So I'm working on a development/test server with the following conditions in place:
- Casper 9.72
- Enrollment by URL is enabled.
- My university is enrolled in DEP program with Apple (deploy.apple.com). An account has been created with access.
- Devices are enrolled in DEP for testing (4 iPads).
- The JSS has been linked to DEP, with the proper token and public key. And the test iPads that are enrolled in DEP are showing up at both Apple's site and in the JSS
The issue I'm coming across is I'm not seeing any enrollment request when I turn on the devices and try to configure them from scratch. The devices were previously supervised in Apple Configurator, but they were removed from supervision in Configurator so they are no longer supervised by that system - this was done before adding their serial numbers with Apple DEP.
OTA enrollment by direct URL is working. I've read both Apple's and Casper's DEP documentation and I feel like I'm missing something, but not sure what.
The only thing that is unclear is that my JSS server is not exposed to the public internet. I can't seem to get a clear answer on whether this server needs to be in a DMZ for DEP to work. I am connecting the devices to WiFi on a network that has access to the JSS for enrollment.
The only thing I haven't done is setup a pre-stage enrollment. Is this required for this to all work? I just want to make sure I'm doing this right before opening an official request for support from either JAMF or Apple.
