macOS policies applying to iOS devices because of Dynamic Device Group criteriaSolved

Participant
Discussion
2 days ago Jul 01, 2026

I had a dynamic device group for macOS devices, and a few policies assigned to that group. The problem was that some iOS devices started showing those macOS policies too.

The group criteria included Apple DEP enabled, so I’m guessing that may be pulling in both Mac and iPhone/iPad devices. What is the recommended way to make sure a dynamic group contains only macOS devices?

 

Replies (1)

Marked SolutionPending Review
Hexnode Expert
2 days ago Jul 01, 2026
Marked SolutionPending Review

Apple DEP enabled is not platform-specific. If this condition is used by itself in a Dynamic Device Group, it can include DEP-enrolled Apple devices across platforms, including both macOS and iOS.

For a Dynamic Device Group intended only for Mac devices, configure the criteria based on the operating system instead:

1. Go to Manage > Device Groups.

2. Open the dynamic group used for macOS devices.

3. Under Conditions, set the condition as OS name = macOS.

4. Save the condition and allow the group membership to refresh.

Once the group contains only macOS devices, policies associated with that group will no longer be applied to iOS devices through that group association.

Regards,
Mary Romero

Save