the server.
User name and password
The user name and password are optional for LDAP connections and required for Active Directory connections.
The directory server client ID.
For information about using an Active Directory payload, see the Directory Utility User Guide. To add advanced Active Directory options see Adding Microsoft Active Directory payload options for Apple devices.
Using Profile Manager variables in the Directory payload
On Mac computers, you can use the following Profile Manager variables in the Directory payload. These variables are resolved on the device during installation, letting you dynamically customize fields. You can combine these variables with static text, such as Mac.%ComputerName%, to create a compound name. Consult your MDM vendor’s documentation to learn which variables they support.
The computer’s name, as set in System Preferences > Sharing
The computer’s unique identifier
The computer’s DNS name, such as mac1.example.com
The computer’s local network name, such as Mac1.local
The computer’s Ethernet (en0) MAC address
The computer’s serial number