*For Mac OS 13 and newer
To properly re-enroll a Mac, you have two options.
- Run Re-enroll Computer from Self Service. You will need to log in as yourself to Self Service.
- We can also re-enroll by running commands in the terminal. To complete that process run the following two commands:
- After running the remove MDM command, you will see the following dialog in the upper right:
*For macOS 14 and newer:
- After a few seconds, Remote Management will appear to start the enrollment process. Click Enroll
- Enter admin credentials to authorize enrollment.
- Click Quit to return to the desktop.
*For macOS 13: Device Enrollment will appear in the top right corner of the screen
- Click the Device Enrollment notification window or Details to begin enrollment
- You will be redirected or you can navigate to System Settings > Privacy & Security > Profiles
- Click Allow. Enter admin credentials and click Enroll
- Enrollment will begin retrieving and installing configurations.
- The MDM profile will install followed by more profiles. If you do not see the additional profiles install, you may need to run through the process again.
Other things to know
You may see prompts for system and kernel extensions after unenrolling a machine. Those approvals will be handled after the profiles load in System Settings.
A successfully enrolled device has the following criteria:
- Computer has been enrolled after 1/13/21
- MDM Capability is 'Yes'
- User Approved MDM is 'Yes'
- MDM Profile Expiration Date is newer than today's date
Devices that need to be re-enrolled may display one or more of the following information:
- Last enrollment was before 1/13/2023
- MDM Expiration Date is before today's date
- MDM Capability is 'No'
- User Approved is 'No'
Another thing to look out for is that the machine is properly managed. This screenshot shows a properly managed machine, if a device is unmanned the entry will display 'Unmanaged'.
