For the last month of so, 15% of our Big Sur laptop has been skipping account enrollment during the DEP process. It forces the user to land on an account login page with no credential to login. Upon checking into the computer entry in JAMF - the username is set to root.
This is a major issue for us right now and affects our zero-touch deployment. Did any of you guys see this issue recently and is there a fix?
Nothing out of the normal ... we know about however have no idea when it will be fixed... and that was while 11.4 was in RC so I assume it's not fixed in 11.4 or AC would have asked me to test... : )
it will work if I reinstall the OS on the machine and deleting the entry in JAMF. Definitely a frustrating issue.
Has anyone seen this not be the case? I've been pointing folks to https://support.apple.com/guide/mac-help/erase-and-reinstall-macos-mh27903/mac but maybe instead of deleting the Volume group, need to wipe the SSD for this to reliably work? Just had two users with the issue even after wiping & re-installing.
@binglenozumi not sure who you're asking but if you scroll up to the previous two responses you'll see a wipe & re-install strangely does not always resolve.
On interesting note, I was surprised to see the first mention of this on July 1st in the MacAdmins slack:
Jamf Pro fails to enforce account creation on computers during enrollment via a PreStage enrollment if a configuration profile with a Passcode payload is included with the PreStage.
Still seeing the same issue with on-prem Jamf Pro 10.30.3 and Big Sur 11.5.2.
Does anyone have news to this?
In the meantime I will open tickets with Jamf and Apple and give an update if anything happens.
I'm having this exact problem when I "wipe" a machine.
The way we wipe a machine is:
'/Applications/Install macOS Monterey.app/Contents/Resources/startosinstall' --eraseinstall --agreetolicense --forcequitapps --newvolumename 'Macintosh HD'
Once machine boots up, it will go through setup process, download our configuration profiles, but then either shut off the mac or go straight to login screen, where we only have our management user.
If instead, I boot into recovery and wipe the disk and reinstall, it appears to work just fine.
Thanks for this tip. I can confirm that this works for macOS Monterey (12.01)
It's still a bit of an annoying "hack" to have to do as the user may be confused what to do there until they see the skip button. But better than not having their account created.
There is another thread here: https://community.jamf.com/t5/jamf-pro/intel-macbook-pros-not-creating-new-user-accounts/m-p/251289#... too. I have always had Location, Privacy & Ts & Cs "unchecked" (meaning it shows). And two machines back to back behaved differently: a 13" pro out of the box and a 16" pro I wiped and am trying to repurpose. The 13" did not work the first time but worked the second and the 16" pro after three tries still isnt working.
Hello again! I found this in another thread and I think it could be part of the problem (note the time limit): If you have auto advance turned on (for macOS 11 devics only, ethernet required) after 30 seconds at the first screen, setup assistant will skip through the screens itself until it gets to the login window and auto enroll the device in the process.
I am going to uncheck that box and try my 16" pro one more time...
We have have been struggling with this as well. Jamf have acknowledged this is a known issue.
They suggested the following should provide a workaround:
Settings -> Global Management -> User-Initiated Enrollment -> Platforms
Untick "Create management account"
This is working so far for us.