iOS 12 - changes in configuration profiles


#1

iOS 12 has been announced today at WWDC18

New configuration profiles are available in iOS 12 at this stage.

Changes were made in the following profiles:

  • Exchange
  • Notifications
  • Restrictions

Exchange Payload

Deprecated keys

Deprecate Key Replacement Key Type Description
SMIMEEncryptionEnabled SMIMEEncryptByDefault Boolean Optional. Default false. If set to true, S/MIME encryption is on by default for this account. Availability: Available only in iOS 10.3 and later. As of iOS 12.0, this key is deprecated. It is recommended to use SMIMEEncryptByDefault instead.
SMIMEEnablePerMessageSwitch SMIMEEnableEncryptionPerMessageSwitch Boolean Optional. Default false. If set to true, displays the per-message encryption switch in the Mail Compose UI. Availability: Available only in iOS 8.0 and later. As of iOS 12.0, this key is deprecated. It is recommended to use SMIMEEnableEncryptionPerMessageSwitch instead.

New Keys

Key Type Description
SMIMESigningUserOverrideable Boolean Optional. Default false. If set to true, the user can toggle S/MIME signing on or off in Settings.
SMIMESigningCertificateUUIDUserOverrideable Boolean Optional. Default false. If set to true, the user can select the signing identity.
SMIMEEncryptByDefault Boolean Optional. Default false. If set to true, S/MIME encryption is enabled by default. If SMIMEEnableEncryptionPerMessageSwitch is false, this default cannot be changed by the user.
SMIMEEncryptByDefaultUserOverrideable Boolean Optional. Default false. If set to true, the user can toggle the encryption by default setting.
SMIMEEncryptionCertificateUUIDUserOverrideable Boolean Optional. Default false. If set to true, the user can select the S/MIME encryption identity and encryption is enabled.
SMIMEEnableEncryptionPerMessageSwitch Boolean Optional. Default false. If set to true, enable the per-message encryption switch in the compose view and encryption is enabled.
OAuth Boolean Optional. Specifies whether the connection should use OAuth for authentication. If enabled, a password should not be specified. This defaults to false.

Notifications Payload

Key Type Description
ShowInCarPlay Boolean Optional. Whether notifications can be shown in CarPlay. Default is true.
CriticalAlertEnabled Boolean Optional. Whether an app can mark a notification as a critical notification that will ignore Do Not Disturb and ringer settings. Default is false.

Restrictions Payload

Key Type Description
forceAutomaticDateAndTime boolean Optional. Supervised only. If set to true, the Date & Time “Set Automatically” feature is turned on and can’t be turned off by the user. Defaults to false. Note: The device’s time zone will only be updated when the device can determine its location (cellular connection or wifi with location services enabled).

Full list of profiles available here: https://developer.apple.com/library/archive/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html


#2

Thanks for this review!