I'm hoping for some guidance from someone who's solved this before...
Our students have BYOD iPads that we enrol into DEP with Configurator and then manage with Jamf Pro. I am trying to find a way to prevent them from wiping their iPad and then reconnecting to the School's systems. They do this because they can then load games/VPN apps (constantly battling that with our firewall).
WiFi is done with user authenticated 802.1x - so users can just connect their iPad once it is wiped. This is done for 802.1x authentication passthrough for the web proxy and network monitoring so I can't change this to a WPA2 password.
Does anyone have a good solution to keep the users off the WiFi if they aren't actively enrolled in Jamf?