iOS Enrollment Types
Important: Apple is deprecating profile-driven user enrollment
in newer operating systems. To ensure compatibility and a user-friendly workflow, switch
to account-driven enrollment. This approach offers a native experience for both
administrators and end users.
Choose an enrollment type based on your deployment needs:
Device-based Enrollment
Use device-based enrollment if your organization owns the devices. With SOTI MobiControl, you can use iOS Mobile Device Management (MDM)
capabilities to manage your iOS devices. You can perform device enrollment in
the following ways:
Important: Enrolling iOS devices with the SOTI enrollment service provides limited device
supervision. For full supervision, use
Appleās Automated Device Enrollment.
User-based Enrollment
Restriction: User-based enrollment requires iOS
13.1 or later and Managed Apple IDs. These devices are not supervised. As a
result, you can only deploy iOS custom
applications, and features like Send SMS, Clear Passcode, Roaming
Restrictions, and Wi-Fi proxy configurations are not supported.
Use user-based enrollment for Bring Your Own Device (BYOD) scenarios where users use personal devices. After user enrollment, the device creates a cryptographically isolated managed volume that stores work data separately from personal data. When you unenroll the device, it destroys the managed volume and its associated cryptographic keys, ensuring no enterprise data remains. For more information, see User-based Enrollment for iOS Devices.
Important: To protect user privacy, devices
enrolled with user-based enrollment report less information than those enrolled
with device-based enrollment. Omitted information includes (but is not limited
to) phone number, IMEI, and device ID.