Improve macOS manual MDM enrollment UX

[zwass]

Problem

As an IT admin, I want manual MDM enrollment to be as simple as possible so that I can get all of my devices into management with minimum support overhead.

What have you tried?

The current flow requires a number of different actions from the user across several applications.

Fleet Desktop -> Web browser -> Finder (or profile can be opened from downloads in web browser) -> System Settings -> Web browser

(at least) 7 clicks + type "profiles" + 4 clicks + type password + 3 clicks

Video of it: https://www.loom.com/share/cc377e68a50f44fab485ff97d20f12c0

Potential solutions

Automate some of these steps and consolidate the number of applications that the user has to traverse through.

What is the expected workflow as a result of your proposal?

Proposed flow:

1. Click Fleet Desktop icon
2. Click "Enroll MDM"
3. Fleet Desktop silently downloads and opens the profile, and opens System Settings to the Profiles tab.
4. Modal (or web browser, but that's more likely to take over the user's screen so they can't see System Settings) appears with instructions on how to complete.
5. (Following instructions) Double-click enrollment profile
6. Enter password
7. Fleet automatically triggers refetch
8. Fleet Desktop automatically detects the enrollment completes and either just closes the modal or replaces with a success modal

Fleet Desktop -> System Settings -> (Optionally) Fleet Desktop

Step 3 (opening the profile and System settings can be achieved with the built-in macOS open command): open enrollment-profile.mobileconfig (opens the profile as if it were opened in Finder or the web browser) open x-apple.systempreferences:com.apple.Profiles-Settings.extension opens System Settings to the Profiles tab

[noahtalerman]

Thanks for tracking this @zwass. The manual enrollment flow can certainly be improved.

Any customers asking about the manual enrollment flow specifically?

Let's plan to weigh this at feature fest today.