Hi all,
We have tested out the Jamf Compliance Editor and it works wonderfully till the point that we wipe the laptop and re enroll it.
In order to better understand and troubleshoot the availability of the policies, we have set the remediation and compliance policies to ongoing and also added them to self service so that we can see when we run run them.
For some reason, on a wiped laptop the remediation policy will be made available only one time after i ran the audit policy. However, the laptop wont be scoped to the remediation policy after that no matter what we did:
Restart, waiting for 24-36 hours, reset baseline, ran audit policy again, delete the device from Jamf before enrolling, erasing the Macbook reinstalling OS from scratch and enrolling.
The only thing that did work, was to install the compliance editor on the wiped laptop locally => create a new project => select the standard that we are aiming for (CIS1 in our case) => Create Guidance => Click on audit => Run.
After the compliance tests were done the remediation script was made available immediately to the laptop. At that point we removed the Compliance Editor from the laptop along with the project files and folders.
On a laptop that has the scripts running for the first time, we encountered no issues.
Did anyone else came across this behavior on laptops that were wiped and managed to fix it?
Many thx!
