Create a Policy for MDC to activate APNS/DEP for iOS enrollment
This is an example of how to create a new policy for ESET Mobile Device Connector to activate APNS (Apple Push Notification Services) and iOS device Enrollment feature. This is required for iOS device Enrollment. Before configuring this policy, create a new APN certificate and have it signed by Apple on the Apple Push Certificates Portal so that it becomes a signed certificate or APNS Certificate. For step-by-step instructions see the APN certificate section.
Enter a Name for this policy. The Description field is optional.
Select ESET Remote Administrator Mobile Device Connector from the drop-down list.
Under General, go to Apple Push Notification Service and upload the APNS Certificate and a APNS Private Key.
APNS Certificate (signed by Apple) - click the folder icon and browse for the APNS Certificate to upload it. (This is the file you downloaded from Apple Push Certificates Portal.)
APNS Private Key - click the folder icon and browse for the APNS Private Key to upload it. (This is the file you downloaded during APN/DEP Certificate creation.)
Diagnostics - Enable or disable the submission of anonymous crash report statistics to ESET for the improvement of customer experience.
Logging - Set the log verbosity to determine the level of information that will be collected and logged, from Trace (informational) to Fatal (most important critical information).
If you are creating this policy for iOS enrollment with Apple DEP, navigate to the Apple Device Enrollment Program (DEP).
Apple Device Enrollment Program (DEP) - these settings are DEP-only.
Upload authorization token - click the folder icon and browse for the DEP server token. (This is the file you downloaded when you created the virtual MDM server on the Apple DEP portal)
Supervised mode - supervised mode is mandatory for most of the device policy options.
Mandatory Installation - the user will not be able to use the device without the installation of MDM profile.
Allow user to remove MDM profile - device must be in supervised mode to disallow the user to remove the MDM profile.
Skip Setup Items - this setting allows you to choose which of the initial setup steps during the initial iOS setup will be skipped. You can find more information about each of these steps in the Apple Knowledgebase Article.
Select the device that is hosting the MDM server the policy is targeted on.
Click Assign to display all Static and Dynamic Groups and their members. Select the Mobile Device Connector instance that you want to apply the policy on and click OK.
Review the settings for this policy and click Finish.