We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.
We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.
Real talk, real tools and real-time support from people who get it.
Get answers from fellow admins
Find your way around
Share your thoughts
Submit your idea
Conoce las equipaciones que pudes encontrar de futbol
At some point in your career as an Apple Admin, you’ve (most likely) inherited a Jamf instance and said either to yourself or out loud, “Huh, I wonder why they did that. I certainly wouldn’t do it that way” or “That’s not the best practice I was taught”. Caveat: There’s no such thing as best practice. The better concept is defining the best practice for your environment . This is where you get to step in and be the hero. It’s your job to take the environment, back it up first. Make sure you backup your instance and sync it to your free Jamf sandbox (If you don’t have one, talk to your rep). Once you’ve backed up and sync’d to the sandbox, I hope you’re noticing the theme here…you can get started with the H.E.R.O. process. Something not mentioned is the process of writing documentation. DOCUMENT, DOCUMENT, DOCUMENT. Write down everything from the current state, proposed changes, changes you made (with dates), how configs work, workflow processes, and everything else. The 1st thing after
Hi, We'd like to create an app/script that when run prompts the user to enter an asset tag and then automatically renames the device. I.e. asset tag 12345 renames the device to AG-MAC-12345 so that "AG-MAC-" is already predefined? Is this something that can be done with DEPNotify? TIA.
I have been getting requests to provide all managed phones with a contact list. The config page allows me to access a CARDDAV server. I would like some suggestions on how to best set one up, perhaps a cloud solution. Thanks
Our department is rolling out 500 new iPhones and we’ve been asked to provide an “address book” to each phone that will display the caller’s name on the phone receiving the call. These assumes that both the caller and the callee will be using our managed, and supervised, phones. Most of the en users are using Office 365. We also have the option of creating our own address book data entries and hosting them “someplace”. I can see that Casper can push out settings for a CardDAV server, but am not sure if that will do what we need or if there are better approaches. Any ideas appreciated. Thanks. Seth
Hello, So I’m curious about whether we need to have either an LDAP server setup or issue managed AppleIDs in order to utilize user-initiated enrollment. I made a user and user group in JAMF Pro thinking it would allow for enrolling a device and that I could give my end users a single set of credentials to then get the MDM profile and configuration to everyone. However during the enrollment, I get stuck on a page which mentions “Assign to User” with a blue magnifying glass and Enroll button which don’t seem to react, no matter what I enter. Perhaps this is not possible, but it’s what I’m hoping to find out here. Can I use a single JAMF Pro user to log in all my end users for user-initiated device enrollment? Or must we set up an LDAP server/get managed IDs? Context: We are doing a big push for new devices soon, and currently we have no self-enrollment, meaning our IT department would have to manually enroll every phone. We are looking for an alternative solution to avoid that. We do not
Was upgrading my on prem dev Jamf pro instanace today and was looking into Important notices for the last few releases. I noticed this: 11.14.0 Apple announced upcoming changes to the Apple Push Notification service (APNs) Certificate Authority (CA). Organizations using APNs will be required to update their application's trust store to include the new server certificate before 24 February 2025 to prevent communication disruption. For cloud-hosted environments, the root certificate is already trusted and validated. For on-premise environments, you may need to download and install the new SHA-2 Root USERTrust RSA Certification Authority certificate to your server's certificate trust store if it is not already trusted on your hosting infrastructure. For more information, see How to Download & Install Sectigo Intermediate Certificates - RSA documentation from Sectigo per Apple's announcement. Apple has a test server available to allow organizations to send push certificates to verify the c
Hi all, I'm fairly new to Jamf and recently completed the Jamf 100 course. I want to start testing to learn more, and I have a loaner Mac to use but I want to make sure I don’t accidentally affect anything in production. What’s the best way to safely test? Should I ask for a separate test instance from Jamf, or use VMs? Any tips or lessons from those who’ve been in a similar spot would be super helpful.
I have been using docutil for many years at this point (along with BuildADock). It works great. I am building a new lab and it's a weird setup. Not every computer will have the same versions of software installed (mainly Adobe) for some stupid licensing issues. I'm wondering if there is a way to use wildcards in the docutil script? For example, I have three sets of computers that have either Adobe CC 2023, 2024, or 2025. The software installs are the same, but the version year is different. Rather than make different docks for all the variations in the lab, is there a way to use a wildcard so it puts whichever version of Photoshop onto the dock that is installed onto the computer?
Hi All, Does anybody know if InTune Cloud PKI integration with JAMF works instead of the legacy setting up NDES on prem?
Hello Jamf Community, I'm currently experiencing an issue with Jamf Remote Assist — I haven't been able to successfully connect to any Mac devices for the past two weeks. Each attempt either times out or fails with no clear error message. I've tried the following so far: Confirmed that Remote Assist is enabled in Settings. Restarted Jamf Daemon and the local Jamf app on the affected Mac. Verified network/firewall configurations (no changes recently). Tested on both Intel and Apple Silicon Macs with the same result. Has anyone else encountered similar issues recently?Is there any known workaround or reliable fix that could help restore functionality? Any suggestions or guidance would be much appreciated. Thanks in advance!
🚀 Job Opening: Data Engineer (Palantir is Mandatory)📍 Location: NJ / NYC / AtlantaW2 Candidates🕒 Experience Level: 7–10 YearsWe are looking for an experienced Data Engineer to join our team and lead the design and development of scalable, cloud-based data solutions.👉 Please share your updated resume along with your LinkedIn profile URL.The ideal candidate brings strong expertise in Palantir Foundry, a solid background in AWS, ETL pipelines, and familiarity with AI/ML integration in data workflows.🔧 Key Responsibilities:Design and implement scalable and resilient data pipelines and ETL workflows.Leverage Palantir Foundry for building data integration and transformation workflows.Integrate machine learning models into end-to-end data solutions.Work with AWS services like S3, Glue, Athena, Lambda, and Redshift.Collaborate across teams to optimize microservices-based data architectures.Implement and maintain best practices in DevOps, CI/CD, and containerized deployments using Docker a
Hi everyone, I'm currently facing an issue with AnyDesk deployed via Jamf across our Mac fleet. Initially, I set up an installation policy and a configuration profile for all Macs and users, and everything was working smoothly. However, I've noticed that whenever I add a new PC to AnyDesk and attempt to connect remotely to a Mac, I receive an "Access Denied" message. I understand this isn't the official AnyDesk forum, but I’m hoping someone here might have encountered a similar situation. I’m considering removing and redeploying the configuration profile to see if that resolves the issue—but I’m not entirely sure how to go about it. Would changing the scope to "specific computers" and "specific users" be enough? Could that potentially cause other problems? If anyone has suggestions or has dealt with something similar, I’d really appreciate your input. Thanks in advance for your help!
Anyone having a keychain issue and the onboarding window not opening automatically upon first login (newly imaged machine that hasn’t been logged into before)? Tried 3 times and get the same result. Self Service+ Version: 2.4.0Jamf Connect Version: 3.4.1Jamf Connect Preference Domain Version: 3.2.0macOS Version: 15.5 (24F74)
We need to add a new allowance to our VPN profile that is required for the newest version of our VPN client . I am trying to figure out what exactly happens on macOS when a profile gets updated. Does it remove all the settings the profile sets and reapply, or does it only add/remove changes. I would like it so people do not get kicked off VPN when the profile is updated (The addition to the profile only deals with login items.
Submit and vote on product ideas.
1 Question Answered
216 Questions Answered
17 Questions Answered
15 Questions Answered
21 likes
13 likes
11 likes
10 likes
Learn about our customer advocacy program that celebrates our most passionate customers.
Join the community to receive product updates, and share feedback.
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.
