Recently I've found that there are a significant number of macs in my organization that have an outdated management account. This has caused some serious issues when we change the admin account password, as that account does not always exist. I was wondering if anyone has a good workflow to push a re-enroll to those macs, sot that all of our computers are using the same management account?
Not sure if it's the best way, but I simply made a smart group of machines that didn't have the correct account and pushed and ran the quickadd.pkg to those devices. The only gotcha with this is that we have policy flush for re-enrollment turned on so there are a number of policies that re-run on first check in, but I just went through these and modified the behaviour of any I thought might be an issue.