- Jamf Nation Community
- Products
- Jamf Pro
- Setting a specific user for remote management
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-10-2018 03:55 PM
I want to create a policy that will set a specific user that can access Remote Management on our managed computers.
Used 6 different scripts I found here and they all seem to set Remote Login with Only these users (and there is no one in the user list).
Here is the latest from Apple's latest ARD (3.9)
sudo /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -activate -configure -access -on -users specificuser -privs -all -restart -agent -menu
If I run this on the laptop in Terminal it does select Remote Management, but if I run this as a script, it will select Remote Login. The first time I ran it in Terminal low and behold the specificuser showed up. The next time I tested it in command line the Only Allow These Users had no name in it.
That is what I am experiencing with ALL the scripts running as a policy script. None populate the specificuser and all activate only remote login. I am new to using scripts in JSS so if I miss something obvious just slap me.
Peace,
Tom
Solved! Go to Solution.
Labels:
- Labels:
-
Jamf Pro
-
Usage Management
1 ACCEPTED SOLUTION
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-13-2018 12:18 PM
This is what I've got:
privs="-DeleteFiles -ControlObserve -TextMessages -OpenQuitApps -GenerateReports -RestartShutDown -SendFiles -ChangeSettings"
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -access -on -privs $privs -users $targetUsername
Reply
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-13-2018 09:58 AM
Hi
I have done this recently as long as you specify the user in the script it will work
I usually create the user then enable th user for ARD in. The same script
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-13-2018 10:01 AM
The user is already on the device and in the script I think I specify the user (i called specifiuser). Am I doing something wrong?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-13-2018 12:18 PM
This is what I've got:
privs="-DeleteFiles -ControlObserve -TextMessages -OpenQuitApps -GenerateReports -RestartShutDown -SendFiles -ChangeSettings"
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -access -on -privs $privs -users $targetUsername
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-14-2018 09:54 AM
I modified yours slightly (added the definition for the use name), but it got me the most successes.
Again a little strange behavior, at first the name did not show up yet all the settings did. Then as I was rebooting and checking to see if anything was causing issues or blocking the script, the name showed up. So, I will give you the Solved. Thank you for your help.
Peace,
Tom
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-03-2019 11:59 AM
@salmon Can you post the script here, I'm trying to do the same but I'm not getting any success. thanks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-03-2019 12:23 PM
Yikes....I will look at my scripts and will post. That was a year ago! My mind is mush.
