Nine41 Consulting | Readying Apple Server’s Profile Manager for Ivanti Endpoint Manager
apple, device management, dep, vpp, systems management, landesk, ivanti, lanrev, absolute, heat, mdm,
16657
post-template-default,single,single-post,postid-16657,single-format-standard,qode-quick-links-1.0,ajax_fade,page_not_loaded,,columns-3,qode-child-theme-ver-1.0.0,qode-theme-ver-11.0,qode-theme-bridge,wpb-js-composer js-comp-ver-5.1.1,vc_responsive
 

Readying Apple Server’s Profile Manager for Ivanti Endpoint Manager

Readying Apple Server’s Profile Manager for Ivanti Endpoint Manager

To create or edit configuration profiles beyond the out-of-the-box compliance or connectivity settings, the Exchange settings or a subset of Security settings inside Ivanti’s Management Suite, you’ll need to install Apple’s Server app and configure Profile Manager.

When installed and configured, you will be able to build any type of profile supported by Apple – which has significantly more options than what comes out-of-the-box with Ivanti.

Now, to be clear, your iOS and macOS clients will not need access to this macOS Server, so feel free to install this on a virtual machine if need be. Ivanti’s Management Suite will still be doing all of hte heavy lifting here. You’ll only be using the Server when you build a profile. Once the profile is built and you’ve copied the .mobileconfig file to a file share, you can shut it down.

Also, because I know everyone is busy, it’s helpful for you to know that installing Profile Manager will consume less than 30 minutes of your time. Just follow these installation and configuration steps and you’ll be ready to create new profiles within the hour.

Part 1 – Install Server for macOS

  1. On the desired Mac that’ll act as your macOS Server, purchase and install the Server app from the Mac App Store.
  2. Launch the Server app.
  3. Click the Continue button on the Server setup panel.
  4. Agree to the Software License Agreement and provide credentials for an admin account.
  5. Close the server tutorials if it pops.

 

Part 2 – Configure Profile Manager within the Server App

  1. Click on Profile Manger from the Services menu tree.
  2. Press the On button at the top right to enable the service.
  3. Agree to changing how your password is stored.
  4. Click on the Configure button next to Device Management.
  5. Click Next on the Configure Device Management panel.
  6. Click Next on the Configure Network Users and Groups.
  7. Provide a Directory Admin password (Profile Manager is configuring Open Directory at this point) and click Next.
  8. Provide an Organization Name and Admin Email Password and click Next.
  9. Confirm your settings and click the Set Up button.
  10. Provide additional Organization Information and click Next.
  11. Provide an Apple ID and Password to generate an APNS certificate (this wont’ be used by Ivanti).
  12. Click Finish.

 

Part 3 – Bind Your macOS Server to Your Domain (Optional)

In order to push profiles to Active Directory groups, rather than to just devices, you need to bind the Mac to Active Directory.

Groups View Without Active Directory Binding 

Groups View With Active Directory Binding

  1. Go to Spotlight and search for the Directory Utility application
    • Or browse to it and launch it from System > Library > CoreServices > Applications
  2. Unlock the Directory Utility panel by clicking on the lock at the bottom left.
  3. Provide an admin username and password.
  4. Double-click on the Active Directory menu item.
  5. Enter your Active Directory name in the Active Directory Domain box.
  6. Set the Computer ID if need be.
  7. Click the Bind…button.
  8. Provide valid Active Directory credentials to bind the machine.
  9. Click the drop down arrow.
  10. Set any applicable options such as mobile account at login or administration accounts.
  11. Click OK when finished.

You now have Server for macOS up and running with Profile Manager ready to create any number of profile configurations. To access it, and begin the discovery process of just what can be done, open a web browser and enter the URL https://profileManagerServerName/profilemanager/.

2 Comments

Post A Comment

ARE YOU READY TO GET STARTED?
Please fill out your information, and a specialist will reach out to discuss our services in more details.
Your Information will never be shared with any third party.
        
Free Training Videos
Register to gain access to all of our free content.
YOUR PHONE
YOUR NAME
YOUR EMAIL
        
Get Started
Provide us your contact information and we will reach out as quickly as possible.
YOUR PHONE
YOUR NAME
YOUR EMAIL
        
Additional Questions?
Provide us your contact information and we will reach out as quickly as possible.
YOUR PHONE
YOUR NAME
YOUR EMAIL
        
Pay by PO?
Provide us your contact information and we will reach out to help you sign up by PO.
YOUR PHONE
YOUR NAME
YOUR EMAIL
Subscribe Now
Subscribing to our site gives you access to our Apple Admin 101 training videos as well as allowing us to notify you of each new blog post we release.
YOUR PHONE
YOUR NAME
YOUR EMAIL
Pay by PO
Send us your contact information and we will reach out to help you sign up by PO.
YOUR PHONE
YOUR NAME
YOUR EMAIL
Additional Questions?
Send us your contact information and your questions and we will reach out as quickly as possible.
YOUR PHONE
YOUR NAME
YOUR EMAIL
YOUR QUESTIONS
Get Started
Provide us your contact information and we will reach out as quickly as possible.
YOUR PHONE
YOUR NAME
YOUR EMAIL
Free Training Videos
Subscribing to our site gives you access to our Apple Admin 101 training videos as well as allowing us to notify you of each new blog post we release.
FIRST NAME
LAST NAME
PHONE
EMAIL
Subscribe Now
Subscribing to our site gives you access to our Apple Admin 101 training videos as well as allowing us to notify you of each new blog post we release.
FIRST NAME
LAST NAME
PHONE
EMAIL