To be able to demonstrate Unified Device Management scenarios we recently added some new mobile devices to our demo environment. Amongst these devices are also iPads and iPhones which we had to enroll. The integration between Windows Intune and System Center 2012 R2 Configuration Manager was done earlier on.
Over-the-air enrollment of iOS devices is a rather straightforward process. In this blog post we will outline the step by step procedure to enroll an iPhone.
Time to fire up our iPhone 3GS and get started:
First you need the get the Windows Intune Company Portal app from the App Store. Be aware that this app can only be installed on devices that are running iOS 6 or a later version.
As soon as the Company Portal app is opened you will have to provide your user credentials and tap Sign In. We have ADFS implemented in our demo environment so we provide our AD credentials.
So far so good – but at this point our device is not enrolled yet. The notification icon in the top right corner, and the blue ‘i’ icon on the device name indicate there are still further actions to be taken. Tap the icon at the top or the device name at the bottom.
Tap Add this device.
Tap Add in the top right corner.
The device is being enrolled. This may take a minute.
Tap the install button to install the management profile.
A notification is displayed. Confirm by tapping Install Now.
Tap Install in the top right corner.
Profile installed successfully. Tap Done in the top right corner.
And that is all there is to it!
The device then also becomes visible in the ConfigMgr console. Our ConfigMgr administrators are now able to manage this device.
If you encounter any problems during the enrollment process you can shake the iOS device to get a diagnostics screen. Make sure the Company Portal app is running when you start shaking.
A diagnostics dialog box is shown where you can open up the log file for further analysis or email it.
Removing the profile
The management profile can be removed afterwards as well. This is the out-of-the-box behavior. We can block the user from doing this but that is a subject for a future blog post.
To remove the management profile go to Settings > General > Profile – Management Profile.
I hope you found this information helpful.
Until next time!
In a few weeks I will be heading to Las Vegas for IT/Dev Connections. This conference is taking place at the Aria Resort from September 15th to the 19th.
With MMS being discontinued, this is an event I have been really looking forward to for the past few months. Next to being a first time attendee I am also honored to be able to deliver 2 sessions in the Windows track.
The Windows track has a great line-up of speakers and sessions, and the keynote for this track will be presented by Brad Anderson, Corporate VP at Microsoft (blog).
These are the session titles and abstracts of the sessions that I will be delivering:
Session 1 : System Center 2012 R2 Configuration Manager and Intune: Setup and deployment Notes from the field, with a focus on Single Sign on.
This session dives into what you’ll do at the server level to drive System Center 2012 R2 Configuration Manager and Windows Intune integration for mobile device management.
The session includes real-life experience from the field to set up a subscription, connectors, certificates, Active Directory Federation Services (AD FS 2.0/2.1/3.0), DirSync, and workplace join scenarios among all possible server configurations that enable mobile device management.
Learn best practices for setting up AD FS from the field for user authentication and Single Sign-On; prepare for the challenges if you invested in previous AD FS 2.0/2.1 and want to take advantage of AD …
Session 2 : Managing your hybrid Mobile cloud workforce demystified with System Center Configuration Manager 2012 R2.
Do you need to manage Windows 8.1/RT, including non-Microsoft mobile devices, with Microsoft’s UDM solution (Configuration Manager 2012 R2 plus Intune)? Do you need to provide functionality for deploying the new Intune extensions (such as email profiles), managing your MDM settings, configuring VPN and wireless profiles, and deploying certificates?
Compliance settings, company resource access, and Intune extensions delivered in Configuration Manager are mostly unexplored territory for the Configuration Manager administrator. In this session we’ll use numerous demos to demystify these features. …
Note that Kenny and myself will not be the only Belgians presenting at the conference. Also in the Windows track there will be 2 sessions from our fellow SCUG member Dieter Wijckmans and a session from Michael Van Horenbeeck. Together we will show some serious Belgian Community Power!
Interested? Registrations for the event are still open. Click here for details.
Hope to see you there!
A few weeks ago I delivered a Technet Webcast on Configuration Manager Compliance Settings. This was the session abstract:
Compliance settings, formerly known as DCM, remains one of the often unexplored features in Configuration Manager. During this session we will walk through the new capabilities and improvements of this feature in ConfigMgr 2012, discuss implementation details, and demonstrate how you can start using it to fulfill actual business requirements.
The content of that webcast has been published on SlideShare by the Microsoft Technet Belux team. Click here to view it.
As always: questions, feedback and comments on this session are welcome!
Until next time!
Time for my weekly wrap-up of stuff to catch up with:
- Very helpful blog post from the Microsoft PFE team on how to use the same external ethernet adapter for deploying multiple devices with ConfigMgr OSD.
- Garth at Enhansoft explains in detail how to enable workstation logon audit policy in order to collect top console user details with Configuration Manager.
- On the System Center ConfigMgr team blog you can learn how to collect IMEI from devices enrolled in Windows Intune with System Center 2012 R2 Configuration Manager. IMEI is short for International Mobile Equipment Identity, which is a unique identifier for mobile devices.
- Released: KB2905359 – Installation of the Configuration Manager client agent fails with error code 80041002.
See you next week!
Last week I was on vacation so I skipped my weekly review. I am not back in full force yet but did have some time to check the radar and list up some interesting blips. Here they are for this week:
- Beginning of the week Microsoft announced the Unified Technology Event for Enterprises, or MUTEE. After writing off MMS last year it seems the other large conference TechEd will cease to exist in its current form as well. MUTEE will be the result of the merger of all these events. As a result of this there will be MUTEE, WPC and Build left on the conference agenda of Microsoft.
- The ConfigMgr blog has an interesting article on how to configure a reporting services point for HTTPS.
- Need some advice on Configuration Manager 2012 SQL Maintenance Plans, Index Optimization or other recommendations? Look no further.
- Interesting blog by Johan on how to list Applications configured for Task Sequence Deployments.
- OSD : how to sync the BIOS date in WinPE to avoid PXE Boot failures.
- Released: KB2978017 :
Cumulative Update 5 for System Center 2012 Configuration Manager Service Pack 1
Until next week!
After the release of Cumulative Update 2 for System Center 2012 R2 Configuration Manager end of June Microsoft has now also released the next CU for System Center 2012 Configuration Manager Service Pack 1: Cumulative Update 5. This update replaces any of the CU’s that were released earlier.
An overview of the issues that are fixed with this cumulative update and further download details can be found here.
The implementation process for this Cumulative Update will be identical to the previous ones, so until I post the implementation experience from our labs please use this blog post as a reference for implementing the CU.
A short list of items that caught my interest during the past week. I expect things to slow down a bit further during the holiday period.
- Interesting article on Mac OS X 10.9.3 Support for System Center 2012 Configuration Manager Clients on the ConfigMgr team blog.
- Also on the ConfigMgr team blog came the announcement that SQL Server Service Pack 2 is now supported with Configuration Manager 2012 SP1 and R2. At the time of writing this blog post this change was not documented yet in the supported configurations in the online documentation (here).
See you next time!