Jamf Nation Community

HelpDeskDog · 2 weeks ago

Hi all,

Wondering if anyone else has ran into a similar issue. I've only noticed this with new devices running sequoia so far.

I have a policy running a script to enable remote management and remote login for a local managed admin.

I see that the service is running, but when going to remote management, there is no user displayed on 'Allow Access for'

If I try to kickstart the process manually, it shows that these settings are already enabled and my specified users still doesn't show on the list of users to allow.

I tried a fresh pre-enrolled device without running the policy in question, but the issue remains. My managed local admin is not on the list of users.

Anyone experience similar issues and have a fix?

maxhewett · 2 weeks ago

Apple removed the ability to use a kickstart command for ARD in Catalina. It has been (kind of) working for a few OSes now but maybe it's finally stopped altogether. I know we switched to using the MDM command to enable ARD a while ago in anticipation of this. You should see the deprecation warning in the logs for your script or if you run the kickstart command manually.

HelpDeskDog · a week ago

Funny thing is that the command works to enable remote management and remote login, but it just won't recognize a local managed admin created by jamf. If I create any local admin user, I see the option just fine.

If I manually add my managed admin to the ard group, the user name doesn't populate at all. Perhaps apple has not made any efforts to update ard to see these types of users.

If I inspect devices in my inventory lists, I can see that remote desktop is enabled as well. I'd love to use jamf remote assist in replacement, but it's just been incredibly slow for the use case I need it for.

maxhewett · a week ago

As far as I know, this is expected behaviour. Apple wants it to be an MDM-only option to enable ARD, not something that can be enabled by a command. Just use the MDM command if you want to enable ARD - that will enable for all users. Then disable it when you're done - that's been my workflow if I need to use ARD.

HelpDeskDog · a week ago

Darn. I've traditionally used this as quick remote support before I had used an MDM. Appreciate the info none the less.

Jamf Nation Community

Issues with remote management/ARD not showing managed local admin