Jamf Nation Community

trandolph · ‎05-04-2016

We have recently discovered that students have found a way to install apps on their iPads via iTunes U, even if the App store is hidden. All they do is sign up as an instructor with a valid Apple ID. Then create a fictional course. Under the materials section Apple has made it really easy to just search the app store from within iTunes U and create a link to the app. Once they have their list, they can then enroll others in their course to be able to install and launch apps from within iTunes U. Is anyone aware of a way to combat this. I don't even know if the new iOS9.3 capability of forced home screen icons would stop this. We cannot completely disable the apps store because we need to push device based apps to the devices. Looking for any thoughts or suggestions.

NowAllTheTime · ‎05-04-2016

I think that unchecking the "Allow installing apps using App Store" box in the restrictions payload of a configuration profile will prevent the students from installing apps but still allow you to push apps scoped to those devices as long as those iPads are on iOS 9 and in supervised mode.

trandolph · ‎05-05-2016

That is how we have it set.

NowAllTheTime · ‎05-05-2016

Hmm, if that's the case then it seems Apple's implimentation of the restriction didn't take into account how this could be exploited, in which case a bug report/radar could be put in with Apple to try to get a solution. I guess I could see why Apple would allow this behavior to make sure students could install apps linked within legitimate lesson plans - making it the 'as-designed' behavior - but your students have certainly found a problem with that logic.

I'd touch base with your JAMF TAM (and Apple TAM if you have one) if you haven't already so they can help validate whether this is an Apple or a JAMF issue.

Jamf Nation Community

Ipad iTunes U app store access