May 04 2021 11:43 AM
So, I setup an enrollment profile that is set to "Determine based on user choice" (we are still in testing). All fine and good there. When I test enrolling a BYOD iOS device into Intune, we download the Company Portal app, set up access, on the dialog for "Select device and enrollment type" we choose "I own this device" and "Secure work-related apps and data only". Download MS Authenticator and install, trust the profile, install root cert, allow the configuration profile, install the management profile. But when I try to enroll the device, it asks for "User Enrollment" sign-in, what Apple ID do I use there? I assumed it was a managed Apple ID that I would get from an Apple Business Manager account, but the tech at Apple is telling me that they only allow ABM accounts for corporate owned devices. My question is, how do I get a corporate Apple ID to use int Intune for this?
May 04 2021 10:53 PM
May 09 2021 02:34 AM - edited May 09 2021 03:35 AM
SolutionHi,
You need Apple Business Manager (ABM) to create a Managed Apple ID which you need for this scenario. It is also listed on this page under prerequisites (Enroll iOS/iPadOS devices with user enrollment in Microsoft Intune - Microsoft Intune | Microsoft D...). You can create these accounts manually in ABM or you can setup federation with Azure using JIT or SCIM (https://vmlabblog.com/2020/11/federated-authentication-with-apple-business-manager/)
Just let me know if you want to know more about this topic.
Best regards,
Aad Lutgert
May 17 2021 12:14 PM
May 09 2021 02:34 AM - edited May 09 2021 03:35 AM
SolutionHi,
You need Apple Business Manager (ABM) to create a Managed Apple ID which you need for this scenario. It is also listed on this page under prerequisites (Enroll iOS/iPadOS devices with user enrollment in Microsoft Intune - Microsoft Intune | Microsoft D...). You can create these accounts manually in ABM or you can setup federation with Azure using JIT or SCIM (https://vmlabblog.com/2020/11/federated-authentication-with-apple-business-manager/)
Just let me know if you want to know more about this topic.
Best regards,
Aad Lutgert