Skip to main content
Question

Patch all computers

C
Forum|alt.badge.img+3
  • CSD
  • New Contributor
  • 7 replies

Our Security team is complaining that we have many devices not patched with Latest MacOS updates and are vulnerable for exploit, this report is generated from Windows Defender antivirus console, is there a way we can create some policy or smart computer group and patch with force to all computers through JAMF Pro, any quick suggestion 

    7 replies

    mickl089
    Forum|alt.badge.img+11
    • mickl089
    • Valued Contributor
    • 147 replies
    • April 8, 2022

    create a smart group with "operating system version" is not 12.3.1 and save. click on "view", you´ll get the list with all macOS systems not with 12.3.1 and then you have a button "action" - i made some screenshots for you.

      

    Paulraj
    Forum|alt.badge.img+3
    • Paulraj
    • New Contributor
    • 4 replies
    • April 8, 2022

    I have done. But M1 Mac Jamf pro configuration and Policies are not applying please help me

    C
    Forum|alt.badge.img+3
    • CSD
    • Author
    • New Contributor
    • 7 replies
    • April 8, 2022

    Thanks @mickl089 , I had done this but there were 236 computers when viewed and even after an hour/two same numbers.

    Any idea how fast is this push, I mean does this use JAMF sync or Apple DC's 

    T
    Forum|alt.badge.img+19
    • Tribruin
    • Honored Contributor
    • 582 replies
    • April 8, 2022

    That method uses an MDM command to send the update. There are a lot of variables to this process: is the computer online? Did the APNS notification go through? How big is the update? Has the computer submitted an updated inventory since getting updated?

    I would give it more than an hour or two, probably more like a day or so for the update to push and an updated inventory submitted to Jamf (assuming you have a daily inventory policy.) 

    I wou

    mickl089
    Forum|alt.badge.img+11
    • mickl089
    • Valued Contributor
    • 147 replies
    • April 8, 2022
    Tribruin wrote:

    That method uses an MDM command to send the update. There are a lot of variables to this process: is the computer online? Did the APNS notification go through? How big is the update? Has the computer submitted an updated inventory since getting updated?

    I would give it more than an hour or two, probably more like a day or so for the update to push and an updated inventory submitted to Jamf (assuming you have a daily inventory policy.) 

    I wou


    I would suggest to wait at least 1-2 days actually. The update takes time and until the device sends the new info to Jamf, some time passes as well.

    A
    Forum|alt.badge.img+7
    • awginger
    • Contributor
    • 44 replies
    • April 8, 2022
    Paulraj wrote:

    I have done. But M1 Mac Jamf pro configuration and Policies are not applying please help me


    I believe this requires Jamf to hold the bootstrap token for the M1 Macs

    Paulraj
    1 person likes this
    • Paulraj
      Paulraj
    C
    Forum|alt.badge.img+3
    • CSD
    • Author
    • New Contributor
    • 7 replies
    • April 18, 2022

    The wait is now almost ~ 3 weeks earlier at start this 236 now today still 129 computers, if there is need for organisation to push some critical updates then this is not the method I think.

    Any other option like new policy which can use apple DC's instead of JAMF which are immediate?

    Reply


    Most helpful members this week

    Terms & ConditionsCookie settingsAccessibility statement

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

     
    Cookie settings