I’d like to experiment with MDM for mine and my child’s iPhones, and possibly my child’s MacBook.
I self host tons of mainly docker based services and have a domain, with everything behind traefik already.
Does anyone know a good MDM solution/tutorial to do this? I started to try one free recommended one but it was unfortunately a windows service, and then the apple side setup seemed very complicated and I could really use a tutorial.
And if anyone has done it, what are the main benefits over the regular parental controls?
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.
Rules:
Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it’s not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.
Resources:
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
deleted by creator
What’s an MDM?
@Vendetta9076 @InformalTrifle A system to centralise the management of mobile devices like iPhones and iPads remotely. Usually used by companies to provision devices automatically and dictate apps can be installed and have email/calenders etc. configured automatically.
See also https://it-training.apple.com/tutorials/deployment/dm005
Ah, so RMM
From context, I assume Mobile Device Management, though I’ve never heard it it being used other than by an employer.
My dank memes
What about the family sharing and all that jazz? Add kiddos account under yours and you can set age/time limits and stuff like that.
That’s what I am using at the moment but wondered what extra MDM would allow. Plus it’s an opportunity to learn and mess around with it :)
You can use Apple Configurator if you just want basic device supervision. IIRC it should be free. https://support.apple.com/en-ca/guide/apple-configurator-mac/welcome/mac
If the self hosted option doesn’t pan out, would suggest iMazing.
They have an MDM now and their previous versions for personal use were superb, versus iTunes.
I’ll check it out, thanks
Configurator if you have a MacOS device already and want the OG. Plus it does allow for device supervision. Although you may have to register as an enterprise system for that. That’s really going to be the key thing here as last time I recall signing my org up for MDM we had to provide tax documents.
Apple uses JAMF, and their prices are so low and it’s so easy that for strictly Apple devices I’d go that route. I do believe there is an on prem version of Jamf as well, but you still pay yearly for it.
There’s also Hexcloud, whatever VMware is calling there’s now, and technically sccm can do device MDM.
Main benefits come from supervised mode. On iPads you can enable multi user support with sign in. You can remove access to messaging or other apps, but beyond that the differences between MDM and parental locks aren’t as wide.
Ah, I didn’t realise it might be difficult on the apple side registering as a company etc. Maybe it’s not worth the effort, but I’m gonna look into the options you mentioned
Supervised mode gives you basically all the cool options post IOS 12. That said, it’s been about 4 years since I’ve done any of that registration stuff and I know it changed a lot during the pandemic. So it could be easier now.
Not a self-hosted option, but Mosyle allows up to 30 devices free.
Thanks!
Miridore is self hosted and free
I’ll check it out, thanks
What’s a MDM?
Mobile Device Manager, used for protecting/locking down devices.
I’d say locking it down is a feature of being managed, not necessarily what it does.
When managing devices, you can enable users to have as much control as you’d like.
It’s more about being able to manage devices from a single place, similar to what business does with workstations and servers (e.g. MS SCOM.
Plenty of users still have admin rights even with SCOM being used. It still really helps from a support perspective.
I remember researching the topic a while back. SimpleMDM seems to do it, but it requires paying Apple $300 a year. Luckily, Mosyle allows up to 30 devices for free.