FR: Bootstrap package

[patgmac]

Would love to see an additional bootstrap package added to the build process for those of us that want Munki to run over the login window during an ADE enrollment.

Personally, the only reason I have to obtain an Apple Developer ID installer certificate is for munkitools. Which is a PITA at my org because I have to go through a VP.

[gregneagle]

An issue here is that there are at least two scenarios for running Munki as part of the ADE setup process:

1. You skip user creation during Setup Assistant and the machine ends up at the loginwindow after Setup Assistant completes. The bootstrap package is appropriate here.
2. A user is created during Setup Assistant and the machine goes right to that user's Desktop after Setup Assistant completes. In this case, you want a different option, where managedsoftwareupdate --auto is triggered to run in the background behind the user session.

So that means at least three packages, with the extra resultant work, and admin confusion as to which to download.

The ideal solution here is for Apple to fix InstallEnterpriseApplication in MDM so that multiple packages can be reliably installed during ADE enrollment. But since it's been years and years with zero improvement here, I think hoping for this is futile.

So a second approach would be to have a single package that can also optionally do the bootstrap/auto-run stuff when triggered somehow. I asked a few times for feedback on how such a thing could work given the varying behaviors of many MDMs, and it seems we cannot rely on a configuration profile being installed before the package is installed.

Still open to other ideas on how to solve this problem.