User profile for user: VSDGeoff
VSDGeoff Author
User level: Level 1
30 points

Device Enrollment Program and AD Users

In a small to medium sized school district, I have a Mac Mini running OS X 10.10.2 with Server 4.0.3. The server is bound to multiple AD servers as we have multiple domains (Each building currently has its own domain, but we are in the process of switching to a single domain for the entire district). I have Profile Manager configured and connected to the DEP. I set the Enrollment settings as follows:

Prompt User to Enroll Devices

Prevent enenrollment

Supervise

Allow Pairing

Require credentials for enrollment

The problem comes in when I select the Require credentials for enrollment option. My AD users cannot login on their iPads to finish the activation of the device. If I try to log in using a local user account from the server machine, the activation completes successfully. I know that the server is communicating with the AD servers, AD users can successfully log into the MyDevices page as well as my AD admins can log into the Profile Manager website.


Any help would be greatly appreciated.


I know it is a lot of information, but here are the logs from the server:


Unsuccessful Login using AD user


1::Feb 06 15:04:57.634 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 111us [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:04:57.634 [221] <10.2.45.144> {require_once (dep_mdm_enroll.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - POST dep_mdm_enroll

0::Feb 06 15:04:57.641 [221] <10.2.45.144> {LogException (common.php:470)} EXCEPTION: 401 Unauthorized - Requesting user digest authentication at

0::Feb 06 15:04:57.641 [221] <10.2.45.144> #0 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(172): DieUnauthorized('Requesting user...')

0::Feb 06 15:04:57.641 [221] <10.2.45.144> #1 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(199): _request_authorization('24f8cec00e51de4...')

0::Feb 06 15:04:57.641 [221] <10.2.45.144> #2 {main}

1::Feb 06 15:04:57.668 [221] <10.2.45.144> {SendFinalOutput (common.php:477)} Sent Final Output (58 bytes)

1::Feb 06 15:04:57.668 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/dep_mdm_enroll

0::Feb 06 15:04:57.668 [221] <10.2.45.144> {SendFinalOutput (common.php:477)} Completed in 34ms | 401 Unauthorized [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:04:57.696 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 134us [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:04:57.696 [222] <10.2.45.144> {require_once (dep_mdm_enroll.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - POST dep_mdm_enroll

0::Feb 06 15:04:58.195 [222] <10.2.45.144> /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php: Authorization failed

0::Feb 06 15:04:58.196 [222] <10.2.45.144> {LogException (common.php:470)} EXCEPTION: 401 Unauthorized - Requesting user digest authentication at

0::Feb 06 15:04:58.196 [222] <10.2.45.144> #0 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(172): DieUnauthorized('Requesting user...')

0::Feb 06 15:04:58.196 [222] <10.2.45.144> #1 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(199): _request_authorization('24f8cec00e51de4...')

0::Feb 06 15:04:58.196 [222] <10.2.45.144> #2 {main}

1::Feb 06 15:04:58.197 [222] <10.2.45.144> {SendFinalOutput (common.php:477)} Sent Final Output (58 bytes)

1::Feb 06 15:04:58.197 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/dep_mdm_enroll

0::Feb 06 15:04:58.197 [222] <10.2.45.144> {SendFinalOutput (common.php:477)} Completed in 500ms | 401 Unauthorized [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:04:58.212 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 113us [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:04:58.212 [221] <10.2.45.144> {require_once (dep_mdm_enroll.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - POST dep_mdm_enroll

0::Feb 06 15:04:58.219 [221] <10.2.45.144> {LogException (common.php:470)} EXCEPTION: 401 Unauthorized - Requesting user digest authentication at

0::Feb 06 15:04:58.219 [221] <10.2.45.144> #0 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(172): DieUnauthorized('Requesting user...')

0::Feb 06 15:04:58.219 [221] <10.2.45.144> #1 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(199): _request_authorization('24f8cec00e51de4...')

0::Feb 06 15:04:58.219 [221] <10.2.45.144> #2 {main}

1::Feb 06 15:04:58.219 [221] <10.2.45.144> {SendFinalOutput (common.php:477)} Sent Final Output (58 bytes)

1::Feb 06 15:04:58.219 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/dep_mdm_enroll

0::Feb 06 15:04:58.219 [221] <10.2.45.144> {SendFinalOutput (common.php:477)} Completed in 6ms | 401 Unauthorized [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll


Successful Login Using Local user


1::Feb 06 15:13:50.172 [2109] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 130us [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:13:50.172 [2109] <10.2.45.144> {require_once (dep_mdm_enroll.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - POST dep_mdm_enroll

0::Feb 06 15:13:50.180 [2109] <10.2.45.144> {LogException (common.php:470)} EXCEPTION: 401 Unauthorized - Requesting user digest authentication at

0::Feb 06 15:13:50.180 [2109] <10.2.45.144> #0 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(172): DieUnauthorized('Requesting user...')

0::Feb 06 15:13:50.180 [2109] <10.2.45.144> #1 /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/php/de p_mdm_enroll.php(199): _request_authorization('24f8cec00e51de4...')

0::Feb 06 15:13:50.180 [2109] <10.2.45.144> #2 {main}

1::Feb 06 15:13:50.180 [2109] <10.2.45.144> {SendFinalOutput (common.php:477)} Sent Final Output (58 bytes)

1::Feb 06 15:13:50.180 [2109] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/dep_mdm_enroll

0::Feb 06 15:13:50.180 [2109] <10.2.45.144> {SendFinalOutput (common.php:477)} Completed in 8ms | 401 Unauthorized [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:13:50.223 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 144us [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:13:50.223 [222] <10.2.45.144> {require_once (dep_mdm_enroll.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - POST dep_mdm_enroll

0::Feb 06 15:13:50.273 [222] <10.2.45.144> {_dep_mdm_enroll_2 (db.php:396)} priv_result=[ {

0::Feb 06 15:13:50.273 [222] <10.2.45.144> 'dm_expanded_privileges_for_user_id'=>'{"enroll_dep":true,"enroll_portal":true, "require_ownership":false,"require_placeholder":false,"wipe_device":true,"lock_d evice":true,"clear_passcode":true,"download_profiles":true,"access_portal":true, "enroll_configurator":false}'

0::Feb 06 15:13:50.273 [222] <10.2.45.144> } ]

1::Feb 06 15:13:51.460 [222] <10.2.45.144> {SendFinalOutput (dep_mdm_enroll.php:209)} Sent Final Output (11979 bytes)

1::Feb 06 15:13:51.460 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/dep_mdm_enroll

0::Feb 06 15:13:51.460 [222] <10.2.45.144> {SendFinalOutput (dep_mdm_enroll.php:209)} Completed in 1237ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/dep_mdm_enroll]

1::Feb 06 15:13:54.966 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 312us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_checkin]

1::Feb 06 15:13:54.966 [221] <10.2.45.144> {require_once (mdm_checkin.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_checkin

0::Feb 06 15:13:55.014 [221] <10.2.45.144> checkin: 'Authenticate'

1::Feb 06 15:13:55.070 [221] <10.2.45.144> {SendFinalOutput (mdm_checkin.php:148)} Sent Final Output (0 bytes)

1::Feb 06 15:13:55.070 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_checkin

0::Feb 06 15:13:55.070 [221] <10.2.45.144> {SendFinalOutput (mdm_checkin.php:148)} Completed in 104ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_checkin]

1::Feb 06 15:13:57.343 [2109] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 312us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_checkin]

1::Feb 06 15:13:57.344 [2109] <10.2.45.144> {require_once (mdm_checkin.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_checkin

0::Feb 06 15:13:57.347 [2109] <10.2.45.144> checkin: 'TokenUpdate'

1::Feb 06 15:13:57.351 [2109] <10.2.45.144> {Target_for_incoming_request (target.php:320)} Found target iOS: <'Unknown-Host'[488](OWNER:User[5])>

1::Feb 06 15:13:57.477 [2109] <10.2.45.144> {SendFinalOutput (mdm_checkin.php:148)} Sent Final Output (0 bytes)

1::Feb 06 15:13:57.477 [2109] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_checkin

0::Feb 06 15:13:57.477 [2109] <10.2.45.144> {SendFinalOutput (mdm_checkin.php:148)} Completed in 133ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_checkin]

1::Feb 06 15:13:58.774 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 131us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_checkin]

1::Feb 06 15:13:58.774 [222] <10.2.45.144> {require_once (mdm_checkin.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_checkin

0::Feb 06 15:13:58.776 [222] <10.2.45.144> checkin: 'TokenUpdate'

1::Feb 06 15:13:58.780 [222] <10.2.45.144> {Target_for_incoming_request (target.php:320)} Found target iOS: <'Unknown-Host'[488](OWNER:User[5])>

1::Feb 06 15:13:58.827 [222] <10.2.45.144> {SendFinalOutput (mdm_checkin.php:148)} Sent Final Output (0 bytes)

1::Feb 06 15:13:58.827 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_checkin

0::Feb 06 15:13:58.827 [222] <10.2.45.144> {SendFinalOutput (mdm_checkin.php:148)} Completed in 53ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_checkin]

1::Feb 06 15:14:00.017 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 264us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:00.018 [221] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:00.023 [221] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'Unknown-Host'[488](OWNER:User[5])>

0::Feb 06 15:14:00.023 [221] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Idle'

0::Feb 06 15:14:00.047 [221] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'DeviceInformation' as CommandUUID=C39A49E2-17DB-40A5-B6E5-94548E163407

1::Feb 06 15:14:00.084 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (1984 bytes)

1::Feb 06 15:14:00.084 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:00.084 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 67ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:00.846 [2109] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 127us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:00.846 [2109] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:00.852 [2109] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'Unknown-Host'[488](OWNER:User[5])>

0::Feb 06 15:14:00.852 [2109] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=C39A49E2-17DB-40A5-B6E5-94548E163407

0::Feb 06 15:14:00.919 [2109] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'Restrictions' as CommandUUID=E5269CE6-C19D-47FB-8B78-DD6400F81A1F

1::Feb 06 15:14:00.956 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (431 bytes)

1::Feb 06 15:14:00.956 [2109] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:00.956 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 109ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.051 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 150us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.051 [222] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.057 [222] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.057 [222] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=E5269CE6-C19D-47FB-8B78-DD6400F81A1F

0::Feb 06 15:14:01.093 [222] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'CertificateList' as CommandUUID=3540C8F6-0BF4-43F6-B023-3F95D3182B51

1::Feb 06 15:14:01.096 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (389 bytes)

1::Feb 06 15:14:01.096 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.096 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 45ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.137 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 118us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.137 [221] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.156 [221] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.157 [221] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=3540C8F6-0BF4-43F6-B023-3F95D3182B51

0::Feb 06 15:14:01.175 [221] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'ProvisioningProfileList' as CommandUUID=AF5B54A8-3AD7-46EB-9933-A5EC721FA7D5

1::Feb 06 15:14:01.180 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (397 bytes)

1::Feb 06 15:14:01.180 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.181 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 43ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.207 [2109] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 122us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.207 [2109] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.215 [2109] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.215 [2109] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=AF5B54A8-3AD7-46EB-9933-A5EC721FA7D5

0::Feb 06 15:14:01.232 [2109] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'ProfileList' as CommandUUID=2A50F792-6486-4767-828F-B71545709CE1

1::Feb 06 15:14:01.235 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (385 bytes)

1::Feb 06 15:14:01.235 [2109] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.235 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 28ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.299 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 118us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.300 [222] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.309 [222] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.309 [222] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=2A50F792-6486-4767-828F-B71545709CE1

0::Feb 06 15:14:01.372 [222] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'InstalledApplicationList' as CommandUUID=D9664A42-7E34-44C7-AA8C-9A2601579F68

1::Feb 06 15:14:01.376 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (398 bytes)

1::Feb 06 15:14:01.376 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.376 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 76ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.407 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 267us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.407 [221] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.413 [221] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.414 [221] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=D9664A42-7E34-44C7-AA8C-9A2601579F68

0::Feb 06 15:14:01.430 [221] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'ManagedApplicationList' as CommandUUID=46058966-4E97-4B2F-872C-FC80D534009A

1::Feb 06 15:14:01.433 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (396 bytes)

1::Feb 06 15:14:01.433 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.433 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 26ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.458 [2109] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 121us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.459 [2109] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.465 [2109] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.465 [2109] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=46058966-4E97-4B2F-872C-FC80D534009A

0::Feb 06 15:14:01.482 [2109] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'ManagedMediaList' as CommandUUID=683038A2-539D-4393-AF61-6EB632869029

1::Feb 06 15:14:01.485 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (390 bytes)

1::Feb 06 15:14:01.485 [2109] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.485 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 26ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.512 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 139us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.512 [222] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.517 [222] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.517 [222] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=683038A2-539D-4393-AF61-6EB632869029

0::Feb 06 15:14:01.533 [222] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'SecurityInfo' as CommandUUID=9ACEFE3A-013E-4DF0-A3FD-C3E7684922DC

1::Feb 06 15:14:01.537 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (386 bytes)

1::Feb 06 15:14:01.537 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.537 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 25ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.570 [221] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 118us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.570 [221] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.575 [221] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.576 [221] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=9ACEFE3A-013E-4DF0-A3FD-C3E7684922DC

0::Feb 06 15:14:01.589 [221] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'ActivationLockBypassCode' as CommandUUID=EE1E1223-860A-474D-A3B6-4E165044FE69

1::Feb 06 15:14:01.592 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (398 bytes)

1::Feb 06 15:14:01.592 [221] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.592 [221] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 21ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.785 [2109] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 147us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.785 [2109] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.792 [2109] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.792 [2109] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=EE1E1223-860A-474D-A3B6-4E165044FE69

0::Feb 06 15:14:01.807 [2109] <10.2.45.144> {Task_generate_next_request (mdm_connect.php:108)} Sending request 'ClearActivationLockBypassCode' as CommandUUID=78BD814B-A8F6-4911-93D8-FA9A5A8805A2

1::Feb 06 15:14:01.810 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (403 bytes)

1::Feb 06 15:14:01.810 [2109] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.810 [2109] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 24ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.844 [222] <10.2.45.144> {LogElapsedTime (common.php:82)} Time since script start: 154us [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

1::Feb 06 15:14:01.845 [222] <10.2.45.144> {require_once (mdm_connect.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_connect

1::Feb 06 15:14:01.851 [222] <10.2.45.144> {Target_for_incoming_request (mdm_connect.php:20)} Found target iOS: <'iPad'[488](OWNER:User[5])>

0::Feb 06 15:14:01.851 [222] <10.2.45.144> {_connect_transaction_1 (db.php:396)} Status='Acknowledged' CommandUUID=78BD814B-A8F6-4911-93D8-FA9A5A8805A2

1::Feb 06 15:14:01.969 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Sent Final Output (0 bytes)

1::Feb 06 15:14:01.969 [222] <10.2.45.144> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/api/device/mdm_connect

0::Feb 06 15:14:01.969 [222] <10.2.45.144> {SendFinalOutput (mdm_connect.php:133)} Completed in 124ms | 200 OK [https://myserver.mydomain.lan/devicemanagement/api/device/mdm_connect]

OS X Server 4.0.3-OTHER, OS X Yosemite (10.10.2)

Posted on Feb 9, 2015 1:12 PM

Reply
3 replies
User profile for user: tommyxie
tommyxie
User level: Level 1
8 points

Mar 13, 2017 6:26 PM in response to VSDGeoff

Hi, i've the same problem when linking MDM with multiple domains:

1. I only bind the main domain in MDM server, then i can get AD users from all other domains which has trust relationship with main domain, and all users are can enroll the device via "mydevices" webpage.

2. But when trying to enroll the device via DEP, and enable "require credentials for enrollment", then only the users in main domain can pass the authorization.

3. Once those non main domains AD reboot, all devices which binding users from those AD are will unbind from the device, and I have manually bind all again..

i don't know what happened during the Apple and AD cause the problem, Any help would be greatly appreciated.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Device Enrollment Program and AD Users

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up