We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.
We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.
Real talk, real tools and real-time support from people who get it.
Real answers from Apple Admins like you
Find your way around
Share your thoughts
Submit your idea
We got Defender working on our Macs about a year ago - deployed via JAMF Pro and with configuration profiles. We are not bound to the domain and do not use JAMF Connect. I am trying to follow along with Microsofts documentation (Onboard and offboard macOS devices into Microsoft Purview solutions using JAMF Pro | Microsoft Learn) which seems to be written for setting this up from scratch rather than adding it in to an existing setup. It seems to be doing something as we are getting better feedback under Device Onboarding, but still not making much progress. Here is an example of the details in Device Onboarding in Microsoft Purview with the error messages before and the more informative messages after I have created the configuration profiles in JAMF from the above guide: View under Device Onboarding: Before the configuration profiles were updated: After the configuration profile was updated: In the documentation that I linked to near the top, there is a "Before You Begin section which
Hello all, I created a PPPC config profile to grant OneDrive full disk access. Jamf Pro says the config profile is successfully installed on my test Mac, but when I check Privacy & Security → Full Disk Access it shows that OneDrive does not have full disk access. Is it normal for this change not to reflect in settings or am I missing something/doing something wrong? For clarification I have made the config profile directly in Jamf Pro and using the Jamf PPPC utility and uploading the config profile into Jamf Pro afterwards. Thanks!
New 270 class for those interested ... Jamf 270 Course Jamf Certified Tech - Jamf Protect The Jamf 270 Course offers a core understanding of endpoint and network security for Mac and mobile devices with Jamf Pro and Jamf Protect. Our hands-on, scenario and example-based course environment is the optimal way to begin learning how to secure devices with Jamf. https://account.jamf.com/training-courses/jamf-270-course/available
That’s right - there are brand-new swag options waiting for you in Jamf Nation Rewards! Check out your Jamf Account to see what’s new and start redeeming those hard-earned bytes. Not a member yet? Learn more and join here. And we’d love to hear - what are you saving your bytes for? Drop it in the thread 🧵! Here’s a sneak peek ⬇️ Explore the full lineup in Jamf Nation Rewards! Your rewards await 😎
Hi, I noticed that rather many of my Mac clients are not FileVault encrypted even though I have configured a configuration that should take care of that. Now I wanted to ask what is the best practice to enable FileVault on all my Macs. As far as I know there is an option to enable it via Policy and one via Configuration Profiles. What is the difference there and what is recommended?
I blocked the extension installation on chrome, with that un approved extension are blcoked but now I want to remove the un approved extension which is installed previously. Is there any way to removed it? I tried to remove the extension ID with script but in Chrome browser it shows corrupted not removing completely.
Hello community I'm looking for a solution to only allow self-service application installation, even for local admin accounts.I tried blocking the installation process, but unfortunately this also blocks self-service installations.
I created this small application to make it easier to retrieve the Bundle ID of a macOS app.Simply drag a .app file onto its icon in the Dock to display the app’s unique identifier and easily copy it to the clipboard.The link below includes both the AppleScript source code and the compiled, ready-to-use application. https://www.dropbox.com/scl/fi/74iqhkbs7cd7nfhi0fsn9/Bundle-ID-Droplet.7z?rlkey=a2kldrolexvix16z6hluvjpar&st=n999z5tv&dl=0 Hopefully, this can help someone.
This is part two of Dan’s blog, and it belongs with this ‘Part 1’ article. # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # ## Check Available Software Updates# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # function checkAvailableSoftwareUpdates() { notice "Check Available Software Updates …" dialogUpdate "icon: SF=arrow.trianglehead.2.clockwise,${organizationColorScheme}" dialogUpdate "listitem: index: ${1}, status: wait, statustext: Checking …" dialogUpdate "progress: increment" dialogUpdate "progresstext: Determining Available Software Updates status …" sleep "${anticipationDuration}" mdmClientAvailableOSUpdates=$( /usr/libexec/mdmclient AvailableOSUpdates | head -n 5 ) if [[ "${mdmClientAvailableOSUpdates}" == *"OS Update Item"* ]]; then notice "MDM Client Available OS Updates" info "${mdmClientAvailableOSUpdates}" fi recommendedUpdates=$( /usr/libexec/PlistBuddy -c "Print :Recommen
This is a blog article originally posted on @dan-snelson ‘s personal blog, https://snelson.us/ This article is split into two separate posts, so for the full article, please proceed to Part 2 Provide your users a "heads-up display" of critical computer compliance information via swiftDialog Provide your users a "heads-up display" of critical computer compliance information via swiftDialog Background More than six years ago,William SmithpublishedBuild a Computer Information script for your Help Desk; we implemented a customized version in the fall of that same year. Last week, during a conversation with one of our rock-star TSRs — whom I'll refer to as "John" — we decided it was time forswiftDialog-ized reboot. Features The following compliance checks and information reporting are included in version1.9.0, which operates in "test" mode by default. (ChangeoperationModetoproductionwhen ready to deploy in production.) Compliance Checks macOS Version Available Updates (including deferred u
Some of our primary school students have just used the Jamf Student app to update all the apps on their iPads. The Jamf Student app updated, but now it's asking the students to log into the Student app with a .jamcloud.com account. Our students are 10 years old and do not have any online accounts, how do they now use the Jamf Student app if they aren't allowed a .jamfcloud.com account?
Since moving to JAMF Cloud, we’ve noticed that some time appears to be off. For example, I ran an Inventory Update manually on a computer, and the record in JAMF console shows that it was run 1 hour earlier than it actually was. Also, with Apple TVs we have records that say that the Inventory Update occurred up to an hour in the future. I’m not sure that this is causing an actual problem yet, but concerned that it could. Are there time zone settings we should see or anything? All of our client devices are in the same time zone (unless a client goes on a temproary trip or something).
Hi all, I try to create a user level configuration profile for ethernet (for 802.1x LAN authentication).So basically, the same we already use for WiFi. We currently use a computer lvl profile, which works without issues. But have to change it to user lvl because of the strong auth change Microsoft enforces soon. The settings should work but as soon as I click on save, the network payload vanishes. Without an error or any explanation… As said before, the WiFi profile (also user lvl) works like a charm. Any tips on why this might happen? BR Thomas
A lot of machines recently asked for the update of Slack helper tool.Is there a way to stop it from happening?Thank you!
What is the best way to export Management History and the "Inventory Update" log, given that we do not have JAMF Protect yet Instead of having to open each iPad entry and review its log individually, is there a way to export that data?
Hi everyone, I have a user who's been consistently unable to connect to American Airlines inflight Wi-Fi. The device behaves as if there's no internet connection at all—it doesn’t redirect to the login portal, and nothing loads. What’s strange is that this issue only occurs with American Airlines; the user has no problems connecting on other airlines' Wi-Fi networks. What I’ve Tried So Far: Excluded the user from the Jamf Radar profile: This has resolved similar inflight Wi-Fi issues in the past, but it didn’t help in this case.( Once I fixed it I would add it back) Confirmed there are no VPNs or DNS filtering tools active at the time of connection. Had the user try multiple browsers (Safari, Chrome) – no success. Attempted manual navigation to common captive portal triggers like: Captive.apple.com Wi-Fi does show as connected, but again, there’s no redirect and no actual connectivity. Questions: Has anyone else seen this specific to American Airlines Wi-Fi? Are there any other payload
Earn a cool badge and Jamf Nation Reward Bytes for your published articles. We’re looking forward to your submissions!
1 Question Answered
216 Questions Answered
30 Questions Answered
17 Questions Answered
15 Questions Answered
17 likes
15 likes
14 likes
11 likes
Learn about our customer advocacy program that celebrates our most passionate customers.
Join the community to receive product updates, and share feedback.
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.