[LeoPanthera]

This is a very very long rant against a decision that seems entirely sensible to me. I specifically would not want any corporate-issued hardware happily chatting away with my personally-owned hardware, and I would encourage others to similarly keep their home and work life separate. If having an iPad (or a Vision Pro) would be useful for work, then their employer should issue one.

[chrnola]

Employers could be free to restrict use of such devices via MDM policy if they wanted.

Also, how many of us have purchased keyboards, mice, displays, headphones, etc with our own money that we happily use with employer owned computers because it’s safe to do so?

[WWLink]

Some employers are just straight up control freaks.

Sometimes it's misguided thoughts about security and third party keyboards from "unapproved vendors" (which is not entirely invalid to be concerned about, but unlikely to be an attack vector)......

But other times, they really do want you to use exactly what they provide you and nothing else. Things like "looking uniform and professional" or not wanting employees bringing their personal belongings to the workplace or whatever nonsense they come up with.

[gumby]

> Some employers are just straight up control freaks.

Sometimes it makes sense, infuriating as it may be. My partner works for a bank and says that daily someone brings up an annoyance due to central IT's restrictions, but nobody wants to be a vector for exfiltration of customer data.

> Things like "looking uniform and professional"

Yeah OK, anybody like that is a control freak!

In extreme freaky control: Tom Siebel was like that at Siebel Systems: you can wear anything you want to work unless customers might see you, in which case you have to wear suit and tie (men) or equivalent. Doesn't sound so bad -- just salespeople, right? -- except that they would tour prospective customers through the development areas so...everybody had to wear suit and a tie.

[Nextgrid]

> nobody wants to be a vector for exfiltration of customer data

I have a hunch that the companies that are most obsessed with this are also those who routinely outsource to third-world boiler rooms and are clients of very competent & secure companies such as Okta.

[gumby]

The banks are under pretty tight regulation in this regard. I have no illusion that bank management cares about the customers’ concerns but they sure do care about the regulators!

My partner has no exposure to live bank data (not even her own — her team all get bank accounts so they can see what it looks like to be a customer) and she has said to me that she and her colleagues are glad they don’t have to worry about accidentally leaking anything. I guess there must be other teams that have to deal with that.

To my surprise nothing she is exposed to is outsourced overseas.

[pquki4]

> their employer should issue one

iPad is not in the list of "standard" hardware for my company (with thousands of developers and a good balance sheet). Good luck getting that approved as an exception.

[catchnear4321]

there are plenty of companies where the thought of an exception, let alone such a restriction, is entirely alien. in part because it would take many of these companies, combined, to match the furniture/head count of full corpo.

you also are ignoring the non-technical leadership class. there are plenty of exceptions in full corpo. clearly you weren’t special enough to get one on a whim. no judgement there, never was myself.

[Retr0id]

Sure, but if someone wants to use a Vision Pro for both work and non-work, having two of them is a bit steep.

[Retr0id]

To elaborate, personally I draw the line at peripherals. I do try to use different devices for work and not-work, but I use the same monitor+keyboard+mouse+headphones (and desk, and chair...) for both.

The Vision Pro is a weird middle ground of device and peripheral. When it's operating as a virtual display it's more of a peripheral, and it'd be nice if it acted more like one.

[pests]

That just seems reasonable. Those items are the interface with you, the human operator. Of course you'd want those to be of your preference.

I agree. Let work stuff be computed on work devices and I'll do my stuff on my own things. Still want the interface to be consistent and comfortable.

[threeseed]

There are plenty of VNC clients for Vision Pro.

Seems easier to just use those if all you need is a virtual display.

[Retr0id]

Is the experience any good? I've used VNC many times, and even over direct wired connections I'd describe it as "not great".

[gumby]

Surely you could just log in and log out under the two names.

[weikju]

On an iOS device that potentially means erasing GBs of content (photos, iCloud Drive and app files, Safari bookmarks etc) and re syncing GBs of content from the new account. Over and over.

Not to mention potential criss crossing of accounts that happens. Heck my work phone still rings when my personal FaceTime get a call even if I completely logged out of my personal iCloud on the work phone (was a bad idea should never have experimented). No obvious way to fix that.

At some point all my personal iCloud photos showed up on my work phone due to a similar problem. That’s fixed now but I’m always worried it’ll happen again.

I’ll never login with a personal iCloud on a work device ever again.

[atrettel]

I'd go further and say that employers are also motivated to keep corporate hardware and personal hardware separate for security reasons. Allowing personal devices direct access to corporate ones is yet another attack surface. Separation of work and personal devices is a good policy for both employees and employer.

[romwell]

>Allowing personal devices direct access to corporate ones is yet another attack surface. Separation of work and personal devices is a good policy for both employees and employer.

True. Nobody would log into their work through their own, non-corporate-issued WiFi router, after all.

Right?

[atrettel]

Well, yes and no. Most of my past employers only allowed VPN access for remote work, so the networks are in fact different. And I have had an employer that actually issued employees "SOHO" routers (routers always logged into the organization's VPN) to use with the company equipment at home. I never got one but they would issue you one if you asked. My point is that generally both employers and employers have good reasons to want separation here.

[romwell]

> I specifically would not want any corporate-issued hardware happily chatting away with my personally-owned hardware

Yeah, what kind of fool would plug in their own monitor into a corporate-own laptop?

Who knows what kinds of things they'll talk about! /s

Seriously though, you do you. What you specifically want is fine for what you have.

However, describing The Apple Way™ decision to only allow connections between devices that you own as sensible requires further justification (given a pretty expoistion in the article as to why it is not, in fact, sensible).