Managed App Configuration iOS (Configuration gérée des applications iOS)

Introduction

Il est possible de préconfigurer certaines apps avec la configuration de politique Application gérée (Managed App). Cette configuration n’est disponible que pour les appareils iOS à partir de la version 7 et les appareils macOS à partir de la version 11+.

Configuration

Spécifiez l’ID du bundle de l’application que vous souhaitez configurer et joignez un payload de configuration d’application valide. Dans la charge utile, vous pouvez utiliser les espaces réservés qui apparaissent au bas de la page. Par exemple, vous pouvez configurer une application client de messagerie en utilisant le caractère générique {$user.email}. De cette façon, vous pouvez rendre la configuration utilisable pour différents utilisateurs. Les espaces réservés seront remplis lorsque la configuration sera poussée vers les appareils.

L’application à configurer doit déjà être installée sur les appareils avant que la configuration de l’application ne soit appliquée. Si vous installez l’app sur les appareils dans la même politique, veillez à exécuter la configuration de l’app après l’avoir installée en l’ajoutant ultérieurement à la liste des configurations.

En principe, le fabricant de chaque application est responsable des options de configuration. Nous avons listé ici quelques exemples qui fonctionnaient avec les applications au moment de la rédaction de ce document. Nous ne garantissons pas que ce sera toujours le cas.

Goodnotes 6

com.goodnotesapp.x
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
    <key>ManagedAppConfigurationVersion</key>
    <string>1</string>
    <key>LicenseKey</key>
    <string>AAAA-BBBBBB-CCCCCC-DDDDDD-123456-V3</string>
</dict>
</plist>

Des informations supplémentaires peuvent être trouvées sur le [site web de Goodnotes] (https://support.goodnotes.com/hc/en-us/articles/7353742669455-Install-Goodnotes-for-School-Business-or-Enterprise-via-Mobile-Device-Management)

Microsoft Outlook pour Office365

com.microsoft.Office.Outlook
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
  <key>com.microsoft.outlook.EmailProfile.AccountType</key>
  <string>ModernAuth</string>
  <key>com.microsoft.outlook.EmailProfile.EmailAccountName</key>
  <string>${user.fullname}</string>
  <key>com.microsoft.outlook.EmailProfile.ServerHostName</key>
  <string>outlook.office365.com</string>
  <key>com.microsoft.outlook.EmailProfile.EmailAddress</key>
  <string>${user.email}</string>
  <key>com.microsoft.outlook.EmailProfile.EmailUPN</key>
  <string>${user.email}</string>
  <key>com.microsoft.outlook.EmailProfile.AccountDomain</key>
  <string></string>
  <key>com.microsoft.outlook.EmailProfile.ServerAuthentication</key>
  <string>Nom d'utilisateur et mot de passe</string>
  <key>IntuneMAMAllowedAccountsOnly</key>
  <string>Activé</string>
  <key>IntuneMAMUPN</key>
  <string>${user.email}</string>
</dict>
</plist>

Microsoft Outlook pour un serveur Exchange sur site

com.microsoft.Office.Outlook
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
  <key>com.microsoft.outlook.EmailProfile.AccountType</key>
  <string>BasicAuth</string>
  <key>com.microsoft.outlook.EmailProfile.EmailAccountName</key>
  <string>${user.fullname}</string>
  <key>com.microsoft.outlook.EmailProfile.ServerHostName</key>
  <string>exchange.server.name</string>
  <key>com.microsoft.outlook.EmailProfile.AccountDomain</key>
  <string>nomdedomaine</string>
  <key>com.microsoft.outlook.EmailProfile.EmailAddress</key>
  <string>${user.email}</string>
  <key>com.microsoft.outlook.EmailProfile.EmailUPN</key>
  <string>${user.email}</string>
  <key>com.microsoft.outlook.EmailProfile.AccountDomain</key>
  <string></string>
  <key>com.microsoft.outlook.EmailProfile.ServerAuthentication</key>
  <string>Nom d'utilisateur et mot de passe</string>
  <key>IntuneMAMAllowedAccountsOnly</key>
  <string>Désactivé</string>
  <key>IntuneMAMUPN</key>
  <string>${user.email}</string>
</dict>
</plist>

SecurePIM pour Office365

com.virtual-solution.securepim-enterprise
<?xml version="1.0" ?>
<!DOCTYPE plist PUBLIC "-//Apple Inc//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
 <dict>
  <key>license</key>
    <string>votre-clé-de-licence</string>
    <key>activeSyncServer</key>
    <string>outlook.office365.com</string>
    <key>userEmail</key>
    <string>${utilisateur.email}</string>
    <key>activeSyncUser</key>
    <string>${user.email}</string>
    <key>deviceSerialNumber</key>
    <string>${device.serialnumber}</string>
    <key>recipientCertificateEmail</key>
    <string>${utilisateur.email}</string>
    <key>allowTouchIDAuthentication</key>
    <string>true</string>
    <key>callKitEnabled</key>
    <string>true</string>
  </dict>
 </plist>

FileBrowser for Education

com.stratospherix.filebrowsereducation

Configuration d’un partage SMB

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
  <key>mdm-enforce</key>
  <integer>1</integer>
  <key>lockdown</key>
  <integer>1</integer>
  <key>1displayname</key>
  <string>Mon NAS</string>
  <key>1domaine</key>
  <string>office.mwaysolutions.com</string>
  <key>1flags</key>
  <integer>1746</integer>
  <key>1machinename</key>
  <string>smb://yoursmbservershare/</string>
  <key>1username</key>
  <string>${utilisateur.email}</string>
  <key>1vpntype</key>
  <integer>0</integer>
  <key>waitForSearchButton</key>
  <integer>0</integer>
</dict>
</plist>

IBM Verse client

com.ibm.lotus.traveler
<?xml version="1.0" ?>
<!DOCTYPE plist PUBLIC "-//Apple Inc//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
 <dict>
 <key>appConfigOnly</key>
   <string>stringue</string>
 <key>serverType</key>
   <string>onpremise</string>
 <key>serverURL</key>
   <string>server_url_ou_ip_address</string>
 <key>user</key>
   <string>${nom.utilisateur}</string>
 <key>password</key>
   <string></string>
 <key>restrictClipboard</key>
   <string>false</string>
 <key>disableShareMenu</key>
   <string>false</string>
 <key>disableRemoteImages</key>
   <string>false</string>
 <key>mamKey</key>
   <string></string>
 <key>mamKeyMismatchTimeout</key>
   <integer>24</integer>
 <key>disableAttachmentExport</key>
   <string>false</string>
 <key>mailFilterDays</key>
   <integer>3</integer>
  <key>mailFilterDays.lock</key>
   <string>false</string>
 <key>previewLines</key>
   <integer>2</integer>
 <key>previewLines.lock</key>
   <string>false</string>
 <key>confirmDelete</key>
   <string>false</string>
 <key>confirmDelete.lock</key>
   <string>false</string>
 <key>attachmentFilter</key>
   <integer>100</integer>
 <key>attachmentFilter.lock</key>
   <string>false</string>
 <key>mailThreads</key>
   <string>false</string>
 <key>mailThreads.lock</key>
   <string>false</string>
 <key>useMailSignature</key>
   <string>false</string>
 <key>useMailSignature.lock</key>
   <string>false</string>
 <key>mailSignature</key>
   <string></string>
 <key>mailSignature.lock</key>
   <string>false</string>
 <key>bccMyself</key>
   <string>false</string>
 <key>bccMyself.lock</key>
   <string>false</string>
 <key>calendarPastFilterDays</key>
   <integer>14</integer>
 <key>calendarPastFilterDays.lock</key>
   <string>false</string>
 <key>calendarAlarms</key>
   <string>true</string>
 <key>calendrierAlarmes.lock</key>
   <string>false</string>
 <key>calendrierAlarmesAudio</key>
   <string>true</string>
 <key>calendarAudioAlarms.lock</key>
   <string>false</string>
 <key>weekStartDay</key>
   <integer>0</integer>
 <key>weekStartDay.lock</key>
   <string>false</string>
 <key>exportContacts</key>
   <string>false</string>
 <key>exportContacts.lock</key>
   <string>false</string>
 <key>searchCorpDirectory</key>
   <string>true</string>
 <key>searchCorpDirectory.lock</key>
   <string>false</string>
 <key>contactSortOrder</key>
   <string>lastfirst</string>
 <key>contactSortOrder.lock</key>
   <string>false</string>
 <key>contactDisplayOrder</key>
   <string>premierdernier</string>
 <key>contactDisplayOrder.lock</key>
   <string>false</string>
 <key>appPassword</key>
   <string>false</string>
 <key>appPasswordType</key>
   <string>numérique</string>
 <key>appPasswordMinLetters</key>
   <integer>0</integer>
 <key>appPasswordMinNumeric</key>
   <integer>0</integer>
 <key>appPasswordMinNonLetters</key>
   <integer>0</integer>
 <key>appPasswordMinUppercase</key>
   <integer>0</integer>
 <key>appPasswordMinLowercase</key>
   <integer>0</integer>
 <key>appPasswordMinSymbols</key>
   <integer>0</integer>
 <key>appPasswordMinLength</key>
   <integer>4</integer>
 <key>appPasswordAutolock</key>
   <integer>30</integer>
 <key>appPasswordExpiration</key>
   <integer>0</integer>
 <key>appPasswordHistory</key>
   <integer>0</integer>
 <key>appPasswordWipeFailures</key>
   <integer>0</integer>
 <key>appPasswordProhibitSequences</key>
   <string>false</string>
 <key>appPasswordProhibitTouchID</key>
   <string>false</string>
 </dict>
</plist>