fleet icon indicating copy to clipboard operation
fleet copied to clipboard

Published 20 hours ago verified publisher icon fleetdm

Software provisioning logic between turning on MDM and completing enrollment in Fleet

Open rachaelshaw opened this issue 1 year ago • 1 comments

Problem

As an IT admin, I want to inject software provisioning logic in between when MDM is turned on for a host and when Fleet enrollment is 100% complete. This would be a basic catchup feature necessary for jamf parity.

More context:

Potential solutions

  1. Could use design work done here as a starting point, but would need to have a plan for how to handle errors.

rachaelshaw avatar May 01 '24 18:05 rachaelshaw

@rachaelshaw I feel like the the story above captures what was said in the meeting but I feel it's kind of in the wrong order. I don't want to rewrite the story for you because I don't want to confuse it more, but, the order is this:

  1. Device successfully enrolls in Fleet >>>
  2. trigger some event (webhook, log event, activity stream, something...) >>>
  3. other stuff happens in other systems (all of the things I have in the other ticket)

What's written above makes it seem like the event we are capturing is BEFORE enrollment. The event for which customers are requesting a trigger is "enrollment complete".

I am agnostic about whether or not this should be MDM enrollment or not, but, it makes sense to me that we would be able to trigger an action on either event:

  • installation of Fleet Desktop / fleetd (what Fleet calls enrollment) >>> do a thing
  • MDM enrollment (i.e., installation of an MDM enrollment profile) >>> do a thing

Thanks!

nonpunctual avatar May 01 '24 21:05 nonpunctual

Hey @nonpunctual do you think we can close this one now that we shipped the following?

  • #14722

We have an activity feed item for when MDM is turned on for a specific host and thus a webhook is fired when this happens.

noahtalerman avatar Jun 25 '24 19:06 noahtalerman

Has anyone actually successfully created a workflow where we actually emit a webhook (it doesn't have to do anything just has to be emitted) on an enrollment event @noahtalerman @PezHub @pacamaster @ddribeiro

I think you're correct that this is a duplicate I just want to be able say that it's been done.

nonpunctual avatar Jun 25 '24 19:06 nonpunctual

@noahtalerman we can go ahead and close this issue. I was able to validate that an MDM enrollment triggers a webhook as expected from #14722. Thanks!

ddribeiro avatar Jun 25 '24 19:06 ddribeiro

In the cloud city, Provision logic is tuned, Fleet enrollment blooms.

fleet-release avatar Jun 25 '24 20:06 fleet-release