Hi, I am working on an application. That application offers mobile protection plans. so each plan membership would be associated with the device on which the plan was activated and to perform this association we are going to use the .mobileconfig file to retrieve the device Serial number and bind that Serial number with membership so that at the time of claim technician can identify the device for associated membership. I don't want to take the same as input from the user because the user might enter the serial number of any damaged device. Is this under apple compliances? Will Apple approve the same? If not then how can I achieve the same requirement in another way? I really need a device unique ID ( Not Changeable ). So that technician can identify the exact device uniquely at the time of claim.

Hi, I have an issue about removing web clips from shared ipad. I have an shared ipad that registered with Apple School Manager account. Firstly I am sending a web clip installation command described in the following link WebClip. Web clip payload identifier is : “com.web_clip.webClipTest”. The web clip is successfully uploading to the shared ipad. When I want to remove web clip from shared ipad device, I am sendig remove profile command. After the remove profile command I get an error like "The profile “com.web_clip.webClipTest” is not installed." Web clip is already installed on the shared ipad and cannot be removed. By the way this result is not deterministic. Sometimes I am sending remove command for removing the same web clip from the same device, web clip is removed successfully but that happens rarely. Anyone can help me about that? Thanks.

Hi there, I'm having trouble registering for iTunes connect for iBooks. I'm trying to publish my books onto iBooks, however, I'm having a lot of difficulties. First, I was having trouble getting onto iBooks. Fixed that, but now when I go to register for an iTunes Connect account and put in my ID and password, I'm stuck in a loop with the enter User ID popping up over and over again. Been like this for 2 hours, I tried on my phone, different browsers, different accounts, and even a different computer. Nothing. I can't register for iTunes connect. :/ Called customer support and was on the phone for almost an hour, but no luck, and was told to try the forums. Appreciate all help, thank you!!

I have an issue about install media command. I got a book license from the Apple business account and assign this license to the user. The request plist I created while sending to the device as install media command is as follows; <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN""http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0"> <dict> <key>Command</key> <dict> <key>RequestType</key> <string>InstallMedia</string> <key>MediaType</key> <string>Book</string> <key>iTunesStoreID</key><integer>510322135</integer> </dict> <key>CommandUUID</key><string>625eb3346db5ec00287593a7</string> </dict> </plist> Install Media command getting error with "A VPP purchase record for the item could not be found." How can I fix this issue? Can anyone help me about that? Thanks.

Clearing the passcode with a command from our MDM system will result in an UnlockToken mismatch and an error will occur. Occurrence Status: The device has been activated only once. The timing to receive "Unlock Token" is at the time of activation and when the Unlock Token data is updated on the device side. However, since The Apple has not disclosed when the "Unlock Token" will be sent, an example such as "it will be sent after a specific operation" is unknown. The device has received "TokenUpdateRequest" multiple times since activation, but only the "Push token" data has been updated, and there is no "Unlock Token" data has been received. The MDM system is designed to rewrite the Unlock Token whenever the Unlock Token is updated. Please let me know if you have any knowledge. Error details: "Exec", "113", "500", "" . ErrorChain=ErrorCode0=5013, ErrorDomain0=MCPasscodeErrorDomain,

This has been bothering me for a while now and I hope I can find some sort of solution. Whenever I download an app and it requires me to allow access to Camera, Microphone, Photos, etc., but I don't see the permissions in Settings. I searched up on Google, but all it told me was to go to Privacy and go to the app it is requiring permission from, but I still don't see it there. I have refreshed Settings, and restarted my phone numerous times with no luck. Apps I had a problem with were IbisPaintX, and REALITY. Please help me fix this, I really want to use the app normally without uninstalling. I already have tried uninstalling, but it still wouldn't work.

Do the metrics Apple uses in recommending apps reflect the consumers' preferences?

The MDM device cannot communicate with APNs after a certain time

I am trying to connect my Mac [M1,2020] to Microsoft RRAS VPN Sever via IKEv2 VPN using PEAP-TLS and it fails to process IKE_AUTH. when i checked the log using the following command it returns with the following error. 2022-02-02 12:36:54.734856+0100 0x2d4e0   Default    0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] NEIKEv2Transport: Adding client IKEv2Session[1, ADB29522034C96EA-190E7D286FF6C38A] with SPI ADB29522034C96EA on <NEIKEv2Transport> UDP NAT-T 192.168.2.60:4500 -> 122.252.253.62:4500 2022-02-02 12:36:54.982867+0100 0x2d4e2   Error     0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] Certificate evaluation error = kSecTrustResultRecoverableTrustFailure 2022-02-02 12:36:54.982888+0100 0x2d4e2   Error     0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] Certificate is not trusted 2022-02-02 12:36:54.982949+0100 0x2d4e2   Error     0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] Certificate authentication data could not be verified 2022-02-02 12:36:54.983060+0100 0x2d4e2   Default    0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] IKEv2IKESA[1.1, ADB29522034C96EA-190E7D286FF6C38A] state Connecting -> Disconnected error (null) -> Error Domain=NEIKEv2ErrorDomain Code=8 "Authentication: Certificate authentication data could not be verified" UserInfo={NSLocalizedDescription=Authentication: Certificate authentication data could not be verified} 2022-02-02 12:36:54.983079+0100 0x2d4e2   Error     0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] IKEv2Session[1, ADB29522034C96EA-190E7D286FF6C38A] Failed to process IKE Auth (EAP) packet (connect) 2022-02-02 12:36:54.983109+0100 0x2d4e2   Default    0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] IKEv2IKESA[1.1, ADB29522034C96EA-190E7D286FF6C38A] not changing state Disconnected nor error Error Domain=NEIKEv2ErrorDomain Code=8 "Authentication: Certificate authentication data could not be verified" UserInfo={NSLocalizedDescription=Authentication: Certificate authentication data could not be verified} -> Error Domain=NEIKEv2ErrorDomain Code=6 "PeerInvalidSyntax" UserInfo={NSLocalizedDescription=PeerInvalidSyntax} 2022-02-02 12:36:54.983121+0100 0x2d4e2   Error     0x0          3321   0   NEIKEv2Provider: (NetworkExtension) [com.apple.networkextension:] IKEv2Session[1, ADB29522034C96EA-190E7D286FF6C38A] Failed to process IKE Auth packet (connect) Furthermore, the root certificate is already in place and it is trusted. In our environment, we use the same CA to sign certificate for VPN server as well as SCEP user cert. Therefore, in my opinion there shouldn't be a problem during handshake. Initial INIT_SA is getting through and IKE_AUTH stage fails. In addition to the above, I also saw a post where it says NEVPNManager path you will have to get a trusted CA to issue you a certificate for your VPN server. Referred from this https://developer.apple.com/forums/thread/84679 does this mean that we can only use Trusted Authorities like Symantec, Comodo and not Internal CA like Microsoft PKI (Public Infra Structure)? please assist me here.

Hi We have a MDM solution where we would like to offer the ability/feature to wipe appdata from Managed iOS apps on a device that is enrolled to MDM solution and has MDM profile installed. So that we from MDM console can send a command to this managed device with the purpose to cleanup/clear appdate from defined Managed apps, hence the purpose that when user clicks on the app again, then all personal settings, data, profile etc. are gone and acts as if it is the first time the app is opened.

I have been trying to enroll in a new mac device using the apple configurator app. On the select country/region page I brought my iPhone with the configurator app open closer to the mac but it wasn't detected. The round orb was not shown and I couldn't scan anything. Kindly help on how to resolve this

How to become a developer of MDM (such as jamf), what development level development account is required, the qualification requirements for enterprises, and the combination of MDM and ABM to get through the interface. Thank you very much for whether there are relevant documents.

so we just started using an MDM. can i still use the VPP to load apps thru configurator? when i try the MDM says " MDM is no longer managing your VVP click here to fix " so can i still load VPP apps thru configurator?( USB LOADING ) will that mess with anything I have going with the MDM ? as long as when im done i give the MDM the OK to continue managanig the VPP side ? thanks

Send my iCloud is being ran my a device manager and I do not m ow how. Can anyone help me locate this so I can delete it if I can? If not I’m contacting legal advice. My phone is acting crazy.

every device that i get has Keychain attached to it and websites are all weird. There is a recover key that i have never heard of before. one day, my passcode changed, my iphone was put in activation lock and thennall of a sudden all i get is developer beta versions of IOS , it doesnt matter if i get a new device or not. i dicnt sign up for nothing! i just want a notmal iphone. i am enrolled in a device management pogram and i am a stay at home Mom! i have watched my cancel button being pressed while im tryi g to shut off my phone ! my daughter has been threatened through subtle tactics that they are going to **** her, kill her family, and take her forevor....I need this dealt with! ive been dealing with this for going on 6 months!!

Hello, We are developing a parental control solution. We are stuck since few months and the situation is critical now. So we would like have some confirmation by someone who uses to work on a similar solution. 1)Like the OurPact solution does, we would like manage kid’s devices without app. We would like open an Apple Enterprise Account and ask for an MDM CRS and exploit the MDM technologies according to the guidelines. https://developer.apple.com/app-store/review/guidelines/#mobile-device-management Our Enterprise Account request is suspended since 8 months and we are need feedbacks to confirm that we are on the right way and try to fix this. 2)We have an app on your developer account. Our MDM Capability request has been approved.  How can we exploit MDM Capability from our app ? And can we will have same possibilities and flexibilities than option 1 ? Thank you

I am just curious, if my clients still purchase through the old API, but do my validations on server side with Storekit 2, could the clients for an instance, start sending their receipt encrypted with JWS to my server so I can take advantage of this security addition plus the rest of the new server notifications, transaction history and all the new goodies. My reason for this case is that I cannot drop previous iOS version support thus gotta stick with Storekit 1 for some time.

Hi everbody, I have two issues for one of my client and i wanted to know if someone has the solution or any clue. They have 50+ iPads Pro 11 and they are using the Meraki System Manager to managed their iPads. They use Safari to access to a specific web page and they have to enroll the iPad to their software through this web page. In fact, when the iPad is enrolled through this web page, there is a token that is stored into the safari local storage. This token is used to keep the enrollment up. But if the safari history or settings are deleted by any way, the token is suppressed and they have to re-enrolled their iPad again. It seems that when we modify the Meraki profile and the new one is pushed into the iPads, safari settings/history are cleared and they always have to re-enrolled their iPad through the web page. Is there have any option to prevent this ? I have added a "Web Content Filter settings" but it seems that they can't use the iOS print button in this configuration. They are using a web clip in full screen. If they go to this website directly through Safari (not with the web clip), they can use this button and print. If i remove the "Web Content Filter", they are able to use this button to print through Safari or the web clip. Is it a normal way for the "Web Content Filter" to runs like this or not ? Is there any possibilities to prevent this ? If I have to remove the "Web Content Filter", is there any solutions to filter the websites ? Thanks for your help guys !