Setup Your Mac is a fantastic project that gives end-users a great dialog to let them know what is going on with their Mac as organizational apps are being installed. This dialog added onto Automated Device Enrollment is an awesome replacement to a legacy DEPNotify onboarding workflow.
Setup Your Mac version 1.10.0 was released earlier this week with many new features and improvements, the end-user experience continues to get better with each iteration. A special thanks to @dan-snelson for this project and the level of involvement from the Mac Admins community to continually improve this project and its features.
New features include, but not limited to:
– Dynamic Download Estimates
– Webhook integrations for Teams and Slack
– Added hardware specific details
For a full list of changes, refer to: https://github.com/dan-snelson/Setup-Your-Mac/blob/development/CHANGELOG.md
The latest SYM script can be found at: https://github.com/dan-snelson/Setup-Your-Mac
The postinstall script has been updated so there is no need to package swiftDialog with the prestage package. The postinstall script will now rely on SYM to download and install swiftDialog during execution, this will make the enrollment process a tad faster. The script will also create a Launch Daemon and two scripts on the computer.
Important note: You will need to create an additional policy in Jamf Pro to run the clean up script that is created on the Mac. The cleanup script is located in: ${tempUtilitiesPath}/${organizationIdentifier}.sym-prestarter-uninstaller.zsh
In this guide, we will walk through what needs to be done to bring the Setup Your Mac workflow into your Automated Device Enrollments with Jamf Pro.
Requirements:
- A certificate used for signing your PreStage pkg. If you’d like to learn more on how this is done, you can use the following link: https://techitout.xyz/2023/03/08/guide-creating-a-signed-certificate/
- The Payload Free Package Creator: https://github.com/rtrouton/Payload-Free-Package-Creator/releases
- The postinstall script for your pkg: https://raw.githubusercontent.com/robjschroeder/SetupYourMac/main/PreStage-Setup-Your-Mac-via-Dialog.zsh
- The Setup Your Mac script configured with your policy arrays in Jamf Pro
Getting Started:
- Download the Payload Free Package Creator to your Mac computer and install.
- Download the latest PreStage-Setup-Your-Mac-via-Dialog.zsh script to your computer. You can use the following command to download the latest script to your downloads folder.
#!/bin/bash # Download the latest `PreStage-Setup-Your-Mac-via-Dialog.zsh script curl -o ~/Downloads/PreStage-Setup-Your-Mac-via-Dialog.zsh https://raw.githubusercontent.com/robjschroeder/SetupYourMac/main/PreStage-Setup-Your-Mac-via-Dialog.zsh
- Feel free to make any modifications on this script to fit your organizational needs. As is, the script is configured to call a Jamf Pro policy with a custom trigger of ‘
symStart' - When opening the Payload Free Creator app, you will see prompt letting you that you will need to select the script you would like to package, select the PreStage-Setup-Your-Mac-via-Dialog.zsh script.
- Enter a name for your package and click OK
- Enter a package identifier and click OK
- Finally, enter a version number for your package, and click OK. You will be asked to enter your username and password before the package is created.
- The package will be created at /private/tmp/nameOfPackage
- Next we will need to sign our newly created package. Open the Terminal app and run the following commands:
# Create temp folder sudo mkdir -pv /private/tmp/NameOfPackage/out # Build Package sudo productbuild --package /private/tmp/NameOfPackage/NameOfPackage.pkg /private/tmp/NameOfPackage/out/NameOfPackage.pkg # Sign Package productsign --sign "CN Name Of Signing Certificate" /private/tmp/NameOfPackage/out/NameOfPackage.pkg ~/Desktop/NameOfPackage.pkg # Verify Signature On Package pkgutil --check-signature ~/Desktop/NameOfPackage.pkg
- The signed version of the package will be located on your desktop. This package can now be uploaded to Jamf Pro and added to your PreStage for deployment.
For the configuration of your Jamf Pro policy and Setup Your Mac script, I would recommend checking out Dan’s blog post: https://snelson.us/sym
If you wanted to see the original post on this subject, free free to go to: https://techitout.xyz/2023/01/16/setup-your-mac-and-automated-device-enrollment/
Thanks for checking it out!
5 responses to “Automated Device Enrollment and Setup Your Mac version 1.10.0”
[…] Thanks to Robert Schroeder for the excellent write-up on using Setup Your Mac with Jamf Pro PreStage Enrollments. […]
for those who may be CLI-adverse, the Hancock app is extremely useful for signing packages from the GUI
[…] Thanks to Robert Schroeder for the excellent write-up on using Setup Your Mac with Jamf Pro PreStage Enrollments. […]
[…] While we prompt users to initiate Setup Your Mac via Self Service, you can have Setup Your Mac execute automatically immediately after enrollment via a PreStage Enrollment package. […]
[…] While we prompt users to initiate Setup Your Mac via Self Service, you can have Setup Your Mac execute automatically immediately after enrollment via a PreStage Enrollment package. […]