Manualshelf

System information

ManualsBrandsParallels ManualsSoftwareManagement Suite SCCM
61626364656667686970
66
Parallels Mac Management Features
To use the interactive mode, enter the %user_interaction_required% tag into a field
instead of the actual value. If a payload contains this tag in at least one field, the Mac user will
be prompted to manually enter all of the missing settings. The interactive mode will be used
even if none of the missing settings are actually required on the Mac OS X side. You can enter
the %user_interaction_required% tag into any field that you want a user to set
manually.
If a payload does not contain the %user_interaction_required% tag, an attempt will be
made to apply the profile on a Mac silently. If the profile cannot be applied silently (one or more
required settings are missing), the interactive mode will be used and the user will have to
specify them manually.
In the interactive mode, a standard System Preferences dialog will be opened in Mac OS X for each
corresponding payload where the user will have to specify the required settings. The dialog has the
Install and Cancel buttons. To apply the settings, the user clicks the Install button. If the specified
values are invalid, the user will have to enter them again. On success, a report will be sent to
SCCM. If the user clicks the Cancel button, the profile installation is aborted and an appropriate
report is sent to the administrator.
When you save the configuration profile, Profile Manager creates a file with the ".mobileconfig"
extension. The file is an XML document containing the Mac OS X configuration settings that you
specified. Copy the file to a location where the Configuration Manager console can access it (e.g. a
directory on the server running the Configuration Manager console).
Enforcing FileVault 2 Encryption
FileVault 2 is an encryption method that can be used with volumes on Mac computers to keep their
data secure. Parallels Mac Management for Microsoft SCCM 2012 provides a functionality to
monitor and enforce FileVault 2 encryption on managed Macs.
Before creating a FileVault 2 configuration item, you need to decide whether you want to use an
institutional or a personal recovery key. The following explains what these keys are.
When preparing to encrypt the disk, the Mac user is asked to specify a password that will be used
to unlock an encrypted disk. If the user forgets the password, he/she will not be able to log into the
computer. The recovery key is a "safety net" that can be used to unlock the disk if the user forgets
the password.
When creating a FileVault 2 configuration item, you have an option to choose between the following
key types:
Institutional. An institutional recovery key is created in advance by the system administrator
and then used for all Macs being encrypted. The key is stored in a keychain file, which the
system administrator should keep in a safe place. If a Mac user forgets his or her personal
password for unlocking the disk, this recovery key can be used to unlock it.