Auto-assign users to auto-enrolled devices
For devices that enroll automatically with Sophos Mobile during device setup, you can configure automatic user assignment.
The following devices that enroll automatically with Sophos Mobile support automatic user assignment:
- Zero-touch enabled Android devices (zero-touch devices)
- Knox Mobile Enrollment enabled Android devices (KME devices)
- iPhones and iPads registered in Apple Business Manager (Apple Business Manager devices)
When users set up the device after switching it on for the first time or resetting it to factory settings, they must enter their credentials. Sophos Mobile looks up the user account and assigns it to the device.
You can configure which credentials to use:
- Sophos Central credentials
- Active Directory (AD) credentials
Note that you can’t use Azure AD federated authentication for automatic user assignment.
To configure automatic user assignment, follow one of the sections below.
Automatic user assignment with Sophos Central credentials
To use Sophos Central credentials for user authentication, complete the following steps:
Automatic user assignment with AD credentials
To use AD credentials for user authentication, complete the following steps: