@JayDuff I have found pushing out config profiles with the JSS will sometimes be dropped, especially the 8021x profiles. Resortiung to this gives nearly 100% success.
As long as you can get the profile onto the machine you can use any method to install it including policies etc.
not sure how you would use MCX to download and install the policy though.
My workflow is as follows:
1. create composer pkg with the profile in the correct folder (usually a hidden folder inside /usr/local/)
2. then have a EA with a detection on the existence of that mobileconfig file
3. create a smart group with the result of the EA to true I also have the criteria for the thing I am changing, eg, if doing 8021x, then criteria is file exists and IP address is not what it should be
4. create script to install mobileconfig
5. Policy to run the mobileconfig install script scoped to that smart group and update inventory so it drops from the smart group
good thing about this is that whenever it drops out it then runs the policy again to enforce the change required.
To use the jamf binary you could possibly have the policy ran on a custom trigger which is then called by the binary.
I think the best solution though is to let the JSS do the work for you
