Note
Please note that this feature is only available for macOS
When enrolling devices through Apple Device Enrollment Program (DEP), as part of the Apple Business Manager integration, you can automate the local user account creation as part of the provisioning process. Below you can see how you can automate local accounts creation under the following use cases:
- Pre-defined account configuration by the IT administrator
- Pre-filled account creation based on Single Sign-On information
- Automatic account creation based on Single Sign-On information
Configuring local accounts in Smart Enrollments #
The first step is to create a new smart enrollment (you can learn how to do it here) and configure the Account configuration.
During the automatic local account creation, you will be able to configure the Admin account details (including password) and Primary account details. The primary account will be created as an admin account by default, unless it is “set as an standard account” in the form. It can be locked so that the user cannot modify the data during device configuration.
Note
Please note that by Apple design, Primary account password can not be remotely configured. It must be created during device configuration by the user.
Using SSO user data in forms #
When integrating any Single Sign-On provider in Applivery, we will be able to retrieve from the Identity Provider directory some of the user data fields as variables so that you can use them to automatically fill out some fields, for instance, for automatic local account creation in Apple Device Management for MacOS.Below you can see the entire list of fields that will be accesible:
{{sso.firstname}}User’s first name{{sso.lastname}}User’s last name{{sso.username}}User’s username{{sso.email}}User’s full email address{{sso.email.username}}User’s email address username
{{sso.firstname}}.{{sso.lastname}} will be automatically translated to daniel.garcia if {{sso.firstname}} contains the value daniel and {{sso.lastname}} contains the value garcia.