Hi, the /devices endpoint currently supports create/update/delete - https://simplemdm.com/docs/api/#update-6

Could we get support for create/update/delete on the /device_groups endpoint as well?

We have a use case where we would like to clone an existing (template) group and name it. This is not currently possible via the API.

Thanks!

Currently, FileVault will not be enabled on MacOS until the user either logs out or logs in, depending on how it is configured. It would be great to add the ability to restart the machine once enrollment is complete to ensure FileVault is enabled as soon as possible.

When reviewing / querying apps it would helpful to know the full path of all found apps. Would like this returned in the API as well.

In System preferences, in the Security and Preferences -> General tab, the "Require password <insert timeframe> after sleep or screen saver begins" dropdown has many more granular options than SimpleMDM allows. My company's security policy prefers 5 seconds after lock, but our only close options are immediate or 1 minute after sleep. It would be nice to have parity between the SimpleMDM configuration options and the options Apple allows.

apple supports this, just need it in SimpleMDM

Appears to be missing a few key fields:
- passcode policy enabled (This is not the same as "firmware password" and btw, a similar field is downloaded but we think it's tied to iOS devices as opposed to Mac OS)
- Firewall enabled
- Mac OS Patch Management enabled
- Anti-virus / Malware enabled

You may recognize these as SOC2 requirements. Would be ideal to run a report / download for all devices with this data included. Thanks!

We would like to use unique firmware password with the option to rotate the password, in case we have to share the password with the user at some point. Currently that would only possible with moving the device to a group without a firmware password, clear the firmware password and assign the device back to the original group.

Maybe there is a possibility like building a mechanism that sends out multiple commands (one to clear the password and one to set it again), which would effectively "rotate" the firmware password.

Currently the only profiles that can be managed via the API are custom configuration profiles.

Please extend management of the profiles to include all the profiles that can be created within the SimpleMDM web console so that these profiles can also be managed with the API.

Given there is no ability to assign devices to multiple device groups, using the API to ensure all device groups get the profiles required is the only means of ensuring consistent application of profiles to device groups.

It would be nice to be able to sort the profiles by clicking on the column header.

Add option to search in api call "List DEP device"

https://simplemdm.com/docs/api/#list-dep-devices

Add option to enforce "New Device Naming" when device re-enroll to SimpleMDM.

We've got a webhook setup to post events to a Slack channel, but the messages don't have enough details to be actionable.

Including the device name would be a good start!

When deploying or upgrading machines to Big Sur, I'm finding a change in behavior vs Catalina, in that when connecting to an 802.1x network, BS devices are asking the user to approve a certificate, where Catalina devices do not. In https://macadmins.slack.com/archives/C016JHNMP1N/p1611939579192200 it is suggested that the 802.1x profile can support the TLSTrustedServerNames field. However, SimpleMDM does not offer this field in the Profiles:Wireless category. I think that having this would address the unwanted dialog. As documented at https://developer.apple.com/documentation/devicemanagement/wifi/eapclientconfiguration , it seems this could be a field you could expose in the certificate management interface?

I would like to see the iOS version on the main dashboard when you are looking at all the devices in your specific groups.

So, today we have Name, Group, Model, Status, Last Seen. ADD: iOS Version!

It would be nice if there was a publicly available support document or otherwise that listed what shared apps are available in SimpleMDM right now.

Thanks!

Similar to scheduled iOS update policy, we would love to see clients check in for applications in our catalog and perform regular scheduled non-business hours updates. This would be for all Apps (VPP and Enterprise).

When updating enterprise app binaries, users sometimes reject the "Smart Update" if they feel it interrupts their workday, so a regular daily or weekly check in to our catalog by the devices to find the most recent app version available would keep all devices current across both VPP and enterprise apps.

At the moment Firefox is only available in English at Munki. It would be great if more languages were supported.