Day zero support for iOS/iPadOS 17 and macOS 14
Published Sep 18 2023 09:00 AM 34K Views

With Apple's recent release of iOS/iPadOS 17.0 and macOS 14.0 Sonoma, we’ve been working hard to ensure that Microsoft Intune can provide Day zero support for Apple’s latest operating systems so that existing features work as expected.

 

We’ll continue to upgrade our service and release new features that integrate elements of support for the new operating system (OS) versions.

 

We’ve adopted a new data-driven infrastructure that powers the settings catalog to use a JSON based settings to automatically generate the UI. In the past, it took several sprints to create templates.

 

Today, we’ve automated the entire settings ingestion process using Apple's new GitHub repo. We provide Apple’s payloads and settings through their API and our first-party app preference settings with apps like Microsoft Office, Outlook, Defender, and Edge. This will simplify and expedite settings and payload updates for both IT admins and device users.

 

Declarative software updates for iOS, iPadOS, and macOS

The refreshed settings catalog will also change how feature updates are delivered to Apple devices, beginning with settings updates. We’re excited to release the latest software update enforcement-specific configuration for declarative software updates soon. In the settings catalog, admins will be able to specify an OS update to install by an enforced deadline on supervised devices.

 

This new configuration highlights the power of the settings catalog we’ve designed for the future with built-in declarative device management (DDM) support. It also highlights the power of DDM, where the device handles when to download and prepare the update and when to prompt users that an update is being enforced on their device. It ensures the update is installed by the deadline specified by the admin. Additionally, Apple announced new status items for declarative software updates, providing rich update status reporting in near-real time.

 

Day zero support of new settings and payloads

The settings catalog has been updated to include all of the newly released Apple setting in authentication, login, restrictions, security, and restrictions. More information can be found in Microsoft Documentation.

 

See iOS/iPadOS 17 and macOS 14 settings updates in the Intune admin console.

 

Screenshot of the new iOS 17 device restrictions under a device configuration profile in the Microsoft Intune admin center.Screenshot of the new iOS 17 device restrictions under a device configuration profile in the Microsoft Intune admin center.

 

Screenshot of the new macOS 14 authentication settings under the Settings Catalog profile in the Microsoft Intune admin center.Screenshot of the new macOS 14 authentication settings under the Settings Catalog profile in the Microsoft Intune admin center.

 

We want to hear your questions or feedback about these Day zero features to help us define the future of DDM. Comment on this post or reach out on Twitter by tagging us at @IntuneSuppTeam.

 

Learn more about Microsoft Intune:

 

Post updates
09/26/23: Added the known issues section, including a scenario where iPhone 15 devices are showing up as "iPhone" for their model name.

10/10/23: Added a known issue about impacted managed application behavior on macOS 14 devices with VPP apps, scripts, and apps installed with an MDM workflow. Apple has also pushed a fix for this issue on macOS 14.1 Beta 3 (23B5067a).

10/13/23: Added a known issue about updated account passwords not being recognized on devices running macOS14 even though they are valid.

01/04/24: The known issue where iPhone 15 devices were incorrectly identified as 'iPhone' in their model's name settings has now been successfully resolved with the November (2311) service release.
02/02/24: The known issue where updated account passwords were not recognized on devices running macOS 14 even though they are valid, has now been resolved by Apple. We recommend updating to version macOS 14.3 or higher to resolve.

02/26/24: The known issue where managed application behavior seen on devices enrolling on macOS Sonoma (14.0) where assigned macOS line-of-business (LOB) apps aren’t installed, has now been resolved by Apple. We recommend updating to version macOS 14.3 or higher to resolve.

20 Comments
Version history
Last update:
‎Feb 26 2024 05:20 PM
Updated by: