top of page
Writer's pictureAnand P

Updates to Intune Management and Support for iOS/iPadOS 18 and macOS 15

Microsoft Intune now offers enhanced features to cater to Apple's latest operating systems, such as iOS/iPadOS 18.0 and macOS 15 Sequoia. In response to Apple's release of these updates, Microsoft is actively ensuring immediate compatibility with Apple's newest operating systems in Microsoft Intune, ensuring seamless functionality of current features.


Microsoft will no longer support User Enrollment with Company Portal.


Apple has stopped supporting profile-based User Enrollment in the most recent iOS/iPadOS 18 update, Microsoft Intune will no longer support Apple User Enrollment via the Company Portal. To register devices, you will have to adopt a different management method. Microsoft suggests switching to account-driven User Enrollment, which offers similar features and an improved user interface. Furthermore, you have the option to try out the new web-based device enrollment for iOS/iPadOS for a more streamlined enrollment procedure.

Please note that the changes will not impact the device enrollment process through the company portal.
Is there any impact on existing devices and profiles?

  1. Current devices that are already enrolled will not be affected and will remain enrolled.

  2. If users are targeted with this enrollment type profile, they cannot enroll new devices.

  3. Technical support for Intune will be available only for devices that have already been enrolled using this method. Microsoft will not offer technical support for new enrollments.


Changes to ADE Setup Assistant in enrollment policies


Intune's September (2409) update will introduce six additional Setup Assistant screens for admins to optionally display or conceal while setting up an Automated Device Enrollment (ADE) policy. These screens consist of three iOS/iPadOS and three macOS Skip Keys, which will be accessible for both current and new enrollment policies.

 

  • Emergency SOS (iOS/iPadOS 16+)

    • The IT admin can choose to show or hide the iOS/iPadOS Safety (Emergency SOS) setup pane that is displayed during Setup Assistant.


  • Action button (iOS/iPadOS 17+)

    • The IT admin can choose to show or hide the iOS/iPadOS Action button configuration pane that is displayed during Setup Assistant.


  • Intelligence (iOS/iPadOS 18+)

    • The IT admin can choose to show or hide the iOS/iPadOS Intelligence setup pane that is displayed during Setup Assistant.


  • Wallpaper (macOS 14+)

    • The IT admin can choose to show or hide the macOS Sonoma wallpaper setup pane that is displayed after an upgrade. If the screen is hidden, the Sonoma wallpaper will be set by default.


  • Lockdown mode (macOS 14+)

    • The IT admin can choose to show or hide the macOS Lockdown Mode setup pane that is displayed during Setup Assistant.


  • Intelligence (macOS 15+)

    • The IT admin can choose to show or hide the macOS Intelligence setup pane that is displayed during Setup Assistant.


New settings and payloads.


Microsoft has updated the Apple settings catalog to include the latest iOS/iPadOS and macOS settings for declarative device management (DDM) and mobile device management (MDM). This allows you to configure your devices from day zero onwards You can locate the settings list updates on the Microsoft Blog.


Minimum Supported OS Version


Minimum iOS/iPadOS supported OS version to keep enrolled devices secure and efficient.

Following the launch of iOS/iPadOS 18, Microsoft Intune, which includes the Intune Company Portal and Intune app protection policies (APP, also referred to as MAM), will soon mandate iOS/iPadOS 16 and newer versions.


User-less devices (or devices without a primary user)

Supported: Intune ensures that devices running iOS/iPadOS 18.X, 17.X, and 16.X can enroll and utilize all Intune MDM functionality applicable to user-less devices, with new eligible features functioning on these devices.


Allowed: OS versions refer to the capability of a device without a user to enroll in Intune and access features supported by MDM for an operating system version three levels below the minimum supported OS version. However, this does not ensure the absence of OS issues, bugs, or breaking features. Devices with user affinity or apps needing user sign-in will not be supported.


New user-less enrollments and feature support

User-less supported versions

User-less allowed versions

iOS/iPad OS Version

Three most recent versions (N-2)

Up to three versions below the supported version (N-5)

For example

Supported OS : Three most recent versions (N-2) will look like 18.X-2 = 18.X ,17.X & 16.X
Allowed OS : Up to three versions below the supported version (N-5) will look like 18.X-5 = 18.X,17.X,16.X,15.X,14.X & 13.X
Note: N is considered as the latest OS released by Apple 

Minimum MacOS-supported OS version to keep enrolled devices secure and efficient

Following the launch of MacOS 15 Sequoia, Microsoft Intune will soon mandate MacOS 13 and newer versions.

User-less devices (or devices without a primary user)


Microsoft is transitioning to a new support approach for enrolled devices without user affinity with the upcoming launch of macOS 15 (Sequoia). This updated support model aims to specify the OS versions that are supported and permitted to enhance the security of enrolled devices and reduce interruptions for IT administrators and users. This support includes enrollment of macOS devices that do not link a user to the device, such as Direct Enrollment and Automated Device Enrollment (ADE) without user association.


Supported: macOS devices without a primary user running the three most recent major macOS versions are fully supported by Intune. Devices running macOS 15.X, 14.X, and 13.X can enroll and use all Intune macOS management features applicable to devices without a primary user, including new eligible features.


Allowed: macOS versions refer to the capability of a device without a user to enroll in Intune and access features supported by MDM for an operating system version three levels below the minimum supported OS version. However, this does not ensure the absence of OS issues, bugs, or breaking features. Macs enrolled with user affinity or apps needing user sign-in will not be supported.


New macOS enrollments without primary user or user-less enrollment

Supported versions

Allowed versions

Mac OS Version

Three most recent versions (N-2)

Up to three versions below the supported version (N-5)

 For example

Supported OS : Three most recent versions (N-2) will look like 15.X-2 = 15.X ,14.X & 13.X
Allowed OS : Up to three versions below the supported version (N-5) will look like 15.X-5 = 15.X,14.X,13.X,12.X,11.X & 10.X
Note: N is considered as the latest OS released by Apple 

Conclusion


The purpose of this blog is to help you understand and get ready for the upcoming changes that will come with the release of the new OS of iOS/iPadOS and MacOS by Apple.


Reference Links


Recent Posts

See All

Comments


bottom of page