As the lead client systems engineer at a medium sized global organization I would like to be able to more granularly delegate current aspects of User Roles in SimpleMDM for a variety of reasons.

Example: I want to allow my Service Desk and Audio Visual team members to move devices into and out of groups to control features like Single Application Lock for appliance iPads, without giving them access to modify account level settings or make changes to the group configurations.

The Profiles page becomes cluttered by all the different profiles inserted, it would be very helpful if there was an option to organize them in maps.

LockPrimaryAccountInfo and put use of the saml login name
from:
https://developer.apple.com/documentation/devicemanagement/accountconfigurationcommand/command

and if possible collect the users full name from the saml login.

The devices list is super useful and it would be great to add a column that shows the OS version. I know you can export the devices list to get this information, but it would be good to have it front-and-center.

Can we get API to retrieve one Custom Attribute?

Call can be like "set value" just with get:

HTTP Request

GET https://a.simplemdm.com/api/v1/devices/{DEVICEID}/customattributevalues/{CUSTOMATTRIBUTE_ID}

Response: as it is when retrieving all:

{

data: [

    {

        type: custom_attribute_value,

        id: name_of_attribute,

        attributes: {

            value: value_of_attribute

        }

]

}

We sometimes upload different versions of the same app for assignment to different devices. On the app assignment page, it is difficult to see what version I'm assigning without actually clicking on the app link and seeing the version on the app page.

Please show the app's version directly on the assignment page.

Make the consumed device licenses in SimpleMDM available via the API, in a new call or perhaps available via the account payload.

This could be extended to plan details. The argument could be made that this count could be inferred from number of active devices... I don't see why this couldn't be its own API endpoint, returning an example such as:

https://gist.github.com/lucasjhall/e412b7c1171c0b37dbbae7620fc9ee0e

Same logic as Filevault Keys. Make them available via API.

Bonus points if the new API copes could limit access to PINs/ FV keys.

Notification if device is offline for given time. We have some devices in remote locations and would like to be notified if they have not checked in with the MDM for a specified period so that we can investigate why the devices are offline.

Optionally allow webhooks to be configured to pass authorization headers, API Keys, as to add an additional layer of security verify authenticity of API calls from SimpleMDM to external services.

I really love how you can use parameters in many places. That said, it would be even better if we could have some simple "filters", or string functions, like many template languages have.

E.g. I get the first and last name as custom parameters from the enrollment login. It would be great if I could set the username to something like {{first_name|lowercase}}

Allow home screen configurations to be editable by end users.

I love and want the ability to create a starting home screen configuration for my iPad/iPhone end users - but I absolutely hate that it's then locked so they cannot change it further after that.

Also the iPads with iOS 13 have far more built in applications than what the Home Screen configuration shows, so a dozen apps just end up stuck in the second screen. Also please expand the limit of apps in a folder to more than 9, iOS does not have that small a limitation normally.

Change all tables to the type of device table. This would be nice if you want to change or delete content. Example: In the profile table I am always afraid to delete a wrong line.

It would be great if we could disable guest users on macOS for security reasons.

Webclips have to share the name of the profile, our company has a specific naming convention for profiles and sometimes our webclips need to be named differently.

It doesn't look like IKEv2 connection type is supported in the UI. This would be useful with attribute support so that we can add accounts per device and have the username and password assigned in the profile.

Add an event type such as:

{"type":"device.dep_authenticated","at":"2019-09-17T14:46:55.094+00:00", "data":{"user":{"email":"authuser@org.com"},"device"{"serial":"C012345"}}}

The ability to trigger workflows off this and have data such as the user that authenticated the device to enroll and the serial/deviceID would be beneficial.

We have some installation dependencies for applications that we're deploying to macOS, but it doesn't appear possible to specify dependencies for Apps & Media within SimpleMDM. Because of that, we're unable to control the order that those packages are installed in. It would be nice to have the ability to mark certain app install bundles as dependent upon others.