Latest Articles

macadmins articles abm-warranty

Introducing ABM Warranty for macOS

Blog Series Introducing ABM Warranty for macOS ABM Warranty 0.2.0 ABM Warranty 0.3.1 Introducing ABM Warranty for macOS A smarter, faster way to understand and manage warranty coverage across your organization. Download ABM Warranty 0.2.0 If you manage Apple devices at scale, you already know that Apple Business Manager (ABM) provides warranty data — but in practice, it’s extremely limited. It doesn’t provide workflow-friendly insights, it doesn’t surface actionable coverage states, and it doesn’t help you wrangle the ever-growing complexity of AppleCare+ renewals across hundreds or thousands of devices. That...

macadmins articles scripts

Exploring the Apple Business Manager API: A Hands-On Playground

If you’ve ever tried to talk directly to the Apple Business Manager (ABM) API, you already know the journey can feel a little like deciphering a secret Apple handshake. Between private keys, encrypted certificates, ES256 signatures, and OAuth2 flows… there’s a lot going on under the hood. But good news — I built a repo to make this whole process clearer, friendlier, and way more fun. Say hello to: Apple Business Manager API Test This repo is a fully documented, beginner-friendly playground designed to teach you exactly how ABM authentication...

jamf articles scripts

Updating Safari on macOS with Jamf Pro: Three Practical Strategies

Keeping Safari updated is one of the simplest ways to harden a macOS fleet. Apple ships security fixes for Safari frequently, and those patches often land before a full macOS point release. If Safari is lagging behind, your users are browsing the web with a larger attack surface than necessary. In this post I want to walk through three strategies I use to stay ahead of Safari releases with Jamf Pro: Using Jamf Pro Patch Management with standalone Safari installers Using a script that targets a specific Safari version via...

jamf articles scripts

Hunting Down Jamf Profile Payloads with Python

If you’ve spent enough time living inside Jamf Pro, you eventually run into the same problem: someone set a configuration somewhere, sometime, and nobody remembers where. It might be something obscure – a certificate payload, a conditional SSO predicate, or that one security preference quietly misbehaving on three machines in accounting. And when you have dozens of configuration profiles, each with multiple payloads, nested keys, and XML-wrapped values, finding that setting can feel like forensic archaeology. We’ve all been there, scrolling through the Jamf UI, expanding payloads, repeatedly searching in...

jamf articles scripts

Keeping Jamf Security Cloud Current for Microsoft 365: Updated Routing Policies

Blog Series Troubleshooting Standard Routing Policies in JAMF Security Cloud Keeping Jamf Security Cloud Current for Microsoft 365: Updated Routing Policies Keeping Jamf Security Cloud Sharp for O365 When I first wrote about troubleshooting Standard Routing Policies in Jamf Security Cloud, the goal was simple: help admins keep Microsoft Teams and Microsoft 365 traffic flowing smoothly through Jamf Trust + App-Based VPN. Fast-forward, Microsoft has added additional IP ranges and hostnames — and if you’re relying solely on Jamf’s built-in policy, you’re eventually going to feel the pain when Teams,...

automation jamf macos

Cleaning House in Jamf Pro: A Friendly Auditor Script for Real-World Hygiene

There’s a tipping point in every Jamf Pro environment where the policy list begins to feel like a junk drawer. Everyone means well. Nobody deletes anything. And then, months later, you’re trying to answer simple questions like: Which policies are actually scoped? What’s no longer referenced? Why are there five versions of the same script? This post covers a small, practical script I wrote to help you see what’s stale, explain why it’s stale, and (optionally) park it safely out of the way—without deleting a thing. If you want to...

Prev 2 ... Next