MacOS - Create Standard vs. Administrator user plus use AAD Credentials
It will be great if MS Intune can have the ability to create standard vs. administrator account. Ideally if the possibility will include the usage of AAD/AD credentials and account.
Example:
During the DEP enrollment the user account will be created while the Intune admin will have possibility to choose if the user will be standard or administrator. (Same we have with Windows 10 Autopilot)
During the DEP enrollment the AAD account can be used to enroll the macOS devices (same feature which Jamf Connect offers).
Radek Ficbauer
shared this idea
5 comments
-
Anonymous
commented
I agree this would be great. It is a great disadvantage that one can't control users through MEM/intune on Mac.
-
Fabian
commented
Yes this is an absoluty must have. Because in our school we want to enroll macOS device and the User should not have the rights of an Admin!
-
Vadivelu B
commented
Yes. we need this feature from a security perspective as well.
-
Sujithkumar G Suriyamurthy
commented
Automatic Device Enrollment works really fine with Mac OS but there are few important things that needs to managed by the MDM like Users & Groups and so on. Enrolled a Mac book successfully but by default the user gets admin privilege on the computer which is not correct because the user will be able to do anything with the MAC.
-
Jordan
commented
Yes this is exactly what I was just trying to look at doing. I know Jamf Connect, and both Mosyle offer this right now. Not being able to have that initial SSO/AAD login screen to come up during enrollment of the mac is unfortunately holding us back on going with 100% Intune but this is something I would like to see in the future if possible. Hopefully this is one that will get looked at for future development.