Jamf Pro
Powerful workflows for IT pros
cancel
Showing results for 
Search instead for 
Did you mean: 

Forum Posts

Grant JAMF Pro admin rights via LDAP group?

Hi everyone! I'm struggling with getting this to work. Any input/advice would be greatly appreciated. Goal: Create an LDAP group in AD, add AD users who do not have individual admin user accounts created in JAMF, and grant access in JAMF per the AD g...  View more

  • 140 Views
  • 7 replies
  • 0 kudos

Create smart group based on distribution list name

Is it possible using OKTA LDAP (no AD bind) to create a smart group based on DL membership? Say I have a DL call IT-Team in AD and I want to target that group specifically for application deployment or something, is that possible? Old way, which was ...  View more

  • 35 Views
  • 1 replies
  • 0 kudos

Kerberos SSO Extension

Good morning, I've been looking into ways to get away from AD binding and have had some mild success in testing the SSO extension with Kerberos. I've found that i'm successfully getting a ticket and the majority of functionality is working as intende...  View more

  • 136 Views
  • 5 replies
  • 0 kudos

Big sur and AD problems

When I try to unjoin Big sur device from AD , Im getting this error message . "this computer is unable to access the domain controller due to unknown error " . Anyone here came across such issues , or know when this error happens ?  View more

  • 17 Views
  • 0 replies
  • 0 kudos

How are you managing iPads in your School District?

We are currently using Google as a Cloud identity provider to our JAMF Cloud Instance. We have user groups set up in our Google admin dashboard1. Student sets up iPad, enters schools issued google username and password during setup.2. Apps are scoped...  View more

  • 28 Views
  • 0 replies
  • 0 kudos

LDAP Sync

I'm looking for an LDAP sync solution. I need to detect changes on AD accounts without relying on a device inventory update. One reason for this is that we need to detect accounts that belonged to school leavers. If they have already wiped the device...  View more

  • 24 Views
  • 0 replies
  • 0 kudos

What are y'all's On-Prem File Share Solutions?

Our school is trying to replace an old OSX Server that's pretty much only being used to serve a handful of our staff with an on-prem fileshare. Since it's only utilized by a handful of very vocal staff we're trying to avoid replacing the old server w...  View more

  • 45 Views
  • 2 replies
  • 0 kudos

New Azure IDP and populating User and Location info

Hi all, it's really great to finally have the ability to have Azure as a Cloud Identity Provider in Jamf Pro. Now i have all my Mac and Azure User information in one place, i'm wondering how this be brought together? Specifically we're wanting to pop...  View more

  • 27 Views
  • 1 replies
  • 0 kudos

Status of Azure integration?

Hi all! The last thread I saw on the Azure integration was dated 11/2020 and that it would be ready at the end of that year. Is there an update to that roll out or did I miss it? thanks!  View more

  • 53 Views
  • 2 replies
  • 0 kudos

Problem Configuring Jamf Infrastructure Manager

Looking for advice setting up a JIM on Ubuntu. I get the following when trying to enroll the JIM. WARNING: An illegal reflective access operation has occurredWARNING: Illegal reflective access by com.google.gson.internal.reflect.UnsafeReflectionAcces...  View more

  • 27 Views
  • 0 replies
  • 0 kudos

Nomad Login and samAccountNames over 20 characters

Hi, I am trying to implement Nomad Login AD for the first time to create our user accounts. I have it all working except for instances where the username is over 20 characters as this is truncated in AD. Does anyone have a solution for this? For othe...  View more

  • 19 Views
  • 0 replies
  • 0 kudos

Using Google LDAP with iPads

Is anyone here using Google LDAP as a cloud identity provider in Jamf and using Google LDAP groups to scope Apps and profiles to iPads in Jamf? If so what are your experiences?  View more

  • 23 Views
  • 0 replies
  • 0 kudos

JIM Monitoring and Logging with QRADAR or other SIEMs

Hi everyone, we currently have the JIM configured for an LDAP Proxy in our JAMF Cloud environment and I was wondering if anyone has setup any sort of SIEM system with JIM for monitoring any LDAP activity. Looking for QRADAR specifically, but any insi...  View more

  • 22 Views
  • 0 replies
  • 1 kudos

Catalina fails to autenticate to OpenLDAP

I am wondering if anyone else may have come across this issue. So I have to integrate about 30 new iMacs into my network. My network is primarily Linux and FreeBSD. All hosts authenticate to an OpenLDAP server running on FreeBSD, all home directories...  View more

  • 17 Views
  • 0 replies
  • 0 kudos

create a smart group based on User Account Type?

I'm trying to determine which computers have a Mobile LDAP account that are Jamf enrolled. For example in a Computer's inventory record under Local User Accounts it has the UID, Account Type, Admin Yes/No. Is there any way to pull the Type: Mobile LD...  View more

  • 32 Views
  • 1 replies
  • 0 kudos

LDAP Building not Populating

Have been mapping out LDAP using Okta. All seems to be well with the exception of getting the building field to populate. I have created Building entries in Jamf with the exact names of the ones we have in Okta under Physical Delivery Office Name. Ri...  View more

  • 31 Views
  • 0 replies
  • 0 kudos

plist keys for Adobe Creative Cloud Desktop App

Anyone know all the plist keys for the Adobe Creative Cloud Desktop App? I'm trying to see if they hid a way to pre populate the users email address in the sign in field for that app. I've just recently started using the $EMAIL field in Office to pre...  View more

  • 34 Views
  • 2 replies
  • 0 kudos

SSO & LDAP Device Assignments

We are deploying a large number of iOS devices and want to use our Google SSO configuration for users to self assign their device. Users log in and their device is assigned correctly, but we would like to pull additional data from LDAP for the equiva...  View more

  • 60 Views
  • 4 replies
  • 0 kudos

LDAP Group for Disabled Users

I'd like JAMF to notify me when a user is moved to the "Disabled" OU in AD, this way I will know when a Mac user has left the business and I can begin chasing down their device. I have tried changing the LDAP settings for "Position" mapping to "membe...  View more

  • 52 Views
  • 3 replies
  • 0 kudos

Join domain on VPN MacBook

Hello everyone Due to COVID-19 situation we have to setup two MacBook need to be join to windows AD domain over VPN (forticlient) We are currently depolying windows machine while joining the new machine ToVPN and it works fine without any issue. We d...  View more

  • 31 Views
  • 2 replies
  • 0 kudos

MacBook need need to join domain on VPN

Hey everyone Due to COVID situation we have to setup MacBook on domain over VPN (forticlient).In normal situation we are able to join Windows domain while on office network without any issue. I am new with Mac world and we do not know have that many ...  View more

  • 19 Views
  • 0 replies
  • 0 kudos

"Scope is corrupt"

Has anyone seen this before? I'm seeing it on several policies this morning that I had scoped to all computers and limited to a few LDAP groups each. When I go in to look at the policy the scope is now "specific computers" with no targets, but the LD...  View more

  • 38 Views
  • 1 replies
  • 0 kudos

Using LDAP Fields

Hey folks,We're looking for a way to populate as many fields in JAMF using our OKTA-LDAP integration (already set up). Currently we're populating the email, username and full name fields.1. Is there a place that lists the values that need to be fille...  View more

  • 40 Views
  • 1 replies
  • 0 kudos

NetSUS LDAP Configuration

I'm having some issues configuring LDAP logins for a new NetSUS installation. I've created a group in AD, and assigned relevant users. I've transferred directly from the Attributes on the Group in AD to the NetSUS fields; copying the Group name to AD...  View more

  • 23 Views
  • 0 replies
  • 0 kudos
Labels