Automatically create a DEP enrollment profile if MDM is set up

[roperzh]

Task

When we sync devices from ABM, we also assign a DEP enrollment profile to each device.

If this DEP profile doesn't exist in the database, the code skips the assignment, which in practice means that devices are not enrolled via DEP.

The prototype currently handles this by asking the IT admin to run the following command:

fleetctl apple-mdm enrollment-profiles create-automatic --dep-profile dep_config.json

We want to make this profile creation automatic.

• [x] Ensure there's a DEP profile stored if MDM is enabled. This is how a DEP profile is created in the prototype.
• [x] Use ./tools/mdm/apple/dep_sample_profile.json as the default profile
• [x] In the future, the IT admin will be able to tweak the configuration profile, please keep this in mind but do not implement it now

Condition of satisfaction

The IT admin can start the Fleet server configured for MDM and is able to enroll a DEP device into Fleet's MDM without doing anything else.

[roperzh]

heads-up @lukeheath , I'm adding the :release label to this issue.

[lukeheath]

@roperzh Thanks for creating this! We should only bring tickets into the sprint if we can complete them in the current sprint. If they are sub-tasks, please link them to the appropriate user story and add a point estimate.

[roperzh]

@lukeheath understood, I don't think there's a user story directly related to this, I replaced the label with :product is that correct?

[lukeheath]

@roperzh That's great, thanks! I've converted this to be its own story since it is not related to another one.

[lukeheath]

Hey team! Please add your planning poker estimate with Zenhub @mna @roperzh

[fleet-release]

Cloud city's tech thrives, DEP profile creates, Ease for devices' lives.