Apple Platform Deployment

• Welcome
• Intro to Apple platform deployment
• What’s new
• Plan the deployment
  • Intro to device management
    • Declarative device management
      • Intro to declarative device management
      • Use declarative device management to manage Apple devices
    • Device management
      • Intro to device management profiles
      • Intro to device management payloads
    • About device supervision
  • Choose a deployment model
  • Device enrolment methods
    • Enrolment methods for Apple devices
    • Account-driven enrolment methods
    • User Enrolment and device management
    • Device Enrolment and device management
    • Automated Device Enrolment and device management
  • Deploy Apple TV
  • Deploy Apple Watch
  • Deploy Apple Vision Pro
  • Shared iPad deployment
    • Shared iPad overview
    • Prepare Shared iPad
  • Choose a device management service
  • Device management migration
    • Plan your device management migration
    • Configure your new device management service
    • Migrate managed devices
  • Back up and restore managed devices
  • Use standards-based services
• Prepare your environment
  • Deploy devices using Apple School Manager or Apple Business Manager
  • Use Apple Configurator
    • Configure devices
    • Install apps with Apple Configurator
    • Add Apple devices to Apple School Manager or Apple Business Manager
  • Configure your network for device management
  • Configure devices to work with APNs
  • Configure devices with mobile data connections
    • Prepare to use eSIMs with Apple devices
    • Using a device management service to deploy devices with mobile connections
    • Support for private 5G and LTE networks
    • Support for 5G Network Slicing
  • Prepare your Wi-Fi networks
    • Optimise your Wi-Fi networks
    • Review aggregate throughput for Wi-Fi networks
  • Speed up downloads
    • Intro to content caching
    • Set up content caching
    • Use DNS TXT records
    • Advanced content caching settings
    • Content caching from the command line
    • Content caching metrics
    • Set up a shared internet connection
• Use identity services
  • Intro to Apple identity services
  • Platform SSO for macOS
  • Enrolment SSO for iPhone, iPad and Apple Vision Pro
  • Integrate Apple devices with Kerberos
    • Intro to single sign-on
    • Kerberos SSO extension
  • Integrate Apple devices with Microsoft services
    • Integrate with Microsoft Entra ID
    • Integrate with Microsoft Exchange
    • Identify an iPhone, iPad or Apple Vision Pro using Microsoft Exchange
    • Integrate Mac computers with Active Directory
• About Managed Apple Accounts
  • About Managed Apple Accounts
  • iCloud for Managed Apple Accounts
• Review the setup process
  • Manage Setup Assistant
  • Configure Setup Assistant in Apple TV
  • Set up local macOS accounts
• Device management configuration options
  • Plan your configuration profiles
  • Review device management payloads
  • Review device management restrictions
  • Review declarative configurations
• Manage software updates
  • About software updates
  • Software update process
  • Installing and enforcing software updates
  • Use device management to deploy software updates
  • Phases of Apple software update enforcement
  • Testing software updates with the AppleSeed for IT beta programme
• Distribute content
  • Intro to content distribution
  • Content distribution methods
  • Distribute apps
    • Distribute Managed Apps
    • Distribute Custom Apps
    • Distribute Unlisted Apps
    • Distribute proprietary in-house apps
    • Distribute custom packages for Mac
    • Get app bundle IDs
      • Bundle IDs for iPhone and iPad Apple apps
      • Bundle IDs for Apple TV Apple apps
  • Manage login items and background tasks on Mac
• Integrate with networks
  • How Apple devices join Wi-Fi networks
  • Connect to 802.1X networks
  • Wi-Fi roaming support
  • Cisco network enhancements
  • Wi-Fi specifications for Apple devices
  • Use VPN for secure access
    • VPN overview
    • Cisco IPsec VPN setup
    • Use a VPN proxy and certificate configuration
  • Use network relays
  • Filter content
  • Use AirPlay
• Ensure device security
  • Intro to device management security
  • Rapid Security Responses
  • Lock and locate devices
  • Erase devices
  • Activation Lock
  • Manage accessory access
  • Enforce password policies
  • Use persistent tokens
  • Use built-in network security features
  • Managed Device Attestation
  • Manage certificates
    • Intro to certificate management
    • Distribute certificates
  • Smart card integration
    • Intro to smart card integration
    • Smart card support on iPhone and iPad
      • Supported smart card functions on iPhone and iPad
      • Use a smart card on iPhone and iPad
    • Smart card support on Mac
      • Supported smart card functions on Mac
      • Use a smart card on Mac
      • Configure a Mac for smart card–only authentication
      • FileVault and smart card usage
      • Advanced smart card options
  • macOS system security
    • Startup security
    • System extensions in macOS
    • FileVault
      • Intro to FileVault
      • Use secure and bootstrap tokens
      • Manage FileVault with device management
    • Mac app security enhancements
• Device management settings
  • Declarative configurations and status reports
    • Declarative status reports
    • Declarative app configuration
    • Authentication credentials and identity asset declaration
    • Background task management declarative
    • Calendar declarative configuration
    • Certificates declarative configuration
    • Contacts declarative configuration
    • Exchange declarative configuration
    • Google Accounts declarative configuration
    • LDAP declarative configuration
    • Legacy interactive profile declarative configuration
    • Legacy profile declarative configuration
    • Mail declarative configuration
    • Maths and Calculator app declarative configuration
    • Passcode declarative configuration
    • Passkey Attestation declarative configuration
    • Safari extensions management declarative configuration
    • Screen Sharing declarative configuration
    • Service configuration files declarative configuration
    • Software Update declarative configuration
    • Software Update settings declarative configuration
    • Storage management declarative configuration
    • Subscribed Calendars declarative configuration
  • Device management lists
    • Device management service enrolment information
      • Device management service User Enrolment information
      • Device management payloads for Device Enrolment
      • Device management payloads for Automated Device Enrolment
    • Device management payload lists
      • Payload list for iPhone and iPad
      • Payload list for Mac
      • Payload list for Apple TV
      • Payload list for Apple Watch
      • Payload list for Apple Vision Pro
      • Payload list for Shared iPad
      • Payload list available in Apple Configurator for Mac
    • Device management restriction lists
      • Restrictions for iPhone and iPad
      • Restrictions for Mac
      • Restrictions for Apple TV
      • Restrictions for Apple Watch
      • Restrictions for Apple Vision Pro
      • Restrictions for supervised devices
      • Restrictions available in Apple Configurator for Mac
    • Device management command lists
      • Device management command list
      • Device management command settings options list
    • Device management query lists
      • Device information queries
      • Device network information queries
      • Operating system queries
      • Installed app queries
      • Security queries
  • Device management payload settings
    • Accessibility payload settings
    • Active Directory Certificate payload settings
    • AirPlay payload settings
    • AirPlay Security payload settings
    • AirPrint payload settings
    • App Lock payload settings
    • Associated Domains payload settings
    • Automated Certificate Management Environment (ACME) payload settings
    • Autonomous Single App Mode payload settings
    • Calendar payload settings
    • Mobile payload settings
    • Mobile Private Network payload settings
    • Certificate Preference payload settings
    • Certificate Revocation payload settings
    • Certificate Transparency payload settings
    • Certificates payload settings
    • Conference Room Display payload settings
    • Contacts payload settings
    • Content Caching payload settings
    • Directory Service payload settings
    • DNS Proxy payload settings
    • DNS Settings payload settings
    • Fonts payload settings
    • Domains payload settings
    • Energy Saver payload settings
    • Exchange ActiveSync (EAS) payload settings
    • Exchange Web Services (EWS) payload settings
    • Extensible Single Sign-on payload settings
    • Extensible Single Sign-on Kerberos payload settings
    • Extensions payload settings
    • FileVault payload settings
    • Finder payload settings
    • Firewall payload settings
    • Fonts payload settings
    • Global HTTP Proxy payload settings
    • Google Accounts payload settings
    • Home Screen Layout payload settings
    • Identification payload settings
    • Identity Preference payload settings
    • Kernel Extension Policy payload settings
    • LDAP payload settings
    • Lights Out Management payload settings
    • Lock Screen Message payload settings
    • Login Window payload settings
    • Managed Login Items payload settings
    • Mail payload settings
    • Network settings
      • Wi-Fi settings
      • Ethernet settings
      • WEP, WPA, WPA2, WPA2/WPA3 settings
      • Dynamic WEP, WPA Enterprise and WPA2 Enterprise settings
      • EAP settings
      • HotSpot 2.0 settings
      • Legacy Hotspot settings
      • Cisco Fastlane settings
      • Network Proxy Configuration settings
    • Network Usage Rules payload settings
    • Notifications payload settings
    • Parental Controls payload settings
    • Passcode payload settings
    • Printing payload settings
    • Privacy Preferences Policy Control payload settings
    • Relay payload settings
    • SCEP payload settings
    • Security payload settings
    • Setup Assistant payload settings
    • Single Sign-on payload settings
    • Smart Card payload settings
    • Subscribed Calendars payload settings
    • System Extensions payload settings
    • System Migration payload settings
    • Time Machine payload specifics
    • TV Remote payload settings
    • VPN device management settings
      • VPN device management settings overview
      • AppLayerVPN payload settings
      • IKEv2 settings
      • IPsec settings
      • L2TP settings
      • VPN Proxy settings
    • Web Clips payload settings
    • Web Content Filter payload settings
    • LDAP payload settings
• Additional resources
  • Join AppleSeed for IT
  • AppleCare support
  • Professional Services
  • Deployment and management training
  • Apple Consultants Network
  • Apple web resources
• Glossary
• Document revision history
• Copyright