If you’ve ever been unfortunate enough to stumble into the #london channel on the MacAdmins Slack, you may see something like this in the early Greenwich Mean Time hours: For most uninitiated non-Brits, you’ll be forgiven for thinking it’s some kind of secret code or cult ritual (actually, maybe it...
Ahh SecureToken; the gift that keeps on giving! macOS 10.13.4 introduced this new, undocumented dialog that would appear on first login under the following conditions: If the filesystem is APFS Whether or not FileVault is enabled If the Mac is bound to a directory service (e.g. Active Directory or LDAP)...
Today, I presented at the Jamf Nation Roadshow in London. My talk focused on the trials and tribulations of integrating an installation based, DEP workflow into a lab environment leveraging DEPNotify and some exiting new/in-development user input functionality. Bits and pieces from my presentation are all in this lovely GitHub...
A small company, dataJAR, run by a couple of my friends, Ben and James, has been facing legal action by DTAG (owners of T-Mobile) because they think they own the perception of a particular combination of wavelengths of light. They also think they can tell others not to use it....
I’ve been working on a presentation, part of which will involve stepping through code. I wanted to share a technique I refined a little that was inspired by James Smith (@smithjw on the Slack) of CultureAmp during his JNUC 2017 talk. It’s perfect when you want to scroll through a...
I thought I was done with SCEP (see parts 1, 2 and 3) but whilst undertaking an exercise looking into using SCEP on some Linux servers (and specifically looking at how it can provide reporting data to SCOM via a Management Pack), I inadvertently came across a little-documented command line argument...
It’s time for another one of these “how do you suppress all the stuff you don’t want students to see and get the thing working the way you want the first time it runs” posts. In the red corner, it’s me, Neil. And in the blue corner, it’s Unity -...
Another day, another vulnerability! This time, it’s memcache’s turn! Read all about it here. So if you’re hosting your own Jamf Pro Server in a clustered environment, you’ve probably got memcached running. You’ll want to disable UDP access to it in order to mitigate against this vulnerability. Jamf Pro doesn’t...
With version 8.x of Skype and since the debut of Teams, Microsoft have been using the Squirrel framework to manage automatic updates of these applications. This is undesirable in lab/managed environments where users typically aren’t local administrators, as they’re often presented with a dialog like this, which they can’t do...
This weekend, I was invited to join the lovely folks on the MacAdmins Podcast to share my pontifications on the subject of labs and their future. The Mac platform is undergoing the most amount of change I’ve ever seen in my career. The ramifications for provisioning Macs in this specific and rather...
