Sponsor
Keep your apps up to date and your Macs secure with Alectrona Patch
With Alectrona Patch you can install or upgrade over 500 Mac apps automatically to keep your users protected with the latest security updates. Alectrona Patch works with your existing MDM by simply deploying a package and a configuration profile for ongoing management. It’s cloud-native, so no server or package hosting is required, and the latest updates are delivered directly from the software vendor. You control which apps are installed or updated, so you deploy only what you need. Alectrona Patch is customizable to ensure your users can update without interruption, so you can keep your security team and your end users happy.
Macs and iPhones are in the Air
Apple is teasing a product announcement next week, probably the next iPhone SE. Though new, M4-based MacBook Airs are also expected soon-ish...
⚙️ Apple Updates
Even though Apple described these updates with "important security fixes", only the iOS and iPadOS got a security document with a CVE.
- macOS Sequoia 15.3.1, 24D70: What's new, IPSW, PKG installer
- macOS Sonoma 14.7.4 (23H420): What's new, PKG installer
- macOS Ventura 13.7.4 (22H420): What's new, PKG installer
- iOS 18.3.1: About
- iPadOS 18.3.1: About
- iOS and iPadOS 18.3.1: Security
- iPadOS 17.7.5: About, Security
- watchOS 11.3.1: About
- visionOS 2.3.1: About
Apple has released macOS Sequoia 15.3.1, and 14.7.4, 13.7.4
Although these updates are listed on Apple’s security release notes page, they have no published entries, so there’s no information as to what they might address.
ping. pong. Yet another hole in the wall
Now, five years later, after upgrading our machines to macOS 15.3, we have once again noticed that ICMP traffic no longer reaches our network extension, so we cannot show it in Network Monitor nor can we intercept and block it.
Apple fixes iPhone and iPad bug used in an 'extremely sophisticated attack'
Apple released updates for its mobile operating systems for iOS and iPadOS, which fixed a flaw that the company said “may have been exploited in an extremely sophisticated attack against specific targeted individuals.”
🔨 Support and Tutorials
Deploying Twocanoes License and Settings Configuration Profiles in Jamf Pro
If you have a configuration profile that contains a software license from Twocanoes Software, […] you can use Jamf Pro to deploy the configuration profile.
You should be opinionated about Apple's stock apps
A major difference is that the factory Macs include 5 additional applications: Keynote, Pages, Numbers, iMovie, and GarageBand. I’ve discovered that there’s a very good reason to be opinionated about whether or not these stock apps are installed.
CrowdStrike Falcon Bluetooth: Always (and forever)
Learn now to enable Bluetooth device discovery in CrowdStrike Falcon for macOS
Zoom Rooms that don't auto login after macOS updates: Solved
You made this payload years ago and it worked reliably for years. Until Sonoma came out.
Safeguard your MacOS Fleet
karthicksekar25 on Jamf Tech Thoughts
Key Steps for Implementing CIS Benchmarks in Jamf Pro
🤖 Scripting and Automation
How to add a directory to your PATH
So I wanted to try to write down some more complete directions and mention some of the gotchas I’ve run into over the years.
This is a really good summary from the user perspective. If you want to learn how to manage the PATH as an admin on your Mac fleet, refer to this post I wrote a while back.
PSA: It's Jamf Inventory Time, Do You Know Where Your Macs Are?
if you use the API to update computer records then the moment you do, that becomes the new Last Inventory date. The actual time when a Mac last sent it’s inventory is lost and can now only be loosely correlated with Last Check-In. Not ideal™
🎧 Listen
A suicide reveals the lonely side of AI chatbots, with Courtney Brown
we speak again with youth social services leader Courtney Brown about how teens are using AI tools today, who to “blame” in situations of AI and self-harm, and whether these chatbots actually aid in dealing with loneliness, or if they further entrench it.
Omnissa in 2025
Matt from Omnissa joins the Mac Admins team to talk about Omnissa’s latest developments for Workspace ONE, and life after the Broadcom divestment.
Sync or Swim: Tales from the Technical Trenches
Joe Saponare and Jerry discuss dealing with common tech issues.
Catching up with Tailscale CEO Avery Pennarun
Avery Pennarun, CEO and Co-Founder of Tailscale, about the benefits of their VPN implementation, MDM integration, and more.