A week ago today, I presented at MacSysAdmin. Within my talk I advised of a change with the kickstart command & macOS Mojave.
Well, things have changed some. See below for more details.
Within my MacSysAdmin talk, I ran through the Apple KB “Prepare your institution for iOS 12 or macOS Mojave”
One of the points within, contained the below (& still does at the time of writing):
For increased security, using the kickstart command to enable remote management on a Mac will only allow you to observe it when sharing its screen. If you wish to control the Mac while sharing its screen, enable remote management in System Preferences.
A new KB has surfaced today: “Use the kickstart command-line utility on macOS Mojave 10.14″.
The first section states pretty much what is quoted above, but the latter:
Use Screen Sharing to control a Mac that's enrolled in MDM If your Mac is enrolled in Mobile Device Management (MDM) via User Approved MDM enrollment or via Device Enrollment, you can allow theMac to be controlled with Screen Sharing. 1. Use kickstart to enable Remote Management. 2. Use the Privacy Preferences Policy Control payload. Use the PostEvent key and set the the Identifier string to
com.apple.screensharing.agent. Set the IdentifierType string to
I dare not speculate..