iOS Chaos? VPP Nightmare?
advertisement
Chris Nilsson cnilsson@lcisd.or g @chrisnilsso n Enterprise iOS Plugging the Holes* Enterprise iOS Behind the Asterisk* Enterprise iOS What are they hiding? 50 free resources for managing iPads Agenda 1 Device Management 3 Content Management 3 Volume Purchase Program 2 Lamar CISD's Hybrid Model 5 Q&A iOS Progress PC Free iCloud Push Apps* Multiple iTunes Accounts on a device 2 App store iPhone Configuration Utility 3 Data Security Per app VPN Managed Distribution 4 Native MDM Wireless App Distribution* 5 6 7 Supervise Mode Force HTTP Proxy Set Wallpaper Device Management Apple's Version Device Settings User Configuration Restrictions Security Device Management Apple's Version Device Settings • WiFi • Passcode Restrictions • Web Clips User Configuration Security Device Management Apple's Version Device Settings • WiFi • Passcode Restrictions • Web Clips • Exchange • LDAP • VPN User Configuration Security Device Management Apple's Version Device Settings Restrictions • WiFi • Web,YouTube, App Store • Passcode • Camera, FaceTime, iCloud • Web Clips • Content Ratings • Exchange • LDAP • VPN User Configuration Security Device Management Apple's Version Device Settings Restrictions • WiFi • Web,YouTube, App Store • Passcode • Camera, FaceTime, iCloud • Web Clips • Content Ratings • Exchange • APN • LDAP • SCEP • VPN • x.509 Certificates User Configuration Security Apple Configuration Utility Enterprise Management MDM Platform Apple Configuration Utility Security Auditing VPP Management MDM Limitations ‣ Users can delete MDM profile* ‣ Device can be wiped* ‣ No REAL app management* ‣ Cost JAMF Casper Suite Current MDM Solution Meraki Hybrid MDM WordPress Meraki Meraki Meraki Meraki Meraki Meraki Meraki Meraki Meraki Limitations ‣ Hosted (can be a philosophical limit) ‣ No Directory Services Support (LDAP) ‣ Cost* WordPress WordPress Custom Plugin WordPress Custom Plugin WordPress Custom Plugin WordPress Custom Plugin WordPress Custom Plugin Tagging Content Management iTunes 1 Personal 2 Group 3 VPP Account Types 1 Personal 2 Group 3 VPP Account Types 1 2 Personal Group ‣What everyone uses ‣Sync multiple PERSONAL devices ‣Can purchase apps ‣iTunes 3 VPP is built around this Account Types 1 2 3 Personal Group VPP ‣Sync multiple devices ‣Can't pay for apps Account Types 1 2 Personal Group ‣Apple's answer to enterprises ‣Difficult to manage ‣FULL ‣All 3 VPP OF HOLES we have... Apple Volume Purchase Program Program Manager Program Facilitators End Users Apple Volume Purchase Program Program Manager Program Facilitators End Users Apple Volume Purchase Program Program Manager ‣Program Administrator ‣Single Account ‣Cannot Program Facilitators ‣Make Purchase Purchases ‣Distribute Apps* ‣Unlimited End Users Number ‣Load Apps* ‣No Access ‣Personal* to VPP System VPP Distribution Options Codes Managed Distribution Easy to Distribute MDM Required Shaky MDM Link Consumable* Native MDM Support Ownership Enterprise Management Content Management Device Management Apps User Content Policy Security Enterprise Management Apps User Content Policy Security Device Management Content Management Holy Grail??? Device Management MDM Platform Content Management Still Missing the Mark Need an OTA Solution that is DEVICE BASED!!! MDM VPP Management MDM VPP Management MDM VPP Management MDM VPP Management iCafe Approach ‣ Link the Apple VPP process with district processes ‣ Manage programs not devices ‣ Enable a small number of people to manage thousands of apps ‣ Maintain ownership of app purchases iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach iCafe Approach How Does iOS 7 Change Things? Managed Deployment Leverage MDM Assured Compliance iTunes Account Nightmare A Hybrid Approach Group MDM LCISD MDM Personal VPP Question s you Thank . Chris Nilsson cnilsson@lcisd.or g @chrisnilsso n
