Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Allow unauthenticated enrolment to be automated #19

Closed
garysharp opened this issue Sep 12, 2013 · 1 comment

Comments

@garysharp
Copy link
Owner

@garysharp garysharp commented Sep 12, 2013

SEE: http://discoict.com.au/forum/feature-requests/2013/9/automatically-set-trust-enrol-setting.aspx

When a "Software - Reimage" job is created, automatically allow for an unauthenticated enrolment.

For security reasons, this would be a profile option ( disabled by default ) so that the Disco Admin would need to explicitly indicate this behaviour is required.

Behaviour:

  1. Device requests an authenticated enrolment (which fails)
  2. Device requests an unauthenticated enrolment
  3. If the device is already trusted for an unauthenticated enrolment, the enrolment is granted. After this enrolment, the trust is reset (as in the past).
  4. If the device is in a profile which is configured for regular unauthenticated enrolments and is associated with an open Software - Reimage job, the enrolment is granted.
  • Create Device Profile Configuration Option
  • Add logic to support Step 4.
@garysharp

This comment has been minimized.

Copy link
Owner Author

@garysharp garysharp commented Oct 29, 2013

allowuntrustedreimagejobenrolment

@garysharp garysharp closed this Oct 29, 2013
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
1 participant
You can’t perform that action at this time.