S03E07 - Enrolling Apple devices to Intune (I.T)

Great video! Just had my first personal experience with this. The experience is far from flawless. I can remove the Management profile as a user myself by using the "-" button below the profiles. After that I needed to re register the device in ABM for it to be able to get enrolled again. I see in your video (17:32) the "-" button at the bottom of the window isn't greyed out aswell. The Firewall profile is greyed out. I believe this is a major issue.
Also Intune tells me the device is supervised, but I cannot use the supervised mode functionalities from Intune. (like Restart, Shutdown and Lost Mode).

Gréât vidéo, nice to see apple on the screen and all the steps 🙏

Great show as always.

Thanks for the videos on covering macOS!
Oh and a pro tip: Command - Ctrl - Space 😉

User profile can be AAD backed now with Xcreds an opensource program

Thank you guys - very helpful!!!

Hi guys, can you share how you sideloaded apple configurator 2 to the iphone? Would be really helpful.

This is great. I've been trying to find this. I'm disappointed that it's so complicated. I used to be able to add devices by just adding the serial number into the Apple Business Manager.

Thanks for the detailed video, is there a way to skip the "create a computer account" at 15:55 ? get the device enrolled at ABM > Intune > profile and skip this part so user is not "root" in the system and we continue to manage the device from intune?

What about the Mac App Store applications? They seem to be greyed out after this type of enrolment??

Is a device reset required for this method? what is process if the devices are already enrolled into inTune?
basically trying to get devices added ABM so they can be enrolled properly, so we can push out ISO updates.

Hi guys just a quick question, how will you control admin credentials for it? will it be AAD cred or do you need to create a local admin account?

if you enrolling devices in ADE you will need to get them enrolled through apple is that correct

hi, is there anyway that it can automate too with the installing the Office365

Do you have any advice on enrolling a Mac VM into ABM that we can use for Intune testing?

Hey ya'll, I'm running into an 500 error when the device is trying to enroll. Intune can see it and has a profile but only one Mac has been able to successfully join the server. Any idea where I could look?

Hey, @10:10 the blur of the serials doesn't quite show up in time, just FYI!!

Is there any way to do patch management via Intune for MacOS devices? I don't see a way out of the box, but I do see the ability to create custom template profiles. Perhaps something can be scripted?

Thanks so much for this video. I'm a total visual guy so reading all the documentation just confused the hell out of me. You answered all the questions that was holding me back after reading the documentation.
Question: In the previous episode we created the companyportal-installer package and created a LOB app in Intune. That LOB app was assigned to a group however the device that needed to be in that group didn't exist in Intune yet. Then in this episode, after enrolling the device into ABM and after allowing it to sync over to Intune, I didn't see you add the mac device to the Intune group so that the company portal app could install. Was that a missed step and, if using groups to install a package, don't we need to add the mac to that group for company portal install?

Do you have to already have a mac to set-up the company portal before you can begin enrolling brand new macs? In S03E05 you guys already had a mac that you were logged into before you did the company portal, but in this video the mac you're using is brand new.

Why does it tell you to create a computer account? I would think i should be signing into my azure AD account like windows. I dont want my users creating an account. Would be too much for them. Is there a way I can skip that?

Excellent Ben & Steve. I have done everything as you have shown in the video, my MacBook pro is showing in Enrollment program tokens and also in Apple business manager. When I boot the device it tries to connect to our MDM server in Azure but I get an error "Unable to connect to MDM server" any ideas why this might be?

Thanks guys, Did you guys make a video how to enroll IOS devices ?

This is brilliant! Will the Apple Configurator be available for iOS/iPhones aswell after beta? Or will you still be forced to sideload the app?

Do you know if microsoft/apple are planning to implement a solution similar to jamf that will allow the use of an AAD account to authenticate/sign in to a macbook?

I have followed all the steps and it didn't work. Configured the Enrollment Program Token and Created the Enrollment profile for the macOS. I then erased content and settings on the MAC mini OS v.12.4, and added it to ABM via the configurator app. I then assigned the MDM server in to the device in ABM, did a sync in Intune and the device showed up in in device list under the Enrollment Program Token. I then assigned the macOS enrollment profile to the device. Then I powered on the mac and never got the Remote Management screen during setup.
How did it work for you guys? Is there a group somewhere that I need to assign the device to?

After my MacBook is enrolled to MDM server, I can still delete the management profile by pressing minus "-" icon without any restrictions. The Apple ID I used is a standard user profile. Any idea how to prevent standard user from doing this?

Also, how do you add an existing device that a user is already using?

Youre video resolution is really to low.