I'm developing an iPad application for a company. Because of confidentiality reasons they do not want to publish the app to the app-store.
The fulfill the enterprise program requirements but they have not participated yet. The company wants to know how the distribution process is. I've dived into apples documentation jungle and i'm a little confused about the provisioning profiles. Due to the confidentiality reasons I'd like to use the apple security api using DeviceLock with configuration profiles so I came across with MDM-Servers.
Now my actual question: Do I still need the UDID of every Device I want to use with enterprise program AND if yes, can I push new provisioning profiles (with new devices) to all existing devices via MDM-Server without recompiling and redistribute the whole app?
I'm not sure you need the UDID of each device in the enterprise program. This answer seems to imply you don't need to.
You definitely can push a new provisioning profile without re-compiling.
You'll also have to plan on updating the certificates each year, see:
An app will not run if the distribution certificate has expired. Currently, distribution certificates are valid for one year. A few weeks before your certificate expires, request a new distribution certificate from the iOS Dev Center, use it to create new distribution provisioning profiles, and then recompile and distribute the updated apps to your users.