Apple Enterprise focuses on IT demand. With that in mind, it has made a number of interesting changes to WWDC 2022. Here is a list of the improvements Apple has made so far.
Apple has announced a raft of developer technology
Apple introduced a range of enterprise-centric improvements during the developer session held at the event.
Announcement device management
Introduced in 2021, declarative devices work to make operating devices more autonomous and functional, as well as allow servers to be lighter and more responsive. It is now also available for Macs.
Managed device Certification
A new security feature that uses SecureEnclave to provide strong assurances about a client device, such as its identity and software version.
Apple Configurator
The Apple Configurator for the iPhone was launched in 2021. This allows admins to add Macs purchased outside the normal channel to their organization using Apple School Manager (ASM) or Apple Business Manager (ABM). When running Setup Assistant on Mac, administrators only need to hold an iPhone running configurator on top of the animation. The Mac will then connect to the Internet and add itself to your organization. At WWDC 2022, Apple has expanded the configuration for the iPhone so that it can now add iPhones and iPads.
Google Workspace
As it moves toward password-less access, Apple wants to build a robust system that allows users to sign in only once and then retain that identity in everything else. With that goal in mind, the company has confirmed that Apple Business Manager has now merged with Google Workspace as an identity provider for federated authentication.
Sign in with Apple
The company says the feature can now be used at work and at school, including with a managed Apple ID. There are additional security features, so administrators can allow all apps or selected apps to use the sign in tool.
OAuth2 support
This is a very important change. Apple has used a token-based authentication system in iOS / iPad OS 15 so that MDM servers can verify user identities. This changes with the addition of support for OAuth 2 as another authentication process in iOS / iPad OS 16. This means that MDM servers will be able to support additional identity provisioning system providers by improving security, and adding another new feature described below.
Enrollment single sign-on, or enrollment SSO
This is a faster system that enables employees to register their personal devices in your organization’s MDM system. To download a listing single sign-on app, system users must enter their email address. The user then signs in once and the app handles the rest of the process. IT and MDM vendors need to take some steps to ensure that the correct JSON document is shared with the system before it is supported with the MDM server configuration.
Platform Single Sign-On (Platform SSO)
macOS Ventura takes advantage of this new feature, which allows users to automatically sign in to apps and websites once logged in. The feature, which uses a range of technologies – third-party SSO extensions, its own Kerberos extensions, FileVault, OAuth, OpenID and more – means you never have to remember another website password or go through the process of entering it. Will be Again, no compromise on your security.
Automatic device enrollment
Apple has made a significant change to the Automated Devices listing, which I imagine will make it even harder to set up a lost or stolen managed device for sale. The company states that ASM / ABM-registered Macs must have an Internet connection to be set up once deleted or restored.
Accessory protection
To protect against close-access attacks, a new MDM setting allows administrators to require a user’s password before using a new Thunderbolt or USB accessory with the M-Series Apple notebook.
Web content filtering
Administrators will be able to apply web content filters and DNS proxies to iPhones and iPads powered by iOS 16 and iPadOS 16.
E-SIM switching is being made easy
You will be able to transfer e-SIM between iPhone using Bluetooth. To do this, just move your old iPhone closer to your new one and follow 6 Set up cellular Command dialog. Apple also has security measures in place to ensure that users do not accidentally delete their existing iSum, as this requires a new arrangement.
Improved shared iPad
This slight improvement can make a big difference. A new command allows administrators to automatically suggest your company’s domain name when a user starts entering a managed Apple ID. This saves a lot of time for shared iPads, especially when handling complex URLs, as it reduces spelling problems.
Accessibility on iOS and iPadOS 16
Apple has added tools to allow MDM systems to manage popular accessibility settings, including text size, voiceover, zoom, touch accommodation, bold text, motion reduction, contrast contrast, and transparency reduction. Users can change these settings, but this means that devices can be made more accessible from scratch.
Apple has also made some key announcements
Apple made several announcements during its WWDC keynote address that should benefit enterprise and business users:
Continuity camera
It lets you use your iPhone as a webcam and adds a desktop view to share videos from the top of your keyboard.
Mail and message improvements
A welcome (and long-awaited) role in improving mail search will help everyone. Scheduled emails, the ability to delete sent emails, and the ability to set reminders to return unsolicited emails will all make a big difference in the workflow. This is the catch-up of Apple Play, as such features are available on other email platforms using tools like Boomerang.
Metal 3
Some interesting enhancements to the Metal 3 include the ability to create more photo realistic environments and take more advantage of graphics memory to run applications.
Spotlight Search
This means you can get valuable web results at a platform level. It does not completely replace the traditional search engines, but it is a wish of what is going to happen.
Live text
The ability to drag text (actionable format) from images and videos will make a huge difference for users and open up exciting possibilities for developers, especially in businesses working with an international audience.
Quick security response
Rapid Security Response will make a difficult difference between hybrid and remote enterprises because it means Apple can install security updates directly on Mac, iPhone and iPad. This will help speed up the installation of software updates throughout the business that rely on the employees’ discretion to update so far. This means you don’t have to wait for the full update of the MDM system.
Paskey
These are important because they usher in a completely passcode-free future The move would greatly reduce business and personal vulnerabilities to phishing.
Have you seen the additional enterprise enhancements announced at WWDC? Drop me a line and let me know.
Follow me TwitterOr join me on AppleHolic’s bar & grill and Apple discussion group on MeWe.
Copyright © 2022 IDG Communications, Inc.