Ensure Compatibility for AD-bound Macs

Owned by Rick Portuguez (Deactivated)
Last updated: Nov 13, 2023 by A.J. Newman
2 min read

This article applies to computers in Jamf that are bound to the UConn Active Directory (AD).

This process is intended only for university IT support technicians who manage Mac computers through Jamf.

Overview

For an AD-bound Mac to receive and apply software updates, the following two criteria must be met:

  1. For user-initiated macOS software updates, the user must be a Volume Owner.

  2. For JAMF-initiated macOS software updates Jamf must have an escrowed bootstrap token from the computer.

First-time setup

The process below should fulfill both criteria so that AD-bound Macs in Jamf can have software updates applied successfully.

  1. Set the computer up through automated enrollment and continue to the login screen.

  2. Log in at the log in screen. If you cannot log in, make sure you are connected to the UConn network with Ethernet and reboot.

  3. After the first user is logged in and at the desktop screen, have the user log back out.

  4. After logging out have the first user log in one more time, then go into the Self Service app and run Update Inventory.

Jamf administration for IT staff

To verify that a computer is configured correctly after going through the above steps, log in to Jamf and search for the computer object.

Once you have selected the computer object check under Inventory → General make sure that:

  1. Bootstrap is set to YES

  2. Volume Owner lists at least one NetID user account (Admin or Non-Admin)

  3. If you see this you can ignore the volume owner part of this KB article: Volume Owner:
    Unsupported Platform: Intel i386

Â