- About jm_peterson
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
jm_peterson
Here to help
Member since Aug 14, 2018
05-14-2019
Kudos given to
Community Record
14
Posts
3
Kudos
0
Solutions
Badges
05-10-2019
07:14 AM
@MelissaI would love to be apart of this as well. I tried to send you a PM but it appears that option is absent on your profile.
... View more
04-18-2019
10:07 AM
1 Kudo
@vassallonUnfortunately that didnt work. I was looking for a way to automate this for Mojave so custom pppc/tcc/kernel extensions could be applied as users update. Since there is no solution I threw one together. Disclaimer, python is not my strong suit so there is probably a more efficient way to do this but this is working for me. You just need to replace YOURSMNETWORKID with your network_id, yourreallylongapikey with your api key, and the tag name with whatever you want the tag to be. Hopefully this is of use to someone. ¯\_(ツ)_/¯ import requests
import json
meraki_url = 'https://api.meraki.com/api/v0/networks/YOURSMNETWORKID/sm/devices'
aki_key = 'yourreallylongapikey'
search_models = ['OS X 10.14', 'OS X 10.14.1', 'OS X 10.14.2', 'OS X 10.14.3', 'OS X 10.14.4', 'OS X 10.14.5']
meraki_payload = ""
meraki_headers = {
'X-Cisco-Meraki-API-Key': aki_key,
'cache-control': "no-cache"
}
def tag_the_machines (serial_input):
url = 'https://api.meraki.com/api/v0/networks/YOURSMNETWORKID/sm/devices/tags'
args = {
"updateAction": "add",
"tags": "Mojave",
"serials": serial_input
}
payload = ""
headers = {
'X-Cisco-Meraki-API-Key': aki_key,
'Content-Type': "application/json",
'cache-control': "no-cache",
}
try:
r = requests.request("PUT", url, data=payload, headers=headers, params=args)
r.raise_for_status()
print ("Tagged" + '' + serial_input)
except requests.exceptions.HTTPError as err:
print (err)
def check_key(dict, key):
if dict.has_key(key):
global batch
batch = dict[key]
else:
print ("Batch not key present")
def get_all_machines ():
url = meraki_url
payload = meraki_payload
headers = meraki_headers
r = requests.request("GET", url, data=payload, headers=headers)
global all_machines
all_machines = r.json()
check_key (all_machines, 'batchToken')
create_mojave_dict()
def send_batch_request ():
url = meraki_url
payload = meraki_payload
querystring = {
"batchToken": batch,
}
headers = meraki_headers
r = requests.request("GET", url, data=payload, headers=headers, params=querystring)
global all_batch_machines
all_batch_machines = r.json ()
create_mojave_batch_dict()
def create_mojave_dict ():
serial_number = []
os_name = []
for m in all_machines["devices"]:
serial_number.append(m["serialNumber"])
os_name.append(m["osName"])
machine_dict = dict(zip(serial_number, os_name))
global mojave_machines
mojave_machines = []
for s in search_models:
for k, v in machine_dict.items():
if v == s:
mojave_machines.append(k)
for m in mojave_machines:
tag_the_machines(m)
def create_mojave_batch_dict ():
serial_number = []
os_name = []
for m in all_batch_machines["devices"]:
serial_number.append(m["serialNumber"])
os_name.append(m["osName"])
machine_dict = dict(zip(serial_number, os_name))
global mojave_batch_machines
mojave_batch_machines = []
for s in search_models:
for k, v in machine_dict.items():
if v == s:
mojave_batch_machines.append(k)
for b in mojave_batch_machines:
tag_the_machines(b)
if __name__ == '__main__':
get_all_machines()
send_batch_request()
... View more
04-16-2019
11:31 AM
@vassallon It was definitely a good idea. But it appears the security policy cant scope worth a damn and returns this.
... View more
04-09-2019
08:26 AM
1 Kudo
Is it possible to scope a tag to devices on a specific os version? Such as 10.13.x get “Tag A” and 10.14.x get “Tag B” from Systems Manager?
... View more
Labels:
03-26-2019
02:20 PM
1 Kudo
@sshortThanks for the response. That's the way I have been doing it and it works flawlessly. Granted I would like Meraki to have provided this since it was needed, several months ago, but this post is about them sliding in the ability to do so without any information about it. Using Jamf's tool works great, is intuitive, and has plenty of documentation. The "feature" we were given is confusing and has zero information about it.
... View more
03-26-2019
02:01 PM
I know the answer is no before I ask it, but has anyone found documentation from Meraki on the ever so late to the game addition of PPPC control in SM? I saw this option slide in under the radar and cant find any information on it. It would be nice to not have to create dozens of different PPPC profiles and wish upon a star scoping works, but as per usual the lack of documentation has me apprehensive to either move forward with this or trust it will work.
... View more
02-25-2019
11:02 AM
Was there ever more information posted on this?
... View more
12-03-2018
08:47 AM
@Kevin_C Any other suggestions?
... View more
11-26-2018
01:34 PM
@Kevin_C Thanks for the info. Unfortunately I have tried that approach both en masse (pushing the update to all users) and selecting users one by one and nothing updates.
... View more
11-26-2018
12:51 PM
@Newt Maybe you will have better luck with this approach. I followed https://documentation.meraki.com/SM/Device_Enrollment/Systems_Manager_Agent_and_MDM_Profile_Enrollment#Auto-installing_the_macOS_Agent The silent update feature has worked on 9 machines out of roughly 800. And some of those may have been removed from the network and re-added so I cannot confirm if this worked for any of them. The documentation says this should work, and while I doubt its something in my configuration and not just SM not working correctly, you may have better results.
... View more
11-20-2018
10:05 AM
@Kevin_C I also have the Agent pushed to roughly 800 machines and it has silently updated a total of 9 since the update. Anything we need to do for this to work?
... View more
09-13-2018
08:05 AM
@jcapitan I ended up creating mobileconfig files for different roles, and removing system preference management from the profile. So I apply the other settings I need for each role and then adjust the settings in following mobileconfig for each role. <?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>PayloadIdentifier</key>
<string>com.yourorg.prefpanes</string>
<key>PayloadRemovalDisallowed</key>
<true/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>72F73F53-A5E6-48CE-AB73-27641F526EF7</string>
<key>PayloadOrganization</key>
<string>YOURCOMPANYNAME</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadDisplayName</key>
<string>Preference Panes</string>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadType</key>
<string>com.apple.systempreferences</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadIdentifier</key>
<string>com.yourorg.profile.prefpanes</string>
<key>PayloadEnabled</key>
<true/>
<key>PayloadUUID</key>
<string>d264dfc2-2b01-f0d0-24e2-9c98d6f3239b</string>
<key>PayloadDisplayName</key>
<string>Preference Panes</string>
<key>EnabledPreferencePanes</key>
<array>
<string>com.apple.preferences.Bluetooth</string>
<string>com.apple.preference.datetime</string>
<string>com.apple.preference.desktopscreeneffect</string>
<string>com.apple.preference.digihub.discs</string>
<string>com.apple.preference.displays</string>
<string>com.apple.preference.dock</string>
<string>com.apple.preference.expose</string>
<string>com.apple.preferences.extensions</string>
<string>com.apple.preference.general</string>
<string>com.apple.preference.ink</string>
<string>com.apple.preference.keyboard</string>
<string>com.apple.Localization</string>
<string>com.apple.preference.mouse</string>
<string>com.apple.preference.network</string>
<string>com.apple.preference.notifications</string>
<string>com.apple.preferences.parentalcontrols</string>
<string>com.apple.preferences.password</string>
<string>com.apple.preference.printfax</string>
<string>com.apple.preference.sound</string>
<string>com.apple.preference.speech</string>
<string>com.apple.preference.spotlight</string>
<string>com.apple.preference.trackpad</string>
<string>com.apple.preference.universalaccess</string>
<string>com.apple.preferences.appstore</string>
<string>com.apple.prefs.backup</string>
<string>com.apple.preference.energysaver</string>
<string>com.apple.preference.security</string>
<string>com.apple.preferences.sharing</string>
<string>com.apple.preferences.softwareupdate</string>
<string>com.apple.preference.startupdisk</string>
<string>com.apple.preferences.internetaccounts</string>
<string>com.apple.preferences.wallet</string>
<string>com.apple.prefpanel.fibrechannel</string>
<string>com.apple.Xsan</string>
<string>com.gnnet.Jabra</string>
</array>
<key>DisabledPreferencePanes</key>
<array>
<string>com.apple.preferences.internetaccounts</string>
<string>com.apple.preferences.configurationprofiles</string>
<string>com.apple.preferences.icloud</string>
<string>com.adobe.flashplayerpreferences</string>
<string>com.oracle.java.JavaControlPanel</string>
</array>
</dict>
</array>
</dict>
</plist> The following article is helpful for getting the preference pane id for third party applications. http://apetronix.com/find-pane-id-for-system-preferences-app/
... View more
08-14-2018
03:00 PM
My apologies for not clarifying. MacOS.
... View more
08-14-2018
07:16 AM
Im trying to find away around all of our 3rd party extensions being blocked in System Preferences. It seems that no matter the configuration we choose, if we manipulate anything within System Preferences for a profile then any 3rd party item (Flash, mySql, Jabra, Java etc) are greyed out. These can all be used in other ways but the convenience of starting the programs from there is being voiced by our end users. Maybe there is something simple I am missing with this, but any help would be appreciated!
... View more
Labels:
Kudos given to
My Top Kudoed Posts
