S.U.P.E.R.M.A.N.

CrawfordRobson
New Contributor III

This is great did some initial testing with S.U.P.E.R.M.A.N | Jamf Pro on a couple of Intel devices one running Big Sur and one with Monterey both are now fully patched thanks to Kevin M White and @HCSTechnology post on it.

https://github.com/Macjutsu/super 

has anyone else tried it out yet and what do you think of it?

15 REPLIES 15

bwoods
Valued Contributor

Awesome workflow, definitely going to test this out. We can't rely on solutions like nudge to force updates.

I was going to look at Nudge but S.U.P.E.R.M.A.N seems to work in the testing I’ve done so far.

ericbenfer
Contributor II

 But can you man super?

I would prefer super human! 

mm2270
Legendary Contributor II

Thanks for mentioning this. It looks pretty interesting and comprehensive. I'll be taking a look. Seems there are many custom solutions for the conundrum Apple has put us all in around software updates, but there hasn't been one really surefire way to get these updates installed that I've seen so far. If this actually does it, I'll be pretty psyched.

I like the fact that this uses IBM Notifier for notifications. In case anyone is looking for a really slick messaging tool and hasn't already looked at that, I encourage you to. It's very cool, has a gazillion features, and unlike some other tools that have grown stale, this one has active development on it and modern coding.

I’m hoping S.U.P.E.R.M.A.N is the right fit for our devices macOS updating is such a pain. I use an MDM script to check and apply updates but hopefully this will be the old way :)

CrawfordRobson
New Contributor III

The script I currently use is;

#!/bin/bash

/usr/libexec/mdmclient AvailableOSUpdates

jss="https://jamf/JSSResource"
username=''
password=''
system_udid=$(system_profiler SPHardwareDataType | awk '/Hardware UUID/ { print $3 }')
system_id=$(curl --silent -u "$username:$password" "$jss/computers/udid/$system_udid" | awk -F "id>" '{print $2;exit;}' | tr -d '</' )
curl -X POST -u "$username:$password" "$jss/computercommands/command/ScheduleOSUpdate/action/install/id/$system_id"

softwareupdate -iaR

nonos456
New Contributor II

Hello,

In the Jamf policy, what do you choose as a trigger?

Hi,

Use policy to copy the S.U.P.E.R.M.A.N files to the device and it as a Files & Processes command to setup  Users/Shared/super-main/super, which then will trigger it to run on the device.

Thank you for your reply.

I was talking about the trigger to activate the policy

CrawfordRobson
New Contributor III

Running this command as a Files and Processes will run S.U.P.E.R.M.A.N "/Library/Management/super/super" set the trigger it as Recurring Check-in.

Ok thanks

santy_nextg
New Contributor

Hi, that's really good to know. Well I have created a policy in Jamf with the SUPERMAN script and a config profile to set the soft, hard and focus deadlines. I have changed the parameters of Testmode=False along with other parameters such as skipsoftwareupdate=False. When I trigger the script, I do get the IBM notification however when I click on restart option from the notification it does not restart. Can you help me with a proper workflow of the script here. Thank you.

CrawfordRobson
New Contributor III

@santy_nextg I could have a look but you might be better to ask the creator of S.U.P.E.R.M.A.N on GitHub.

https://github.com/Macjutsu/super 

SW
New Contributor

Been looking into this but I cant seem to get it to install without forcing a restart on the device even if there is no update.

Also having this issue when applying the API credentials. 

This is with 

<key>ForceRestart</key>
<false/>

enforced by a config profile,

has anyone else had this issue?