Blocking macOS Catalina with Jamf Pro

Standard

Tonight, Apple released macOS Catalina.

See below on how to block this upgrade with Jamf Pro.

Continue reading

More DEP Sync Errors

Standard

A week after the recent updated Terms & Conditions, we saw DEP sync errors reappear in our datajar.mobi deployments.

Below is some detail on what has caused these new sync errors & how to resolve.

Continue reading

Jamf Pro critical security vulnerability – PI-007507

Standard

Last night, Jamf released Jamf Pro 10.13.1 & 10.15.1. These were released due to PI-007507. 

This PI is noted as a “critical security vulnerability” which “does not pose a risk to private data or managed devices. It does have the potential to impact the integrity and availability of your web server” but “impacts versions of Jamf Pro 9.4 and later”

As Jamf Pro 10.15.0 was only released 19 days ago, 10.15.1 is the 10.15.0 release with PI-007507 having been patched.

However, for organisations that are still on Jamf Pro 10.13.0 or below due to the move to Java 11 needed for Jamf Pro 10.14.0+, Jamf have released 10.13.1, which is also patched.

Please read the following Jamf Nation post for more information, & if you’re not on a recent Jamf Pro release please also see this post before any upgrades are attempted.

Java 8 Update 181 LDAP Changes & Jamf Pro Connectivity

Standard

Recently we updated all our datajar.mobi instances to Jamf 10.7.1, for Mojave support.

All went well. Except for a couple of instances where their Jamf Infrastructure Manager was being used as an LDAP Proxy.

Well, turns out this was a change to Java 8 Update 181, which we updated to at the same time. And, that this is an issue not just with Jamf Infrastructure Manager, but could be with LDAPS in general.

Below details these changes, & overcoming this issue.

Continue reading

Manually Converting Jamf Pro Tables From MyISAM to InnoDB

Standard

With Jamf Pro 10.6.0, Jamf changed the default storage engine from MyISAM to InnoDB.

Jamf also released a tool to convert the tables with the release of 10.7.0.

However, as the Jamf supplied tools are not available currently available as a standalone download for those of us that do manual installations & as we host our datajar.mobi instances on Kubernetes… we went the manual route.

Below is how we performed these conversions.

Continue reading

Securely Managing Identities Across Mac & G Suite with JumpCloud

Standard

On day 3 of JNUC 2017, I gave my third & final talk of the conference: “Securely Managing Identities Across Mac and G Suite with JumpCloud”

This talk should show just how easy it is to get started with JumpCloud. Along with an overview of how at dataJAR we’re leveraging JumpCloud to integrate G Suite within our Jamf|MSP platform (datajar.mobi), as well as bridging authentication across various other cloud systems & bring 2FA to our Macs.

Continue reading