Migrating To Modern Mac Management Methods

Transcript

1. None

2. © JAMF Software, LLC Brian Martin Apple Systems Administrator Lafayette

   School Corporation Link to slides/presentation materials https://bit.ly/2Nb71Lb @blackholemac on JamfNation 7,000+ iOS devices/500 Macs under management

3. © JAMF Software, LLC Migrating to Modern Mac Management Presentation

   agenda: The “JNUC effect” vs. our fleet Inspiring change Surmounting roadblocks to change Implementing a better environment

4. © JAMF Software, LLC The “JNUC effect” and JNUC 2017

   • Been to each JNUC since 2012 • Demise of imaging • Instilling Self Service mindset • 8-10 hour drive to Indiana to think Great ideas - Could LSC execute any of them?

5. © JAMF Software, LLC Our Mac fleet by OS version

   - 2017 500 Macs, 5 OS versions ZERO running current OS 100 to refresh within 2 years. 10.6.x 1% 10.8.x 4% 10.9.x 20% 10.10.x 20% 10.11.x 55%

6. © JAMF Software, LLC Can children’s books inspire change? “The

   Berenstain Bears Get Stage Fright” *All applicable credit to Stan and Jan Berenstain

7. © JAMF Software, LLC Our first technical roadblock to change

   Our Mac Jamf Pro instance - post-JNUC 2017 Failed user migration of 2014

8. © JAMF Software, LLC Host Macs on hardware, VM, or…

   Failed user migration of 2014 became a blessing ZERO NEW RESOURCE/ MATERIAL COSTS!

9. © JAMF Software, LLC Other roadblocks Adobe CS6 used on

   half the Mac fleet AELP licensing of Apple apps Inertia/comfort zones

10. © JAMF Software, LLC Screenshot or photo dimensions 1080 px

    525 px

11. © JAMF Software, LLC Transition from imaging Provisioning DEP enrollment

    without LDAP help doesn’t collect much

12. © JAMF Software, LLC How to get good location data

    Techs respond to five simple AppleScript prompts during Mac provisioning. asset tag building (pull down list) department (pull down list) Admin, staff or student (buttons) room number

13. © JAMF Software, LLC

14. © JAMF Software, LLC Policies End user control = heavy

    Self Service 128 GB MacBooks can’t handle “install everything” workflow. 70-80% of all our policies are Self Service

15. © JAMF Software, LLC Smart (and Static) groups More location

    data collected = More flexible smart groups Only 4 static groups used now for specialty software scoping

16. © JAMF Software, LLC Policy examples (based on locations) Classroom

    Printers Managed docks for labs Machines with specialty hardware or software “Follow-Me” printing for all staff district-wide

17. © JAMF Software, LLC Profiles that contribute to user experience

    Mount servers/Web links Set proxies Keep software updated Manage kernel extensions Set apps to behave Establish the environment

18. © JAMF Software, LLC Mac App Store for deployment Update

    Jamf Pro (beyond 10.7) for device-based App Store assignments at the login window.

19. © JAMF Software, LLC FileVault Tested FileVault encryption with hybrid

    personal/institutional recovery keys. Planned to deploy on staff MacBooks. Tested retrieval of keys in crisis mode.

20. © JAMF Software, LLC Patching plans Multiple tools used: Patch

    policies AutoPkg msupdate traditional policies Mac App Store/SWU

21. © JAMF Software, LLC Great videos regarding patching strategies Patch

    for Beginners-JNUC 2017 https://www.youtube.com/watch?v=NLciFLPLUO0 Jamf Patch Management https://www.jamf.com/resources/videos/ jamf-patch-management/ Office4Mac Training-msupdate https://www.office4mac.com/courses/msupdate

22. © JAMF Software, LLC Implementing the new environment Re-provisioned test

    Macs 50-100 times Provisioned lab Macs properly in 4 days Scheduled migration swaps for staff

23. © JAMF Software, LLC Last minute gotchas macOS 10.13.4 -

    Kernel extension list profiles require User-approved MDM SecureToken warnings Mac App Store apps require a logged in user prior to upgrading to Jamf Pro 10.7

24. © JAMF Software, LLC Enhancements completed after rollout Refined provisioning

    scripts Mac App Store apps now install by device. Converted DB to InnoDB Collaborated on AD fields

25. © JAMF Software, LLC Future enhancement plans/wishes End-user OS upgrades

    of macOS for the first time Improve patching Better methods to wipe and re-provision macOS in labs.

26. © JAMF Software, LLC Questions?

27. © JAMF Software, LL THANK YOU!