Configure Automated Device Enrollment

Automatic Device Enrollment (ADE) lets Apple devices be automatically enrolled into your JumpCloud-managed MDM environment when they are powered on and connected to the internet, as long as the device has been assigned in Apple Business Manager (ABM). This guide walks you through the configuration steps in JumpCloud to support ADE, including uploading certificates, configuring profiles, and validating enrollment.

Prerequisites

before you begin, make sure the following are in place:

• An active JumpCloud account with Administrator permissions to configure ADE.

• Apple Business Manager account with Administrator permissions.

• A valid Apple Push Notification service (APNs) certificate (or the ability to obtain one via CSR).

To configure JumpCloud 1 :

1. Log in to the JumpCloud Admin Portal: https://console.jumpcloud.com.

2. Go to DEVICE MANAGEMENT > MDM.

3. On the MDM home page, click get started under Automated Device Enrollment Configuration.

4. On the Set Up Apple’s Automated Device Enrollment page, download the token.

To configure Apple Business Manager 1:

1. login to business.apple.com

2. Select your profile name, then select Preferences.

3. Select +add button on Device Management Services section .

4. Enter a name for your company’s MDM server and leave Allow this MDM Server to release devices selected.

5. Click Choose File.

6. then upload the token file that you previously downloaded from Jumpcloud.

7. Click Save.

8. Download the token by selecting the server and clicking Download Token, then clicking Download Server Token.

To configure JumpCloud 2 :

1. On the Set Up Apple’s Automated Device Enrollment page, upload a token file that you previously downloaded from ABM.

2. Click Complete Setup.

To configure Apple Business Manager 2:

1. Select your profile name, then click Preferences.

2. Navigate to the Management Assignment section.

3. Click Edit under Default Assignment.

4. In the Mac section, select the MDM server you configured previously.
   This step enables automatic assignment of new Mac devices to the JumpCloud MDM server.