Help

Reporting for those having MDM issues

bpavlov
Honored Contributor

Posted on ‎03-23-2016 02:46 PM

Here's a simple EA that would be good to have:

#!/bin/bash

#If profiles are on the computer it spits out:
#profiles are installed on this system
#otherwise:
#profiles are not installed on this system

profile_status="$(/usr/bin/profiles -H)"

echo "<result>$profile_status</result>"

You can then create a smart group that reports against this EA and a policy that uses the "Files and Process" payload to execute the command:
/usr/local/bin/jamf mdm; /usr/local/bin/jamf recon

This is good to have just in general anyways. But I'm sharing this specifically because I do not believe the MDM will just re-enable itself when Apple resolves its current problem. So it'll take a little effort on your end to determine which computers don't have profiles on them.

Also vote this up: https://jamfnation.jamfsoftware.com/featureRequest.html?id=4619

0 Kudos
1 REPLY 1

bpavlov
Honored Contributor

Posted on ‎03-23-2016 02:50 PM

You might also be able make use of this EA as well which counts profiles on the computer:

#!/bin/bash

profiles="$(profiles -C | wc -l)"
profile_count="$(echo $profiles - 1 | bc)"

if [ "$profile_count" -gt 0 ]; then
    echo "<result>$profile_count</result>"
fi

if [ "$profile_count" -le 0 ]; then
    echo "<result>0</result>"
fi

And there may be other EAs out there people are using to spit back actual config profile names which allow for more granularity in reporting.

0 Kudos