Set up Apple DEP

Prerequisite: This procedure assumes that you have already enrolled in the Apple Device Enrollment Program (DEP) and set up an administrator account for the Apple DEP web portal.

Note For detailed information on enrolling in DEP, visit the Apple DEP website at http://www.apple.com/business/dep/ or see the Apple Deployment Programs online help.
Tip If you have already enrolled in the Apple Volume Purchase Program (VPP), you can use the same Apple ID for DEP.

To use Apple DEP with Sophos Mobile, you need to create a virtual MDM server in the Apple DEP web portal and link it to the Sophos Mobile server. This includes a verification process to establish a secure connection between Sophos Mobile and the Apple DEP web service.

To set up a virtual MDM server for Sophos Mobile:

  1. On the menu sidebar, under SETTINGS, click Setup > System setup, and then click the Apple DEP tab.
  2. Click Download public key to download the Sophos Mobile public key file for Apple DEP.
    The file is saved to your local computer, using the download settings of your web browser.
  3. Open the Apple DEP web portal at https://deploy.apple.com in a new browser window.
    You can do this by clicking the Apple DEP web portal link in Sophos Mobile.
  4. Log in to the Apple DEP web portal with your company Apple ID.
  5. In the portal, go to Device Enrollment Program > Manage Servers, and then click Add MDM Server.
  6. Enter a name for MDM server, for example Sophos Mobile.
  7. In the next step, upload the public key file that you downloaded from Sophos Mobile.
  8. In the next step, download the server token.
    At this point, you may log out from the Apple DEP web portal.
  9. On the Apple DEP tab of Sophos Mobile, click Upload a file and select the server token that you downloaded from the Apple DEP web portal.
    The details of your virtual MDM server are displayed.
  10. Click Save to save your changes.
The DEP server token is valid for one year.
Important When you create a new server token in the Apple DEP web portal, you must use the same Apple ID that you used for the creation of the initial token.