So I was poking around now and turned off MDM for ...
# fleetj
James
06/26/2024, 2:44 PMSo I was poking around now and turned off MDM for a MacOS device..... how do I turn it back on?
• While it lasted, the instructions in the "mydevice" page say to find "enroll my device" is system settings
• That option doesn't exist in system settings
• However trying to "sign in" on the profiles page gives the error: "The account being signed-in to already exists and cannot be used again."
• fleetd/orbit eventually uninstalled itself... so can't actually check the my device page again
Have I been stupid for clicking the button? probably. But what should I try now?
d
Dale Ribeiro
06/26/2024, 7:04 PMHey @James, what version of macOS are you running?
Dale Ribeiro
06/26/2024, 7:04 PMAnd how did you initially enroll your Mac in MDM? Was it with automated device enrollment or did you download the MDM enrollment profile from the My Device page in Fleet?
j
James
06/26/2024, 10:19 PMautomated device enrollment
James
06/26/2024, 10:19 PMand it's running Sonoma (14.5)
d
Dale Ribeiro
06/26/2024, 10:23 PMGotcha! Try running
sudo profiles renew -type enrollmentj
James
06/26/2024, 10:25 PMRunning that command I'm immediately sent to the setup assistant. (did everything log out?)
d
Dale Ribeiro
06/26/2024, 10:25 PMSorry, that’s right it does that in Sonoma now
Dale Ribeiro
06/26/2024, 10:27 PMI believe it’s just a full screen takeover to enforce enrollment. I don’t think it does a full logout for this
j
James
06/26/2024, 10:43 PMwell this is apparently how I find out the enrollment screen doesn't support yubikeys
James
06/26/2024, 10:43 PM(for passkey login to the idp)
James
06/27/2024, 12:28 AM@Dale Ribeiro thanks! looks like that worked 🙂
Is that documented anywhere?
37 Views