Situation: Not all mobile devices are for business use only. So there are two kinds of data on this kind of devices: 1. Business related data like mails; contacts; feeds (mobile library)……. 2. Private related data like mail, contacts, photos, music, videos……. If those devices get lost the business related data needs to be removed for security reasons. Or if that person does not work for the company anymore the business related data needs to be removed as well.
Solution: In Mobile Management Solution different options are available to handle this, which are mentioned in the Mobile Management 7.1.1 Implementation Guide page 105 to 108. In point of view to the request to remove only business related data and not more or even the whole device installation\configuration the option Remove MDM and Reset Agent would be the best one to use.
To can benefit from this option preparations in advance are requested because:
It is necessary to rollout a policy over Mobile Management Solution at the first place for all what contains business related data. So far all what could be set in the iOS Configuration Editor. (Mail; VPN; Credentials..)
Note: The user can re-enroll the device after it has been wiped. In case the clean-up has been performed because the particular user is no longer member of the company, the re-enroll of the device needs to be restricted for that user as well. This could be easily managed: make sure the credentials used for the enrollment are not longer valid.
This is simpler now with v7.2 where you can set the ownership of the devive. (Private/Company