Apple Configurator 2 and restoring backups

Well I will try to answer your questions as best as I can -

For #1 - I'm not sure what you can do to prevent a mail app from caching data from one user to the next. Have you considered having them use a web interface for email (web link on the iPads) instead? Most all web interfaces for mail clear out credentials/data once closed unless the user explicitly told the web browser to save the credentials, but I think that can be turned off in a restrictions profile.

For #2 - the "attempt to manage unmanaged apps" is actually a 2-stage process. I'm sorry I didn't realize this before. You must first check the "Attempt to manage unmanged" check box for an app, save the new settings, and then a link will appear under Status that says "Change to managed". Once you click on that and wait a minute for the devices to update, Meraki should take over management for that app.

For #3 - the Meraki Profile password seems to work okay on my end. When I go into Settings -> General -> Device Management and attempt to Remove Management it prompts for the profile passcode. Or are you talking about the Meraki app? If it's ever deleted you can just re-push the app from the client dashboard. The device remains managed by Meraki even if the app is removed.

The only thing DEP really does for you is automate enrollment/re-enrollment. Since automated re-enrollment prevents you from installing whatever specialized blueprint you've created, there's no point in using DEP at all. It's just going to dump a profile onto your device that you don't want in the first place. We just leave it off for our environment and use the QR Code for manual enrollment per device. As far as I can tell there is no 'reversion' solution no matter how you slice it. You'll always have to restore devices from a cart or direct iPad-to-Mac connection to get it back to the original state you want it in. Yes - this totally ***** for what you, me and many others who want better device management. Makes me wish for an iPad equivalent of Deep Freeze.

Can i create a "restore" blueprint for the teachers ipads using the same macbook or will that mess up the blueprints and profiles.

You should be able to make as many different restore blueprints as necessary on the same Macbook without running into any issues... student, teacher, or otherwise.

So If i have a backup for students and a backup for teachers...i would need two different macbooks?

No, you can create multiple backups using the same Macbook. You would then create several different restore blueprints and each of those blueprints would apply a different backup. Basically, you would repeat my step 8 as many times as needed for as many different backups as you have. Hope this helps.

thanks for the help...when AC2 is done, is it ok to disconnect the usb cable even though the loading symbol is there?

It's probably okay, but I usually let it go until those are all complete just to play it safe. I think that's just indicating that it's still refreshing the data from those iPads to determine their status.

Speaking from experience, just be sure to create your multiple backups from different iPads. Don't try to use the same device to create different backups. A second backup of the same device will overwrite the first one.

My question is, why i 'm losing my iPads names when i restore them? I try different setting but my 20 iPad finish with the same name: iPad.

It seems all of the iPads are renamed to the name the backed-up iPad had, unfortunately. I do wish there was a way to maintain the device names the way Apple Configurator 1 worked!

Thanks so much for the detailed post, has been extremely beneficial!

One note around DEP, I work in a school where we have school owned iPads and the advantage of DEP is that it prevents the MDM profile from being deleted. That said, I followed these steps but skipped steps 3 and 4 in the deployment step and it did work for a DEP enabled device. Now all of our iPads actually have DEP, and I'm not sure if this made a difference, but the Master Backup was actually from an iPad without DEP.

We're also using Meraki but the legacy version which is free for unlimited users but also lacks some of the new features, such as device based app distribution, which would greatly help us avoid using Apple IDs for these shared iPads. That's another topic I guess to explore.

Thanks again

@wheelspinning

That's potentially very interesting! So are you saying you've enrolled the iPads with Meraki and got them supervised and on the DEP so the Meraki profile can't be removed?

Or are they just unsupervised?

@wheelspinning

Assigning a passcode to the Meraki profile prevents it from being deleted (at least that's worked for us but it may be a feature in the newer version of Meraki). I will have to test your method to see how it works - I have a new set of iPads to run through it anyway and will give it a go.

Good info!

is it normal to enter itunes account info again on the configured ipads? i get this when i open up the apps after the configuration on each ipad

also how do we copy ac2 data to another mac to have more than one cart running