Big Sur deployment MacOSLaps 2.1

[DBLClick]

I'm using Jamf and previously deploy successfully version 1. but 2.0 doesn't appears to actually work. I'm trying to use the JSON files with all the settings but also notice you are not using MACOSLaps-Check plist in the Json.

Did the location of the Plist folders change or do I still need to deploy edu.psu.macoslaps-check.plist to \Library\Preferences\LaunchDaemons?

[joshua-d-miller]

Hello @DBLClick

When you deploy the pkg under Releases it will install the binary and the LaunchDaemon. The LaunchDaemon will run every 90 minutes. The JSON file to create the configuration profile is what the binary will read from when it runs. Let me know if this is helpful and we can take next steps.

Thanks!

[etarasula]

HI

So JSON is a template for the creating and customization of the .Plist so one does not need to do so manually right? Which ones of the Preferences are A MUST for this to work? I have: Local Admin Account, Days till Expiration, Length of the generated Password, Remove the keychain for the local administrator, First Password. Is Method one of the ones that are a must and if so what would go under configuration line for it to work with MDM JAMF?

We have spent so far about 10 hours on this and have not gotten anywhere :(

Thanks for assistance in advance!

Eugene

[DBLClick]

Correct,

You can use the JSON template to create a mobile.config file for MacOS Laps, much easier then using a Plist editor.

---

From: etarasula @.> Sent: Tuesday, January 25, 2022 8:28 PM To: joshua-d-miller/macOSLAPS @.> Cc: DBLClick @.>; Mention @.> Subject: Re: [joshua-d-miller/macOSLAPS] Big Sur deployment MacOSLaps 2.1 (#61)

HI

So JSON is a template for the creating and customization of the .Plist so one does not need to do so manually right? Which ones of the Preferences are A MUST for this to work? I have: Local Admin Account, Days till Expiration, Length of the generated Password, Remove the keychain for the local administrator, First Password. Is Method one of the ones that are a must and if so what would go under configuration line for it to work with MDM JAMF?

We have spent so far about 10 hours on this and have not gotten anywhere :(

Thanks for assistance in advance!

Eugene

— Reply to this email directly, view it on GitHubhttps://github.com/joshua-d-miller/macOSLAPS/issues/61#issuecomment-1021769147, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AOD3RNVCCBRUJEZAJNN2MUTUX5E4FANCNFSM5GCKHIFA. Triage notifications on the go with GitHub Mobile for iOShttps://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Androidhttps://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub. You are receiving this because you were mentioned.Message ID: @.***>

[etarasula]

Thanks for reply!

mobile.config??? Nowhere i came across such file. What is it? Or is it just another name for edu.psu.macoslaps.plist?

Also - Do i need any additional settings for use with the JAMF?

[DBLClick]

Yep, it will make it. Sorry for the confusion.

Sent from my iPad

On Jan 25, 2022, at 8:57 PM, etarasula @.***> wrote:



Thanks for reply!

mobile.config??? Nowhere i came across such file. What is it? Or is it just another name for edu.psu.macoslaps.plist?

Also - Do i need any additional settings for use with the JAMF?

— Reply to this email directly, view it on GitHubhttps://github.com/joshua-d-miller/macOSLAPS/issues/61#issuecomment-1021784999, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AOD3RNWNT7WDIZNAV63565DUX5IKFANCNFSM5GCKHIFA. Triage notifications on the go with GitHub Mobile for iOShttps://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Androidhttps://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub. You are receiving this because you were mentioned.Message ID: @.***>

[etarasula]

Ok

I think its working locally as it does change the password. However what i am seeing in JAMF under password is NOT the right password. Where would it be pulling this wrong information from and how do i fix it?

[joshua-d-miller]

So the password in jamf relies on an Extension Attribute. EAs are pulled every time inventory updates. If your inventory updates once a day you would have to wait for that inventory update to get the correct password if it was just changed. Once the inventory update happens it should update the password.

[etarasula]

My check in is set to 15 min 😊

[https://i.ibb.co/pwtDGKJ/Self-2.jpg]

Eugene Tarasula Sr. Mobility Support Rimini Street, Inc. m: +1 (925) 558-5796 @. @.>www.RiminiStreet.com NASDAQ: RMNI [Rimini Street Logo] http://www.riministreet.com/

From: Joshua D. Miller @.> Sent: Wednesday, March 16, 2022 5:53 PM To: joshua-d-miller/macOSLAPS @.> Cc: Eugene Tarasula @.>; Comment @.> Subject: [EXTERNAL] Re: [joshua-d-miller/macOSLAPS] Big Sur deployment MacOSLaps 2.1 (#61)

Attention: This email originated from an EXTERNAL SENDER. Check for Indicators of Phishing. Hover over links. Do not open attachments.

So the password in jamf relies on an Extension Attribute. EAs are pulled every time inventory updates. If your inventory updates once a day you would have to wait for that inventory update to get the correct password if it was just changed. Once the inventory update happens it should update the password.

— Reply to this email directly, view it on GitHubhttps://urldefense.com/v3/__https:/github.com/joshua-d-miller/macOSLAPS/issues/61*issuecomment-1069789085__;Iw!!NO-Zkjnm1bLgFw!Yl_EjUlgWR6ysIDW2JzUhSL659i2bLQaVYhh9GciSEPu7JT6jcYzKA0d7NwJvPAMaJg$, or unsubscribehttps://urldefense.com/v3/__https:/github.com/notifications/unsubscribe-auth/AXPAPRCAC3KDZHY4NAPI46TVAJ65HANCNFSM5GCKHIFA__;!!NO-Zkjnm1bLgFw!Yl_EjUlgWR6ysIDW2JzUhSL659i2bLQaVYhh9GciSEPu7JT6jcYzKA0d7NwJfA9Vz8c$. Triage notifications on the go with GitHub Mobile for iOShttps://urldefense.com/v3/__https:/apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675__;!!NO-Zkjnm1bLgFw!Yl_EjUlgWR6ysIDW2JzUhSL659i2bLQaVYhh9GciSEPu7JT6jcYzKA0d7NwJV_3gR1M$ or Androidhttps://urldefense.com/v3/__https:/play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign*3Dnotification-email*26utm_medium*3Demail*26utm_source*3Dgithub__;JSUlJSU!!NO-Zkjnm1bLgFw!Yl_EjUlgWR6ysIDW2JzUhSL659i2bLQaVYhh9GciSEPu7JT6jcYzKA0d7NwJHP01lJA$. You are receiving this because you commented.Message ID: @.**@.>>

This message and any attached documents may contain information that is confidential and may constitute inside information. If you are not an intended recipient, you are directed not to read, disclose, distribute or otherwise use this transmission. Delivery of this message is not intended to waive confidentiality. If you have received this email in error, please notify the sender immediately and delete this message from your system. Your privacyhttps://www.riministreet.com/privacy-policy/ is important to us, and you may manage your contact preferences herehttps://info.riministreet.com/General-Preference-Center.html. Rimini Street, Inc., Worldwide Headquarters: 3993 Howard Hughes Parkway, Las Vegas NV 89169. +1.702.839.9671 www.riministreet.com

[joshua-d-miller]

Are you using the Extension Attribute provided in this repo or have you written your own? Basically we need to take the contents of the file it writes after running macOSLAPS -getPassword and then echo that into a result so something like this:

/bin/echo <result>$macOSLAPSPassword</result>

[joshua-d-miller]

I haven't heard anything additional about this issue and deployment should work well with the latest release of macOSLAPS 3.0.2. Closing issue.