+9When I deploy the CIS L1 baseline via JCE I'm having an issue with the following:
9.16. Configure Login Window to Show A Custom Message.
When I change the default text from "Center for Internet Security Test Message" to anything else, I get a compliance failure. How do I change this message to something more relevant without it flagging up as a compliance fail?
Best answer by patrickj
The compliance script that runs via policy is what determines if a device is compliant. The login window text is hardcoded into the compliance script as a base64 encoded string. If you want the compliance script to show compliant for your updated string you need to update the script. I believe if you use the Jamf Compliance Editor and update the value there it is supposed to automatically update it but you could update the script yourself if needed (or if it failed for some reason).
You would be looking for this section in the script:
You would want to update roughly 8 instances of the current value in that section. For example:
+13I too have this issue, As i don't have much time to dig into it, i have added this in the exception.
+10The compliance script that runs via policy is what determines if a device is compliant. The login window text is hardcoded into the compliance script as a base64 encoded string. If you want the compliance script to show compliant for your updated string you need to update the script. I believe if you use the Jamf Compliance Editor and update the value there it is supposed to automatically update it but you could update the script yourself if needed (or if it failed for some reason).
You would be looking for this section in the script:
You would want to update roughly 8 instances of the current value in that section. For example:
+9The compliance script that runs via policy is what determines if a device is compliant. The login window text is hardcoded into the compliance script as a base64 encoded string. If you want the compliance script to show compliant for your updated string you need to update the script. I believe if you use the Jamf Compliance Editor and update the value there it is supposed to automatically update it but you could update the script yourself if needed (or if it failed for some reason).
You would be looking for this section in the script:
You would want to update roughly 8 instances of the current value in that section. For example:
Thanks. I've updated the profile and uploaded the script to Jamf again. That seems to have got it working.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.