Requirements
(macOS 10.14 or later only) To reset an existing account password, the secure token for the account must be disabled.
(macOS 10.13 or later only) To enable the account for FileVault, a valid management account with a secure token is required to add the new user.
For more information on secure token, see Use secure token, bootstrap token, and volume ownership in deployments in Apple Platform Deployment.
- In Jamf Pro, click Computers in the sidebar.
- Click Policies in the sidebar.
- Click New.
- Use the General payload to configure basic settings for the policy, including the trigger and execution frequency.
- Select the Local Accounts payload and click Configure.
- Choose an action from the Action pop-up menu.
- Configure the action using the options on the pane.
- Use the Restart Options payload to configure settings for restarting computers.
- Click the Scope tab and configure the scope of the policy.
- (Optional) Click the Self Service tab and make the policy available in Self Service.
- (Optional) Click the User Interaction tab and configure messaging and deferral options.
- Click Save .
The policy runs on computers in the scope the next time they check in with Jamf Pro and meet the criteria in the General payload.