Home > Mac administration, macOS, Management Profiles, Office 2016, Office 365, Scripting > Suppressing Microsoft AutoUpdate’s Required Data Notice screen

Suppressing Microsoft AutoUpdate’s Required Data Notice screen

Suppressing Microsoft AutoUpdate’s Required Data Notice screen

As part of the latest update to Microsoft AutoUpdate app, a new screen has appeared which requires the logged-in user to click on it.

Disable mau required data notice screen

This screen is to notify users that Microsoft AutoUpdate collects diagnostic data for Microsoft and provides basic information on how to opt-out of the data collection. The overall point of the screen is to help Microsoft comply with the European Union’s General Data Protection Regulation (GDPR) and similar laws.

While this screen is fairly straightforward for an individual to deal with on their own Mac, it may cause challenges for computer labs because those facilities may remove and repopulate user home folders on each login. Since the setting which records that a user has seen the notification is stored in the user’s home folder, in the ~/Library/com.microsoft.autoupdate2.plist file, this may result in the lab’s users seeing this notification multiple times unnecessarily. To address this, Microsoft has made suppressing this screen possible by adding the following key and value to the com.microsoft.autoupdate2.plist file

  • Key: AcknowledgedDataCollectionPolicy
  • Value: RequiredDataOnly

This setting can be applied with a script or with a configuration profile. For more details, please see below the jump.

I’ve written a script and configuration profile to apply this setting. Either will work, but my personal preference would be to use the profile.

Script:

This script is also available on GitHub via the link below:

https://github.com/rtrouton/rtrouton_scripts/tree/master/rtrouton_scripts/disable_mau_required_data_notice_screen

Profile:

This profile is also available on GitHub via the link below:

https://github.com/rtrouton/profiles/tree/master/DisableMAURequiredDataNotice

  1. metalfoot
    July 24, 2019 at 5:37 pm

    I was able to download the DisableMAURequiredDataNotice.mobileconfig file but when I go to upload it into Jamf Config profiles, it sorta works. Creates the entry but doesn’t add any of the custom settings. Is there something I am missing or do I need to make a special plist for the custom settings for this?

    Thanks!

  2. Jake
    July 25, 2019 at 6:30 am

    In case you might offer a solution – the Guest User account seems to be terminally afflicted? I know less than Sgt. Schultz – but it kinda maybe makes sense that no settings can be “set” for the Guest Account?

  3. Shane Palmer
    July 29, 2019 at 5:54 pm

    FYI. As mentioned by Paul Bowden on Slack this can be either a computer level or user level configuration profile. See https://macadmins.slack.com/archives/C29PWTQFM/p1563381267144800

    After testing I found you can also run the defaults command to modify the computer level plist as well. This should cover all users that haven’t already set that key by clicking OK.

    defaults write /Library/Preferences/com.microsoft.autoupdate2 AcknowledgedDataCollectionPolicy RequiredDataOnly

    Additionally, there is also a bug that while the Require Data Notice is displayed Microsoft AutoUpdate will run at 100% CPU. See https://macadmins.slack.com/archives/C29PWTQFM/p1563828753012400

    • Shane Palmer
      July 29, 2019 at 7:18 pm

      I meant to add that the computer level plist might be a workaround for the issue of this not working with the Guest Account that Jake mentioned.

      • Jake
        July 30, 2019 at 12:55 am

        Thanks, Shane. I got so annoyed with it that I just yanked Office. I also truly don’t comprehend what “data” Microsoft wishes to mine that apparently legally requires a “Required Data Notice”, or why they’d cause it to run the CPU at 100% just to display their goofy notice and force users to accept it? All just a bit too Orwellian for me 😉
        Given I tap into the Guest account quite frequently, it actually would take less time for me to just quickly reinstall the software should I ever need it again 😉
        And my apologies if this is beyond the scope here. Thanks very much for this resource, as otherwise I’d have had no idea at all how to even possibly stop that nonsense.
        If your fix works with the guest account, it’d be great to know, though? And possibly the gurus – who are genuinely kind enough to do their best to shield us from this type of nonsense – maybe they can be more clear with us about what data we’re expected to be forced to release to Microsoft in exchange for having installed their wondrous product? 😉
        And I’m not even paranoid. It just seems that very weird to me? Thanks!

  4. Chas Foulds
    July 30, 2019 at 9:43 am

    “Fairly straightforward for an individual to deal with”, you say. But “Learn more” leads to a Microsoft’s Essential Services page – 100 minutes to read! And mostly incomprehensible to non-IT scientists. Am I being bullied into accepting that my European “connection experience” data (of two types, apparently) can be collected and used in the USA? Unless I accept, I can’t even use a normal shutdown on my laptop because Autoupdate interrupts it. So currently, I’m using Pages and shutting down with the power button and I’m furious.

  5. metalfoot
    July 30, 2019 at 4:43 pm

    Any updates on what I am doing wrong on this. I upload the mobileconfig but there is nothing configured in it that I can see in Jamf. Is there a plist I need?

  6. Howie Isaacks
    August 7, 2019 at 5:08 pm

    Every time I attempt to scope the profile to one of my test Macs it shows as failed in Jamf Pro. It’s not getting pushed out.

  7. August 16, 2019 at 6:29 pm

    If you check the mobileconfig that you uploaded, you might find, like I did, that the guts of the file are gone – there’s just a “general” section and that’s it, which makes me think that Apple changed something between when Rich posted this and now….

  8. Kurt Fattic
    August 20, 2019 at 1:29 am

    Just signed it, pushed it out to my labs and no more pop-up! Much appreciated!

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: