IOS Enterprise Distribution Through OTA
Solution 1
As of December 2011, these are the steps:
- Create a provisioning profile in your Apple Enterprise account
- Set this as the Code Signing Identity under the Build setting of your app.
- Make sure the Bundle ID matches that of the provisioning profile.
- Select Product > Archive to build IPA file.
- Click Share (aka Distribute) button after selecting your Archive.
- Set Contents radio button to iOS App Store Package (.ipa)
- Make sure Identity in dropdown is the one used from Enterprise account.
- Click Next
- Select the check box "Save for Enterprise Distribution"
- For Application URL put in the URL that points to where the ipa file will be placed (example:
http://oursite.com/myApp.ipa
) - Click Save. This will save a plist & an ipa file for you.
- Place these files on your server with a link formated like this:
<a href="itms-services://?action=download-manifest&url=itms-services://?action=download-manifest&url=http:/oursite.com/myApp.plist" id="text">
- Go to this page from your device and click the link to install the app
Solution 2
There are two solutions
-
It does everything for you. It even has a SDK which I found very useful in debugging scenarios with logs and crash reports.
-
If you are looking to have your own hosted solution for the enterprise then http://hockeykit.net/ is the best bet.
It has a client application which makes the upgrade process painless. It also have a server side code which you can deploy on your server.
-
Update 2013-11-23:
We have been using Diawi happily for quite some time.
Solution 3
Probably the best way to distribute your enterprise mobile app and then securely manage users, groups, data and devices is using a Mobile Device Manager (MDM) tool suite.
iOS provides specific APIs that support enterprise deployment via MDM products with API level features like Per App VPN connections that allow you to firewall a DMZ application server to only connect to a specific signed client iOS app. The vendors also provided authentication SSO integration and encrypted storage on the devices to sandbox your enterprise apps from other untrusted personal apps on a BYOD device.
Here's the Gartner 2013 review of MDM products:
The 3 major players are now: Air Watch, Mobile Iron and Citrix XenMobile.
NOTE: I don't work for or have a vested interest in any MDM vendor.
Solution 4
You can also use my shell script that will help you a long way with generating the necessary files and links:
https://github.com/sveinungkb/ios-ota-buddy
Solution 5
You do not need to manage UDIDs if you are using an enterprise profile.
To install an enterprise app you need a provisioning profile built with your distribution certificate on each device. See Does an iPhone Enterprise provisioning profile need to specify phone UUIDs like an ad-hoc provisioning profile does?
Suresh Kumar Narayanasamy
Updated on November 08, 2020Comments
-
Suresh Kumar Narayanasamy over 3 years
We have build an enterprise iPad App and now we want to give it to our employees. Initially when testing, we used ad-hoc distribution collecting all the test device's UDID and then creating the profile.
Now going live we want this app to be deployed in a secured web server and send the link to our employees, so that they enter the username and password before accessing the link.
There are around 500+ devices we need to install this iPad App. Do i need to collect all the UDID and then deploy the
.ipa
file, because Apple documentation says:Create an enterprise distribution provisioning profile that authorizes devices to use apps you’ve signed.
If not that way, do the user needs to install the
profile.mobileprovision
file and then install the.ipa
file?We are still unable to decide how to deploy our app because of this issue. We would like to avoid the app approval process because it App handles a lot of sensitive data.
Can some one help me on this, how to do a OTA deployment for enterprise Apps?
-
johndpope about 12 yearsyep - finally got around to do this tonight. enterprise deployment with testflight works a treat.
-
swati sharma over 11 yearsit is saying cannot connect to server.
-
Rahul Vyas over 11 yearsAlso follow up from this post if someone gets No Packager exist option stackoverflow.com/questions/5271496/…
-
Tom about 11 yearsas a small aside, is it correct that it is now possible to embed the provisioning profile within the app bundle so that no additional setup at all is required on the user's side?
-
Anand Gautam over 10 yearsI am facing the same problem, can you please tell me the correct way that how can i publish my app with >3000 employees using IOS Enterprise program? Thanks
-
Anand Gautam over 10 years@railwayparadeI am facing the same problem, can you please tell me the correct way that how can i publish my app with >3000 employees using IOS Enterprise program? Thanks
-
railwayparade over 10 yearsSee tiltem's post above. Basically you need to build the app with the enterprise profile then place it on a webserver. Your employees then go to that site and install the app.
-
tiltem over 10 yearsIt is the same process for this. Make sure you have the Code Signing Identity and Provisioning profile set for a Distribution certificate and a provisioning profile that was made for Enterprise Distribution (not AD HOC). Then Archive and create release link as shown above.
-
Stu P. about 10 yearsI was having issues here, my problem ended up being the app had a space in it's name but instead of just being %20 the HTML file had to double escape %2520 and the plist had to be single escaped %20 in order to get everything to work together
-
Regan Sarwas about 10 yearsStarting with iOS 7.1 the plist needs to be at an https end point. See this SO question for details.
-
jsetting32 almost 9 yearsApparently when I run an 'Export' it only creates a .ipa file. I cannot seem to find the generated .plist file. Do I need to create one?
-
michael about 8 yearsIs it available somewhere else now?
-
JakubKnejzlik about 8 yearsYes, I've updated the url (to manifest-generator.knejzlik.cz). Thanks for feedback :)
-
Ruslan Mansurov almost 8 years@jsetting32, in order to get plist file you have to check “Include manifest for over-the-air installation.” at the final step.