macOS Migration does not create notification in notification center after migration dialog closes #19512
Comments
willmayhone88
added
bug
|
Adding orbit.stderr.log to this. orbit.stderr.log |
georgekarrv
added
#g-mdm
|
Testing on macOS 14.4: |
lukeheath
added
P2
|
Follow up on what we discussed today. @gillespi314 @noahtalerman We want the same experience as we have today on macOS < 14. Run a job (every 15 minutes assuming that's how often it runs currently) that will trigger a command to popup new "Remote Management" dialog. We want to change instructions on my device page for macOS hosts above 14.0. I'll have the wireframes ready tomorrow. |
|
@marko-lisica @noahtalerman the way this currently works is:
are you saying that we should run cc: @gillespi314 |
- Add section for testing the [default migration workflow](https://fleetdm.com/docs/using-fleet/mdm-migration-guide#default-workflow) for macOS hosts. Discussed w/ @georgekarrv that we may have caught the following bug if we were testing the migration workflow each release: #19512 We also thought it was a good idea to make this part of release QA in case the flow breaks w/ a never version of macOS.
@roperzh Sorry if I confused you with the previous message. We want to keep it the same way it is today. Fleet dialog won't trigger
I filed a feature request to track the improvement of that flow so possibly it appears when the user clicks a button in the Fleet dialog or on My device page. cc @gillespi314 |
|
@gillespi314 I just added wireframes to "To fix" section in the bug description. I relied a lot on this article that describes a new experience, could you double-check that everything described in the wireframes is what end-user will actually experience. More specifically:
@noahtalerman Could you take another look on the copy? |
|
Hey @marko-lisica do you know what this step is? Is it enabled by default? And how does the IT admin enable/disable it? Automatic enrollment (DEP) profile?
If it's not enabled by default I think we can cut this step 4 for now. But we should understand how the IT admin enables/disables it. @gillespi314 when you get the chance, can you please confirm whether this step doesn't appear by default? Thanks :) |
nonpunctual
added
the
~csa
I have confirmed that it is triggered by Fleet every hour. Later today, I should be able to confirm what happens at the 8 hour mark.
The screenshots all track with what I've experienced. Regarding Noah's question above, that specific screen doesn't appear with our workflow. Rather the user would see the IdP and EULA screens (same as if it were a new device in the out-of-the-box ADE flow). |
Thanks @gillespi314! What if I (IT admin) don't have the IdP or EULA configured? Do my end users still see the "Please enter your credentials..." screen?
For now, I think let's update step (4) in the copy for macOS >= 14 (from Figma here):
Also, I added this dev note to track the TODO for understanding how/when that "Please enter your credentials..." screen above shows up. @marko-lisica when you're back online, can you please take that research? |
lukeheath
removed
:incoming
lukeheath
added
~critical bug
@noahtalerman I couldn't find exactly why this appears, but I think it's one of the ways to authenticate with your organization's account. In our case I believe web view with IdP login will appear. After login it will start downloading enrollment profile. |
|
@noahtalerman @marko-lisica unless this is something in new in Sonoma (I was enrolling lots of Sonoma computers not that long ago) I don't think we should be seeing a prompt for credentials there. I am wondering if somehow we are using a user enrollment workflow instead of a fully automated workflow for enrollment? https://it-training.apple.com/tutorials/deployment/dm130 |
|
Hey @nonpunctual just to clarify, we (Fleet) haven't seen that "Enter your credentials.." prompt yet. We found it in Kevin Cox's article here. We're trying to learn when/how it shows up.
It could also be their local account? "your credentials" isn't giving us a lot of leads.. I did a quick search through the DEP profile developer docs (where we configure the Let me reach out to Kevin in the Mac Admins Slack. |
|
QA Notes: I also ran thru clicking Things are looking good We did discover a recent change requires a fix before moving this to ready for release so I will track #19812 then retest to ensure all is good |
|
@zayhanlon This may take another day or two to fix fully and test. Would you like to hold the release for this or push this fix into next weeks release? |
|
for audit trail purposes - discussed with alex m and we want to hold until thursday @georgekarrv |
Follow up to address additional issues uncovered during QA of #19512
|
All blockers have been fixed and the migration workflow succeeded for both my MBair and Mac mini devices. |
Follow up to address additional issues uncovered during QA of #19512
|
Migration in silence, |
Fleet version: Fleet 4.50.2
Web browser and operating system: Safari 17.5 on macOS 14.5
💥 Actual behavior
macOS Migration did not prompt until roughly 35 mins after device was migrated to Fleet server in ABM. After selecting "Turn on MDM" on my device page, no "Device Enrollment" notification is available in the notification center to finish the migration.
🧑💻 Steps to reproduce
🕯️ More info (optional)
This was verified on an M1 Macbook Air, running Sonoma 14.5. Will downgrade device to Ventura and test again.
🛠️ To fix
Product changes: Figma link
The text was updated successfully, but these errors were encountered: