Hello - I am scratching my head trying to figure this out.
We are currently on 9.96 and will be moving to latest cloud JSS, so hopefully this is a possibility. But I am working on making a truly Zero Touch experience for my users that receive machines while on network.
In our current Pre-Stage enrollment, I have a local account being created, the client signs into that account, and launches a self service policy, packages install, reboot and you're ready to sign in with your AD account (I would do AD binding at time of DEP, but Centrify makes it a bit difficult)
In my perfect scenario, they would plug into the network, power on, receive the Pre-Stage enrollment, and proceed to be logged into a local account, policies run, reboot and you're in like Flynn. Maybe even throw in a JamfHelper window if time permits, but that's just icing at this point.
I've been playing around with my pre-stage by not creating a local account, and setting my policy to run at time of enrollment; in the assumption that it would automatically log in, then my policies would kick off. Not the case. I get to the login screen, and there's no user available.
How have you all in the "Real World", especially you in the corporate world made this happen? Or am I looking at this the wrong way?
Any assistance or fresh ideas would be greatly appreciated.
