Add an ABM token

To automatically enroll devices in Device Management for Apple using Apple Business Manager (ABM), you must generate an ABM token using your customer's ABM account and add it to Device Management for Apple.

The server-token relationship

Mobile Device Management servers in ABM and their corresponding tokens establish the environment for automatic device enrollment. Each server token needs to be associated with a customer and added to Device Management for Apple.

When managing devices, tokens provide:

Security: Tokens securely link the customer’s ABM account with N-central. The token ensures that only authorized MDM servers can enroll and manage devices associated with the ABM account.

Enrollment: When a device is assigned to an MDM server in ABM and activated by the end-user, the token allows the device to automatically enroll.

Control: Separate tokens can be generated for each server. This granularity allows management of devices based on their intended use or department association.

Add an ABM token

  1. Download the public key from N-central
  2. Upload the public key to Apple Business Manager and download the ABM token
  3. Upload the ABM token to N-central

You can add multiple ABM tokens to Device Management for Apple from one customer ABM account by repeating this procedure for each token. For example, if a customer has multiple sites, you can add an ABM token for each site.

You can assign devices to specific tokens by assigning the devices to an MDM server. For more information, see Assign devices to an MDM Server.

Download the public key from N-central

  1. In the left-hand navigation menu, click Configuration > Device Management for Apple > Auto-Enrollment.
  2. Select Add ABM token.
  3. Select the target Customer and Site to associate with this ABM token and click Next.

    When devices associated with this ABM token automatically enroll in Device Management for Apple, they display in N-central under this Customer and Site.

  4. Click Download public key and click Next.

    The wizard displays with instructions to sign into Apple Business Manager and upload the public key.

  5. Click the Apple Business Manager link to sign in.

Upload the public key to Apple Business Manager and download the ABM token

  1. In the customer's Apple Business Manager account, select the user name > Preferences.
  2. Select MDM Server AssignmentAdd MDM Server.

  3. Enter a name for the MDM Server. For example, RMM Server 1.
  4. Under MDM Server Settings, select Choose File and select the public key you downloaded from Device Management for Apple.

  5. Select Save.
  6. Select Download Token.

  7. When prompted, select Download Server Token.

Upload the ABM token to N-central

  1. In Device Management for Apple, go back to the Add ABM token wizard.
  2. Ensure Create a new ABM token is selected and select Next.

  3. Click browse, or drag and drop the token downloaded from Apple Business Manager into the box, to select the token.

  4. Click Upload.

    The new token is added to the Apple Business Manager tab.

    You can add as many ABM tokens to Device Management for Apple as you need because each of your customers will have their own token or multiple tokens.

What do you want to do?

Updated: Mar 26, 2024