MS Defender .pkg failing to install in Self Service

Does it fail in Self Service from a second test Mac?

If you go to:

Computers tab, Search, enter the test Mac serial number or something, History, Policy logs -- there should be more info there on the policy.

I have a few questions:

1. Which version of Defender?
2. On which macOS?
3. Have you configured the Configuration Profile for Onboarding?
   Should look like this: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/mac-jamfpro-policies?view=o365-worldwide#step-1-get-the-microsoft-defender-for-endpoint-onboarding-package

Hi Obi-k,

Yes it failed on two different devices

Checked the policy log there isnt a log for this policy - only for the two policies where I'm adding separate admin accounts

thanks

Hi Alex,

Thanks for helping

Macbook Pro 2021 OS: 13.3.1 build: 22e261

Mac Mini M1 2020 OS:12.3.0 build@ 21E230

Yes I set the MDE onboarding for Mac OS

MS Defender Version 101.98.70 - downloaded by my 365 admin as .pkg

Hi Jamie, which version of Defender?

Especially starting with macOS 12.3 you will need a current one, because of the removed python.

Here you can find the release notes:
https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/mac-whatsnew?view=o365-worldwide 

Additionally you can check your /private/var/log/install.log and filter for "wdav" :-)

Microsoft has a script they use for Intune management that curls the latest package for you.  I've modified it by removing the Wait for Apps and Check for Rosetta functions and it's been great.  I actually use all their scripts for Office, Edge and Defender.

https://github.com/microsoft/shell-intune-samples/tree/master/macOS/Apps

Hi all,

no entries in /private/var/log/install.log and filter for "wdav" :(

Just installed an App Store via Self Service

Will take a look at the Curl Script - Ive also logged a ticket with JAMF 

Thanks