Apple VPP licenses

• To use the Apple Volume Purchase Program, a link between the Securepoint Mobile Security Portal and Apple [MS/Enrollment-iOS-DEP Device Enrollment Program (DEP)] is required.

• To deploy apps via VPP, the Securepoint Mobile Security account must be linked to the Apple Volume Purchase Program.

In dieser Seite werden die Variablen für unterschiedliche Sprachen definiert.
Diese Seite wird auf folgenden Seiten eingebunden

• MS (← links)

---

Connect to the VPP (Volume Purchase Program)

The connection is done in three steps at  Mobile Security Settings in section Apple VPP / Apple business Manager / Apple Schoolmanager with button  Add resp.  Update

1. Download the Apple Push certificate (*.pem file)
2. Upload this certificate in the [business.apple.com Apple Business Manager] or [school.apple.com Apple School Manager]
   This is only required once per location.
3. Download the vpp token in the Apple Business Manager or Apple School Manager:
   • Klick on Username in the corner down left
   • Menü Preferences
   • { Paymens and Billing
   • Tab Apps and Books / Section Content Tokens
   • Choose Token and Download
4. Download the *.vpptoken file in the Securepoint Unified Security Portal under  Mobile Security Preferences
   in the section Upload Apple VPP / Apple Business Manager / Apple School Manager
   using the buttons  Add or  Update /  Upload Token.
   Finish with  Done

notempty

VPP tokens expire annually and must therefore be renewed regularly

Note for invalid VPP token:

Troubleshooting
If the VPP token becomes invalid before one year has elapsed, this may be due to the following reasons:

The account of the ABM user who created the token is locked or deleted

The ABM user who created the token has changed his password

.In this case, the VPP token must be renewed with a valid account.

Overview of all VPP licenses

The Apple VPP licenses overview lists all apps purchased or licensed by Apple busines Manager and can be assigned to devices.

 Mobile Security iOS/iPadOS VPP licenses  Assign license

Opens the dialog to assign multiple VPP licenses to multiple devices simultaneously

Caption	Value	Description	Dialog for quick assignment of VPP licenses
Devices	iPhone	A drop-down menu opens in the click box from which the desired devices can be selected.
Managed Apple IDs	Homers (homers@ttt-point.de)	A drop-down menu opens in the click box, from which the desired Apple IDs can be selected.
VPP licenses	VPN-Client	A drop-down menu opens in the click box from which the desired app licenses can be selected.

More app information

App-Description

License assignment

Installation of an app or web clip

After these preparations, the app or web clip can be installed under  Mobile Security iOS/iPadOS  Apps button  Add app.

Type: App
Caption	Selection	Description	App details
Source	iTunes Store ID	iTunes Store ID 1436024470 Example for the Securepoint VPN Client
	or Identifier	de.securepoint.ms.agent Example for the Securepoint VPN Client
	or Manifest URL	URL that can be used to download the app without the app store.
	or Adjusted App ID	iTunes Store ID of the customised app, which is used in Apple VPP, for example
Take over management		Activation is necessary to delete the app remotely.
Purchase Method	Nicht spezifiziert	An Apple ID configured on the device is required for installation
	Legacy Volume Purchase Program	(Not recommended!) To use, if an existing VPP should not yet have been upgraded to the Apple Business Manager or Apple School Manager.
	Volume Purchase Program App Assignment	Required to install apps without device users being logged into the App Store.
Management-flags	Both disabled	Application data is included in the icloud backup. App remains on the device when the profile is deleted
	Delete app if the MDM profile has been deleted	Deletes the app from the device when the profile is deleted. Application data is included in iCloud backup
	Prevent backup of the app data	Prevents application data from being included in the iCloud back. App remains on the device if the profile is deleted.
	Both enabled	Prevents the app data from being included in the iCloud back. Deletes the app from the device when the profile is deleted.
Devices	Add device	The app is assigned to these devices
User	Add user	The app is assigned to all devices from these users
roles	Add roles	The app is assigned to all devices by all users with these roles
Tags	Add tags	The app is assigned to all devices with these tags
Comment	Comment	Description of the app
Save	Saves the information and transmits the app immediately to the devices
Type: Webclip
URL	https://wiki.securepoint.de https://203.0.113.203	The Web clip URL. The IP address can also be entered.	Web clips
Name	Securepoint Wiki	Freely selectable name that is displayed in the portal
Label	SP Wiki	The name of the we clip as it appears on the device's home screen.
Icon	Upload file...  Choose image	Icon on the display of the device: File type: PNG Max. file size: 1 MB Max. resolution: 400px x 400px
Removable		Determines whether the user can remove this web clip or not.
Full screen		When active, the web clip is launched as a full-screen web app.
Ignore Manifest Scope		When active, a full screen web clip can navigate to an external website without displaying the Safari user interface. Otherwise, the Safari UI is displayed when you navigate away from the URL of the web clip. Has no effect if full screen is disabled.
Pre-composed		When active, prevents the SpringBoard from adding "shine" to the icon.
Devices	Add device	The app is assigned to these devices
User	Add user	The app is assigned to all devices from these users
roles	Add roles	The app is assigned to all devices by all users with these roles
Tags	Add tags	The app is assigned to all devices with these tags
Comment	Comment	Description of the app
Save	Saves the information and transmits the app immediately to the devices