...
NOTE: When delivering a LAITS provisioned FileVault enabled device it will be necessary to login with the first deploy user account, boot macOS, and then logout in order to enable JAMF Connect to be used by the new user. On single user computers once the new users account is created the deploy user account is removed from the machine.
Off Campus Internet Considerations
...
On campus our LAITS Faculty and Staff implementation leverages a configuration profile which uses a resource account to connect to the UTEXAS wireless SSID in order to facilitate the new user authenticating with JAMF Connect and setting up their user account on the computer. Once the deployment is marked complete in JAMF by the Desktop Support Technician that configuration profile is removed from the device and is no longer needed as the user will be added to the approved FileVault users list. Removal of the UTEXAS wireless SSID configuration profile will occur regardless of whether an on campus or off campus internet connection is used.Newthe utguest wireless SSID to give the computer temporary internet access long enough to allow the first user to authenticate on the machine and establish their user account. Once their user account is created the computer forcibly drops the utguest SSID and prompts the user to join the utexas SSID which is more appropriate and allows them access to UT faculty/staff network resources.
Newmachines that use a wired Ethernet connection for internet connectivity will simple ignore the WiFi profile as it is not needednot need to use WIFI connectivity.
Our Research implementation of JAMF Connect
On campus our LAITS Research implementation leverages a configuration profile for WiFi that allows the machine to connect to the UTEXASutexas-IOT iot wireless SSID. This setup requires additional setup in the XMP Network Portal including identifying the computer itself which must be in ISORA, as well as setting up a group Pre-Shared Key for authenticating to the UTEXASutexas-IOT iot wireless SSID. The machine will then use the UTEXASutexas-IOT wireless SSID to facilitate the new user authenticating with JAMF Connect and setting up their user account on the computer. Once the login is completed the WiFi connection to the UTEXAS-IOT wireless SSID is dropped and the machine joins the UTEXAS wireless SSID by authenticating with the users personal credentials. The first time a user logs in they will be prompted for their credentials to join the UTEXAS wireless SSID, subsequent logins will automatically swap over with no prompting.iot wireless SSID anytime a WIFI connection is needed.
New machines that use an a wired Ethernet connection for internet connectivity will simple ignore the WiFi profile as it is not needednot need to use WIFI connectivity.
Our Student Lab and Classroom implementation of JAMF Connect
...
On campus our LAITS Student Lab and Classroom implementation leverages a configuration profile for WiFi that allows the machine to connect to the UTEXAS-IOT wireless SSID. This setup requires additional setup in the XMP Network Portal including identifying the computer itself which must be in ISORA, as well as setting up a group Pre-Shared Key for authenticating to the UTEXAS-IOT wireless SSID. The The machine will then use the UTEXASutexas-IOT wireless SSID to facilitate the new user authenticating with JAMF Connect and setting up their user account on the computer. Once the login is completed the WiFi connection to the UTEXAS-IOT wireless SSID is dropped and the machine joins the UTEXAS wireless SSID. Since we use a user profile policy to ensure these devices do not retain user data, users will be asked for their credentials to join the UTEXAS wireless SSID, on EVERY login. For this reason we highly recommend these machines use Ethernet for connectivity whenever possible. iot wireless SSID anytime a WIFI connection is needed.
New machines that use an a wired Ethernet connection for internet connectivity will simple ignore the WiFi profile as it is not needednot need to use WIFI connectivity.