macOS Mojave & Screen Sharing changes

Standard

A week ago today, I presented at MacSysAdmin. Within my talk I advised of a change with the kickstart command & macOS Mojave.

Well, things have changed some. See below for more details.

Last Week

Within my MacSysAdmin talk, I ran through the Apple KB “Prepare your institution for iOS 12 or macOS Mojave”

One of the points within, contained the below (& still does at the time of writing):

For increased security, using the kickstart command to enable remote management on a Mac will only allow you to observe it when sharing its screen. If you wish to control the Mac while sharing its screen, enable remote management in System Preferences.

This Week

A new KB has surfaced today: “Use the kickstart command-line utility on macOS Mojave 10.14”.

The first section states pretty much what is quoted above, but the latter:

Use Screen Sharing to control a Mac that's enrolled in MDM

If your Mac is enrolled in Mobile Device Management (MDM) via User Approved MDM enrollment or via Device Enrollment, you can allow theMac to be controlled with Screen Sharing.

1. Use kickstart to enable Remote Management.
2. Use the Privacy Preferences Policy Control payload. Use the PostEvent key and set the the Identifier string to com.apple.screensharing.agent. Set the IdentifierType string to bundleID.

Next Week

I dare not speculate..

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.