Share your deployment experiences with Android zero-touch enrollment

So, back from my vacation will put on my 2 cents here as well:

First of all, we use ZTE for all our devices used in stores (fully managed only) for several reasons like, easy wipe and re-enroll without guide or other things needed and so on.

Also making them useless if someone steals the device and trying to enroll it (it will get stuck at some point by sure ;) making it useless except you use it 100% offline which is also something which would make it 99% useless).

But i also agree to points mentioned here but in my opinion could be solveable somehow:

1. Add options in the config to skip screens getting closer to ZT for cutomers as well
   • For all known "default" Android screens, seperate options
   • For all "unknown" OEM developer screens, one option to skip those
   • Requirement: The relevant screens are somehow "tagged" by the system so it knows what to skip
2. (Please) add the possibility to flag devices as "lost" in ZTE to get them moved to a seperate menu (so you could revert back, if needed) and when enrolled always only show the support information and the only option to factory reset (and if nothing was changed end up there again). Or something similar.
   • Also would like to keep devices here even we maybe cleaned up those models because of a model renewal so those devices stay useless.
3. Improve the functions more into a direction like Knox already have (possibility to add tags, see device model etc. directly in the table without the need of export,...).

I don't see problems related to WLAN devices as all modern devices can just scan a Wifi QR to establish such a connection fast and easy BUT StageNow is better on it to crypt this data instead of having it in clear text as Android Wifi QR codes do yet, this needs to be improved on my opinion (same for if you share the Wifi settings via QR, it's shown in clear text under the QR, WHY? Security wise a mess...). So, stopping here on that off topic a bit.