Do you have iOS devices that were not purchased through an authorized Apple dealer and want to retrospectively add them to your Apple Business Manager and manage them with Cortado? This How To shows you how to configure the devices and take advantage of the benefits (enhanced anti-theft protection, automatic setup, supervision).
Note! Starting with iOS version 16.0, you can use an iPhone with Apple Configurator 2 instead of a Mac. This new method works very quickly and easily. We show you how to do this in our article How to register iOS devices in Apple Business Manager using an iPhone.
Apple Business Manager offers the opportunity to quickly and easily integrate iOS devices into the enterprise’s IT. For a long time, this was only available for devices that were purchased from an authorised dealer. (See how to integrate those devices here.)
In the meantime, it has also become possible to manually register iOS devices (from version 11) with Apple for your company. In the following, we’ll show you how to go about this.
- Load the Apple Configurator 2 (2.5 or later) onto your Apple Mac. The configurator can be downloaded for free from the Mac AppStore.
- Restore the device to factory default settings and connect it to the Mac via USB.
- Start the Apple Configurator 2.
Note! If you want to register a device again, first delete the server in the Preferences. Otherwise certificate errors may occur. Please find further information here.
Note for Cortado Server users! Manual device integration only works if you are using a server certificate for Cortado Server that was purchased from an official certification authority. Apple will not accept self-generated certificates in this case.
Note! Make sure that your iOS device is connected to the Wi-Fi. Either create a Wi-Fi profile in Apple Configurator 2 and add it to the device. (Proceed as described in the Apple user manual.) Or enter the language, country and Wi-Fi on the iOS device before clicking Prepare in the next step.
- Select the device in the Apple Configurator and click on Prepare (arrow in illus.).
- Check the checkboxes Add to Apple School Manager or Apple Business Manager and Allow devices to pair with other computers.
- Click on Next to proceed.
- In the next window, select New Server and confirm with Next.
- In the next window, enter the server name (your choice) and the host name or the URL. Complete the URL as follows:
- If you are using Cortado MDM: Use the following URL: https://go.mycortado.com/fw/AppleDep/GetAppleDepMdmProfile
- If you are using Cortado Server: Use the host name or the IP address of the Cortado server. (example: https://my.servername.de/fw/AppleDep/GetAppleDepMdmProfile ).
- If you receive an error notification (see illus.), ignore and click on Next.
- In the next step, select the SSL certificate for Cortado MDM or the Cortado server. If you are using a proxy server (with the Cortado Proxy Extension), please select the SSL certificate for the proxy server.
- Click on Next to continue.
- Create a new organisation or select an existing one.
- In the next step, enter your Apple ID for Apple Business Manager.
- Select Generate a new supervision identity, if you are creating a new organisation.
- Then specify which setup steps should be carried out on the device by the user (example in illus.).
- Then click on Prepare.
- Wait till the iPhone is configured and give it to a user.
Note! If the error message [MCCloudConfigErrorDomain - 0x80EF (33007)] occurs at this point, the device may have been added to Apple Business Manager at an earlier time.
- Following completion of the setup in the Apple Configurator, you can find the device in the Apple Business Manager.
- Regardless whether you have configured automatic assignment of new devices to an MDM server in the Apple Business Manager or not, the device still has to be manually assigned to your MDM server.
Now the user use their access data to log in to the iPhone/iPad and can then carry out the setup steps you specified. The user has to be imported into the Administration Portal beforehand for this (see Cortado MDM or Cortado Server). Cortado MDM users must then register with invitation email in My Cortado. Cortado Server users use their access data (email address and company password) for the domain.