We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.
We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.
Real talk, real tools and real-time support from people who get it.
Real answers from Apple Admins like you
Find your way around
Share your thoughts
Submit your idea
I use IBM Notifier for most of the popup and notification messages for my user base. Has anyone had any luck using IBM Notifier with a progress bar from a script? I’d like to use a progress bar in a few of my longer running scripts. Would AppleScript be a better option? I’ve used CocoaDialog back in the day but that’s not an option right now.
We are deploying ClearPass OnGuard to our macOS fleet using Jamf Pro. The ClearPass application installs successfully via the Jamf policy, but it fails to establish a connection with the ClearPass backend. Manual installations, however, are fully functional. The root cause has been identified as a missing or misplaced .agent.config file, which is a hidden file essential for the initial configuration and backend communication. This file is present within the ClearPass DMG but is not included in the standard PKG installer. The challenge is to devise a deployment method using Jamf that ensures both the ClearPass installer PKG and the .agent.config file are present on the client machine at the time of installation, allowing the application to connect to our backend successfully.
Has anyone found a way to configure the Canvas app with your schools site? One issue we see a lot of is our users entering in the wrong address when trying to access Canvas. I cannot find any information about configuring it from Canvas so I figured I would see if anyone else found out how.
Hi everyone, I’m in the process of cleaning up a previous school system’s JAMF instance, which unfortunately lacked proper patch management. As a result, there are still devices running macOS Catalina and newer versions. I’m looking for advice or best practices on automating OS upgrades. While I’ll address the specifics of communication with my new manager separately, I’d really appreciate hearing from anyone who has dealt with a similar situation—particularly those without a dedicated team to handle the task. Thank you in advance!
Mac Admins India Connect is more than just a meet-up, it’s a movement. This conference was built by and for the growing community of Apple IT professionals across India. This event is the country’s first dedicated space for those who manage, secure, and support Apple devices at scale in order to meet and learn from one another in a larger scale, one day event. We’re so excited and still buzzing from our inaugural event, and we’re excited to keep it going for next year! Why We Started This India has long been a powerhouse for Apple device management, with admins supporting businesses and schools not only locally, but across the globe. That changed with the formation of Mac Admins India which is a grassroots tech community born on a Google group, and eventually, into real-world meetups. And now, with Mac Admins India Connect, we’re taking it one step further: an annual gathering to celebrate our craft, share our stories, and inspire each other. By the Numbers: 👥 160+ attendees 🏢 80+ or
Trying to install Chrome for Mac using the app installer. When it installs, chrome will no allow me to update manually. If I manually install chrome, then there isn’t an issue. I do not have a configuration profiles loaded for chrome.
Hi there. We’re looking at moving to PSSO, where we currently have Jamf Device Compliance on prod Macs, but have run into a wall. MDM=Jamf, IdP=Entra ID, PSSO profile uses Secure Enclave Key as the auth method because we have Jamf Connect managing accounts and password sync and understand that they can be complementary. On new builds when we deploy the PSSO profile before registering with Intune/Company Portal/Entra ID via our normal Jamf-driven Device Compliance workflow, it registers cleanly, works as expected, and CA permits access to protected data and apps, so it’s successfully replacing Device Compliance.On prod devices already registered with Device Compliance, with Entra ID device records, WPJ keys in keychain and the rest, when we deploy PSSO after, it initiates the registration, accepts the user credentials, creates a duplicate stub record in Entra ID, but at the last step where it would require MFA and then pop up the dialog prompting to allow CP Passkeys in System Settings,
I just wanted to say they really helped me get across the finish line with a script I needed to move computers from one pre-stage to another. Also special shoutout also to @mattjerome for getting the base script started with me. Anyone else have cool stories of how Jamf Support came through for them when you were hitting a brick wall with things?
I'm currently traveling around the globe and using VPN to have a static IP address. Is JAMF going to report my location either by detecting nearby WiFis and matching them to a location or by GPS? I understand that a script can always be pushed to do just that, but I'm asking about the more common default setups. Thank you!
To deploy Platform Single Sign-On (SSO) for macOS integrated with Microsoft Entra ID, especially using the Secure Enclave key method, here’s a comprehensive step-by-step guide based on Microsoft & Jamf ✅ Overview Platform SSO allows macOS users to authenticate using: Microsoft Entra ID credentials Smart cards Secure Enclave-backed keys (recommended for phishing-resistant MFA) In Secure Enclave mode, the local account password remains unchanged, and knowledge of it satisfies MFA requirements for Conditional Access. 🔧 Deployment Steps Step 1: Determine Authentication Method Choose one of the following: Secure Enclave (Recommended) Smart Card Password Sync For Secure Enclave: Works on macOS 13+ (full support on macOS 14+) Uses hardware-bound cryptographic keys Leaves local account credentials unchanged Supports phishing-resistant MFA https://learn.jamf.com/en-US/bundle/technical-articles/page/Platform_SSO_for_Microsoft_Entra_ID.html
We have our network setup with ADCS connector to get the certificates for the computer. The profile is working and the certificate is in the keychains. In the admin user, I am able to connect to the wifi without any issues. In the user’s account, it won’t connect and doesn’t prompt to choose the certificate. It should prompt for the certificate. I have removed the plist in the user’s library preference folder that had anything to do with network. I still can’t get it to work. I had already cleared out everything in the /Library/Preferences/SystemConfiguration folder. I’m at a loss on what else to delete.
We just got the Jamf AD CS Connector set up for our environment. It's awesome considering we were using an ancient, user-initiated script through Self Service for a long time to accomplish the same thing. However, I am wondering what the best practice is for pushing the wireless config during or after enrollment is. As part of our zero touch efforts, we have the user enroll using our guest wifi network when on site. I'd like to get the wifi profile installed as close to enrollment time as possible so when it does its post-enrollment tasks (installing security software, settings, etc) it will pull from on-site distribution points rather than our Internet facing distribution point. Has anyone had success with this? I seem to find myself getting railroaded installing this profile as it either interrupts the enrollment or post enrollment when it automatically switches from our guest network to the corporate network. Thanks in advance for any thoughts.
Hi everyone. Recently onboarded new MacBook Pro devices to JAMF School through Apple School Manager (added using Configurator 2). In the ADE profile, the option to allow the user to remove the MDM profile is unchecked but somehow students are still finding a way to delete the profile. Can anyone point me in the right direction to solve this? Not sure if there is another setting I'm missing somewhere. Thank you!
Earn a cool badge and Jamf Nation Reward Bytes for your published articles. We’re looking forward to your submissions!
1 Question Answered
216 Questions Answered
30 Questions Answered
17 Questions Answered
15 Questions Answered
21 likes
18 likes
10 likes
9 likes
8 likes
Learn about our customer advocacy program that celebrates our most passionate customers.
Join the community to receive product updates, and share feedback.
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.
