Does anyone have any experience with pushing macOS security patches via JAMF? With this week's big list of patches for macOS, it impressing a need for greater control of patches for macOS. I've been seeing some stuff about SUS, but I don't want to invest time and resources into something that is being deprecated.
Any news on this one from your side please?
I tried a few ways using patch management, however none worked.
Is there anyone in the Jamfworld with some advise please? instructions or "How to's" please Jamf? If anyone has news on how to do this successfully please let us know?
I had a ticket in around this the other week.
Here's what Jamf recommonded to me:
In regards to the end goal, would we be able to advise to use the policy to run a script for the devices to communicate to Apple directly to download and install necessary updates. As usually when the update is requested from the machine it downloads the necessary version for the the model. this would be the reason for the messages. https://www.macrumors.com/how-to/update-macos-terminal-command/ Have attached an article that may assist you in creating this simple workflow.
This is the command I use in ARD to have a computer check for updates, install in the background, then restart when done. The restart portion only seems to work on 10.13 and 10.14. I would imagine that this could be scripted inside JAMF as a policy.
sudo softwareupdate -ia --verbose --restart