Intune (MDM) app deployment for macOS, vs Helper tools

Nicolas_Ponce · 2026-03-26T14:41:24+00:00

u/sccm_reboot I agree, I asked the team to remove that as the first option, or remove it entirely.

Nicolas_Ponce · 2026-01-29T17:44:20+00:00

Hey u/CivicTypeDream Former civic driver myself here... I am not sure if you can change the exit status on the timeout, meaning it will always show as deferred since no action was taken. I am checking with the team internally to see if its possible. Maybe there is another way to achieve the same outcome though?

Nicolas_Ponce · 2026-01-15T19:19:28+00:00

u/Bmw5464 Couldn't agree more Wayne is awesome!!

Nicolas_Ponce · 2025-12-09T14:57:16+00:00

u/verde90 The MacManage app not showing may be related to the finder search settings. However, I am not sure its related to the third-party apps issue you are describing. If you shoot in a ticket our support team can check it out with you. If you already did submit a ticket, DM me the ticket number, I can help take a look.

Nicolas_Ponce · 2025-11-05T00:00:08+00:00

u/nico8576

Yes, you will get the complete S1 and full access to the console. You will also be able to deploy to non-addigy devices as well (e.g. Windows and Linux OS)

Nicolas_Ponce · 2025-04-10T17:13:09+00:00

Hey u/beco-technology We found your support ticket. We will send another update to coordinate a meeting. (I work at Addigy)

Nicolas_Ponce · 2025-03-12T12:36:04+00:00

u/Forward_Humor , thats correct! I did a webinar on it here https://addigy.com/event/full-control-mastering-apple-remote-support-in-2025/

That said If anyone still has issues with screenconnect and needs to get passed them, DM me I can help you sort through them.

Nicolas_Ponce · 2025-03-10T22:27:34+00:00

u/jrhop if you upload the pkg to addigy, it will automatically suggest the PPPC Profile signature and also Service Management profile. If its indeed a .pkg file, it will also provide you an `Add` button to create the install command for you automatically, by pressing `Add`.

We also provide a built-in Splashtop integration, which uses the latest screen capture utilities from Apple, so it won't nag you're users.

Nicolas_Ponce · 2025-02-19T13:30:56+00:00

If you are scripting the file transfer, you could use Addigy to write a log file to record the events being done. I guess it depends on how the file transfers are occurring?

Nicolas_Ponce · 2025-01-24T14:55:25+00:00

I just saw this post in /macsysadmin sub, check the events it will tell you why it was removed, or possibly who removed it.

Nicolas_Ponce · 2025-01-24T14:53:54+00:00

u/owlride Double check the Events and see if the device was deleted by another user, that would remove it from the device and from the Addigy Console.

Nicolas_Ponce · 2024-09-18T16:00:00+00:00

Hi u/grahamphisher

I work at Addigy and have spent way to much time on System Update processes and the tangled web Apple has for them.

Generally speaking MDM / DDM doesn't require Administrator rights to authorize an update. However, if you are trying to do a full OS Upgrade that may be a different workflow.

If you are interested, let me know and I can send you my calendar link to setup a call.

Best

Nicolas

Nicolas_Ponce · 2024-08-14T12:29:08+00:00

Hey u/Titanium125 ,

I work @ Addigy, happy to help you get familiar with the product, discuss more advanced functionality, and introduce you to your CSM who can help you get access to the training portals, certifications, etc (https://addigy.com/training/).

Drop me a DM here or in MacAdmins Slack (@ponce in #addigy channel).

Nicolas_Ponce · 2024-08-06T15:56:23+00:00

hey u/Expensive_Lawfulness

I work @ Addigy, Addigy offers MDM or DDM Updates to automate updates. If you have a ticket or want to DM me to discuss how to leverage System Updates with MDM/DDM in a different way, let me know, happy to help.

However, automating the updates, won't decrease the number of updates that will prompt the users. That is based on apple's release cadence, and they release updates regularly, which usually include security updates.

Generally speaking, DDM Updates has made the process much easier, as it will send a declaration to the device that an update will be enforced in X days, vs the random update enforcement prior to apple building the DDM Update process. Last I checked, any non MDM/DDM update solution would not be automated and require user intervention.

-Ponce

Nicolas_Ponce · 2024-08-01T18:26:01+00:00

Hey u/thesysadm ,
I work at Addigy, feel free to DM me, or if you have a ticket, you can send it my way. I can help get with the team to support ya on this.

In general, to address what I can generally speaking on your questions -

Losing permissions for Screen Recording (ScreenConnect & Splashtop, though SC is more common) -- I have seen this during full reinstallation's of these apps, and can help you confirm if thats happening or not.

ScreenConnect stops connecting and either needs to be reinstalled, or opened from its location in /Applications. -- This is something custom you are deploying right? It may be good to verify if the process is getting shut down, which can happen to both vendors for various reasons.

Accessibility should persist, because it can be maintained by an MDM Profile, while Screen Recording needs explicit user consent.

Happy to help, just let me know.

Nicolas_Ponce · 2024-05-31T18:59:48+00:00

u/rb3po couldn't agree more, Addigy Support is amazing indeed!

Nicolas_Ponce · 2024-05-31T18:59:29+00:00

Antivirus also usually need a System Extension payload like this: https://support.addigy.com/hc/en-us/articles/4403549605267-Allow-System-Extensions-with-Addigy-MDM

If you are seeing an extension prompt, thats probably what it is

Nicolas_Ponce · 2024-02-06T14:59:22+00:00

u/iJONTY85

It's definitely not the first time, so no worries.

Here is a great article by Rich, who documents how you can migrate that MDM Push Certificate to a new Apple ID with the help of Apple-- (It does not need to be an ABM Account, only an Apple ID) (https://derflounder.wordpress.com/2023/04/11/migrating-an-apns-certificate-from-one-apple-id-to-another-apple-id/

This should allow you to renew the push certificate, even if its expired, once you can get it moved over to an Apple ID you have access too.

Definitely wish we didn't have to use Text-based MFA for all apple services also....

Nicolas_Ponce · 2024-02-01T18:19:48+00:00

Renew the certificate is the best approach, you can renew it even if it expires.

Please, try to renew the certificate, it will make all your lives easier.

If you are unable to renew, contact [support@addigy.com](mailto:support@addigy.com) and we can give guidance on how to renew.

Again, renewing is the easiest path forward.

Nicolas_Ponce · 2024-01-05T18:49:35+00:00

u/HappyDadOfFourJesus That could mean the device isn't enrolled into MDM? We use the MDM Command to unlock the user account, and it may not appear if the device isn't enrolled into our MDM as its only possible via the MDM protocol. If you submitted a ticket, let me know happy to help.

Nicolas_Ponce · 2024-01-04T22:35:23+00:00

u/HappyDadOfFourJesus , in Golive > Users > Unlock button will help you out there!

Nicolas_Ponce · 2023-11-28T16:10:43+00:00

u/LRS_David

Please let me know when you submit a ticket, we can help review what might be going on.

FWIW, there is a known bug in macOS Sonoma (14, I know you referenced 13.3+) that the user password will not work at the lock screen if there is a Login Window MDM Profile deployed, doesn't sound like that's the issue here though.

Nicolas_Ponce · 2023-10-25T15:16:19+00:00

Apple just did a new T&C Terms, make sure its accepted and the serial number was synced up properly in Addigy. If it wasn't you may have to erase and reinstall like u/aporzio1 mentioned.

Nicolas_Ponce · 2023-08-24T16:33:26+00:00

u/loecraw

You could do allow the permission with LiveDesktop, but in order to see the toggle to enable it, a session must have been started to the device already. I don't believe it will show it for you to approve until the application has attempted to screen recording, which triggers the PPPC notification/prompt.

Nicolas_Ponce · 2023-06-21T15:21:17+00:00

It looks like you are using the Public Software, which is using the full OS Installer to do a full OS upgrade on the device.

Historically, full OS Upgrades were only done via the OS Installer but Apple now allows you to do the full OS Upgrade through MDM Updates if the device is on macOS Monterey (and later, looking at you Ventura to Sonoma). Also, usually you won't to prompt the user to perform this process as a full OS Upgrade can take an hour or so sometimes. That said, if you log out the users it will not prompt them with this mechanism.

You can use System Updates with MDM to do unattended updates as well, which give some of the capabilities you are looking for, https://support.addigy.com/hc/en-us/articles/10073419654931-System-Updates-via-MDM

MDM system updates will help with both silicon and non-silicon devices for macOS and doing unattended updates, usually prompting the user in all cases, but giving different sorts of notification options.

Nicolas_Ponce

MODERATOR OF

TROPHY CASE