Munki, Licensed Applications Best Practices
This article provides information on how licensed applications should be handled for the Technology Services' Munki Mac Endpoint Management system.
- Munki Mac Endpoint Management
- University of Illinois IT Pros leveraging Technology Services Endpoint Services' Munki Mac Endpoint Management
ActionsIT Professionals are responsible for making reasonable best efforts in observing software license restrictions and keeping licensed software secure. The Endpoint Services (EPS) team has developed the following best practices for managing licensed applications:
- Private information should only be kept in the appropriate pkgs directory
- All private information (e.g., license keys) should be kept in the appropriate pkgs directory and never in pkgsinfos/catalogs or manifests. In the event that Munki needs to run a script which contains private information, a payload-free pkg can be created and stored in the appropriate pkgs directory.
- Licensed software should only be made available in the appropriate repositories and manifests
- Software that is restricted to UIUC users is kept in the UIUC repository, software for UIC in the UIC repository, etc. Software that is licensed to a specific unit should be kept in that unit's repository.
- Licensed software
installers should only be made available to those that are entitled to use
them. IT Pros should pay close attention when adding licensed software to manifests to ensure that only users that are entitled to use the software have access.