Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-04-21 13:37:30 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 91
fleet/articles/android-mdm-setup.md
kitzy c131c6aab7
Updates from cs offsite (#42750) 
Updates to Android MDM documentation from the CS offsite.

---------

Co-authored-by: Steven Palmesano <3100993+spalmesano0@users.noreply.github.com>
2026-03-31 14:42:59 -04:00

5.2 KiB
Raw Blame History

Android MDM setup

Experimental feature. This feature is undergoing rapid improvement, which may result in breaking changes to the API or configuration surface. It is not recommended for use in automated workflows.

This guide provides instructions to turn on Android MDM features by connecting Fleet to Android Enterprise.

Fleet supports Android devices that are Play Protect certified (previously known as GMS).

Turn on

To turn on Android MDM, connect Android Enterprise on Settings > Integrations > Mobile device management (MDM) page.

When you select Connect, Fleet will open the Google signup page. The signup process varies depending on whether your organization uses Google Workspace, Microsoft 365, or another provider. Organizations using Google Workspace and Microsoft don't need to verify domain ownership.

Google Workspace

  1. If your organization already uses Google Workspace, use your admin account to sign up for Android Enterprise. If you don't know your admin account credentials, ask your Google Workspace admin.
  2. Follow the steps in Google's signup flow.
  3. Check your Subscriptions in Google Workspace to validate that the free plan of Android Enterprise has been added.
  4. After successful signup, a free Android Enterprise subscription is added to your Google Workspace. In Fleet, you can confirm Android MDM is turned on in Settings > Integrations > MDM.

Microsoft 365

  1. If your organization uses Microsoft 365, you can sign up for Android Enterprise with your Microsoft email. First, select Connect. Then, enter your Microsoft email, click Next, and choose Sign in with Microsoft.
  2. After signing in with your Microsoft account, follow the steps in Google's signup process.
  3. After successful signup, a free Android Enterprise subscription is added to your Google Workspace. In Fleet, you can confirm Android MDM is turned on in Settings > Integrations > MDM.
  4. Go to your Google Admin console.
  5. Follow these steps to verify your domain name. This way, only you can use your domain to sign up for Google Workspace.

Now you have managed Google domain with an Android Enterprise subscription. Optionally, if you want to add additional subscriptions later (i.e. Google Workspace) you can use this domain. Only the free Android Enterprise subscription is required for Android MDM features.

Other

  1. If your organization doesn't use Google Workspace or Microsoft 365, in the Google signup page, use a work email to signup for Android Enterprise (don't use personal emails like "@gmail.com").
  2. After you enter your email, you'll get a verification email. Open the link from the email.
  3. Enter information about you and your company and select Continue.
  4. You'll see that your free Android Enterprise subscription will be selected. Select Next.
  5. Enter a password for your account and select Agree and continue.
  6. Select Allow and create account on the next screen.
  7. You'll be asked to log in with your account that you just created and confirm your phone number.
  8. After successful login and phone verification, you'll be redirected to Fleet. In Fleet, you can confirm Android MDM is turned on in Settings > Integrations > MDM.
  9. Follow these steps to verify your domain name. This way, only you can use your domain to sign up for Google Workspace.

Now you have managed Google domain with an Android Enterprise subscription. Optionally, if you want to add additional subscriptions later (i.e. Google Workspace) you can use this domain. Only the free Android Enterprise subscription is required for Android MDM features.

Enrollment

Learn how to enroll Android hosts in the enroll hosts guide.

Migration

To migrate hosts from other MDM solution, you must first unenroll hosts from your old solution and share a link with your end users so they can enroll to Fleet. Learn how to find your enrollment link in the enroll hosts guide.

Turn off

  1. In Fleet, head to Settings > Integrations > MDM.
  2. In the Mobile Device Management (MDM) section, select Edit next to "Android MDM turned on."
  3. Select Turn off Android MDM

When you turn off Android MDM in Fleet, your Android Enterprise will be deleted, MDM will be turned off on all hosts, and the work profile will be deleted from all Android hosts.

Deleting Android Enterprise in Google Admin

If you ever delete your Android Enterprise in your Google Admin console, Android MDM will be turned off in Fleet, and the work profile will be deleted from all Android hosts. To re-enroll hosts, refer to the Turn on section.