To configure the Apple Business Manager Portal, begin integrating with the Apple DEP program by creating a virtual MDM server for devices that links to your own MDM servers, so you can manage devices directly in the UEM console. Workspace ONE UEM does not encourage using Internet Explorer to complete this process.


You must download the public key (.pem) that allows Workspace ONE UEM and Apple to mutually authenticate with each other to sync devices. This key is uploaded to the Apple portal later.
  1. Log into the UEM console and navigate to Groups & Settings > All Settings > Devices & Users > Apple > Device Enrollment Program and select Configure. A Device Enrollment Program window appears.
  2. Download the public key by selecting the MDM_DEP_PublicKey.pem file.
  3. Save the public key in a convenient location. This is used to complete the DEP setup process.

Using the public key you have downloaded, you must next enable and configure the Apple Business Manager Portal so that you can manage your DEP-enrolled devices in the Workspace ONE UEM console.


  1. Log into Apple Business Manager portal.
  2. Sign in with your organization's Apple credentials.
  3. Confirm your identity by entering the verification code. The Device Enrollment Program portal screen appears.
  4. Navigate to Settings > Device Management Settings > Add a MDM Server.
  5. Enter the MDM Server Name.
  6. In MDM Server Settings, upload the public key by browsing from your local repository.
  7. Click Save.