Following are quick outlines of how to setup Jamf Pro Policies for specific tasks. These should be used as a guideline only! As always TEST policies on a small group of devices before deploying them to an entire Group or Site.
Use a Jamf Policy to install DetectX as a supplement to Apple’s XProtect.
Two policies are needed to ensure proper install and scanning.
Full documentation is on the DetectX Setup for Jamf Pro page.
Create a Jamf Pro policy to install the latest version of Spirion Identity Finder available from the Jamf Pro packages distribution. This should be triggered as desired but only run once per computer as in Figure 1.
Use a Apple Configuration Profile in Jamf Pro to ensure that the Login Window option has setting for:
1) Window tab is set to show Name and Password Fields for the Login Prompt as in Figure 2.
2) Options tab is set to Disable Automatic Login as in Figure 3.
Use a Jamf Pro policy with a Files and Process option to run Apple’s command line software update tool on a monthly basis. Use the install and all command line switches
/usr/sbin/softwareupdate --install --all
in the EXECUTE COMMAND field to install all macOS updates. NOTE: with 10.14 and beyond this will not install updates to App Store apps as it did with earlier versions.