For multiple reasons (mostly legal) we do not want users erasing data from their machines. I've looked but don't see anything obvious in Configuration Profiles in Jamf 10.32 so I'm guessing at best there might be a custom MDM config.
Page 1 / 1
Forgot to say this is under Monterey...
And Der Flounder is on top of it!
https://derflounder.wordpress.com/2021/10/25/disabling-the-erase-all-contents-and-settings-function-on-macos-monterey/
Thanks, I missed this feature. This is really important to restrict.
Profile seems the more full proof way to go.
I used restricted software function
Im finding this a little tricky to apply that solution.
Am i missing something? Anyone that can help?
Im finding this a little tricky to apply that solution.
Am i missing something? Anyone that can help?
The process to block is "Erase Assistant"
I have a custom Smart Group that is All Computers macOS 12 or greater.
Also be aware non-admins cannot run this command/app (Erase Assistant which is located in /System/Library/CoreServices.) Not sure if that helps in your situation though.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.