Suggestions
Have a great idea that you’d like to see added to our service? Perhaps there’s an existing feature that you’d like to have extended or modified? Share it here!
-
Maximum macOS version scope value on custom config profiles + provided profiles
The new Minimum macOS version scope is very helpful.
Can you please implement a Maximum macOS version scope to limit profiles (such as the KEXT whitelist profile) to stop profiles being deployed to macOS versions.17 votes -
Add more endpoints to SAML enrolments for full functionality
We are trying to implement our Azure B2C login for authentication into enrolments to help speed up onboarding new customers - we are an MSP.
When we set up SAML for access to the console, we can get it working fine; we can see and access the 'callback' and 'metadata' URL's ie.
https://a.simplemdm.com/admin/auth/saml/123456789123456789/callback
https://a.simplemdm.com/admin/auth/saml/123456789123456789/metadata - Azure B2C needs these address to function.But when we try to set this up for SAML enrolments, both the 'callback' and 'metadata' URL's aren't accessible for the new SAML Audience ie. https://a.simplemdm.com/device/enrollment/authentication/saml/987654321987654321.
Can this be enabled?
21 votes -
Make available the list of user accounts that exist on MacOS systems.
Apple's MDM protocol allows the list of users to be queried from managed systems:
It would be very helpful for us if this information could be displayed in the SimpleMDM Web UI. Thank you!
31 votes -
Integrate Munkireport or Sal
Please integrate Munkireport, Sal, or some type of reporting and smart group criteria functionality. It would be lovely to have hosted reporting built into SimpleMDM. Munkireport is the most obvious choice due to the sheer amount of great modules available. Thank you!
43 votes -
Add Dock Customization Profiles
The Apple MDM Spec includes huge amounts of dock configuration options for MacOS, but I can only use those with custom configuration profiles at the moment. I would love to be able to choose what items are in the docks for specific profiles, maybe even a UI that would allow us to add Shared and VPP apps to the dock.
1 vote -
Dedicated place to request additions to Shared Apps
It would be helpful to have a dedicated place to submit requests for new apps to be added the Shared Apps (for Munki). We can do it here of course, but seems like maybe it needs it's own section?
11 votes -
API to retrieve custom attribute values for all devices
I have to periodically examine and update (where needed) a custom attribute for all the devices in our fleet. This currently requires one API request (with paging) to retrieve the list of devices, and then one request for each and every device to retrieve the custom attribute value. With 2500 devices this is already prohibitively slow.
An API call that returns the custom attribute values for all devices would solve this neatly and speed up the code thousandfold.
9 votes -
Customized Managed Software Centre
It would be great to have a way to customize the Munki Managed Software Centre now that Munki integration is part of the beta. If there was a way to apply something like Munki Theme Creator files (https://grovetech.co/blog/munki-theme-creator-for-munki/) This would be amazing.
17 votes -
iOS 14 Home screen layout profile update - Searchable VPP text filter & widgets
iOS 14 Home screen layout profile update - Searchable VPP text filter when selecting apps & configurable widgets
19 votes -
Fully support the Munki pkgingo plist
FULL pkginfo support.
- Basic Info information, Name, size, type, restart action, force install date, catagory, etc
- Contents: Dmg/pkg contents
- Requirements: Software requirement, upgrades, minimal OS, maximum OS
- Installation: Blockers, supported architecture.
- Install scripts: pre install and post install
- Uninstall scripts: pre uninstall, post uninstall
- Install check scripts: Scripts for determining if it should install or uninstall
- Alerts
- MiscI used the layout of MunkiAdmin of easy of demonstration
-
Screenshot 2020-07-24 at 10.36.44 AM.png 180 KB -
Screenshot 2020-07-24 at 10.36.42 AM.png 158 KB -
Screenshot 2020-07-24 at 10.36.39 AM.png 151 KB -
Screenshot 2020-07-24 at 10.36.37 AM.png 162 KB -
Screenshot 2020-07-24 at 10.36.34 AM.png 151 KB -
Screenshot 2020-07-24 at 10.36.32 AM.png 139 KB -
Screenshot 2020-07-24 at 10.36.30 AM.png 125 KB -
Screenshot 2020-07-24 at 10.36.28 AM.png 126 KB -
Screenshot 2020-07-24 at 10.36.25 AM.png 179 KB
31 votes -
-
Webhook for new DEP devices
When a device is added to DEP it would be great to have a webhook notification.
My goal with this is to take that notification and have it create a new asset for the new Mac in our asset management system.
I think the Serial number would be the biggest needed component. I'm not sure what all information you can pull from Apple side, but if possible the order number would be really awesome to have and the date it was added to DEP on Apple's end.
Thanks!
-bryan
4 votes -
UI for profiles assigned to device
As we get option to assign profile to specific device (https://suggestions.simplemdm.com/forums/204404/suggestions/31773355) via API it will be brilliant to also have web UI to work with this.
Web UI should look similar to "Apps" page under device called "Profiles".
-List all profiles on device via https://developer.apple.com/documentation/devicemanagement/listtheinstalled_profiles (this will list also profiles installed by user)
-Display if profile is managed or not
-Ability to display .mobileconfig/profile for user installed profiles (it is returned in ProfileListCommand command)
-Ability to re-push/reinstall profile(s) (API call to do this will be brilliant)
-Ability to add profile from configured profilesThanks David
13 votes -
Allow management of the DisableFMMiCloudSetting key
A custom profile indicating
<key>DisableFMMiCloudSetting</key><true/>
Will disable a user's ability to enable Find My Mac. As a Restrictions profile has the option to manage many other features in the iCloud category (Back to my mac, Document Sync), it would be desirable to also manage this option under the Restrictions: iCloud category.
2 votes -
Do not apply kernel extension profiles to ARM devices
It's a known issue that applying a kernel extension profile to an M1 device can put it into a failure to boot condition, displaying a "Recovery is trying to change system settings. No administrator was found." dialog.
Would be great if SimpleMDM could prevent us from ending up in that situation.5 votes -
Dashboard
Dashboard/visualization to quickly see key points across all devices (ie. battery percentages, last seen, etc)
11 votes -
Add Push Certificate about to expire notification
Add a "when the Push Certificate is about to expire" event to notifications.
If the email of the AppleID used to issue the Push Certificate is not actively monitored, it is easy to miss the email alerts. And letting the Push Certificate expire can cause significant interruptions.
To prevent such interruptions, please add a "when the Push Certificate is about to expire" event to notifications, so that the alert can be sent to actively monitored email addresses.
2 votes -
Present passwords in a font that disambiguates similar characters
Just had a frightening incident in which I thought we had been locked out of a managed device. Turns out the problem was just that the firmware password was hard to read: I was mistaking a
1
for anl
.I suggest you choose a different font for passwords/recovery codes/etc., which makes very clear whether a given character is a 1 or l; likewise for 0 and O, which I also mistake on a regular basis.
2 votes -
Update UI to Indicate Custom PKGs Can't Be Removed By MDM
Recently I pushed a custom PKG to a MacBook Air over MDM. While the SimpleMDM interface allows you to "uninstall" the package, nothing actually occurs since this capability is not possible. The lack of clarification from the UI is generally confusing, and it would be nice to update it and save others in the future from the same confusion.
1 vote -
Not load agent in menu bar on macOS
The cloud agent icon in the menu bar is great for people that need it but it would be great if we had the ability to have that not load in the menu bar as we already have other things such as Nomad or SSO extensions payload that can be configured to have an option to open the Managed Software Centre.
6 votes -
Allow for the "re-pushing" of profiles via API and GUI
- allow for a re-push of profiles in a group
- allow for a re-push of profiles assigned to a device
- group
- assignment group
- allow for a re-push of profiles in a specific assignment group
5 votes
- Don't see your idea?