You can display an Organization’s message on the Lock screen of a macOS device which can provide useful information like Emergency Information, Policy communication, Security and Privacy messages, Legal Notices, etc.
For example: You could display something like below:
This is a Private Network. Unauthorized access or misuse of this system is an Offense under [Act Name]. All activities on this network are monitored, and any violations will be subject to legal action. By logging in, you agree to comply with [Your Organization’s] security and data protection policies. If you are not an authorized user, disconnect immediately. For assistance or questions, contact [Contact Information].
For configuring this message on the macOS lock screen using Intune, Your device must be enrolled and managed by Intune.
Let’s check how to configure this message using Intune admin center in the following steps:
Table of Contents
Step 1 – Create a Device Configuration Profile
First step is to create a device configuration profile for macOS on Intune admin center. Let’s check the steps:
- Login on Microsoft Intune admin center
- Devices > macOS > Configuration Profiles
- Click on + Create Profile to add a new profile.
- Select Profile type as Templates
- Select Template name as Device features
Provide a unique name and description of the profile. For example:
- Name: Display Lock Screen Message macOS
- Description: This Device Configuration profile will configure a Lock screen Org. message on all MacOS devices
On Configuration Settings tab, Expand Login Window and find a setting called Banner. Enter your Organization message in the Banner text box. Whatever Information is entered in the Banner text box, will be displayed on the Lock screen of macOS.
A message that appears to users on the login screen. The message could be, for example, a welcome, a warning, or your organization’s lost and found contact information.About Banner Setting
It is recommended to first test this policy on a test group of devices before production. Therefore, Click on Add group and add a test Azure AD group that contains test devices.
Once you are happy with the policy, you can add an Azure AD group that contains business users devices. You can also click on + Add all devices to Include all Intune managed devices.
Review + Create
Review Device configuration profile Summary and click on Create to deploy.
Step 2 – Monitor Deployment Progress
You can follow below steps to monitor macOS lock screen profile status:
After you have deployed this device configuration profile, you will need to wait for the Device check-in process to complete.
If you’re testing this policy on a test device, you can manually kickstart Intune sync either from the device itself or remotely through the Intune admin center.
Alternatively, you can use PowerShell to force the Intune sync on macOS devices. Another way to trigger the Intune device check-in process is by restarting the device.About Intune Device check-in
- Go to Devices > macOS > Configuration Profiles. Select macOS lock screen message profile.
- You can find Device and user check-in status to find out if the profile deployment was successful.
Let’s check if the Organization message is now displaying on the Lock screen. To check If the message is applied successfully. Let’s check the steps:
- Click on Apple Icon > Select Lock Screen
- You can find the Banner message displayed on the lock Screen. As an example, I have configured below message:
This is a Private Network. Unauthorized access or misuse of this system is an Offense under Computer Act XXX. All activities on this network are monitored, and any violations will be subject to legal action. By logging in, you agree to comply with cloudinfra.net security and data protection policies. If you are not an authorized user, disconnect immediately. For assistance or questions, contact Jatin Makhija.Banner message configured from Intune admin center