Our FileVault 2 encryption policy is scoped to devices that are not
already encrypted, however it seems that the new MacBook Pros (and
possibly iMac Pros, but we don't have any to test) are being seen by
Jamf as already encrypted, even when FileVault...
Our JSS makes use of the Sites feature pretty heavily in order to allow
distributed college and departmental IT groups the ability to manage
their own fleets, while still taking advantage of centralized policies
and configurations managed by the Full...
During a computer lab upgrade from OS X Mavericks to macOS Sierra, for
which I went through the process of migrating managed preferences (MCX)
to Config Profiles, I discovered that mouse button behavior wasn't being
applied. Buttons were defined in a...
At the university, our list of departments is in routine flux --
departments get created, merged with other departments, renamed, etc.
When I initially set up our JSS years ago, I did so with a dump of 280
existing LDAP departments at the time. Today...
Just an FYI to anyone who has yet to update their JSS to version 9.23
and makes use of the Self-Enrollment web portal, mine was reset to its
default state after updating with the JSS Installer for Linux.
Self-Enrollment was disabled, the custom texts...
I am having this issue in my computer labs and just tried the iMazing
Profile Editor approach. While that application's editor for the
Firewall system domain does contain the the option for "Allow Incoming
Connections to macOS-Bundled Software," once...
Note that mysqlcheck can no longer repair database tables if you have
converted to the InnoDB storage engine (as required by the Jamf Pro
https://dev.mysql.com/doc/refman/8.0/en/mysqlcheck.html If mysqlcheck is
unable to repair a ta...
Thanks @brunerd, good to know about localization and the different
values returned by Sierra vs. High Sierra. I agree that having the Smart
Group to do a "like" match for just the "T2" substring makes sense.
Using "Filevault Key Validation" is a neat...
Alternately, you could leave Tomcat on 8443 but proxy it behind port 443
with some other web server, as this ancient post of mine illustrates.