Category filter

How to enroll visionOS devices in Hexnode UEM?

With Hexnode UEM, you can manage visionOS devices, allowing you to impose restrictions, ensure security, and effectively oversee your devices. This guide offers detailed, step-by-step instructions for enrolling visionOS devices into Hexnode UEM.

Before proceeding with the enrollment of the device, ensure that you have configured the APNs certificate.

Note:


Supported on devices running visionOS 1.1 and later.

Prerequisites:

  • A Managed Apple ID is required for account driven enrollment.
  • To ensure that the Managed Apple ID entered by the user on their visionOS device is linked to the organization’s domain, create and host a JSON file containing enrollment information on the same domain as the organization. For example:

    Replace “company.com” with your organization’s actual domain.

  • The JSON file must be hosted on a server that supports HTTPS GET requests. Below are the sample JSON structures for user and device enrollment:

    For user enrollment:

    For device enrollment:

    Replace “PortalName” with your organization’s actual portal name.

Enroll visionOS devices using account driven enrollment

Account driven enrollment is a process for enrolling Apple devices into an organization. In this process, users sign in to their devices using a Managed Apple ID. After signing in, they are redirected to the organization’s enrollment portal, where they are prompted to install the UEM profile on the device.

Account-driven enrollment serves as the primary method for enrolling visionOS devices in Hexnode UEM, supporting both company-owned and personally owned devices.

There are two available methods based on whether the device should authenticate during the process:

  1. Open Enrollment
  2. Authenticated Enrollment

Enroll visionOS devices without authentication

Users will be able to enroll their visionOS device without any authentication credentials.

Enroll visionOS devices using open enrollment method

In the Hexnode UEM portal:

  1. Navigate to Enroll > Platform Specific > visionOS > Account Driven Enrollment.
  2. Click on Switch to Open Enrollment > Open Enrollment.
  3. Choose the user Domain. Only users from this domain can be selected as the default user.
  4. Select a Default User.
  5. Set the Ownership of the enrolling device to either Personal or Corporate, depending on the device type.
  6. Click Next.

On the visionOS device:

  1. Open the Settings app.
  2. Select General.
  3. Select VPN & Device Management.
  4. Sign in to the Work or School Account using the managed Apple ID, then tap Continue.
  5. On the following screen, the Hexnode EULA will appear. Review the EULA and click Agree.
  6. Next, enter the password for your managed Apple ID to sign in to iCloud, then choose Continue.
  7. When prompted, tap Allow Remote Management to download the UEM profile.
  8. The profile will be installed, and the visionOS device will be enrolled in Hexnode UEM.

Enroll visionOS devices with authentication

Users will be able to enroll their visionOS device by authentication with the authentication credentials.

Enroll visionOS devices using authenticated enrollment method

In the Hexnode UEM portal:

  1. Navigate to Enroll > Platform Specific > visionOS > Account Driven Enrollment.
  2. Click on Switch to Authenticated Enrollment > Authenticated Enrollment.
  3. Select the types of users to be enrolled via Enrollment Request.
  4. Set Ownership to Personal, Corporate, Let the user choose, or Choose it later.
  5. Click Next.
  6. On the following page, select Email or SMS based on how you want to send the enrollment request.

    Options for selecting the method of sending enrollment requests in authenticated enrollment

  7. Change the Domain and select the User.
  8. Click Send.

On the visionOS device:

  1. Open the Settings app.
  2. Select General.
  3. Select VPN & Device Management.
  4. Sign in to the Work or School Account using the managed Apple ID, then tap Continue.
  5. On the following screen, the Hexnode EULA will appear. Review the EULA and click Agree.
  6. The Hexnode authentication screen will prompt the user to enter either local credentials or directory credentials provided through the enrollment request.
  7. Enter the password for the managed Apple ID to sign in to iCloud, then tap Continue.
  8. When prompted, tap Allow Remote Management to download the UEM profile.
  9. The profile will be installed, and the visionOS device will be enrolled in Hexnode UEM.
  • Enrolling Devices