fxfree.blogg.se

1. Jamf administrator for mac management install#
2. Jamf administrator for mac management update#
3. Jamf administrator for mac management registration#
4. Jamf administrator for mac management pro#
5. Jamf administrator for mac management software#

Azure allows you to have both the old secret and new key active to prevent service disruptions.

Jamf administrator for mac management update#

If the client secret expires, you must create a new client secret in Azure and then update the Conditional Access data in Jamf Pro.

Jamf administrator for mac management registration#

The app registration process in Azure AD is complete. Confirm that admin consent has been granted for the update_device_attributes permission.Īfter the app is registered successfully, the API permissions should only contain one permission called update_device_attributes and should appear as follows: Refresh the page by click on the Refresh button at the top of the page. You may need to re-authenticate your account in the new window and grant the application access by following the prompts. Next, grant admin consent for this app by selecting Grant admin consent for in the top left of the API permissions page. Select only the check box for update_device_attributes and save the new permission. On the Request API permissions page, select Intune, and then select Application permissions. At the top left of the API permissions page, select Add a permission to add a new permission. Next, we will add permissions to update device attributes. Note that this is required the integration will not succeed if there are any unexpected extra permissions in this app registration. On the API permissions page, remove all permissions from this app by selecting the. This value isn't available again, without recreating the app registration. You will need this value in later procedures. Enter a value in Description, select any option for Expires and choose Add.īefore you leave this page, copy the value for the client secret and record it for later use. Select Certificates & secrets under Manage. You'll need this value in later procedures. On the app Overview page, copy the Application (client) ID value and record it for later use. Select Register to create the application and to open the Overview page for the new app.

Jamf administrator for mac management pro#

For Redirect URI, leave the default of Web, and then specify the URL for your Jamf Pro instance.For the Supported account types section, select Accounts in any organizational directory.In the Name section, enter a meaningful application name, for example Jamf Conditional Access.On the Register an application page, specify the following details: In the Azure portal, go to Azure Active Directory > App Registrations, and then select New registration. Configure Conditional Access in Jamf Pro.Ĭreate an application in Azure Active Directory.Enable Intune to integrate with Jamf Pro.

Jamf administrator for mac management software#

TCP and UDP ports used by Apple software products on.Intune network configuration requirements and bandwidth.the Apple 17.0.0.0/8 block over TCP ports 5223 and 443 from all client networks.įor more information about these ports, see the following articles:.To allow APNS to function correctly on the network, you must also enable outgoing connections to, and redirects from: Apple: Ports 2195, 2196, and 5223 (push notifications to Intune).The following ports should be accessible for Jamf and Intune to integrate correctly: macOS devices with OS X 10.12 Yosemite or later.A user with Microsoft Intune Integration privileges in Jamf Pro.Microsoft Intune and Microsoft AAD Premium P1 licenses (recommended Microsoft Enterprise Mobility + Security license bundle).You need the following to configure Conditional Access with Jamf Pro:

Devices that are compliant with the Conditional Access policies can gain access to protected company resources.Īfter you configure integration, you'll then configure Jamf and Intune to enforce compliance with Conditional Access on devices managed by Jamf. Intune's analysis is combined with intelligence about the device user's Azure AD identity to drive enforcement through Conditional Access. Intune's compliance engine then analyzes the inventory data to generate a report. When Jamf Pro integrates with Intune, you can sync the inventory data from macOS devices with Intune, through Azure AD. The Cloud Connector automates many of the steps that are required when you manually configure integration.

Jamf administrator for mac management install#

To integrate Jamf Pro with Intune, you have two options: When your organization uses Jamf Pro to manage macOS devices, you can use Microsoft Intune compliance policies with Azure Active Directory (Azure AD) Conditional Access to ensure devices in your organization are compliant before they can access company resources. Integrate Jamf Pro with Intune for compliance