We have a 1:1 laptop program and have been wondering about 2 things: How
to force users to install apps ONLY to their personal applications
directory How to force all new wifi credentials in the keychain to be
associated with the user's login keychai...
On Self Service 10.18.0. Mac OS Mojave 10.14.6.Sometimes, if a user logs
into self service and yet does not check the "Remember Me" checkbox, It
is possible that those credentials will get saved to the login keychain
anyways. So, beware!
Pushing a local account through a policy and specifying the account
picture location to something native like "/Library/User
Pictures/Animals/Owl.tif" doesn't work and it instead uses a random
image from User Pictures/
This is also an issue I have and it does indeed seem related to the
secure token. Some devices had additional admin users scoped to them
which received the token instead of the primary admin user. But I don't
understand why all those users didn't get...
Hello,I'm trying this on big sur 11.4 and it's not going
great.trustAsRoot seems to now be trustRoottrustAsRoot was giving me
SecTrustSettingsSetTrustSettings: One or mote parameters passed to a
function were not valid. Now, logged in as a standard u...
Perhaps that's a question related to scoping. It sounds like you're
trying to limit the config profile that disables the Preferences panel
to only certain users.If jamf had the data on those users, like
department, and I could make smart groups based...
So we're looking at the jamf parent app now, and there is an app lock
feature. If we app lock to safari, it goes into single app mode and
works as expected. If we restart the device while it is in this state,
then it seems like iboss connector fails ...
In short it's something like dseditgroup -o edit -d $user -t user
adminwhere $user is the target username To demote all users found which
are not the users we care about we use #!/bin/sh adminUsers=$(dscl .
-read Groups/admin GroupMembership | cut -c...
