Mass Deployment to Install/Uninstall the Mac Auto Updater (JAMF)

This topic describes how to deploy Mac Auto Updater using JAMF, so you can remotely deploy Auto Updater to multiple endpoints.

Use this topic as a guide for mass installation. Depending on the version of JAMF you are using, the images may change.

Prerequisites

Before you begin, do the following:

1. From Agent Realms, download the Shell Script for the Agent Realm. (Administration app > Endpoints >Agent Realms). Make sure you select Updater.

   

   See Shell Script for Mac Agent and Auto Updater.

2. From Endpoints > Downloads, download latest Management Tools with the Configuration Profile (observeit-OSX-management tools-OSX-X.X.X.tar.gz).

   

   See Management Tools.

3. From Endpoints > Downloads, download and open the latest macOS Updater release (observeit-autoupdater-OSX-X.X.X.tar.gz).

   

4. Update the Update Policy with the latest version (Endpoints > Updater Policy). In the Settings area, set OS Type to macos and select the latest updater version.

   

   See Setting Up Endpoint Update Policies.

If you want to make changes to the Configuration Profile, use the version that is not signed. After making changes you must sign the configuration profile before deploying it.

For information about how to sign an unsigned configuration profile, see this JAMF article.

JAMF Deployment for the Updater

Set up the following:

1. Upload the Configuration Profile
2. Upload the Package
3. Upload the Shell Script
4. Create the Policy
5. Configure the Policy Scope

Upload the Configuration Profile

Upload the Configuration Profile included in the Management Tools you downloaded.

1. In JAMF, from the menu on the left-side, in Computers, select Configuration Profiles.

   

2. In the Configuration Profiles screen, from the list of configuration profiles, select the Configuration Profile you downloaded with the latest Management Tools.

Upload the Package

Upload the package you want to deploy.

observeit-autoUpdater-OSX-<version>.pkg package was downloaded with observeit-autoupdater-OSX-X.X.X.tar.gz.

1. In JAMF, from the left-side menu, in Computers, select Policies.

2. Click New.

   The New Package page opens.

   

3. In the Filename area, browse to the observeit-autoUpdater-OSX-<version>.pkg package file.

4. In the Display Name field, you see the name of the package you selected.

   

5. Click Save and the package is added.

Upload the Shell Script

Upload the relevant Shell script you downloaded from the Agent Realm.

1. Using a text editor, open the downloaded Shell script so you can modify the relevant parameters. These parameters will be applied when the install is run.

2. From menu on the left-side, select Settings and from the options, select Scripts.

   

3. Select Scripts and the Scripts page opens.

   

4. Click New and the New Script page displays.

   

5. From the General tab, provide a Display Name.

6. In the Scripts tab, copy the Shell script file and paste it.

   

7. Review and save.

8. From the Options tab, set the Priority to Before so the script runs before the package.

   

9. Click Save.

Create the Policy

Add a new policy for the Updater.

1. From Computers, select Policies from menu on the left-side.

2. In the Options tab, select General from the menu on the left side and provide a Display Name for the policy you are adding.

   Make sure that the Enabled check box is selected, so that you can run the policy.

3. From menu on the left, select Packages and Configure the package. From the list of package, select the package.

   

4. From menu on the left, select Scripts and select the script from the list.

   

5. Save.

Configure the Policy Scope

Configure the Package in the Policy

• From Computers, select Policies from menu on the left-side and from the Scope tab add the deployment targets.

The Mac agents listed as available deployment targets must have the JAMF agent installed.

If you want to run the package yourself, under the Self Service tab, enable Make the policy available in the Self Service check box.

Uninstall the Mac Auto Updater for Mass Deployment (JAMF)

Do the following:

1. Create the Uninstall Script

2. Create the Uninstall Policy

3. Add and Configure the Script in the Policy

4. Deploy the Uninstall policy to the Mac Auto Updater

Create the Uninstall Script

1. From the folder in the .pkg file, open the PreUninstall script example located in observeit-autoupdater-OSX-x.x.x.x.dmg\remote\ and copy its contents.

   

2. Open the JAMF Web Console dashboard main screen.

3. From menu on the left-side, select Settings and from the options, select Scripts.

   

4. Select Scripts and the Scripts page opens.

   

5. Click New and the New Script page displays.

   

6. Click New button to add the PreUninstall script.

7. From the General tab. Provide the Display Name for the script

8. From the Script tab, paste the PreUninstall script that you copied.

   

9. From the Options tab, from the Priority dropdown, select Before.

10. Save the script.

Create the Uninstall Policy

1. In the JAMF Web Console dashboard, select the Computers > Policies from the left menu.

2. Click New to create a policy.

3. From the Options tab, under General:

   1. Specify a Display Name for the policy.

   2. Select the Enabled check box so that you can run the policy.

   3. Under Trigger, select Recurring Check-in, so that the policy will be applied to all the relevant computers.

4. From the menu on the left, select Scripts.

   

5. From the list of scripts, select the script you want.

6. Save.

Add and Configure the Script in the Policy

1. From the Policies > Options tab, click Scripts.

2. Select Configure, and then from the list of scripts, click the Add button alongside the uninstall script you created.

3. From the Scope tab in Computers > Policies, select the Mac agents on which to deploy the uninstall script. Click the Add button alongside each target agent. Then click Done.

4. Click Save when you have finished configuring the uninstall script for the policy.

Deploy the Uninstall policy to the Mac Auto Updater

After creating a policy with the uninstall script, the JAMF agent on the local computer deploys the policy next time it checks in with the JAMF server (by default every 15 minutes).

You can monitor the progress of the uninstall policy, using the JAMF Dashboard. To check the uninstallation logs, click the Logs button for the selected policy.

• For macOS Sierra and higher, it is recommended that you define a message prior to uninstallation to allow the user to clear the logger from the list of Trusted Applications.

• It is also recommended that you defer the policy implementation (by selecting the Allow Deferral check box) so that the user has time to clear the Accessibility prior to execution of the uninstall script. You can do this in the User Interaction tab of the policy.

---

Related Topics:

Mac Agent and Apple Privacy Controls

MDM Configuration Profile Settings List