This guide requires Jamf Pro. Jamf Now and Jamf School have different script deployment capabilities.
Prerequisites
- Jamf Pro admin access
- Configured enrollment key from Runlayer (see below)
Creating an Enrollment Key
Creating an Enrollment Key
Enrollment keys allow devices to automatically register with Runlayer and obtain API credentials.
Navigate to Enrollment Keys
Go to Settings in the Runlayer dashboard and select the Enrollment Keys tab
Configure the Key
- Name (required): Enter a descriptive name (e.g., “Production MDM”)
- Description (optional): Add context about the key’s purpose
Deployment Steps
Generate the Script
Fill in your organization’s settings below to generate a customized deployment script.Jamf-specific configuration tips:
ENROLLMENT_USERNAME: Use a Jamf variable or extension attribute that provides the user’s identity. Common variables:$EMAIL, or a custom extension attribute.ENROLLMENT_DEVICE_NAME: Use a Jamf variable or extension attribute that identifies the device. Common variables:$COMPUTERNAME,$SERIALNUMBER, or a custom extension attribute.
Upload to Jamf Pro
- Navigate to Settings > Computer Management > Scripts
- Click New
- Enter a display name (e.g., “Runlayer Hooks”)
- Paste the generated script contents
- Set Priority to “After” (runs after other policies)
- Save
Create a Policy
- Navigate to Computers > Policies
- Click New
- Configure the policy:
- General: Name it (e.g., “Deploy Runlayer Hooks”)
- Scripts: Add your uploaded script
- Scope: Select target computers or groups
- Trigger: Choose execution trigger:
- Recurring Check-in: For periodic execution
- Login: Run when users log in
- Enrollment Complete: Run on new device enrollment
- Frequency: Set to Once per computer for initial deployment
Verification
Log Locations
| Platform | Log Location |
|---|---|
| macOS | /var/log/runlayer-hooks.log |
Exit Codes
| Code | Meaning |
|---|---|
| 0 | Success |
| 1 | General failure (missing config, enrollment failed) |
| 2 | Network failure |
| 3 | Installation failure |