Is it possible to get serial number as part of usable attributes for dynamic device group membership rules? We are trying to populate a test group for Apple iOS/iPadOS DEP devices prior to them actually being enrolled in order to have an "required" app installed. The problem there is no other "DeviceID", that I can find anyway, available until it goes through the DEP pre-enrollment or full enrollment with Company Portal. Our use case is that we want the Microsoft Authenticator app installed on our iOS DEP devices without users having to sign in to the Apple ID and prior to full enrollment with the Company Portal. The only other method I can see working would be for Microsoft to do the same they can do with the Company Portal app and have Authenticator installed the same way. Ultimately, we are trying to avoid users setting up their authenticator incorrectly (it is a long story that we worked with your identity support on) prior to launching Company Portal to complete Intune enrollment.