Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: cogrady84
cogrady84 Author
User level: Level 1
5 points

Profile Manager enrollment, duplicate serial numbers, deploystudio

Hi Guys,


Deploying a master image from deploystudio to 20 new iMacs, binding to AD and OD, then enrolling in Profile Manager.


The first iMac I do is fine, says enrolled, gets trust certificate and remote management profiles etc... all works fine. Any subsequent iMacs that I attempt to enroll via http://server/mydevices come up saying they are already enrolled, but with the serial number of the first device I enrolled. So I can only enroll one iMac, as they just overwrite eachother in profile manager if I force enrollment by removing and re-enrolling.


I don't have this problem with iPads/iPods, got 25 iPads enrolled at the moment and able to remotely manage/wipe/lock etc with no problems.


Found only a couple of other people with the same issue and no solution, in the comments section at:


http://krypted.com/mac-os-x/automating-profile-manager-enrollment-through-deploy studio/


Although I am not doing auto-enrollment, I am experiencing the same problem as these guys...


This is now stopping me managing my iMacs because WGM doesn't pick them up either, so I can't deploy any energy or login window preferences...


Help! 😟

Mac Pro, OS X Server

Posted on Feb 8, 2013 1:21 AM

Reply
12 replies
User profile for user: davemount_dhs
davemount_dhs
User level: Level 1
4 points

Jul 6, 2017 5:25 PM in response to cogrady84

I possible have a work around for this issue. It is something in the Admin Account ~/Library Folder. Delete all files ~/Library once the image is restored using terminal and it will let you register it through profile manager. We are using El-Cap Profile Manager and a Sierra image. I will try and find which file it is but so far have isolated it to below the ~/Library/Preferences folder.

Reply
User profile for user: pdl0076
pdl0076
User level: Level 1
1 points

Feb 8, 2013 12:46 PM in response to cogrady84

Ok, after more testing here is what I'm seeing....


2 users: A and B

2 10.8.2 Macs: X and Y


Test 1


Login to both X and Y as the local Admin user. Login to //server/MyDevices as user A


On Mac X

  • Install Trust Profile
  • Enroll Mac X
  • All is fine


On Mac Y

  • Install TrustProfile
  • Enroll Mac Y
  • Mac X stays as the only device listed in //Mydevics BUT gets Mac Y's serial number.


Test 2


Login to both X and Y as the local Admin user. Login to //server/MyDevices as user B on X and user A on Y



On Mac X (as user B)

  • Install Trust Profile
  • Enroll Mac X
  • Everything is fine


On Mac Y (as user A)

  • Install Trust profile
  • Immediately see Mac X on User B's screen disappear.
  • No profiles show on the Mac, but User A's //Mydevices now shows Mac X with Mac Y's serial number.


Do not see this with 10.7 yet.

Reply
User profile for user: pdl0076
pdl0076
User level: Level 1
1 points

Feb 18, 2013 7:36 AM in response to pdl0076

So we've mostly figured it out.


It seems the enrollment profile that the device gets from My Devices is somehow different than the enrollment profile you can download from Profile Manager.


If I download the Trust and Enollment profiles from Profile Manager and run from each Mac they work great. If I login to My Devices and enroll we get the previous issue. Not a huge deal for us as we have Deploy Studio and can just netboot each Mac and run a workflow that can install the 2 profiles.


But it would have been nice to know about before hand.

Reply
User profile for user: pdl0076
pdl0076
User level: Level 1
1 points

Feb 21, 2013 5:43 AM in response to Richard Cartledge

I guess I didn't realize that Profile Manager was tied to OpenDirectory. If I check WGM on the server, I don't see the computers that I added to Profile Manager in WGM on the same server and vis versa.


Otherwise, I did figure out that computers don't show in the Bonjour list in 10.8 WGM anymore to add them. I had to manually add them which is an huge pain.

Reply
User profile for user: Nathan Zamprogno
Nathan Zamprogno
User level: Level 1
26 points

Jan 25, 2015 12:43 AM in response to cogrady84

I just wanted to say I've got exactly the same problem with the latest version of OS-X and Server/Profile Manager (10.10.1 and Server 4.0.3 as at January 2015).


I have used DeployStudio to clone an idealised lab Mac to a number of others in a school lab.

Workstations (Mac Minis running 10.10.1) all have unique computer names as defined in the sharing panel and are bound to AD and an OD Server.

The OD Server (also Yosemite 10.10.1) also runs Profile Manager.

When I attempt to enrol any Mac to Profile Manager via http://<servername>/mydevices, then suddenly ALL the macs in the lab report that they are enrolled for management and present the SAME SERIAL NUMBER in the web interface, which is the serial number of the Mini from which the image was made.

Meanwhile, in the Profile Manager management interface, only one device shows up as under management. Only the first device ends up being managed, and the others cannot be enrolled because they are sure that they are already.

I was working from the assumption that something nasty in my cloned image was tangling something up - something that made the server think that each Mac was the same and was not being reset to make each mac distinct. The solution in that case is to remove the offending parameter that gives each Mac the "serial" (as far as PM sees) of the first one which enrols.

I am curious about your suggested fix but can't see any other location from which to download a Enrolment profile. The /mydevices page is the only way I can see.

Can you help? How did you eventually lick this?

http://www.deploystudio.com/Forums/viewtopic.php?pid=25871#p25871

Reply

Profile Manager enrollment, duplicate serial numbers, deploystudio

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up