Find My can be disabled on macOS devices via an MDM configuration. This can be useful to Mac administrators who'd like to prevent end-users from signing into Find My (and enabling User-based Activation Lock) on company-owned devices.
Note: This profile will not proactively disable Find My if it is already enabled.
Configuring the Profile
The payload for Find My is com.apple.icloud.managed and can be created manually using a third-party profile creator tool such as iMazing. When using iMazing, you can search for "Find My" and you will see the following option:
Once you click "Add Payload", go ahead and tick the checkbox:
Now that it's been configured, head over to the general tab in iMazing, name the payload, fill out any other relevant fields, and upload it to Addigy as a custom profile.
User Experience
If users try enabling Find My through System Settings, they will see the option available, but nothing will happen if they click "Turn On".