From 31506bc4717b6260ed38e50d76a21eeb2019a96c Mon Sep 17 00:00:00 2001 From: Mitch Francese <2227948+tux234@users.noreply.github.com> Date: Fri, 19 Dec 2025 11:02:01 -0500 Subject: [PATCH] Add Self-service webclip for BYO devices (#37510) Co-authored-by: Allen Houchins <32207388+allenhouchins@users.noreply.github.com> --- .../self-service.mobileconfig | 127 ++++++++++++++++++ .../teams/company-owned-mobile-devices.yml | 1 + .../teams/personal-mobile-devices.yml | 1 + 3 files changed, 129 insertions(+) create mode 100644 it-and-security/lib/ios/configuration-profiles/self-service.mobileconfig diff --git a/it-and-security/lib/ios/configuration-profiles/self-service.mobileconfig b/it-and-security/lib/ios/configuration-profiles/self-service.mobileconfig new file mode 100644 index 0000000000..9bb9e12791 --- /dev/null +++ b/it-and-security/lib/ios/configuration-profiles/self-service.mobileconfig @@ -0,0 +1,127 @@ + + + + + PayloadContent + + + Icon + + iVBORw0KGgoAAAANSUhEUgAAAMgAAADICAYAAACtWK6eAAANTElE + QVR4nOzdW28cZZ7H8d//6fYhywrZ4g042itAq3UuVsSwkPYriC0t + K45Km4MUslnZYXclyCK5LbGwEmJtS4GJNMO4o4FJBCPhvAJ3hoMZ + uLBHKMzVyM39SN0aBeJDV/1H1T7gJPaDu/qpsp/q3+cWuapw6ltP + VbmqHgMi2hcDIbJgIEQWDITIgoEQWTAQIgsGQmTBQIgsGAiRBQMh + smAgRBYMhMiCgRBZMBAiCwZCZMFAiCwYCJEFAyGyYCBEFgyEyIKB + EFkwECILBkJkwUCILBgIkQUDIbJgIEQWDITIgoEQWTAQIgsGQmTB + QIgsGAiRBQMhsmAgRBYMhMiCgRBZMBAiCwZCZMFAiCwYCJEFAyGy + YCBEFgyEyIKBEFkwECILBkJkkT/sDUjSxFKhr/4jRnIGpxQoiKIP + gr7mfxQsA6hCMd8F3Lg8VKkexjYWP13pawQ4gxAFAQZVMLDrPy9D + UVWD+a4cbpRHjx/KNi6dfW2gJ58/DYQFKAYh0txGBeoCVFWxLBJe + f+jS2/OHsX1JksPegCREYfx1FeOimNgJ4ueVu4CptEIpfroysNHQ + kkDOHPRnVFDuymEqrVC+Pf9aIYfcJIDCgX5AURXR8oOX3ppKfONS + krlAXvyyMAJgroUw7qBA6ddDlUT/gZ/73ffj0LAEtL6NKojiKH30 + r8evJLN1m777j/+ZRnSAiSMa9VRHH37/rWXnG5ayTAXywh8KkxKi + 5GBR5Q+GKmMOlnOP5z9emVNB0cGiSh8+edx5yEsTpb6exsYCgMG2 + F6bhhYfee3vGyYYdksxcpDuMI1J8cbEw52hZO57/ZGXaURyR0nOf + rEw6WlaT0zgiYqa/+/fX441CR0QmAnnhi0LRYRzbii99WZh2tbDn + Pvl+UhHzlGV/pWev/dnZMnuCjUlncWwTM33z3EW3y0yR94GcXSwM + iIHTI+k2FUy89FnhYBeoFtEFORC6DrhJcmayOLcS63prt5vnLhZj + X3P8DBH5NInlpsH7QDa0OXIMJLV8zbcf30ZDE4ljS1/j78K2d2wR + SeQgs7lwDNw8fzHJ30FivA6kuFCIjpynE15NoZ1RJBo9WrmVG4sx + 4+2MIs3RQ5I7yKDZiIwnufykeB2I6cZI3Nu5rQhyGIn7s42N9o/u + B9C3cSyMf/FvTNIHmUjft+ffaPt0NW1eByJywD9gtclIG6OUmFNO + N2Y/Rtr4XWg6v0eEsQ80h8XvQIB/SmlVA8WlQtyRKpU7OMZIrN/F + 0rnSoMT4g2UsmuxpXBK8DkQTvDi/x2rrO9FTV1dS2z6NufPlzWo6 + cTQH03gRHyavA0nj+mNbvuHf0e8gTGgy+f/lit+BUNsCY+qHvQ1H + mdeBKJDa49+Nv0fLD9719iLNnS/WuoIwn94j9Jrev5crXgci0vpO + G29FqJdPVFreAcujx+siqe0U8X4X3enttAr9Y1rrcsXrQDTEjVRW + 1MZ6NAyvu92YfYRhrG08MVOKwq+436B75YwspLEel7wOJFxDOZUV + 5RD/WSIxqbxl1whN7N+FQtM40NRvmx/SOaA55HUg5eFK4ke/6Drn + g0cqsV9O+vDJ4xVN/ty7cu3p+G8Zrue7ZzTmNcxBiWL+xMyMdzcE + vA4EzduUuJDk8sW0/xi9CBJ5+Wpbo9He8jdPs3TW3RbdRbWKIPDy + NVzvA/nlY5VlKJL6x620M3psi0YRCJI51dJwtp3RY9vWKJLQTQ+Z + ffDy/3l3BwtZCCTywaOVCdenWtGpVQB3R/58DmOuT7WiHfrDf/sH + Jw9DRqOIaQSjrk+1FDr70Hv/6+1rt5kIJBKsYhTq5ggYxRECw2WH + Xzgpjx6vBwGGXUUSxfHDLQy7WNa25lE+1OHmKZEbVx6+9JbXr9xm + 6qMN2PyqyQwE7bx7UIlGDpdx7PbU1ZWBfBemofEfoQf0yq1bMjE/ + djyRi94/nX1tQHNmYfv7V3EoZOrhS296+ZLUbpkLJPLCYqEIYFJa + eJhRFXUDTP3q0UoqpwPPfLxSlGgbW3hRSZvfncJY85omBTfPv1ES + Dc+0GEolgEz946U3U9nGpGUykG1b38gaUeC07PFgYxRF86/xgvmg + B1fi/LW8XVEoRnBm67H4vR6+rENQgWI2rTB2i0aT0JiCmOZbkXu+ + N7J53aJXQpj5rISxLdOB7PbyF4VBNT/tgHmgelifG93PMx+vDJpd + ITfyqF47pM+N7ufmuYuDoTE/bWMjXz1xuXSktpGIUpKZu1hESWAg + RBYMhMiCgRBZMBAiCwZCZMFAiCwYCJEFAyGyYCBEFgyEyIKBEFnk + D3sDkrQ0XetbU5wRRQGCwd1fF1egbgTLQRDeQN6Uhy70H8oTqTo3 + 0dfoXR9XbU5BcPcj73UAywYob6zpjWNjl/nUbMoy+bj74nRtAEFY + EjGnD/ppfxFUAsFYWqHc+ujlwW7JTx94kn40N7IcrIZTDCU9mQvk + 6/+vjYeKUtw5L4xB6Z8v9Cf6iZr1a+fGEWrcNxfrITDV+8wvvP0Q + gk8yFcg307XJ0MF00NFo0iUYPXGh3/kbhutXz81Bte250kWk1PX0 + +15+a8onmblIdxUHNl/FLWxoG58b3YerONDcRi2tX3vF2TzutLdM + BLL47l+KruLYFkXy9bs1ZzvgxtVzk67i2BFiYvW3r3j9WZ2jzvtT + rOiC3IRYSGqu9DDE8NB/97f1IYLbc2cHcj2y4m6r7lAP1vQEL9yT + 4f8IEoSlpOKI5HJoe4L9XI/MudmaPfXlek3b20h783oE2Ro9kjoy + 72hnFEl49NjRtdbTL2P+fT39qPN7BAmDVOb3Fok/v3euG6lcI6z1 + rLm9vqEmrwMxyMWf4L8FIib+ekROOd2YfdejqRwsOo3XgaQ4Mf3A + 0nQt7pTTg463ZU9G/ZuD3Ad+ByLp7HyR1dXW/zJ/++rZNOcg53zn + CfA7kDTluQN2IgZyQDlNdc5zOiL8DiS9OcjR1dX6unpXe9OMigEn + wO9AHM0odQDVOA8uythMXeFstqafoWn9LjqK14EEMSfPb5W0Mf+h + KK673Zq9hZBU1tNpvA7kWD7+5PmtCCUXe4baIExodtu7qGgq6+k0 + XgcSnfaIuJ3ddg/Vk6/eH/vofOz5yxXXM/DeQ6R87Gk+rJgErwOJ + BIIx11MX30FybT9GHwSa6ItNAUK+OJUQ7wPZeoc8kR1EgPIjr95/ + pd3lRKOIQttezl5UdYqjR3K8DyRy8j/7Z0INXe+A1cC4C697rXcC + cH3XTSs9z172fqrloywTgUSG/uuBosNIqqHBsMsvnMjYTD0QHVW4 + +tuNVrrWekfdLIv24/X7IHtZfKdWMib+S06qqPTkkvlgA7a+g7Xe + szojaE6rHHMhOtv97GW+apuCzAWCrRepJMCcSAvfnIqO7JIrubjm + OIjbH50tGpFJaekhQ60EAaa27oxRCjIZyLbFd2oFSFg0Yk7t9bRr + 8+6XYl4VV9p97zyutd+8MoKcjgByaq9YFFoVxfUgxDzDSF+mA9lt + abrW9+MGBoygL1TUTYD60OuH87nR/USnX6v51eYj/IEJ6vet31fl + a7REdGRl5i4WURIYCJEFAyGyYCBEFgyEyIKBEFkwECILBkJkwUCI + LBgIkQUDIbLI9DzpdztZW9h5Wvar/uEj9aAiHU2Zfpq3UFvoW0d+ + XICC3jtJf/Q/v6whbhjTmP+8f5iPktM9MhlINFLkkJ/TFibpj2JZ + R2Psm/5hfqGQdmTuGmSo9tm4QX6plTiw+fLUYBfyS0O1zzm1Mu3I + 1AjyWO330wpx8a72cjcaw5X+Yb6s1OEyM4I8Wvts0lEckcF15Bei + axhHyyNPZSKQ6LQKgOvvQw2uoYvTK3c470+xogvy6Jrj7jtUroTA + 8Ff9j/MOV4fyfgSRsPnt3MROhQTxv7FF/vN6BNkaPRKfpJ+jSOfy + egQxQS6VucFNGI6ksR46erwOBDmJP8F/K0wunfXQkeN3IJCUpmbW + Ad7y7UyeB6KDaa3pB07U35E8DyQ9OeQ5gnQgBnJAARp87KQDeR1I + enOQA/c5m/iGfOJ1IAJJ6dF0rfLBxc7kdSAa6o101mT4R8IO5XUg + PSYop7GeMKEZauno8zqQ6LRHw6R3Xq3yMZPO5XUgETVBCUBi1weS + M5xmuYN5H8hX/cNVhTqbz/xOUv7i/n/h6VUH8z6QyGL/EzPuT7W0 + 2o2NC26XSb7JRCCRxQeeKCLErKPFLYcI+E46ZSeQyJcPPD4BoN3T + rdluNIb5YTmC7y9M7edkbWFAwlxJjJw56M8oUFFginesaLdMBrKt + +cZhmJ+AwSlsflnxDs1J+kO5HhrMMwzaS6YDudvJ2uLOI+u9WK3z + GoOIqA2Zukgnco2BEFkwECILBkJkwUCILBgIkQUDIbJgIEQWDITI + goEQWTAQIgsGQmTBQIgsGAiRBQMhsmAgRBYMhMiCgRBZMBAiCwZC + ZMFAiCwYCJEFAyGyYCBEFgyEyIKBEFkwECILBkJkwUCILBgIkQUD + IbJgIEQWDITIgoEQWTAQIgsGQmTBQIgsGAiRBQMhsmAgRBYMhMiC + gRBZ/C0AAP//oefrSnxwn4sAAAAASUVORK5CYII= + + Label + Self-service + PayloadDisplayName + Self-service + PayloadIdentifier + com.apple.webClip.managed.9970D9CF-831B-4831-9A72-E284EFF5730B + PayloadType + com.apple.webClip.managed + PayloadUUID + 9970D9CF-831B-4831-9A72-E284EFF5730B + PayloadVersion + 1 + URL + https://dogfood.fleetdm.com/device/$FLEET_VAR_HOST_UUID/self-service + + + PayloadDisplayName + iOS self-service + PayloadIdentifier + com.fleetdm.self-service.webclip + PayloadType + Configuration + PayloadUUID + 645C16D4-E033-4FBA-A6DF-3E4E9D0038A4 + PayloadVersion + 1 + + diff --git a/it-and-security/teams/company-owned-mobile-devices.yml b/it-and-security/teams/company-owned-mobile-devices.yml index 1b66bc3b89..a6a353ef70 100644 --- a/it-and-security/teams/company-owned-mobile-devices.yml +++ b/it-and-security/teams/company-owned-mobile-devices.yml @@ -22,6 +22,7 @@ controls: - path: ../lib/ios/configuration-profiles/lock-screen-message.mobileconfig - path: ../lib/ios/declaration-profiles/Passcode settings.json - path: ../lib/ios/declaration-profiles/Software Update settings.json + - path: ../lib/ios/configuration-profiles/self-service.mobileconfig macos_setup: enable_end_user_authentication: true scripts: diff --git a/it-and-security/teams/personal-mobile-devices.yml b/it-and-security/teams/personal-mobile-devices.yml index 93eb7dfeeb..86e10c73ee 100644 --- a/it-and-security/teams/personal-mobile-devices.yml +++ b/it-and-security/teams/personal-mobile-devices.yml @@ -20,6 +20,7 @@ controls: macos_settings: custom_settings: - path: ../lib/ios/declaration-profiles/Passcode settings.json + - path: ../lib/ios/configuration-profiles/self-service.mobileconfig macos_setup: enable_end_user_authentication: true scripts: