- Jamf Nation Community
- Products
- Jamf Pro
- Access Denied to Clients on Apple Remote Desktop
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Access Denied to Clients on Apple Remote Desktop
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 12:07 PM
After adding all of my clients to the JSS, I now receive the "access denied" message for these same clients in Apple Remote Desktop. Any ideas?
9 REPLIES 9
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 12:10 PM
The only restriction that can be automatically applied after enrollment is SSH. This is an option you select when creating quickadd packages, imaging configurations or using recon.
If ARD access is being changed when the Mac enrols, there is likely a script, policy or config profile that is changing it.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 12:27 PM
Is there a script that can change it back? :-)
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 12:49 PM
You can use these two commands to set it how you need it:
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -allowAccessFor -specifiedUsers
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -access -on -users username -privs -allJust replace username with the short name of the user that should have access.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 12:50 PM
Try this
#!/bin/sh
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -activate -configure -users ACCOUNTUSERNAMEHERE -access -on -privs -all -restart
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -activate -configure -allowAccessFor -specifiedUsers -restartedit:
@davidacland beat me to it
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 12:52 PM
You can also have Apple Remote Desktop provide the needed kickstart commands:
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-21-2015 01:09 PM
the enrolled system probably had their Screen Sharing service reconfigured to comply with whatever has been set for use with Casper Remote, and took out anything previously set for Remote Management.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-24-2015 10:46 AM
Thanks for the scripts. Do I run both of them?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-24-2015 10:52 AM
Just one or the other should do it.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-24-2015 11:07 AM
Thanks. I'll give it a whirl.
