Suggestions
Have a great idea that you’d like to see added to our service? Perhaps there’s an existing feature that you’d like to have extended or modified? Share it here!
412 results found
-
notification when a duplicate serial number enrolls
So - I appreciate this is kind covered here:
But... we're drowning in duplicate entries. Basically they're almost all devices that have gone for repair, resulting in a new UUID (with the occasional virtual machine)
a webhook or other notification when a device with a pre-existing serial number enrols would really help us with our housekeeping.
10 votes -
to implement iOS Per-App VPN (Per-App VPN UUID assignment via ApplicationAttributes on managed apps)
for more details see chapter "ApplicationAttributes Sets or Updates the App Attributes for a Managed Application" in
https://developer.apple.com/library/content/documentation/Miscellaneous/Reference/MobileDeviceManagementProtocolRef/3-MDM_Protocol/MDM_Protocol.html10 votes -
Messaging device via API
Please add an API-call for sending a push notification to a device.
10 votes -
10 votes
-
Please support Munki `requires` and `update_for` values
Please support the configuration of the
requiresandupdate_forvalues in the package interface. It would be lovely to be able to configure these in either the catalog or assignments section. Thank you!10 votes -
Schedule Regular Application Updates
Similar to scheduled iOS update policy, we would love to see clients check in for applications in our catalog and perform regular scheduled non-business hours updates. This would be for all Apps (VPP and Enterprise).
When updating enterprise app binaries, users sometimes reject the "Smart Update" if they feel it interrupts their workday, so a regular daily or weekly check in to our catalog by the devices to find the most recent app version available would keep all devices current across both VPP and enterprise apps.
10 votes -
Add Support for Munki Conditionals to SimpleMDM's Munki Implementation
Munki includes the ability to set "conditionals" for items in specific manifests to provide granular controls over the installation or appearance of items.
For example, if I have a multi-site organization, I can set a conditional on a NOPKG item that installs a printer so that the printer install NOPKG only shows up if the device user is connecting to Munki from a specific subnet. This allows me to refine the view of available self-service printers so that, for example, the printers available at Site A only show up if the user's local IP address matches the subnet at Site…
10 votes -
Allow sorting/filtering on the Device Details > Apps page
It would be very helpful to be able to sort the Apps list on Device details by discovered date. Additionally, it would be helpful to have a filter field to isolate a batch of apps that match the criteria.
9 votes -
Automatically uninstall apps once they fall out of an assignment group selection
Assignment groups and scopes are great, but limited if they don't clean up after themselves. The option to have managed apps automatically uninstall themselves from devices that fall out of the Assignment Group selections would be great. For example, if a device is moved from one Device Group to another then all the apps assigned to the its new Device Group will get installed, but all of the ones from the old Device Group that are not assigned to the Device Group should be automatically uninstalled.
9 votes -
Add API endpoints for viewing notes and updating Device information
Currently when you call for a Device via API, it's missing the 'Notes' attribute. It would be helpful to be able to access that.
In addition, an
updateendpoint for Devices would be incredibly helpful so you could change the name/notes on a device.9 votes -
Add Dock Customization Profiles
The Apple MDM Spec includes huge amounts of dock configuration options for MacOS, but I can only use those with custom configuration profiles at the moment. I would love to be able to choose what items are in the docks for specific profiles, maybe even a UI that would allow us to add Shared and VPP apps to the dock.
9 votes -
Make logging more detailed for MDM commands
While I appreciate how detailed SimpleMDM logs can be, especially with raw responses from MDM, sometimes they need to provide more detail. For example, when sending an OS update command the log only contains...
"Log Details
Full ID E7B0DBE9-A7C1-4EC8-8CB8-BFA4AB990C59
Created At 2023-08-17 3:34 PM
Namespace device
Type os.update.idle
Level info
Device redacted
UDID F405AA51-FF04-4B71-900F-9C09F0515398
Serial Number redactedMetadata
{
"update_version": "13.5.1"
}
"With OS updates in particular, it's useful to know what mode was used as well. 'downloadonly', 'notifyonly', 'installasap', or 'forceupdate' are all options, but there's no associated data. For some basic commands like…
9 votes -
Auto-admin password complexity settings
For the auto-admin password generation done by SimpleMDM, it'd be preferable to be able to manage the level of password complexity when the password is generated. Environments can have different password policy rules that all accounts, including MDM generated, need to abide by. The Dude abides.
Password storage apps like 1Password and Keeper offer, at minimum, password length, use of numbers, and use of special characters. See attached.
9 votes -
Add Device Group to the standard attributes
Adding the devices group to the standard attributes would make it much easier to customize profiles based on the group of the device. This is somewhat possible to do currently with a default value on a custom attribute, but a standard attribute would be preferred.
9 votes -
create a viewable command queue
I need to be able to see a pending command queue, especially for offline devices. For example, let's say I have a lost/stolen iPad. The device was online yesterday, so I enable lost mode on that device. Since it's not currently online, that command is queued in the background until it's online again, but there is no indication whatsoever that the command is queued up.
8 votes -
API: Dont send Filevault keys by default from /devices
Separate the device API so it does not return filevault keys with every device object. Or create a filter to omit the keys.
I keep running into scenarios where using the device API means scrubbing file vault keys every single time I make it get request to https://a.simplemdm.com/api/v1/devices
It gets pretty messy downstream especially with logs.8 votes -
SimpleMDM Training and Certification
Why do I ask/suggest?
- It can be great to meet MDM certification requirements from the Apple Consultants Network (for members).
- Learn SimpleMDM from the perspective of the creators. Like best practises, how/why things were created the way they are.
- Impress whoever is impressed by this kind of stuff. Maybe you'll get a raise. And off course get a nice badge for your website or social media! (just kidding)
- (add your suggestions in a reply)8 votes -
SimpleMDM granularity
Hi SimpleMDM Dev Team:
Thank you for allowing this space to share creative thought in the ongoing development of SimpleMDM. May some of my ideas have already been discussed, maybe not-- regardless I trust this will be taken into consideration.
Since the slow death of Apple's Profile Manager has left very little control to us in IT as Admins and Engineers, it would be nice to see SimpleMDM pick up the slack and not just fill in the gap but lead with the innovation of a few things in the macOS platform so that many of us can continue to…
8 votes -
Disable ActivationLock via API
It should be possible to disable the ActivationLock via API call, this is specificly helpfull if you want to decomission a device.
8 votes -
Create a full featured API
The API does not have the ability to make the same configuration changes, and/or view the same data as the UI. We would like to enhance the terraform repo as well as create an MCP server for SimpleMDM - however this holds us back. Without an infrastructure as code approach, we fell that SimpleMDM can be fragile. i.e. Deleting a group in the UI is easily done and there is no roll back.
8 votes
- Don't see your idea?