techiecheng

How to restore a supervised device that has no Internet connection and has device pairing disabled

This issue comes up more often than any admin would like, but it could happen if you have the setup below.

Basically, you can enable/disable Device pairing within a DEP profile. I usually suggest leaving this enabled and using the restriction payload to disable device pairing.

TroublehsootDFU8.jpg

Within this restriction payload, you can also enable/disable device pairing. For security purposes, however, most would keep this disabled until it’s needed.

TroublehsootDFU9.jpg

For additional security and for the purpose of this post, you may also disable the ability to perform device wipe manually through the setting below.

TroublehsootDFU12.jpg

Within the same restriction payload, you can also enable Force Wi-Fi Whitelisting to ensure only pre-configured SSID is allowed on a particular device.

TroublehsootDFU10.jpg

The general guideline from VMware support is that you should only have one payload per profile for various reasons (i.e. easier to pinpoint which profile is at fault, etc.) But what if you apply a WiFi profile and also a separate restriction profile with the below to the same device?

  • Force Wi-Fi Whitelisting – enabled
  • Allow pairing with non-Configurator hosts – disabled
  • Allow Erase All Contents and Settings – disabled

Chances are the WiFi whitelisting will apply first before the device gets to connect to the specific WiFi configured within the separate profile. As a result, you now have a locked down device with no network connectivity, no device pairing capability, and a non-removable MDM profile. You cannot reset the device either as it was disabled as well (if you could, you would have modified the profiles assigned to the device without any of the restriction listed above and start over.)

TroubleshootDFU20

TroublehsootDFU11.jpg

Fear not, we can restore functionality by putting the device in Device Firmware Upgrade (DFU) mode with iTunes. The steps may vary depending on your device model, but generally speaking:

  1. Power off your device. TroubleshootDFU21.jpg
  2. Connect your device to your PC or Mac and launch iTunes. Then, immediately press and hold both the Sleep/Wake button and the Home button for 8 seconds.
  3. Keep pressing the Home button but let go of the Sleep/Wake button
  4. Let go of the Home button and click Restore when prompted in iTunes

The same steps can also be used if your toddler locked your iOS device for 48 years.

For iPhone 7 where the home button is controlled by software, press and hold both the Sleep/Wake button and the Down button instead.

TroublehsootDFU1.jpg

TroublehsootDFU2.jpg

You may get the prompts below if the version of iOS is older than what’s currently available.

TroublehsootDFU3.jpg

TroublehsootDFU4.jpg

If this is your first time restoring the device, iTunes will first download the software before it’s installed onto your device.

TroublehsootDFU7.jpg

Sometime after, your device is ready to be used again!

TroublehsootDFU6.jpg

If you encounter the error below, try the link to troubleshoot.

If you see an error when you update or restore your iPhone, iPad, or iPod

iTunes 2019-09-09 14.18.25.png

A crisis has been averted. As always, stay mobile!

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.