Hi guys,
In our organisation, we're setting the Update configuration to every hour or so. This suits us for the most part, but I'm working on a way to push the policies one time upon enrollment.
My current method is to piggyback on a workflow we're using to authorise users to use mdm, it sends them the instructions on how to enroll, etc. It then monitors the Mobile_Device_iOS table for a device with that user name and for the IsMDMregistered value set to true. It'll then get the UDID, Magic and Token and push the policies via the web service.
I'm happy enough with the second part of this process, but I'd like to find a better way of detecting the device, such as using the System Messages part of automation policies (In a perfect world I'd get this request to come from the client after enrollment).
Is anyone working on something like this? How are you guys dealing with initial push of policies? I feel an hour is too long to wait for e-mail, etc to get to the device, but I don't want to set the update configuration too low either..