Hello everybody! I'm having an issue once a user takes their macbook air home and it's no longer connected to the school wifi.
We have a group in active directory that we put in all of our teachers that have a macbook. During my enrollment into the JSS, during directory bindings it allows that group to be an administrator of the mac.
Users are reporting once they go home and they try to make any changes to the mac (installing or removing of programs, etc) it prompts them for the local administrator password, which we will not give them.
I've tried setting up a mobility profile to see if that fixes it, but I'm not entirely sure on all the correct settings I need to be using to mimic as if they were still connecting on campus as they are at home.
Could anybody that has messed with this shed some light on how I need to proceed. Thanks!