Geek Answers Handbook

Parental control

I recently asked if I can have parental controls on my iOS device.

Link to the question below: -

Can I write a parental control app for iOS?

The senior developer answered and said that it is impossible to do without a jailbreak.

But I found an application called " OurPact " and with this I can control any other device. How can they have parental control if this is not possible in iOS?

+5
source share
1 answer

OurPact uses the Mobile Device Management Protocol (MDM), which provides the ability to inform the device about the launch of certain management commands remotely. How it works is simple.

During installation:

  • The user or administrator tells the device to set the MDM payload.
  • The device connects to the registration server. The device presents its authentication certificate for authentication, as well as its UDID and push notifications topic.
  • If the server accepts the device, the device provides a push notification device token for the server. The server must use this token to send push messages to the device. This registration message also contains the PushMagic line. The server must remember this line and include it in any push messages sent to the device.

During normal operation:

  • The server (at some point in the future) sends a push notification to the device.
  • The device checks the server for the command in response to a push notification.
  • The device is executing a command.
  • The device communicates with the server to report the result of the last command and request the next command

Access rights

  • Allow verification of installed configuration profiles.
  • Allow installation and removal of configuration profiles.
  • Allow device lock and remove access code.
  • Allow erasing the device.
  • Allow request for device information (device capacity, serial number).
  • Allow request for network information (phone / SIM card number, MAC address).
  • Allow verification of installed provisioning profiles.
  • Allow installation and removal of provisioning profiles.
  • Allow verification of installed applications.
  • Allow restrictions related queries.
  • Allow security related requests.
  • Allow manipulation of settings. Availability: Available in iOS 5.0 and later.
  • Allow application management. Availability: Available in iOS 5.0 and later.

About managing mobile devices

The Mobile Device Management Protocol (MDM) enables system administrators to send device management commands to managed iOS devices running iOS 4 and later, macOS devices running macOS v10.7 and later, and Apple TV devices running iOS 7 (Apple TV 6.0 software) and later. Through the MDM service, the IT administrator can verify, install, or delete profiles; delete passwords; and start secure deletion on the managed device.

The MDM protocol is built on top of HTTP, Transport Layer Security (TLS), and push notifications. An appropriate MDM validation protocol provides a way to delegate the initial registration process to a single server.

MDM uses the Apple Push Notification Service (APNS) to deliver the wake-up message to the managed device. The device then connects to a predefined web service to retrieve commands and return results.

To provide the MDM service, your IT department needs to deploy an HTTPS server to act as an MDM server, and then distribute the profiles containing the MDM payload to the managed devices.

The managed device uses the identifier for authentication on the MDM server through TLS (SSL). This identification may be included in the profile as a certificate payload or may be generated by registering the device with SCEP.

Link -

+4
source

More articles:


All Articles