Posted on 05-20-2021 10:53 AM
Reading the apple support documentation (https://support.apple.com/en-us/HT211860) It seems in order to support Kernel extensions or software updates on M1 macs you need use ADE or change the security policy in Recovery to allow this. We currently do not have ADE setup. So it looks like we need to change this recovery setting. There is a setting that you can add to the MDM profile, PromptUserToAllowBootstrapTokenForAuthentication , that will prompt the user to do this. I can not find where in Jamf I would add this setting. Anyone know?
Posted on 06-09-2021 08:30 AM
Hi,
Did you ever manage to figure this out?
Posted on 06-09-2021 09:44 AM
We have fully automated our bootstrap token workflow using Munki and this is the guide we used. this workflow works on Big Sur with Apple Silicone Macs.
https://osxbytes.wordpress.com/category/bootstraptoken/