Skip to main content
University of Florida

Managing/Unmanaging Devices

In an effort to remain in compliance with Jamf licensing for UF we are following the device lifecycle management standard below.

Devices that haven't checked in for over 6 months should be either made to check in, set to unmanaged, or removed from the system.

During the annual renewal period a cleanup of devices will be done to make sure we are not paying for more licenses than what is necessary to support operations. To stay in alignment with what is needed we will take the following actions:
Annually, on the last Friday of September, any computers that have not communicated in over 6 months will set to Un-Managed. Any computer or mobile devices that have not communicated in over 365 days will be deleted.

Overview

https://docs.jamf.com/best-practice-workflows/jamf-pro/unmanaging-mobile-devices-computers/Introduction.html

Do Not Use Smart Groups

Smart groups do not have the "Managed" criteria.

Departments are encouraged to use the "Advanced Search" option that is provided below.

The How-To

https://docs.jamf.com/10.28.0/jamf-pro/administrator-guide/Advanced_Computer_Searches.html

Departments could use “Search Inventory -> New” to create and see their managed/unmanaged based on the following criteria.

For computers (Mac) the criteria is based on check-in date and managed or unmanaged.

https://docs.jamf.com/10.28.0/jamf-pro/administrator-guide/Advanced_Mobile_Device_Searches.html

For mobile devices the criteria is based on “last inventory update” since there is no “Last Check-in”. Reports could be emailed with the updated information based on how frequent they want them.

Temporarily Unmanaging Computers from Jamf Pro

The following workflow can be used to temporarily unmanage a computer from Jamf Pro. With this method the scope is limited to one computer at a time.

  1. Log in to Jamf Pro.
  2. Click Computers at the top of the page.
  3. Search for the computer you want to unmanage.
  4. In the General category, click the Edit
  5. Deselect the Allow Jamf Pro to perform management tasks

Warning: Deselecting this setting will clear the management account credentials. If you are using Jamf Remote and want to resume management of the computer in the future, you must save the management account password.

  1. Click Save.
    Jamf Pro stops performing management actions on the computer. All components installed by Jamf Pro remain on the computer.

Note: You can have Jamf Pro resume management of the computer at any time by reselecting the Allow Jamf Pro to perform management tasks checkbox and entering the management account credentials.

Unmanaging Mobile Devices from Jamf Pro

Unmanaging a Single Mobile Device

  1. Log in to Jamf Pro.
  2. Click Devices at the top of the page.
  3. Perform a simple or advanced mobile device search, and click on the target device.
    For more information, see the Simple Mobile Device Searches or Advanced Mobile Device Searches sections of the Jamf Pro Administrator's Guide.
  4. Click the Management 
  5. Click Unmanage Device.

Note: If you also want the device to be erased, use the Wipe Device command instead. As long as the device is not assigned to an MDM server in Apple School Manager or Apple Business Manager, it will not enroll into MDM the next time it goes through the Setup Assistant.

  1. Click OK.
    Jamf Pro confirms the remote command was sent.
  2. (Optional) Click Delete to delete the device's inventory record from Jamf Pro.

If you have any questions please create a cherwell https://itsm.helpdesk.ufl.edu/sc/end-point-computing/end-point-management/jamf---mac-platform-management