Do you deal with compliance on macOS devices? Have you reviewed the
macOS Security Compliance project (mSCP) but have more questions? Have
you heard about Jamf Compliance Editor?Great news, there are Open Office
hours on Wednesday, Nov 2nd @ 2pm ET! ...
The National Institute of Standards and Technology released a new
special publication covering the macOS Security Compliance Project. The
new NIST SP 800-219 replaces the NIST SP 800-179.
I'm trying to build a script to show a notice to users once they login.
I'm running into 2 problems.1) The Login event doesn't seem to execute
reliably2) Login event seems to be in this in-between where the desktop
isn't up so you can't display a dia...
I've added an Extension Attribute, set it to Data Type String...Input
Type LDAP Mapping. We have our JamfPro connected to AD, all the mapped
attributes under LDAP Servers works, testing under LDAP Servers works.
And anyway the EA is always showing as...
What needs to be whitelisted? We’re on 10.7.1, so the jamf binary i know
is taken care of I believe by being on that. We have tons of scripts and
extension attributes that run that are bash, python, and some that call
osascript. Do we have to give fu...
If you look at the GitHub project. They are there. All of those would be
under rules -> auditThose 3 things are also not part of the CIS macOS
Benchmark for Monterey (1.1.0 or 2.0) or even Ventura. So that's why you
won't find them in the CIS PDF. Th...
What are you trying to do? How to set those settings? Do you have the
CIS Benchmark downloaded? It has a check and fix in the document, not to
mention the way to set those are in the macOS Security Compliance
The Jamf seal heal thing works great when the Jamf binary is broke. This
is for the MDM Profile.I don't think there is a way to GUI script
notification acknowledgement. There are ways to script mouse clicks at a
specific location -
I believe that's the bootstrap token in play happening since you are
using Prestage to create the admin user. It's an MDM created user. And
you're doing a GUI login, which triggers bootstrap to hand off a secure
token to the admin.