I've been given the task of trying to implement remote enrollment of iOS devices outside of our network. Our Systems manager suggested we use the existing NetIQ Access Manager to securely implement this as the alternative is putting a hole in our firewall to our DMZ JSS for AD info to go back and forward. I shouldn't have to say what a bad idea that is!
Only issue is I have ZERO experience with Access Manager. I was wondering if anyone else has attempted something similar.