Apple Business Manager

Table of Contents

Welcome
- What is Apple Business Manager?
- - Program requirements
  - Device eligibility
- Enroll in Apple Business Manager
- Updated terms and conditions
- Keyboard shortcuts
Get support
How to search
View activity
Edit organization settings
- Link to new domains
- Verify existing domains
- About domain conflicts
- Disconnect federation from a domain
- Intro to federated authentication
- Turn on and test federated authentication
- Resolve Apple ID conflicts
- View user name conflicts
- Change user’s domain information
- Transferring Apple services when federating
- What are Managed Apple IDs?
- Create Managed Apple IDs
- Edit Managed Apple ID formats
Configure locations
- Role management
- Role privileges
- Assign roles
- Intro to user accounts
- User account status
- About temporary passwords
- Create a new sign-in
- Reset passwords
- Sign in on Shared iPad
- Create Shared iPad passcodes
- Reset a Shared iPad passcode
- Sign out devices
- Add verification phone numbers
- Reset a verification phone number
- Intro to device management
- Manage device suppliers
- View reseller and carrier device order messages
- How to buy content
- Add Content Managers to locations
- Add payment information
- Plan for content distribution
- Learn about custom apps
- Select and buy content
- Download a content token
- Acquire productivity and creativity apps
- Buy required content for initial deployment
- Plan for migration to Apps and Books
- View purchase history
- Invite VPP purchasers
- Transfer licenses
- What are log files?
- Log errors
- Read a log file
Document revision history

Add mobile device management (MDM) servers in Apple Business Manager

In Apple Business Manager, you must create at least one mobile device management (MDM) server before you can begin assigning devices. Before you create your server, review the certificate, security, and naming information below.

MDM server security

Every server you create must be known to Apple and must be securely authorized using a two-step verification process. The verification process involves creating and installing a server token on your MDM server. The certificate encrypts the Apple Business Manager token. For information about how to transfer the token, see your MDM vendor’s documentation.

MDM server names

When you name each server, you don’t need to use the fully qualified domain name. For example, you can choose a name based on a specific building, location, room, or job function (but you can’t use the same name for multiple servers). You also can’t use the following names for your MDM servers:

Unassigned
Reassigned

MDM server certificates

Before you add an MDM server, get the public key certificate file (ending in .pem or .der) from your MDM vendor for each server you want to add. See the MDM vendor’s documentation for information about getting the server’s public key certificate.

Server tokens expire after one year, and must be replaced. Depending on the MDM vendor, you may or may not get a warning that a token is going to expire. Well before a token is about to expire, sign in to Apple Business Manager, generate and download a new token for the MDM server and transfer that token to the MDM server for immediate installation. See your MDM vendor’s documentation for information about how to transfer the token.

Add mobile device management (MDM) servers

In Apple Business Manager , sign in with an account that has the role of Administrator or Device Enrollment Manager.
Click Settings at the bottom of the sidebar, then click Device Management Settings below Organization Settings.
Click , then enter a unique name for the server.
If you don’t want this MDM server to have the ability to release devices, see Release devices.
Upload the public key certificate file, then click Save.
Click then click Download Server Token.
You must now upload the server token to a specific MDM solution. Consult your MDM vendor’s documentation to complete this step.
Repeat steps 1 through 5 for any other MDM servers you want to add.

See alsoEdit mobile device management (MDM) servers in Apple Business Manager Delete mobile device management (MDM) servers in Apple Business Manager Mobile Device Management Settings for IT Administrators

Helpful?