our company provides iPhones to its employees, and allows private usage. Microsoft identities are managed in Azure AD. Some users will abandon their privately owned phones and switch completely to the company device. Thus, private apple ids (and data associated with those apple ids) must somehow find its way on the company devices.
We are thinking about enrolling in Apple Business Manager and use Apple Device Enrollment. We are however not sure if the employee will be able to privately use his device after enrolling.
What would be the best approach to implement this in Intune?
When using Apple Business Manager with Intune - which is the leading system?