Skip to main content
Question

ManagedAppleID(AppleSchoolManager) × JamfPro × MDM

  • November 18, 2025
  • 4 replies
  • 71 views
zkkt1446
Forum|alt.badge.img+1

We have iPads enrolled in MDM with Jamf Pro and also configured for ADE via Apple School Manager (supervised devices).
I want to allow sign-in with Managed Apple IDs issued in Apple School Manager only on these supervised devices.

According to the following document:
https://learn.jamf.com/en-US/bundle/technical-articles/page/Configuring_Access_Management_for_Managed_Apple_Accounts_in_the_Jamf_Pro_API.html

My understanding is that this can be achieved by using the API to set the server UUID on the Jamf Pro side in the field,
and then changing the setting in Apple School Manager from “Allow Managed Apple Accounts on all devices” to “Allow only on supervised devices”."automatedDeviceEnrollmentServerUuid"

Is this really feasible in practice?
Has anyone actually implemented this in a production environment?
If so, I would appreciate any advice or points to be aware of.

4 replies

zkkt1446
Forum|alt.badge.img+1
  • zkkt1446
  • Author
  • New Contributor
  • November 29, 2025

If anyone has successfully completed this process, please share your experience.
I would like to try it as well, but I'm concerned that if something goes wrong, the existing Managed Apple IDs might get signed out.

zkkt1446
Forum|alt.badge.img+1
  • zkkt1446
  • Author
  • New Contributor
  • December 17, 2025

The operation failed. The UUID is configured correctly, and all requirements should have been satisfied. Does Jamf support GetToken?

Get Token | Apple Developer Documentation

AJPinto
Forum|alt.badge.img+26
  • AJPinto
  • Legendary Contributor
  • December 17, 2025

This would not be a Jamf Control. MDM only applies to the Managed Device, not the Managed Identity. 

 

I strongly recommend reaching out to Apple on this. However, to my understanding you are looking in the right area of ASM, but I have never gotten this to work myself. In my experiences when enabled you cant log in with the Managed Apple Account on any device, but it was not a priority for me to figure out when I was playing with it some time back.

zkkt1446
Forum|alt.badge.img+1
  • zkkt1446
  • Author
  • New Contributor
  • December 18, 2025

This would not be a Jamf Control. MDM only applies to the Managed Device, not the Managed Identity. 

 

I strongly recommend reaching out to Apple on this. However, to my understanding you are looking in the right area of ASM, but I have never gotten this to work myself. In my experiences when enabled you cant log in with the Managed Apple Account on any device, but it was not a priority for me to figure out when I was playing with it some time back.


Thank you.
I reached out to Apple, and they advised me to contact Jamf. When I contacted Jamf, they advised me to contact Apple.
It may be best to wait until this is officially implemented as a web feature.

Terms & ConditionsCookie settingsAccessibility statement