Skip to main content

Hello,

We use User profiles for setting the wifi configuration.

We had old setup where the user account was a mobile account.

We migrated with rtrouton script (https://github.com/rtrouton/rtrouton_scripts/tree/main/rtrouton_scripts/migrate_ad_mobile_account_to_local_account) , these mobile account to local account.

The "user profiles" were removed from the current user (as seen in the gui, and confirmed with the "profiles" command)

But in the Jamf interface, in the inventory, these profils are still displayed. These users lost the wifi configuration this way. More problematic, updates to these profils aren't pushed back to these users.

 

We saw issues in our environment that after converting a Mobile account to a Local account the Local account no longer had MDM capabilities even though Jamf showed that they did. This meant that any user based MDM config profile would not install. We ended up creating a way for the user to re-enroll their device depending on whether or not they were ABM (DEP) or User enrolled and put it in Self Service. Once the user runs this, the user is then MDM enabled and all of the User based profiles begin to install again. 

You should be able to see if this is the same thing you're seeing by going into an affected computer record and checking to see when the last time was that the user account sent any MDM updates. 

do you have a process about reenrolling devices for DEP enrolled computers ? I tried with ASM on my test machine, but ended with a full wipe 😕😕

Hello e_blindauer,

Below mention command can help you reenrols a Mac device managed in ABM.

sudo profiles renew -type enrollment

 

Hope this will help

 

-Sam 

Sorry for the late reply @e_blindauer ...I was out for a bit, but it looks like @Samstar777 was able to help out. 

Terms & ConditionsCookie settings