ABM Federation with Entra ID

Question

Level 1

6 points

ABM Federation with Entra ID

Hi, I wanted to know if there is a plan in the roadmap to remove/update the requirements of matched UPN and email address in Entra ID to establish federation for ABM with Entra ID. Is there a way this question can get to Apple Developers?

We are planning to create use shared device mode and shared iPad mode using Intune but it will be a big governance if account will be created manually including the maintenance of account password if not through federation. I am concerned that if we create accounts manually we might end up with complex environment if Apple fix the requirements of match UPN and email address.

Posted on Mar 20, 2025 05:52 PM

Reply

Answer 1

Mar 21, 2025 12:28 PM in response to L0u1s26

No one here in this user-to-user forum would know Apple's plans for the future. So, unless Apple makes some sort of announcement (seems unlikely), there's no way to answer that question.

You can let Apple know what you'd like to see here:

Product Feedback - Apple

Note that though your feedback will be read, it won't be replied to.

Reply

Answer 2

celliott147

Level 6

12,486 points

Mar 25, 2025 02:03 PM in response to L0u1s26

How would you even federate without that info? Federation requires a match in order to function...

Reply

Answer 3

celliott147

Level 6

12,486 points

Mar 24, 2025 12:11 PM in response to L0u1s26

We're not Apple here, but UPN/email is very common when connecting services in order to properly federate, whether with federation, SAML, SCIM, or OIDC. Do the students not have an email address/UPN? If not, how do you expect them to authenticate?

Reply

Answer 4

L0u1s26 Author

Level 1

6 points

Mar 25, 2025 01:07 AM in response to celliott147

All users have Entra ID hence email address. I prefer to use federation to remove account maintenance (password reset/account creation, etc), we are talking 10k+ accounts. If federation is possible for accounts that don't have matched UPN and email address, We will lock the domain and federate our Entra with MDM and expect them to use the federated Entra accounts.

Reply

Answer 5

L0u1s26 Author

Level 1

6 points

Mar 25, 2025 01:13 AM in response to IdrisSeabright

I understand that this is a user-user community but I was hoping someone from Apple will be able to give light. Unfortunately seems no feedback form for apple business manager. I will try to look for better channel to get this question for them.

Reply

Answer 6

Mar 25, 2025 06:54 AM in response to L0u1s26

L0u1s26 wrote:

I understand that this is a user-user community but I was hoping someone from Apple will be able to give light.

No, no one from Apple will reply here.

Unfortunately seems no feedback form for apple business manager. I will try to look for better channel to get this question for them.

Pick something close enough. Or, just give the feedback under "iPhone."

Reply

ABM Federation with Entra ID

Similar questions