I know it's a completely new released feature, but when can we expect support for this enrollment type?
There are some significant endpoints that need to communicate with each other to get a complete User Enrollment
MDM supporting User Enrollment
Managed Apple ID in Business Manager
And most important, how does this affect current enrollments, if an user is already on iOS 13.1+? Does iOS 13.1 still support parallelly both methods?
I have been diving into this trying to find documentation or someone else who has done it already with no luck.
Some insight into this on the Meraki level would be greatly appreciated.
Another relevant question for our organization.
Since Apple Business Manager will support direct Azure AD integration, how will this affect Meraki enrollments and Owner Management??
Any details about Meraki plans would be great. Although there's still time to finish this implementation, I just hope we'll get the update on SM when Apple Business Manager gets updated (I assume 1st of December will be it).
We are actively developing support for User Enrollment and hope to have it ready for Beta testing by the end of the year (if not sooner).
To answer some of your initial questions:
You are correct -- on November 1st, Apple announced the ability to federate authentication in ABM with Microsoft Azure AD (see this article). This would allow end users to sign in to iCloud on their devices using their corporate Azure AD credentials. In the future, managed Apple IDs in ABM, whether using federation with Azure AD or not, will allow you to do things like silently assign user-based VPP licenses to a user and enroll with User Enrollment.
However, this is completely unrelated to current MDM enrollment and authentication workflows with Systems Manager.
Any update on when we can expect full support?
After a deeper conversation with a technician from Apple I now have a clearer understanding of this feature.
Most important why I would like to see this soon supported by Meraki
"With User Enrollment, Admins are only able to wipe company data. If the MDM doesn't support User Enrollment, a BYOD scenario will be enrolled as "Device Enrollment." This still gives an Admin the full wipe ability!"
We are starting to collect interested customers for the User Enrollment Beta.
Check out the Beta sign-up form here: