@healthcareaa If you're running a full macOS installer on an Apple Silicon Mac it's going to require user credentials whether or not you launch it via Self Service. Only on x86 Macs can the full macOS installer run without requiring user credentials.
@healthcareaa If you're running a full macOS installer on an Apple Silicon Mac it's going to require user credentials whether or not you launch it via Self Service. Only on x86 Macs can the full macOS installer run without requiring user credentials.
Yes, with our Self Service erase-install script it only requires the user credentials. If we run the MacOS Sonoma Installer application then it requires Admin. We are looking for Nudge to open the Self Service policy and allow users to run the update script.
Yes, with our Self Service erase-install script it only requires the user credentials. If we run the MacOS Sonoma Installer application then it requires Admin. We are looking for Nudge to open the Self Service policy and allow users to run the update script.
Are you providing admin credentials to erase-install via your Self Service policy? If not then there's no way it's capable of running a macOS installer on an Apple Silicon Mac without prompting the user for credentials. This is an Apple requirement for the macOS installer, and even updates, on Apple Silicon Macs.
This is a link to an overview of that workflow. I use Nudge to run a policy in self-service. That policy is Erase -install.
In the configuration profile for nudge --> Applications & Custom Settings --> External Applications --> actionButtonPath = Configured --> A path to a URL for opening alternative actions, like Jamf self-service items = your policy ID URL.
This can be found in your self-service policy that you created and want to link nudge.
An example of one is below.
jamfselfservice://content?entity=policy&id042=&action=execute
This is a link to an overview of that workflow. I use Nudge to run a policy in self-service. That policy is Erase -install.
In the configuration profile for nudge --> Applications & Custom Settings --> External Applications --> actionButtonPath = Configured --> A path to a URL for opening alternative actions, like Jamf self-service items = your policy ID URL.
This can be found in your self-service policy that you created and want to link nudge.
An example of one is below.
jamfselfservice://content?entity=policy&id042=&action=execute
Also, the info in the document below gives context to why admin and/or user credentials are required for updates on current macOS systems running on Apple chips.
#########
Use secure token, bootstrap token, and volume ownership in deployments
https://support.apple.com/guide/deployment/use-secure-and-bootstrap-tokens-dep24dbdcf9e/web