I've been looking into our options for deploying and updating iOS apps, as well as the OS. I have only been able to presume the following based on the research and testing I have done. I am looking for confirmation that what I have found is correct and/or options that I have missed.
Installation of apps at supervised device creation time can be done via Apple configurator.
From then on there are two options for deploying apps and updates.
1: Up to 5 sync stations where all devices share the same iTunes/Apple ID. No over the air updates can occur without sharing the Apple ID credentials. Over the air updates can be disabled by removing access to the app store app with a configuration profile/payload at which point users must physically plug in to a designated system to get any updates or new apps.
2: Apple ID's for each user. Over the air updates and app installs may occur, however users cannot be restricted from installing app store apps on their own. Also they cannot be kept from entering their own financial information into the apple ID subsequently putting personal purchases on the devices. In-app purchases can be restricted.
I'd like to allow users to install apps made available via self service, and OS updates, all over the air, but nothing else. It doesn't seem to be possible at this time.
Thanks for any feedback/clarification as to how 'things' work.
