What’s new for enterprise in iOS 14

Learn about the enterprise content that Apple has released for iOS 14.

iOS 14 updates improve the stability, performance, or compatibility of your device and are recommended for all users. Device administrators can manage software updates using an MDM solution.

For information about general improvements, learn about iOS 14 updates.

For details about the security content of these updates, see Apple security updates.

iOS 14.7

Bug fixes and improvements

  • Resolves an issue in Setup Assistant that skipped the passcode pane if the Touch ID and Face ID pane was skipped.

  • Setup Assistant will no longer appear after restarting a device.

  • Application traffic will correctly route through the configured On Demand VPN with split tunnel.

iOS 14.6

Bug fixes and improvements

  • Resolves an issue that could cause devices to disconnect from 802.1X Wi-Fi networks when scanning available networks.

  • Resolves an issue that prevented managed devices from processing MDM commands after receiving a ManagedMediaList command.

  • Resolves an issue that prevented managed devices from turning on after a software update.

iOS 14.5

Device Management

  • Unlock iPhone with Apple Watch can be disabled via the restrictions profile.

  • On-Device Dictation can now be enabled for supervised devices.

Bug fixes and improvements

  • Exchange accounts can be manually removed by a user if the associated configuration profile has been removed by MDM.

  • Safari will successfully load websites when Network Extension filter is used in conjunction with a Global Proxy payload.

  • The VPN Connect on Demand switch now correctly disables when specified.

  • Apps using the CallKit framework can now show caller information based on local phone extension.

  • Devices configured with Apple Configurator will bypass the “Hello” screen to ensure device configuration is completed.

  • An icon defined for a Web Clip is now retained instead of using the favicon from the website.

  • Exchange accounts will no longer fail to sync when notes sync is enabled for an account.

  • Resolves an issue that prevented shared Exchange mailboxes from authenticating when configured as IMAP.

iOS 14.4

  • Resolves an issue that prevented Quick Look from displaying password-protected Microsoft Office files.

  • Applications built with the Xamarin framework and installed via MDM will no longer fail to launch.

iOS 14.3

  • Resolves an issue that could cause AirPrint devices to not appear when managing printers with a configuration profile.

  • Devices will correctly prompt users to change their password after the defined Maximum passcode age from the Passcode MDM Payload has passed.

iOS 14.2

  • When MDM defines a network via a Wi-Fi MDM settings and disables the MAC address randomization option, the Private Address feature can no longer be manually enabled by users.

  • If the Global HTTP Proxy MDM payload is configured to not allow direct traffic as a fallback, devices will no longer allow direct traffic when the PAC is unreachable.

  • When a Private Address is enabled for a wireless network, the hardware MAC address will no longer appear in ARP traffic.

iOS 14.1

  • Always On VPN configurations without the CellularServices service will now connect to VPN over cellular.

  • Third-party file provider applications will no longer show “Content Unavailable” in the Files app.

  • Third-party VPN apps successfully reconnect following a network transition.

iOS 14

iOS 14 includes new features like per account VPN, single sign-on enhancements, and other device management improvements.

Device Management

  • The Installed app MDM queries minimizes impact on device load by specifying an array of items to return.

  • iOS 14 introduces a new Wi-Fi privacy feature. When an iPhone connects to a Wi-Fi network, it identifies itself with a randomized MAC address. The MAC address randomization behavior only generates a new MAC address once for each WiFi network a device joins. A new random address will only be generated for a known network following “Reset Network Settings”, “Erase All Content and Settings”, or “Reset All Settings” actions. For networks defined by a Wi-Fi MDM settings, this can be disabled with the DisableAssociationMACRandomization option.

  • The Setup Assistant MDM payload allows for a list of setup items that can be skipped following automated enrollment and future updates.

  • Managed apps can now individually be identified as unremovable by the user.

  • Fonts installed via configuration profile will only be visible to apps implementing the Font APIs introduced in iOS 13.

  • Devices now return correct DeviceCapacity values to the DeviceInformation MDM query.

  • Web Clips installed by MDM will open in the specified app without prompting for user approval.

  • Reinstalling an Exchange ActiveSync MDM payload on a device will not cause a prompt for authentication.

  • A device can successfully update to iOS 14 via MDM while in Single App Mode.

  • Apple Configurator can now modify the home screen layout for iOS devices.

  • For an account configured with the Exchange ActiveSync MDM payload, the server returned via AutoDiscover will be ignored if a server is specified in the profile with the Exchange hostname key.

  • You can upload a file from a managed source to a managed domain in Safari.

  • The ListAvailableUpdates MDM command is only valid on supervised devices.


  • Exchange accounts on iOS 14 configured for OAuth with Microsoft cloud-based services (such as Office365 or outlook.com) will automatically be upgraded to use Microsoft’s OAuth2 identity platform (v2.0).

  • Emails for Exchange calendar invitations that contain notes will no longer result in “This message is only partially downloaded” message.

  • The sending account will not be auto-updated from a managed to un-managed account when composing a new email.

  • Fixes an issue in Mail where new messages may not appear in the Inbox.

  • Mail no longer prompts repeatedly when the account password has changed.

Bug fixes and other improvements

  • If an IKEv2 VPN MDM payload omits any values in Dynamic SA parameters, the defaults in iOS 14 will be set to:

    • NEVPNIKEv2EncryptionAlgorithmAES256

    • NEVPNIKEv2IntegrityAlgorithmSHA256

    • NEVPNIKEv2DiffieHellmanGroup14

  • CryptoTokenKit now includes support for persistent tokens. Persistent tokens allow third-party extensions to use cryptographic items stored on a Smart Card or networked hardware security module (HSM).

  • Safari displays a warning when connecting to websites that use TLS v1.0 or v1.1.

  • Addresses an issue that could cause a device to become unresponsive when initiating an AirPlay mirroring session with an Apple TV.

  • Fixes an issue that prevented VPN connections from reconnecting.

  • Resolves an issue that could cause the Contacts app to quit unexpectedly if more than one source account is set up.

Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.

Published Date: