Apple Enterprise Management

SS MacAdmin

SS — Super Shitty to the Mac

Deep-dive automation guides for Intune, Azure Automation, and Apple management. Built for enterprise Mac admins.

Read the Blog Browse Database
defender_check.sh
#!/bin/bash
# macOS Defender Check · SS Mac Admin
 
MDE_STATUS=$(mdatp health \
  --field real_time_protection_enabled)
 
if [[ "$MDE_STATUS" == "true" ]]; then
  echo "✓ RTP enabled"
else
  echo "✗ RTP disabled — remediating"
  mdatp config real-time-protection \
    --value enabled
fi
 
# exit 0 → Intune compliant
// latest

Recent Posts

All Posts
11 May 2026

Why EdgeUpdater Won't Stop Asking for Permission — and How to Fix It

Deepdive in troubleshooting!

blog 09 May 2026

Simplified Setup for PSSO with Intune

This changes everything

blog 29 Apr 2026

macOS Firewall in Intune: The Compliance Policy Enforcement Trap

Burning down the house

blog 31 Mar 2026

DDM, Intune and You

All you need to know about DDM

blog 24 Mar 2026

Meet Apple Business

Good bye ABM

blog
// about

Built by a
Mac Admin,
for Mac Admins.

SS Mac Admin is a technical blog covering real-world enterprise Mac management — from PowerShell automation to compliance frameworks. Everything here is open source and shared openly with the community.


About & Contact