Real talk, real tools and real-time support from people who get it.
Get answers from fellow admins
Find your way around
Share your thoughts
Submit your idea
Been having a lot of problems with Filevault over the years. Now I’ve just discovered that you can no longer use the Filevault recovery keys in macOS 15.5. Instead, you are expected to boot to recovery, which is more of a pain. This removal is insane. Like many we use the stored key from Jamf to unlock devices in the event of account passwords not working. Now we have to use Recovery mode. I’d love to know Apple’s reasoning for this. Anyone else aware of this and have any comment?
I dunno know who this will help out, but here it be ………We normally do screen recordings of macOS enrollments. This does several things for us.We provide it to our Support Team so that they can see the new[er] enrollment flow. Become familiar with it. As it sometimes changes from time to time. We share it out with our Security Team as well. So that they can see the enrollment process as well. In case they have a question or request a change that they would like to change. Lastly, we do it for training as well. We show the process of beta’s [macOS 26b3]. So that the team can see the process & changes that have been made or are coming down the pipeline.This has been & continues to be a helpful tool we continue to provide to our teams. However Apple has made some changes with how this process was done in the past. No matter what I tried we were not able to capture any video output until it got to the desktop. This just sux’d, we could no longer provide this service. Sure we could t
We're using Jamf Now with Jamf Protect enabled and periodically seeing CPU spikes (with the process hanging and eating up resources indefinitely) caused by the com.jamf.protect.security-extenstion. This is actually causing the OS to get unresponsive and overheat, eating up all available CPU. The simple solution is to kill the process, but eventually the problem comes back. Some basic debug information from the pid on a machine from when the problem occurred: sudo dtruss -p 337 dtrace: system integrity protection is on, some features will not be available SYSCALL(args) = return sigreturn(0x700008F16550, 0x1E, 0x1F99DBCB69B66C71) = 0 -2 sigreturn(0x70000909F568, 0x1E, 0x2EECB3AAFCC39E5E) = 0 -2 sigreturn(0x700008F16550, 0x1E, 0x5ECF2791121B465B) = 0 -2 sigreturn(0x70000909F568, 0x1E, 0xDCFC18327AB19367) = 0 -2 sigreturn(0x700008F16550, 0x1E, 0x131DCCD7A886722F) = 0 -2 sigreturn(0x70000909F568, 0x1E, 0xA6420414AE3C2D83) = 0 -2 sigreturn(0x700008F16550, 0x1E, 0x77
Hello All,We’ve just started to implement Jamf Pro in our company. Nearly all configurations are completed except sending compliant information to Microsoft Intune. We have to do this because we’re using Azure (Entra) Conditional Access rules in our company. If a macOS device is not compliant it cannot reach internal company resources. Just a simple rule. Steps CompletedJamf <> Intune compliance partner connector connected successfully. Microsoft Device Compliance configuration policy prepared in Jamf Policies -https://learn.microsoft.com/en-us/intune/intune-service/protect/jamf-managed-device-compliance-with-entra-idProblem SummaryAfter enrolling to jamf, we are trying to sign in to Company portal and jamf compliance popup appears. Then we are entering our user account details again but somehow Microsoft login page shows that “get app”. It behaves like Company Portal is not installed. Briefly some of our computers are being Compliant without any problem, but some of others canno
Hi,I would like to create a deployment for Maya 2025 based on the topic for 2024:https://community.jamf.com/t5/jamf-pro/packaging-autodesk-maya-2024-with-redundant-license-servers/m-p/298743I've found a .app installer in the Contents of the installer:/tmp/maya2025/AdskIdentityManager/AdskIdentityManager-Installer.app This app opens an installation wizard. How can I execute this (after the PKG installs) in silent mode?Thank you.
Any had this issue , devices where PSSO was already registered, users were prompted again to register. When they attempted to register, the process failed, and the devices entries are removed from Azure, resulting in loss of all organization access.we had to re-register the devices through System settings > User and Groups > Network account server > Edit, and then click repair.Note: We use Secure Enclave as authentication type, No changes where done at profiles
Getting kicked out of Jamf Pro server. If you are experiencing a similar issue here is my ticket number: 19843077 After enabling the SSO I am getting kicked out of the Jamf server multiple times daily.Behavior:clicking on a link presents signed out pageoractively browsing a page and presented singed out pageBrowser:SafariChromeOS: 15.4 (scheduled the update for later in the week)
Setting up some new M4 airs. Made a mistake after enrollment with the account that was created so decided to wipe and start over. Ran the Wipe command and instead of what I’ve seen with previous devices this one when to activation and then Recovery so that the macOS has to reinstall. Is this expected with M4’s?? The M2’s went to activation and then right to setup.
Hello,I have noticed recently that searching for JAMF Nation articles on any mainstream search engine gives the results for those articles, but if you click them it brings you to the JAMF Nation home page instead of the article trapping the information behind the built in search.Is anyone else having this issue, or know what this is? Thanks
I uploaded the Protect plan to Jamf Pro configuration profile. I was wondering if Protect also works on devices? I tried to upload the same file to the devices but it ends up failing. If there is any documentation for deploying to devices, please point me to it!
I’ve got a weird issue with MS Defender Configuration Profiles applying/Un-applying intermittently. As part of our enrollment process we install MS Defender and apply Configuration Profiles. This has been working fine for close to 12months.Now for some reason even though the Configuration Profiles are still applying (You can see them in Device Management). The configuration doesn’t always apply even when it does apply the settings can stop taking affect shortly afterwards.Device Management still has the Configuration Policies applied.I’ve tried downloading fresh configurations, onboarding etc. from Microsoft with exactly the same result. Has anyone else seen this?
Hi All,Not sure how many of you use Clearpass and JAMF but I have been able to modify the script provided by clearpass to collect the rotating MAC address of the device so that clearpass will recognise it and be able to assign a policy for the device without having to turn the rotating MAC address off. The script is below, all you need to do is update the cppm-all-mac-addresses extention attribute script with the one below…. #!/bin/bash wifi_interface=$(networksetup -listallhardwareports | awk '/Hardware Port: Wi-Fi/ {getline; print $2}')rotating=`ifconfig $wifi_interface | grep ether | cut -d ' ' -f2` result=`/usr/sbin/networksetup -listallhardwareports | /usr/bin/awk '/Ethernet Address/ {printf "%s%s",sep,$3; sep="|"} END {print ""}'` echo "<result>$result|$rotating</result>" a few things to note… This will only work for MacOS devices and not iOS Depending on what time the machine checks in and the clearpass does a JAMF update (every 30 mins) it can take some time to get
A lot of machines recently asked for the update of Slack helper tool.Is there a way to stop it from happening?Thank you!
Hello,I just set up SSO in Jamf Account.I'm not sure where I need to grant administrator privileges to your Identity Provider (IdP) to configure a connected app and assign the relevant users and groups.
Hello,We are transitioning part of our fleet from AD binding to jamf connect; however, we have hit an odd snag. In the past, we'd be able to just install jamf connect and once the user logged in, it would demobilize their account and sync with their entra credentials. With this new batch with JC 2.37, the accounts become Local, however they then get locked. When a user tries to log in with Entra SSO, it loads, looks like it has accepted the credentials but then just returns to the login screen. It does not accept any password with local login aswell. One thing to note, the devices are not on premise when the change takes place, if that has any effect. If anyone has seen this and has a fix, it would be much appreciated. -Jack
Earn a cool badge and Jamf Nation Reward Bytes for your published articles. We’re looking forward to your submissions!
Learn about our customer advocacy program that celebrates our most passionate customers.
Join the community to receive product updates, and share feedback.
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.
