
Signing in to Shared iPad
Depending on the configuration, there are a few different ways users can sign in on Shared iPad.
Shared iPad Temporary Session
In iPadOS 13.4 or later, any user has the ability to initiate a temporary session without the need for a user name or password by tapping Guest at the login screen. All their data—including browsing history—is deleted when the user signs out. In a temporary session, any user can unlock and access the iPad without a password. Users working in a temporary session should take this into account if they’re signed in to any websites or apps. Because a Managed Apple ID isn’t required, apps that use or require iCloud or cloud-based storage may not be supported.
Using Temporary Sessions with Shared iPad also prevents users from modifying account settings or signing in to Apple services. For example, users can’t create new mail accounts in Settings or sign in to the App Store.
Note: Purchased Books can’t be assigned in a temporary session on Shared iPad because books can be assigned only to users with an Apple ID or Managed Apple ID.
Shared iPad sign-in process
Apple School Manager and Apple Business Manager can be linked to Microsoft Azure Active Directory (Azure AD); Apple School Manager can also be linked to a Student Information System (SIS) or have accounts imported using SFTP. The Shared iPad sign-in process differs depending on how you configure Apple School Manager or Apple Business Manager.
Note: Apple Business Manager always requires a complex password; in Apple School Manager however, passcode complexity can be set. For younger users, there’s also an option to sign in using a shorter—four- or six-digit—numeric passcode. The MDM administrator can also set a grace period—a number of minutes—during which the users can unlock the iPad without a passcode or password (it locks itself automatically after 2 minutes of inactivity).
Sign in to Shared iPad with federated authentication accounts
The user enters their Azure AD user name and password.
The user must then create a Shared iPad passcode or password.
The next time the user signs in, they do so with their Azure AD user name and new Shared iPad passcode or password.
Sign in to Shared iPad with accounts created manually, imported using SFTP, or linked to SIS
The user enters their Managed Apple ID and a temporary Shared iPad passcode generated in Apple School Manager or Apple Business Manager.
The user must then change the temporary Shared iPad passcode or password.
The next time the user signs in, they do so with their Managed Apple ID and new Shared iPad passcode or password.
Sign in to Shared iPad with federated authentication accounts linked to accounts imported using SFTP or linked to SIS
If you use federated authentication with Apple School Manager, you can also link to your Student Information System (SIS) or perform an SFTP upload of user accounts. If you choose one of these options, Managed Apple IDs are created automatically in Apple School Manager and the student must use a Shared iPad passcode instead of using their Azure AD password.
The user enters their Azure AD user name and a temporary Shared iPad passcode generated in Apple School Manager.
The user must then create a Shared iPad passcode or password.
The next time the user signs in, they do so with their Managed Apple ID and new Shared iPad passcode or password.