I currently have a problem with the macOS update. I try to install them via a mass command, unfortunately it does not work. Does anyone here have a good solution so that the updates are installed directly also mandatory.
The employees have no admin account and it is File Vault Enabled. Glad about answers.
@S_Puschel If your fleet is running macOS Big Sur, I think that Apple now requires devices to have a bootstrap token uploaded to Jamf to run that command. Otherwise, you need to deploy a policy. (But it will require user consent) I'm currently trying to figure out a workflow for this as well. I think that I'm jut about to enable autoupdates. I'm really starting to think that Apple wants to remove all of the useful features of an MDM.
Unfortunately there are not really any good solutions. You need to have the bootstrap tokens escrowed in your JAMF server as well as having Management over the devices and DEP. If you have all that the Management Command should just work, but you really get no logging and users get no notification. Scripts were much more reliable (which is not saying much with how poor they were) but that is all out the windows with Apple Silicon.
When you tell the Management Command to go does the Mac get a notification that an Administrator wants to install updates? That is the only notification the device should get until MacOS Monterey, but it should come up within a few moments of telling the Management command to run. You should see the Management Command in the Management Tab of JAMF as pending and it will move to History > Management Command section once its done.
Unfortunately it seem so. I totally get Apples Stance of putting users in control, but it makes things unnecessarily hard for us and the end users. Apple could do much better, they just choose not to. Its just a really bad experience all around.