I am developing an iOS App that is enrolled to the companies iOS devices via Blackberry UEM.
The app needs to access a client certificate, that is also enrolled via Blackberry UEM.
How can the app access these certificates, because under iOS an app has only access to its own KeyChain.
Do I have to use the Blackberry Dynamics SDK.
The Blackberry Administrator told me, the app is running outside the Dynamics container and I want to avoid linking agains the SDK.
I tried to read the certificates, installed via Blackberry UEM, via SecItemCopyMatching queries, but cannot access them.
Please tell me, if accessing them is possible.
With or without Blackberry Dynamics SDK.
Related
I am working on Microsoft Intune SDK for iOS. I have below use case:
I am going to release two build one for AppStore and second one is In-House app with same code base and there is no change in app. Now my question can I add some custom flag in Intune Web Portal to differentiate two app say AppStore app is installed on unmanaged device and AppStore build is installed on managed device? Also how can I determine In-House app?
Thanks,
Devesh
I'm developing iOS app for organisation. I want to distribute this app via corporate website only to certain people in a company (and, of course, not using AppStore). I know how to use Enterprise and Ad Hoc distributions. But I have an issue with permissions – it's not allowed to download this app for everyone – only for accredited employees.
Question:
How can I activate permissions for installing this iOS app via corporate website?
You have to control access to the distribution website and/or build user authentication into your app. There is no way to restrict the IPA file to specific users.
It is better to distribute the app via an MDM; that way you can push the app to specific users and the users don't need to manually trust your enterprise certificate. It also provides a simpler way of updating the provisioning profile, which is required for enterprise apps.
I'm developing an iOS In-House application. I've known that an In-House app can be installed in any device without UDID limit. But I want to authorize particular device and app can run only on authorized device. In addition, the authorization operations should be dynamic, in other word, don't need to recompiling and redistribute the app.
Is there any recommended solution?
Use UIDevice.currentDevice(). identifierForVendor to know on which device your application is running. Then make an HTTPS query to a web server to ask if that device is allowed to run your application. If no, crash the application.
We have developed an iOS app that we would like to distribute through Microsoft Intune.
We have already subscribed to the iOS Developer Enterprise program and created an In-House Distribution provisioning profile used to sign our application which is then deployed to Intune.
Using the portal Intune app installed from the Apple app store, our developed app is not displayed in the available app list.
What do we have to do to make our app visible in Intune in order to be installed?
Do we have to install the Distribution certificate somewhere in Intune?
Do we need to use the Intune app wrapping tool?
We already knew that we could view the app through safari, but I thought that, using the In-House Distribution provisioning, we could directly use the Intune App to distribute our production ready app.
We have other "still in development" iOS app that we distribute through Intune using a Development provisioning which we update by hand adding the Test devices.
Anyway, even accessing from Safari, the process of installing the deployed app fails.
I found this on MS Technet. Does it shed any light on your problem?
Currently, end-users cannot install corporate apps from the Microsoft Intune Company Portal app for iOS. This is due to restrictions placed on apps that are published in the iOS App Store (see App Store Review Guidelines, Section 2). Users can access corporate apps (including managed App Store apps and line-of-business app packages) by launching the Company Portal app on their device and tapping the Company Apps tile, which will open Safari browser and redirect them to the Intune Web Portal. For more information about the mobile management capabilities enabled by the Intune Company Portal app, see Mobile Device Management Capabilities in Microsoft Intune.
https://technet.microsoft.com/en-gb/library/dn646972.aspx
I am trying to develop an enterprise environment where the specified app in the app store gets installed in all the iOS devices connected to the company infrastructure, which has a windows based AD to verify the users.
I went through various materials, and I found over the air profile delivery and few other methods like MDM to push the configuration. But it seems only the configuration can be pushed using these features.
In Apple Configurator and iPhone Configuration Utility, the devices should be connected to the computer physically. I would like to install the app in all the company-owened devices (around 1000 devices) without asking any permission from the user. Is there any way to do this?
You can't take over people's devices without their permission. Nor can you stealth-install an app. You can use MDM to register devices on which you can do this, but they need to be registered first. Apple is currently making MDM features more powerful for the Enterprise environment. As an Enterprise developer, you don't have to use the app store for your app - you can distribute it over your own web server. So even if you go the MDM route, you'll have to register those 1000 devices first. Once you do that, you have a lot more control.