Looking to see if there's a way to create a Smart Group for Macbooks already enrolled in the Jamf database. These Macbooks need to be unenrolled from Jamf on-prem server and reenrolled to the Jamf cloud. My hope is that when we move these Macbooks over without Jamf cloud seeing them as fresh out-of-the-box Macbooks and push out the zero-touch enrollment for these devices which adds all our company apps to the process. Adding 10-20 minutes of downloads and installs unnecessarily.
Can there be a Smart Group that can differentiate these devices from Macbooks that never enrolled?
You woudl have to be something on your existing devices that you could write an extension attribute against. For example, we have a BOM fail that we write at the end of enrollment that indicates enrollment is complete, That way, if we have to re-enroll a computer, the main enrollment script does not run.
You could also do a Smart Group that looks for an application to be installed, maybe a security product that your computers already have installed?
I agree with this approach. I might make it even easier: create a policy that drops some dummy file in like /Users/Shared/ or some other more hidden path like /private/var/tmp/.enrolled.mac & set the permissions to 1644 or whatever so that the automations that clean up don't remove that file. You can then make an EA that detects the presence of that file.