Help

Easiest way to segregate enrolment polices for new machines?

EmDee
New Contributor III

Posted on ‎04-29-2018 11:58 PM

We have some machines we want to get the full complement of policies, Office Suite, Antivirus etc

And we have some that we need to just have the MDM, maybe a wifi profile and nothing more

My question is, what is the easiest way to do this from the first enrolment, as the machines wont be in the JSS, and I'd like this to happen automatically

IIRC, scoping to a site (the only option other than username at the enrolment screen) isn't possible?

0 Kudos
1 REPLY 1

blackholemac
Valued Contributor III

Posted on ‎04-30-2018 06:04 AM

What I do is write a post enrollment script that puts down what I call "my base" which is what every devices gets and I include a script that recons the proper department into the JSS with a command such as:

jamf recon -department "$departmentName"
jamf recon -building "$buildingCode"
jamf recon -position "$position"
jamf recon -room "$roomNumber"

Now you could populate those variables any way you'd like within a bash script. On mine, I call an AppleScript that asks the tech imaging in the labs those questions upon enrollment and it populates those variables accordingly.

0 Kudos