Suggestions
Have a great idea that you’d like to see added to our service? Perhaps there’s an existing feature that you’d like to have extended or modified? Share it here!
424 results found
-
10 votes
-
Please support Munki `requires` and `update_for` values
Please support the configuration of the
requiresandupdate_forvalues in the package interface. It would be lovely to be able to configure these in either the catalog or assignments section. Thank you!10 votes -
to implement iOS Per-App VPN (Per-App VPN UUID assignment via ApplicationAttributes on managed apps)
for more details see chapter "ApplicationAttributes Sets or Updates the App Attributes for a Managed Application" in
https://developer.apple.com/library/content/documentation/Miscellaneous/Reference/MobileDeviceManagementProtocolRef/3-MDM_Protocol/MDM_Protocol.html10 votes -
notification when a duplicate serial number enrolls
So - I appreciate this is kind covered here:
But... we're drowning in duplicate entries. Basically they're almost all devices that have gone for repair, resulting in a new UUID (with the occasional virtual machine)
a webhook or other notification when a device with a pre-existing serial number enrols would really help us with our housekeeping.
10 votes -
Include "less than macOS version" and "greater than macOS version" for profile scoping
It would be very helpful to be able to define "less than" and "greater than" macOS version when scoping profiles. For example, I would prefer to specify "less than macOS 12" for a profile to apply to all versions of macOS 11. As it is, I have to update the maximum OS version every time a new dot release comes out.
10 votes -
Add Support for Munki Conditionals to SimpleMDM's Munki Implementation
Munki includes the ability to set "conditionals" for items in specific manifests to provide granular controls over the installation or appearance of items.
For example, if I have a multi-site organization, I can set a conditional on a NOPKG item that installs a printer so that the printer install NOPKG only shows up if the device user is connecting to Munki from a specific subnet. This allows me to refine the view of available self-service printers so that, for example, the printers available at Site A only show up if the user's local IP address matches the subnet at Site…
10 votes -
Notifications: When a device *has been* seen... in addition to device has not been seen for X days / months
Notifications: When a device has been seen... in addition to device has not been seen for X days / months
I only can find:
When a VPP token is set to expire
When a DEP token is set to expire
When a push certificate is set to expire
When a device enrolls
When a device hasn't been seen for
When the SimpleMDM iOS app stops reporting location forBut there is no option for Notification "Last seen Devices", not meant
"When a device .."Need > When a device has been seen...
10 votes -
Schedule Regular Application Updates
Similar to scheduled iOS update policy, we would love to see clients check in for applications in our catalog and perform regular scheduled non-business hours updates. This would be for all Apps (VPP and Enterprise).
When updating enterprise app binaries, users sometimes reject the "Smart Update" if they feel it interrupts their workday, so a regular daily or weekly check in to our catalog by the devices to find the most recent app version available would keep all devices current across both VPP and enterprise apps.
10 votes -
Support the SCEP payload
We noticed the MDM payload for SCEP is not supported. it would be a great addition. Especially interesting is Dynamic-Microsoft CA mode, so that the payload would be working with OTP on each request to PKI.
9 votes -
Add Dock Customization Profiles
The Apple MDM Spec includes huge amounts of dock configuration options for MacOS, but I can only use those with custom configuration profiles at the moment. I would love to be able to choose what items are in the docks for specific profiles, maybe even a UI that would allow us to add Shared and VPP apps to the dock.
9 votes -
Auto-admin password complexity settings
For the auto-admin password generation done by SimpleMDM, it'd be preferable to be able to manage the level of password complexity when the password is generated. Environments can have different password policy rules that all accounts, including MDM generated, need to abide by. The Dude abides.
Password storage apps like 1Password and Keeper offer, at minimum, password length, use of numbers, and use of special characters. See attached.
9 votes -
Add API endpoints for viewing notes and updating Device information
Currently when you call for a Device via API, it's missing the 'Notes' attribute. It would be helpful to be able to access that.
In addition, an
updateendpoint for Devices would be incredibly helpful so you could change the name/notes on a device.9 votes -
Make logging more detailed for MDM commands
While I appreciate how detailed SimpleMDM logs can be, especially with raw responses from MDM, sometimes they need to provide more detail. For example, when sending an OS update command the log only contains...
"Log Details
Full ID E7B0DBE9-A7C1-4EC8-8CB8-BFA4AB990C59
Created At 2023-08-17 3:34 PM
Namespace device
Type os.update.idle
Level info
Device redacted
UDID F405AA51-FF04-4B71-900F-9C09F0515398
Serial Number redactedMetadata
{
"update_version": "13.5.1"
}
"With OS updates in particular, it's useful to know what mode was used as well. 'downloadonly', 'notifyonly', 'installasap', or 'forceupdate' are all options, but there's no associated data. For some basic commands like…
9 votes -
Add Device Group to the standard attributes
Adding the devices group to the standard attributes would make it much easier to customize profiles based on the group of the device. This is somewhat possible to do currently with a default value on a custom attribute, but a standard attribute would be preferred.
9 votes -
DDM custom activations, assets, configurations(declarations)
Hello,
DDM predefined configurations are available in the SimpleMDM web UI already, please add options to create custom activations, assets, configurations(declarations).
Please support Creating, Reading, Editing and Deleting all above via API calls.
Allow assignment of activations/assets/configuration(declarations) to Device, Device Group and Assignment Group.
Allow (un)assignment via API from all above.
Add assigned activations/assets/configuration(declarations) to the "retrieve one" answers for Device, Device Group and Assignment Group to the "relationships" array in the json answer.Thank you David.
9 votes -
Include copy button for admin password.
With the escrowed admin password feature, it would be helpful to include a small copy button (similar to those seen on code training/doc sites) to easily copy the password.
As it is now, if you reveal the password, then triple click to select, you end up grabbing a carriage return (and text styling) that will make the password invalid when pasted.
9 votes -
Naming Script Jobs during creation with API
It seems the SimpleMDM API does not allow assigning a name to a job at creation. From what I could understand, the API gives a default name to the job which is “API Job”.
It could be interesting to allow this customization especially since the name field is mandatory in the UI.
Script Jobs API : https://api.simplemdm.com/#create-8
9 votes -
SimpleMDM granularity
Hi SimpleMDM Dev Team:
Thank you for allowing this space to share creative thought in the ongoing development of SimpleMDM. May some of my ideas have already been discussed, maybe not-- regardless I trust this will be taken into consideration.
Since the slow death of Apple's Profile Manager has left very little control to us in IT as Admins and Engineers, it would be nice to see SimpleMDM pick up the slack and not just fill in the gap but lead with the innovation of a few things in the macOS platform so that many of us can continue to…
8 votes -
Sort the Scripts -> Jobs -> History tab by newest to oldest by default
Right now, the sorting is by name (I think?) which is not useful. It would be great to show the most recently queued jobs in the history first by default.
8 votes -
Disable ActivationLock via API
It should be possible to disable the ActivationLock via API call, this is specificly helpfull if you want to decomission a device.
8 votes
- Don't see your idea?