I have been going back and forth with Jamf support for a while now and it seems that if you have a local password policy where the password is set to expire in X number of days that it will eventually break your environment since the local password policy would be applied to your Jamf management account. That would mean after X number of days the client would become unmanageable(per Jamf support). I'm told I could push out a policy that resets the management account password on every mac then do a batch update of the management password in JSS. I'm not a fan of that because it means I would be deliberately breaking my environment every X number of days, not to mention that every management account would have the same password which is a security concern. Has anyone else run into this? If so what did you do? Any insight would be helpful.
Thanks in advance.
