We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.
We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.
Real talk, real tools and real-time support from people who get it.
Get answers from fellow admins
Find your way around
Share your thoughts
Submit your idea
I’ve got a weird issue with MS Defender Configuration Profiles applying/Un-applying intermittently. As part of our enrollment process we install MS Defender and apply Configuration Profiles. This has been working fine for close to 12months. Now for some reason even though the Configuration Profiles are still applying (You can see them in Device Management). The configuration doesn’t always apply even when it does apply the settings can stop taking affect shortly afterwards. Device Management still has the Configuration Policies applied. I’ve tried downloading fresh configurations, onboarding etc. from Microsoft with exactly the same result. Has anyone else seen this?
Hey Jamf Nation! My name is Taylor Taylor; I’m from Birmingham, Alabama. I am wondering if there are any Jamf Heroes in Alabama or the South. I’m curious to find out and would love to connect.
Went to the support portal to enter a ticket and has a link at the top to go to the new support portal which turns out to just be an AI chat bot. While its good for Jamf to have an AI chatbot try and “screen” support questions, I am wondering how well this will work out. The AI bot did not really have an answer to my question so I asked it to create a ticket and it said the team would email me back. I hope there is a way to track these support requests like you could with the old ticketing system. It can be important to have a ticket number.
This is a blog article originally posted on @dan-snelson ‘s personal blog, https://snelson.us/ This article is split into two separate posts, so for the full article, please proceed to Part 2 Provide your users a "heads-up display" of critical computer compliance information via swiftDialog Provide your users a "heads-up display" of critical computer compliance information via swiftDialog Background More than six years ago,William SmithpublishedBuild a Computer Information script for your Help Desk; we implemented a customized version in the fall of that same year. Last week, during a conversation with one of our rock-star TSRs — whom I'll refer to as "John" — we decided it was time forswiftDialog-ized reboot. Features The following compliance checks and information reporting are included in version1.9.0, which operates in "test" mode by default. (ChangeoperationModetoproductionwhen ready to deploy in production.) Compliance Checks macOS Version Available Updates (including deferred u
This is part two of Dan’s blog, and it belongs with this ‘Part 1’ article. # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # ## Check Available Software Updates# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # function checkAvailableSoftwareUpdates() { notice "Check Available Software Updates …" dialogUpdate "icon: SF=arrow.trianglehead.2.clockwise,${organizationColorScheme}" dialogUpdate "listitem: index: ${1}, status: wait, statustext: Checking …" dialogUpdate "progress: increment" dialogUpdate "progresstext: Determining Available Software Updates status …" sleep "${anticipationDuration}" mdmClientAvailableOSUpdates=$( /usr/libexec/mdmclient AvailableOSUpdates | head -n 5 ) if [[ "${mdmClientAvailableOSUpdates}" == *"OS Update Item"* ]]; then notice "MDM Client Available OS Updates" info "${mdmClientAvailableOSUpdates}" fi recommendedUpdates=$( /usr/libexec/PlistBuddy -c "Print :Recommen
Howdy everybody! Time for my annual post about how we all need to get our budgets prepped and ready to go for all the hardware we need to replace that Apple is dropping from its OS Compatibility list! I've modified my previous regex statement to take out the models that were lost to us this year to the latest macOS version. It looks like Apple is taking a big ole axe to the intel macs, minus only a couple of exceptions that seem to tie to the devices that were still being sold at the time of the M1 release. One tricky piece are the specific intel MacBook Pro's that Apple has listed. In that grouping are the MacBookPro16,x models, where x is 1,2 and 4, but not the 16,3 model, so keep that in mind. If anyone has details that contradict that, please let me know here and i'll quickly change the posted regex. I've tested this in my own Jamf instances to verify its returning the data that i'd expect to see, and am confident this will be able to match everything that is no longer supported by
Recently, an end user had their laptop stolen, so once notified i was able to apply a lock to the unit from my instance of JamfPro with a 6 digit code and it’s been a week now and it looks like nobody has tried to get the unit online. Long term can anyone suggest what i should do? I don’t expect to ever get the unit back so should i remove it from JamF?? Umberto
Would love to connect with you all, share experiences, and maybe even collaborate on some cool stuff. Feel free to drop a message or say hi! 😊 Thanks...
What's your favorite: - Resource when stuck in a rut and need answers? (aside from chatGPT) - Favorite beverage hot or cold- Role model in the tech world- Way to decompress after a stressful day - Hobby side from work
Microsoft has announced plans to move storage of the Workplace Join Key out of the user’s Login Keychain and into Apple’s Secure Enclave: Microsoft Enterprise SSO plug-in for Apple devices - Microsoft identity platform Announced in March 2024, Microsoft Entra ID will be moving away from Apple’s Keychain for storing device identity keys. Starting in Q3 2025, all new device registrations will use Apple’s Secure Enclave. There will be no opt-out of this storage location. Applications and MDM integrations that have a dependency on accessing Workplace Join keys via Keychain will need to start using MSAL and the Enterprise SSO plug-in to ensure compatibility with the Microsoft identity platform. In the same document, Microsoft provides guidance on how to test the Secure Enclave today to ensure the change will be compatible with your environment when the change goes live: If you would like to enable Secure Enclave based storage of device identity keys before it becomes mandatory, you can add
I'm trying to apply proxy settings to Macs for use only when they are in the office, connected to corporate Ethernet or WiFi, but I don't want these proxy settings to be applied when the user is at home or anywhere that isn't the office. Is there a way that this can be done?
Hi All, Does anybody know if InTune Cloud PKI integration with JAMF works instead of the legacy setting up NDES on prem?
Basically we have disabled the screenshot feature for a certain group in my organization via JAMF Configuration Profiles, but recently we have found a loophole for users to take screenshots via enabling the “Show features for web developers” and then on Safari, going to Develop tab and “Show Web Inspector” > Elements tab and right click the html to show the option to “capture screenshot” and it will allow you to save the screenshot. We are trying to remediate this loophole by disabling the option to enable the web developers option. Anyone have any ideas? I have tried using Configuration Profile and using the Application & Custom Settings option, but could not get it to work using the plist I found online. https://www.geeksforgeeks.org/techtips/how-to-take-screenshot-apple-safari/
I uploaded the Protect plan to Jamf Pro configuration profile. I was wondering if Protect also works on devices? I tried to upload the same file to the devices but it ends up failing. If there is any documentation for deploying to devices, please point me to it!
Hey All, We are working on determining the best way to manage our assets. We are a Mac/iOS only environment. So all of our equipment goes into Jamf Pro. We don’t do touchless deployment (management decision although its practically touchless). I’d imagine we’d need to get MUT involved to update purchase status. How do you handle new equipment or equipment that goes back into inventory? Also, we are looking to get physical asset tag stickers for the devices. Any suggestions on using Jamf as a complete solution? Or addition tools that people use for Asset Management to track items? Thanks!
Hello Jamf Community, I'm currently experiencing an issue with Jamf Remote Assist — I haven't been able to successfully connect to any Mac devices for the past two weeks. Each attempt either times out or fails with no clear error message. I've tried the following so far: Confirmed that Remote Assist is enabled in Settings. Restarted Jamf Daemon and the local Jamf app on the affected Mac. Verified network/firewall configurations (no changes recently). Tested on both Intel and Apple Silicon Macs with the same result. Has anyone else encountered similar issues recently?Is there any known workaround or reliable fix that could help restore functionality? Any suggestions or guidance would be much appreciated. Thanks in advance!
Submit and vote on product ideas.
1 Question Answered
216 Questions Answered
17 Questions Answered
15 Questions Answered
32 likes
20 likes
19 likes
15 likes
14 likes
Learn about our customer advocacy program that celebrates our most passionate customers.
Join the community to receive product updates, and share feedback.
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.