So...I'm very aware of the carrot/stick methodology of managing iPads. Eg. Users who follow the rules and enroll "get the carrot" of full wifi access, use of camera, apps and such and users who fail to follow the rules "get the stick"...or a punishment of some sort like restricted camera access, placed in a penalty box Wifi, etc.
I have given the various "punishments" over to the administration to decide what they are for a given issue. What I have been charged with doing is implementing them.
The implementation I am seeing is a "punishment" mobileconfig file that is scoped to a static group. For example, if Johnny is messing around with the camera during class and it is decided that Johnny needs his camera disabled, the principal wants to be the one to put Johnny in the "disabled camera" static group.
Here's the summed up problem simply...what are the absolute minimum rights I would have to grant to an administrative staff member in the JSS to administer pre-configured punishments that are agreed upon at the district level?
