Triggering Remote Lost Mode for macOS

A lost device can pose a significant security risk to an organization by exposing sensitive corporate data to unauthorized access. Lost Mode in Hexnode UEM enables administrators to secure lost devices by placing them in a restricted state. When Lost Mode is enabled, the device displays a custom on-screen message with contact details to assist with recovery. Administrators can optionally enable location tracking to view the device location details in the Hexnode portal and allow access to Wi-Fi settings to ensure the device can reconnect to a network. The device remains in Lost Mode until the administrator disables it from the Hexnode UEM portal.

Enable Lost Mode on macOS devices.

Once a device is reported as lost/stolen, you can execute the “Enable Lost Mode” action remotely from the Hexnode UEM portal.

1. Log in to the Hexnode portal.
2. Go to Manage > Devices.
3. Select the specific device that is lost/stolen.
4. Navigate to Actions > Security.
5. Click on Enable Lost Mode.
6. In the configuration pop-up, enter the Custom message, Phone number, and Footnote to be displayed on the device screen. You can include the device details and the contact details that help in retrieving the device.
7. Enable the following settings based on your requirement: (optional)
   • Allow Access to Wi-Fi Settings – Enables access to Wi-Fi settings while the device is in Lost Mode, which helps the device to reconnect to a network.
   • Enable Location Tracking – Allows Hexnode UEM to track and report the device location while Lost Mode is active.
Note:

You can also use the following wildcards to fill the details that need to be displayed on the device screen:

%devicename%

%deviceid%

%username%

%model%

%udid%

%assettag%

%serialnumber%

%name%

%department%

%imei%

%email%

%devicenotes%

%alternateemail%

%phonenumber%

%domain%

%osname%

%wifimacaddress%

%osversion%

%iccid%

%userprincipalname%

%netbiosname%

%newline%

Custom Message and Footnote allow all the wildcards mentioned above, while Phone Number only supports the wildcard %phonenumber%.

8. Click Enable.

   When the device’s Lost mode is enabled/disabled, the admin receives an email notification for the respective action on the enrolled device.

How to track the location of a lost macOS device?

To track the location of a lost macOS device using Hexnode UEM, administrators must enable the Enable Location Tracking option while configuring the Lost Mode action. Once enabled, the device reports its location to the Hexnode server whenever the device is online.

You can also track the device location by executing the Scan Device Location action, which displays the location information on the Location History report under the Reports tab. When the Location Tracking policy is associated with the device, the administrator can also view the location from the Hexnode portal by navigating to a specific device and accessing its Location History. Location updates continue to be recorded as long as Lost Mode remains active.

How to allow access to Wi-Fi Settings?

While enabling Lost Mode on a macOS device, administrators can enable the Allow Access to Wi-Fi Settings option from the Lost Mode configuration pop-up. When this option is enabled, the user can access the Wi-Fi settings even while the device is in Lost Mode, allowing the device to connect to an available network. This helps the device to communicate with the Hexnode server and report location details when location tracking is enabled.

Disable Lost Mode on macOS devices

Enabling the lost mode restricts the user from accessing the macOS device. However, once the device is found, the administrator can Disable Lost Mode from the Hexnode UEM portal by:

• Navigate to Manage > Devices.
• Click on the specific device.
• Select Actions > Security > Disable Lost Mode.