Limitations

AW-70290: Due to ChromeOS behavior, the Maximum user session length field in the Configuration setup section of the ChromeOS Blueprint configuration rejects values supplied by administrators, instead, responding with an error.

AW-70156: Due to an intermittent Managed Google Play issue, Ivanti Neurons for MDM fails to display apps in Managed Google Play when an administrator successively uploads pairs of apps to the app catalog and silently installs one app and manually pushes the other app to devices.

AW-70101: Due to an Apple issue, Ivanti Neurons for MDM fails to re-push an iOS DNS Proxy configuration to iOS 16 devices when an administrator has first renamed the configuration.

AW-54742: Due to the design of Ivanti Neurons for MDM, the Devices > Devices > select a device > Installed Apps tab does not list apps which are already installed on a device and are later added to the app catalog until the device reports another app inventory change.

AW-49712: Due to a Google issue, for AMA-enrolled devices, administrators should mark apps for silent install if the app is a non dedicated device app but is intended to be installed on the device. Non-silent install of such apps will not work.

TPUBS-2815: ChromeOS limitations:

• When the ChromeOS Blueprint Configuration status has the error “Insufficient quota," it means the Configuration Settings are not applied on the Google Admin Console. The administrator must redistribute the configuration manually.

• During the ChromeOS Blueprint Configuration process, the actions are not audited.

• The Configurations tab shows the status for all applied configurations, and not just the recent ones.

• Failed configuration needs to be edited to be re-pushed to the device.

• Distributed configuration status remains the same irrespective of un-assignment and re-assignment. The status will be updated/reset only after processing the next effective configuration.

• Only the default space Chrome OS Blueprint configuration is processed. Custom spaces are not supported now.

• In some cases, Descriptions for Settings, Default and Actual Values, Links, UI text, et cetera, might be slightly different in the ChromeOS Blueprint Configuration than what is available on the Google Admin Console and vice versa.

• When the Wipe action is performed, the ChromeOS device gets Reset. After resetting, the first login page throws a 400 error, "The server cannot process the request because it is malformed. It should not be retired. That’s all we know." To proceed, click "Enter Google account info" at the lower right and authenticate.

AW-69552: Due to a Microsoft Azure Active Directory issue, when an Azure Active Directory administrator removes an attribute mapping from an app, the removed attribute value of a provisioned user persists in Ivanti Neurons for MDM.

AW-69309: Due to a Microsoft Azure Active Directory issue, when an Azure Active Directory administrator updates a user attribute of a SCIM user with a blank value, the former attribute value persists in Ivanti Neurons for MDM for that provisioned SCIM user.

AW-69166: When a keystore on a macOS device becomes corrupted, the macOS device may stop contacting the Ivanti Neurons for MDM server.

AW-66861: Due to a limitation in the Send Message CISCO ISEv2 API, Windows devices are unable to receive messages from Ivanti Neurons for MDM.

AW-68170: macOS devices open webclips in Safari regardless of the IgnoreManifestScope and TargetApplicationBundleIdentifier webclip link settings.

AW-67688: Due to an issue with macOS 13 Beta 5, Ivanti Neurons for MDM is able to install custom configuration profiles and certificates on macOS Beta 5 devices despite an administrator having configured Ivanti Neurons for MDM to prevent such installations on these devices.

AW-67454: Due to an Apple issue, Ivanti Neurons for MDM is able to install macOS Beta software on macOS devices, despite an administrator having disabled the "Allow Pre-Release software Installation" setting in the macOS Software Update Settings configuration.

AW-67275: Due to Apple issues, the following iOS and macOS restrictions are not reliably available to Ivanti Neurons for MDM:

• Allow Rapid Security Responses to be applied

• Allow Rapid Security Responses to be removed by the user

AW-67042: Due to an Apple issue, universal control continues to work on macOS 13 devices, despite an administrator having disabled the "Allow Universal Control" setting in the macOS Restrictions configuration.

AW-67275: Due to Apple issues, the following iOS and macOS restrictions are not reliably available to Ivanti Neurons for MDM:

• Allow Rapid Security Responses to be applied

• Allow Rapid Security Responses to be removed by the user

AW-67274: Due to an Apple issue, shared iPad devices continue to authenticate with local passcode after expiry of the specified online authentication grace period.

AW-66307: Due to Apple iPad device behavior, Ivanti Neurons for MDM does not push to the shared iPad device the webclip and folder created in Pages as part of Home Screen layout configuration.

AW-66261: Due to Apple macOS device behavior, macOS devices do not honor the idle timeout and modulePath settings sent through the MDM payload. The values set on the device take precedence over the MDM settings.

AW-66250: Due to Apple OS X device behavior, Apple OS X devices ignore when an administrator reduces in the Passcode configuration the value for "Minutes until failed login reset," complying instead with the older higher value.

AW-66044: Due to an Apple issue, the Screen Saver configuration's Path to the screen saver module field is mandatory, but should be optional.

AW-66079: Due to a Windows issue, Ivanti Neurons for MDM fails to install in-house apps on Hololens 2 devices.

AW-66044: Due to an Apple issue, the Screen Saver configuration's Path to the screen saver module field is mandatory, but should be optional.

AW-65367: Due to an Apple issue, the Screen Saver configuration's Login window idle time setting does not work as expected. Also, the Path to the screen saver module field is ineffective.

AW-64557: Due to a Microsoft issue, Ivanti Neurons for MDM fails to install Windows restrictions-related configurations on ARM64 devices.

AW-58976: Due to a Windows issue, [email protected] fails to launch on devices with Windows 11 builds lower than 10.0.22000.652. These devices need to unenroll and then reenroll for [email protected] to work as expected.

AW-64758: The following problematic iOS update behavior occurs due to iOS limitations:

• On passcode-enabled iOS devices, the authentication window may fail to appear, resulting in iOS update failure.

• On passcode-disabled iOS devices, the Retry pop-up may appear, requiring clicking of the Remind me later button and possibly resulting in iOS update failure

• If during a software update mandated by a configuration a force check-in occurs after download of the update but before installation begins, the device may invalidate the download, requiring re-downloading of the software update.

• If during a software update on an iPod device after download of the update but before installation begins, an FDC or 24 hour update process requests an iOS update, the device may invalidate the download, requiring re-downloading of the software update.

AW-64619: The following problematic macOS update behavior occurs due to macOS limitations:

• During upgrade from macOS 12.x to 12.x+ using the specific version setting, not latest version setting, a failed update notification appears, requiring the user to authenticate, only after which resulting in successful installation of the update.

• During upgrade from macOS 12.x to 12.x+ using the specific version setting, and the specific version happens to be the latest version, a Software update notification appears, requiring the user to authenticate, only after which resulting in successful installation of the update.

AW-64544: Due to a Microsoft issue, Ivanti Neurons for MDM cannot install public apps on Windows Virtual machines, despite successfully installing them on physical Windows devices.

AW-64826: Due to iOS behavior, iOS devices fail to skip the setup screens an administrator selected for skipping in the Setup Assistant configuration.

AW-64698: Due to a Microsoft issue, Ivanti Neurons for MDM cannot successfully repeatedly install a later version of a Windows 32-bit app because Ivanti Neurons for MDM overwrites the later version app record with the earlier version app record whenever it collects Windows 32-bit app inventory.

AW-63566: Due to an Active Directory Federation Services (ADFS) issue, a user cannot successfully login to Ivanti Neurons for MDM when:

1. Ivanti Neurons for MDM has logged out the user due to session timeout.
2. User logs in again successfully.
3. User logs out and attempts to log in again before the session timeout period expires.

AW-63293: Due to an Apple issue, the FileVault Options configuration's DestroyFVKeyOnStandby setting does not manifest on the device.

AW-63241: Admin and end user-triggered installations of Apple Volume Purchase Plan (VPP) apps with prerequisites may fail because of latency in receiving the VPP app inventory report.

AW-62916: Due to an Apple issue, macOS VPP apps cannot be installed on macOS devices.

AW-62753: Due to Microsoft's bulk enrollment retry logic, pin authentication failure results in the login failure count reaching the cap and a locked associated account. 

AW-62615: Due to an Apple issue, macOS VPP app installation for user licenses may fail.

AW-62610: Due to an Apple issue, on M1 Macs, re-installations fail for iOS VPP apps to which an administrator has added the Per-app VPN configuration.

AW-61813: Due to a Microsoft issue, the device name of a Windows 11 device enrolled using autopilot self-deploy mode does not follow the template set by the autopilot profile.

AW-61810: The auto-pilot pre-provisioning technical flow (https://docs.microsoft.com/en-us/mem/autopilot/pre-provision#technician-flow) does not work on some Windows 11 Pro devices.

AW-61647: Due to a Microsoft issue, administrators are unable to clear the Device-Name template in the provisioning profile of autopilot devices.

AW-62001: Ivanti Neurons for MDM does not support SAML for [email protected] on Windows. For AAD-synced users, password-based authorization does not work. Use certificate-based authorization for these users.

AW-61925: Ivanti Neurons for MDM may reflect app version as "Not reported" when the app installation is not yet complete. The issue resolves in device app inventory reports sent in subsequent check-ins.

AW-61887: Ivanti Neurons for MDM may reflect in-house apps as public apps after the initial app installation. The issue resolves in device app inventory reports sent in subsequent check-ins.

AW-61813: The device name of a Windows 11 device enrolled using autopilot self-deploy mode does not follow the template set by the autopilot profile.

AW-61810: The auto-pilot pre-provisioning technical flow (https://docs.microsoft.com/en-us/mem/autopilot/pre-provision#technician-flow) does not work on some Windows 11 Pro devices.

AW-61682: Self-deploy mode language and keyboard settings work only for ethernet-connected devices because Wi-Fi-connected devices require the language and keyboard first to enable input of the password.

AW-61647: Administrators are unable to clear the Device-Name template in the provisioning profile of autopilot devices.

AW-59573: Google Pixel Mobile devices require users to provide a password when using the Ivanti Neurons for MDM Wi-Fi configuration to establish a Wi-Fi connection, despite the expectation of a successful connection without user password intervention.

AW-59331: Due to an Apple issue, administrators may encounter an "Install request is a duplicate" error upon the successful installation of a managed app on a macOS UE registered device.

AW-59309: Due to a Microsoft issue, Ivanti Neurons for MDM reflects the status of wiped HoloLens devices as "Wipe Sent" rather than the expected, "Wiped."

AW-59268: Due to an Apple issue, issuing a Lock DM command to an Apple Silicon M1 MAC on earlier than macOS 11.5 sends the device into recovery mode.

AW-58130: Ivanti Neurons for MDM cannot retire HoloLens 2 devices that have registered using Windows Autopilot Self-Deploying mode.

AW-57429: Microsoft issues a Getting Page Not Found error instead of a Device Not Compliant error when the user tries to access the Microsoft Device Management Portal from a jailbroken device.

AW-60396: Ivanti Neurons for MDM does not attempt scheduled operating system updates on macOS 11+ devices because these devices do not send the AvailableOSUpdate command.

AW-59272: After an upgrade to Connector 80, the kernel version is not referring to the latest version.

Workaround: Restart the Connector as described in the Connector Installation Guide.

AW-58990: On Windows 11 devices, the disconnect button does not appear correctly at Settings > Access School or Work.

AW-58499: Managed Android apps distributed to a device quarantined by a local Mobile Threat Defense (MTD) action are reinstalling during quarantine.

AW-57687: Due to an iOS 15 issue, when the Managed Pasteboard is disabled, users can still copy and paste to and from managed and unmanaged apps.