Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 1732 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Place OSX into a default group

MAllen

Hello everyone, thanks for any help on this.  I am using Sophos on a handful of OSX machines and we are installing it via the .mpkg file the enterprise console creates. The machines are showing up in the console but are in the Unassigned group.  Is there any way to have OSX machines default to a specific group. I found the ability to do this on Windows but not Mac so far.

Is anyone aware of this capability?

Thanks much

Mike

:27937


This thread was automatically locked due to age.
  • 0

    Hi,

    Can you pre-stage the names of the Mac clients in SEC in the correct groups?  When the clients report in after being protected, they should "update" those records rather than create new ones in unssaigned.

    You could import a list of machines from a text file.  The SEC HTML help has details on the format of the input file.

    Hope this helps and hopefully the clients get the policies.  Sorry I haven't tested it.

    Regards,

    Jak

    :27943
  • 0

    Thanks Jak, I'll give that a go.  The headache comes in the future when helpdesk installs a new mac and we have an additional step of moving the workstation.

    I'll give it a test and reply back if it works.

    Appreciate it.

    :27949
  • 0

    Thanks again, for future reference prepopulating the list with names of OSX machines does work but I'm back to the issue of what we do down the road with new machines.

    Thanks Jak, appreciate the time.

    :28009
  • 0

    Anyone found a way of making all fresh MacOS agents go into a group? Don't want to have to manually go into the enterprise console for every new Mac we add to the network and move into the Mac group... so annoying!

    :28615
  • 0

    HI,

    Last time I spoke to Support about this they mentioned Pro-Services had a tool that could move machines 'server-side' rather than using the group on bootrap parameter (Windows only).  So that might be one route for non-windows computers.

    The thing is it's not too difficult to move a computer using a stored procedure in the database,  i.e run a batch script even, maybe every 10 minutes to call a stored procedure looking for machines in unassigned and move them into a given group, but moving them and then have the management service send policies is another.

    Just a thought while writing this.  If you have AD, you could create a Mac OU, just for the purpose of sinking with SEC to get computer records into a articulars groups with policies.  Not sure what your steps are to add a new Mac to your network but you could script the adding of the computer name into AD (sync time of 5 minutes), prior to protecting the Mac.  Just thoughts really.

    Regards,

    Jak

    :28621