Free separation of business and private data powered by Apple iOS & AppTec
With its new update to iOS 13.1, Apple now offers companies the ability to better manage BYOD devices and better protect the privacy of their users through the User Enrollment feature. AppTec is one of the first unified endpoint management solution providers to support the new iOS feature.
User Enrollment is a modified version of the existing iOS-MDM protocol that allows users of BYOD devices to better protect private data while ensuring the security of professional data on these devices. Apple is thus introducing a feature that has been available to Android users with the “Work” profiles in Android Enterprise since the end of 2014 with Android 5.0 Lollipop.
More privacy thanks to Managed Apple ID
The modified User Enrollment is thus a significant measure of the Apple Group to support the business use of private end devices, which has long been expected by users and experts. It will have a significant impact on companies’ plans for the use of Enterprise Mobility solutions, because privacy reasons no longer stand in the way of their use.
To separate private from professional data, apps and policies, the apps and policies are linked to a Managed Apple ID. As a result, the MDM system will no longer know which private apps the user has installed. Also, device administrators can neither delete the device passcode (and thus unlock the device), nor increase the complexity of the passcode, nor read device IDs such as the IMEI.
Separate storage of company data in the Apple File System (APFS)
However, the device administrator still has the right to install and configure professional apps and accounts, to enforce a six-digit passcode, to query data related to professional apps, certificates and configuration profiles, or to impose certain restrictions, such as preventing the use of the Messages app.
In the future, company data – such as data from managed apps, professional iCloud documents or managed email attachments – will be stored in a separate Apple File System (APFS) on the iOS device, which is created during user registration and encrypted separately from the user data.
AppTec supports user enrollment with the latest MDM update
The registration process has been significantly simplified compared to the old iOS-MDM protocol: Although users still have to initiate the registration via the “Settings”, it is leaner and the user is better guided.
AppTec is one of the first providers of unified endpoint management solutions to already support user enrollment under iOS 13.1. AppTec customers who want to switch their managed Apple devices to user enrollment will find the new feature available with the latest update of the AppTec Mobile Device Manager. To be able to use the feature immediately, companies only need to register under “Apple Business Manager” to create their Managed Apple ID/IDs.
With its Enterprise Mobility Manager, AppTec supports companies in managing the large number of company-owned or private smartphones, tablets and laptops in an intelligent and controlled manner. The solution for managing and securing mobile devices features an intuitive management console and numerous useful security functions. The customer is free to choose whether to use an in-house server or the cloud-based AppTec offering – with server locations exclusively in Switzerland and Germany. Founded in Basel in 2011, the company has now won over more than 6,400 customers with its slim and easily accessible “mobile-first solution”. AppTec is the leader in the current Crisp Vendor Universe Quadrant 2019 and has already received several awards as a leading solution.
Further information can be found at www.apptec360.com.