WWDC 2025 announced some exciting innovations – especially for IT administrators and UEM managers. While the keynote address was aimed at a broad audience, the technical sessions presented numerous innovations that will significantly change modern workplace management in the future.
We have summarized the most important points for you – clearly, practically and with a view to your IT reality.
1. Platform SSO directly in the Setup Assistant
Platform SSO will be available directly in the Setup Assistant in future.
👉 Admins can now store SSO mechanisms (IdP-based) during the initial setup.
- Admins can now use the Platform SSO API to automatically create local accounts on shared Macs using credentials from the identity provider (e.g. Azure AD, Okta, Ping, etc.).
- Rights and group memberships can be controlled via UEM.
- NEW: Authenticated Guest Mode: Employees can log in as guests with their company login details (e.g. AD / IdP). After logging out, everything is removed locally.
- Multi-user-enabled Macs can now be used properly and securely for the first time (which used to be rather tricky).
- Return-to-service optimization: Devices can be restored and reprovisioned more quickly → ideal for shared device management.
What does this mean in practice?
👉 Improved shared device use cases through secure single-user accounts (e.g. in logistics companies, hospitals, schools, banks)
Single sign-on from the first login → better user experience, fewer support tickets
👉 Centralised control of access data -> facilitates device onboarding and offboarding, less admin overhead
2. Apple Business / School Manager updates
- Private Apple IDs/accounts on company devices can be identified and blocked if necessary. This allows administrators to enforce that only company accounts are used on company devices.
- Device inventory provides new fields: Activation Lock status, storage, mobile network information + new APIs for external reporting and process automation
What does this mean in practice?
👉 A powerful update that brings ABM significantly closer to the reality of business.
3. Device Management Updates
Software update control:
👉 Apple continues to make it clear: DDM is the future.With Declarative Device Management, devices can respond independently to status changes and implement management logic themselves.
- UEM-based control is being completely replaced by the DDM model.
- Update deferral and deadlines can be controlled in a granular manner.
Particularly exciting:
- Update control → clear rules for update deferrals and deadlines.
App Deployment Framework:
- Improved control of app updates (version pinning, mobile restrictions).
- Identities & Certificates → more flexible deployment (ACME, SCEP, PKCS#12).
What does this mean for administrators?
👉 Less dependence on the UEM server.
👉 Response times are shorter and management is smarter.
👉 Centralised control becomes more granular → more security + user experience.
Device Enrollment:
- Automated Device Enrolment now supports Apple Vision Pro.
- Discovery URL available via MDM → Account-driven enrolment now easier
- The enrolment process starts directly from the Settings (iPhone/iPad) or System Settings (Mac).
- Enrolment SSO reduces annoying multiple logins – the entire enrolment process is much leaner and more pleasant.
- Particularly exciting: you can clearly separate work and personal content. On Mac, Supervision is activated – giving IT full control.
- Apple Intelligence Controls: More control options for security and privacy.
What does this mean for administrators?
👉 Less friction in the enrolment process.
👉 Stronger security and clear separation of private and professional data.
👉 Now also much more usable for COPE (corporate-owned, personally enabled) scenarios.
Conclusion
Apple is moving fast – and so are we 🚀
WWDC 2025 has shown that Apple is making further progress in device management. Admins benefit from better APIs, more transparency and granular control options.
However, whenever hybrid fleets need to be managed, things get complex. That’s where we come in. We have an overview of Apple, Android and Windows devices, know all the tools and updates, and provide comprehensive, independent advice.
