Install applications when using Managed Apple ID

Question

Hello,

we would like to enable Azure AD federation with Apple Business Manager.

Within the pros and cons I found this(when managed Apple ID is in use):

• Software can only be assigned by MDM software.

Does this mean that user is not able to install software from Apple store?

Or user is not able to install any other software?

For example VS Code for macOS https://code.visualstudio.com/download

Thanks!

Answer 1

@Djordje Novakovic Thanks for posting in our Q&A.

Yes. The user can't install apps from Apple store using managed Apple ID.

We can deploy apps via intune. Intune supports MacOS app type is intune following:

https://learn.microsoft.com/en-us/mem/intune/apps/apps-add

Or we purchase apps through Apple Business Manager and assign volume-purchased apps to devices.

https://learn.microsoft.com/en-us/mem/intune/apps/vpp-apps-ios

If you want to assign other apps, line-of-business app is an option. However, the app file is needed to be a .pkg file.

https://learn.microsoft.com/en-us/mem/intune/apps/lob-apps-macos

Hope it will give you some ideas.

---

If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 2

Sounds like if the Device is enrolled into AMB, the user is still able to add their apple account to media and purchases.....however we can still restore the phone to original state if they leave and don't pull that info off. Hopefully someone can verify thins as true