Help

Jamf Connect Escalation Via Shortcut

_aDiedericks
Contributor

4 weeks ago - last edited 4 weeks ago

Hi there,

We make use of AdminByRequest to escalate local users in our environment. Unfortunately ABR doesn't work 100% for apps like Rancher/Docker. Since we have Jamf Connect, would it be possible to create a self service script that will escalate users to admin, launch docker then de-escalate back to standard user and would it be possible to make this a desktop shortcut pointing to the self service icon?

0 Kudos
2 REPLIES 2

EranEOS
New Contributor II

3 weeks ago

Hey @_aDiedericks 

i would whitelist Rancher/Docker in AbR, making user admin from the self-service conflict the idea of having AbR and you losing then the Audit as well. but for your question, i think what you mean is the MakeMeAdmin script https://github.com/pseymour/MakeMeAdmin

 

0 Kudos

_aDiedericks
Contributor
In response to EranEOS

3 weeks ago

You cannot pre-approve applications that do not immediately prompt for privilege escalation at launch. And the format I'm referring regarding the privilege escalation within a script on launch for Rancher is to escalate only on launch and then return the user to standard. Rancher only needs admin permissions for some commands run on startup.

0 Kudos