For multiple reasons (mostly legal) we do not want users erasing data from their machines. I've looked but don't see anything obvious in Configuration Profiles in Jamf 10.32 so I'm guessing at best there might be a custom MDM config.
Answer
How can we BLOCK "Erase all content and settings" in Monterey?
+17Best answer by cwaldrip
And Der Flounder is on top of it!
https://derflounder.wordpress.com/2021/10/25/disabling-the-erase-all-contents-and-settings-function-on-macos-monterey/
+17And Der Flounder is on top of it!
https://derflounder.wordpress.com/2021/10/25/disabling-the-erase-all-contents-and-settings-function-on-macos-monterey/
+8Profile seems the more full proof way to go.
I used restricted software function
+4Im finding this a little tricky to apply that solution.
Am i missing something? Anyone that can help?
+8Im finding this a little tricky to apply that solution.
Am i missing something? Anyone that can help?
The process to block is "Erase Assistant"
I have a custom Smart Group that is All Computers macOS 12 or greater.
+18Also be aware non-admins cannot run this command/app (Erase Assistant which is located in /System/Library/CoreServices.) Not sure if that helps in your situation though.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.