Skip to main content
Solved

JamfPro "Wipe" command question

  • January 4, 2023
  • 8 replies
  • 685 views
K
Forum|alt.badge.img+4

Hello, 

I went and looked through all similar threads but didn't find any experiencing my issue.  I tested the 'Wipe" feature on my Macbook before performing the command on a user who locked himself out of his Mac and forgot his password and had some questions about the process.  When you hit Wipe, it prompts to enter a remote wipe passcode, and there is a box above that says "Clear Activation Lock".  I left that box unchecked and just entered 123456 for the PIN.  But when I sent the command it just nuked my machine and reset/reformatted my Mac, it didnt ask for a PIN code or display any message.  Is this PIN not needed when you do not check the Clear Activation Lock box?  And also, should I be checking the Clear Activation Lock?  And my last question is after the factory reset, the device now shows 'unmanaged' in Jamf Pro but on Jamf Pro's website it claims that the Wipe will not unenroll the device.  So theoretically if I had done this on a device that was stolen it would just put a fresh version of MacOS on the device and I could not longer reach it through Jamf Pro, is all of this by design or does anyone have any advice or suggestions?

 

Thanks a million and forgive my ignorance with Jamf/Mac =)

 

Kerry

Best answer by GabePPS

It wipes it and will have to enroll it again which if still scoped to a prestage, should just enroll again for you.

I've seen it go to a secondary screen a few times where it needs to re activate on apples servers after the initial wipe.  And once or twice where it required a reinstall of the system after the wipe, which it then auto booted into recovery mode.

    8 replies

    G
    Forum|alt.badge.img+18
    • GabePPS
    • Esteemed Contributor
    • 831 replies
    • Answer
    • January 4, 2023

    It wipes it and will have to enroll it again which if still scoped to a prestage, should just enroll again for you.

    I've seen it go to a secondary screen a few times where it needs to re activate on apples servers after the initial wipe.  And once or twice where it required a reinstall of the system after the wipe, which it then auto booted into recovery mode.

    GabePrinceton Public Schools
    talkingmoose
    Forum|alt.badge.img+36
    • talkingmoose
    • Community Manager
    • 1913 replies
    • January 4, 2023

    In that prompt you saw, Activation and the PIN are two unrelated things.

    You followed the correct procedure, which is to only check Clear Activation Lock if you need it (sounds like you didn’t) and to enter an arbitrary PIN. If the computer has been protected with a firmware passcode, you’d need the correct PIN to clear that before the computer would be wiped.

    A wipe command will erase both user data and macOS on macOS Big Sur and earlier Macs. It will perform an Erase All Content and Settings on macOS Monterey and later Macs (leaving the operating system in place and at the Setup Assistant) that support Erase All Content and Settings.

    K
    Forum|alt.badge.img+4
    • kprimm
    • Author
    • Contributor
    • 17 replies
    • January 4, 2023

    In that prompt you saw, Activation and the PIN are two unrelated things.

    You followed the correct procedure, which is to only check Clear Activation Lock if you need it (sounds like you didn’t) and to enter an arbitrary PIN. If the computer has been protected with a firmware passcode, you’d need the correct PIN to clear that before the computer would be wiped.

    A wipe command will erase both user data and macOS on macOS Big Sur and earlier Macs. It will perform an Erase All Content and Settings on macOS Monterey and later Macs (leaving the operating system in place and at the Setup Assistant) that support Erase All Content and Settings.


    Thanks for the response, greatly appreciated.

    K
    Forum|alt.badge.img+4
    • kprimm
    • Author
    • Contributor
    • 17 replies
    • January 5, 2023

    In that prompt you saw, Activation and the PIN are two unrelated things.

    You followed the correct procedure, which is to only check Clear Activation Lock if you need it (sounds like you didn’t) and to enter an arbitrary PIN. If the computer has been protected with a firmware passcode, you’d need the correct PIN to clear that before the computer would be wiped.

    A wipe command will erase both user data and macOS on macOS Big Sur and earlier Macs. It will perform an Erase All Content and Settings on macOS Monterey and later Macs (leaving the operating system in place and at the Setup Assistant) that support Erase All Content and Settings.


    @talkingmoose So just to confirm, after the Mac resets to factory default, unless in "pre-stage" scope the device needs re-enrolled into Jamf or it will remain 'unmanaged', correct?

    G
    Forum|alt.badge.img+18
    • GabePPS
    • Esteemed Contributor
    • 831 replies
    • January 5, 2023

    Yes, if its scoped to a prestage enrollment though, once it starts up it will automatically re enroll and lock back to your organization.  Its only unmanaged until someone attempts to start it up.  If not scoped to a prestage then yes its unmanaged.

    GabePrinceton Public Schools
    H
    Forum|alt.badge.img+2
    • htucker1
    • New Contributor
    • 1 reply
    • January 10, 2023

    In that prompt you saw, Activation and the PIN are two unrelated things.

    You followed the correct procedure, which is to only check Clear Activation Lock if you need it (sounds like you didn’t) and to enter an arbitrary PIN. If the computer has been protected with a firmware passcode, you’d need the correct PIN to clear that before the computer would be wiped.

    A wipe command will erase both user data and macOS on macOS Big Sur and earlier Macs. It will perform an Erase All Content and Settings on macOS Monterey and later Macs (leaving the operating system in place and at the Setup Assistant) that support Erase All Content and Settings.


    I am having a similar issue with the wipe command on my iOS device. It has reset, and is now listed as unmanaged, however, I am unable to see the device/add the device back to the scope in my PreStage Enrollment it was originally in. Please advice. 

    S
    Forum|alt.badge.img+5
    • sk25
    • Contributor
    • 64 replies
    • July 7, 2023

    In that prompt you saw, Activation and the PIN are two unrelated things.

    You followed the correct procedure, which is to only check Clear Activation Lock if you need it (sounds like you didn’t) and to enter an arbitrary PIN. If the computer has been protected with a firmware passcode, you’d need the correct PIN to clear that before the computer would be wiped.

    A wipe command will erase both user data and macOS on macOS Big Sur and earlier Macs. It will perform an Erase All Content and Settings on macOS Monterey and later Macs (leaving the operating system in place and at the Setup Assistant) that support Erase All Content and Settings.


    We have initiated the Wipe command from Jamf to macOS and given a pin. However, pin is not accepting. Also EFI password showing as not set. So now its stuck at initial screen and unable to proceed further. Kindly advice.

    S
    Forum|alt.badge.img+5
    • sk25
    • Contributor
    • 64 replies
    • July 7, 2023

    Guys, We have initiated the Wipe command from Jamf to macOS and given a pin. However, pin is not accepting. Also EFI password showing as not set. So now its stuck at initial screen and unable to proceed further. Kindly advice.


    Terms & ConditionsCookie settingsAccessibility statement