Hi everyone! I'm struggling with getting this to work. Any input/advice would be greatly appreciated. Goal: Create an LDAP group in AD, add AD users who do not have individual admin user accounts created in JAMF, and grant access in JAMF per the AD g... View more
Is it possible using OKTA LDAP (no AD bind) to create a smart group based on DL membership? Say I have a DL call IT-Team in AD and I want to target that group specifically for application deployment or something, is that possible? Old way, which was ... View more
Good morning, I've been looking into ways to get away from AD binding and have had some mild success in testing the SSO extension with Kerberos. I've found that i'm successfully getting a ticket and the majority of functionality is working as intende... View more
When I try to unjoin Big sur device from AD , Im getting this error message . "this computer is unable to access the domain controller due to unknown error " . Anyone here came across such issues , or know when this error happens ? View more
Hi All, This worked for me...Hence I am sharing this to all the admins out there who is looking for a permanent solution of never ending AD Password Sync Issue with FileVault..First let's spit the scenarios..Scenario 1 (Mac User who is aware of his/h... View more
We are currently using Google as a Cloud identity provider to our JAMF Cloud Instance. We have user groups set up in our Google admin dashboard1. Student sets up iPad, enters schools issued google username and password during setup.2. Apps are scoped... View more
I'm looking for an LDAP sync solution. I need to detect changes on AD accounts without relying on a device inventory update. One reason for this is that we need to detect accounts that belonged to school leavers. If they have already wiped the device... View more
Our school is trying to replace an old OSX Server that's pretty much only being used to serve a handful of our staff with an on-prem fileshare. Since it's only utilized by a handful of very vocal staff we're trying to avoid replacing the old server w... View more
Does anyone have experience getting device certificates from Active Directory via Jamf's AD CS Connector on to a personally owned device enrolled via user-initiated enrollment? The problem I'm running into is that, even though the user has to authent... View more
Hi all, it's really great to finally have the ability to have Azure as a Cloud Identity Provider in Jamf Pro. Now i have all my Mac and Azure User information in one place, i'm wondering how this be brought together? Specifically we're wanting to pop... View more
Does anyone have any experience/feedback using google AD? View more
Hi all! The last thread I saw on the Azure integration was dated 11/2020 and that it would be ready at the end of that year. Is there an update to that roll out or did I miss it? thanks! View more
Looking for advice setting up a JIM on Ubuntu. I get the following when trying to enroll the JIM. WARNING: An illegal reflective access operation has occurredWARNING: Illegal reflective access by com.google.gson.internal.reflect.UnsafeReflectionAcces... View more
Hi, I am trying to implement Nomad Login AD for the first time to create our user accounts. I have it all working except for instances where the username is over 20 characters as this is truncated in AD. Does anyone have a solution for this? For othe... View more
We have some iPads that are already deployed through a prestage setup. We didn't have ldap set up at the time though, so no one authenticated, and for inventory purposes we don't have a good idea of who has what. The rollout was rushed. Anyway, now t... View more
Is anyone here using Google LDAP as a cloud identity provider in Jamf and using Google LDAP groups to scope Apps and profiles to iPads in Jamf? If so what are your experiences? View more
Hi everyone, we currently have the JIM configured for an LDAP Proxy in our JAMF Cloud environment and I was wondering if anyone has setup any sort of SIEM system with JIM for monitoring any LDAP activity. Looking for QRADAR specifically, but any insi... View more
I am wondering if anyone else may have come across this issue. So I have to integrate about 30 new iMacs into my network. My network is primarily Linux and FreeBSD. All hosts authenticate to an OpenLDAP server running on FreeBSD, all home directories... View more
I'm trying to determine which computers have a Mobile LDAP account that are Jamf enrolled. For example in a Computer's inventory record under Local User Accounts it has the UID, Account Type, Admin Yes/No. Is there any way to pull the Type: Mobile LD... View more
Have been mapping out LDAP using Okta. All seems to be well with the exception of getting the building field to populate. I have created Building entries in Jamf with the exact names of the ones we have in Okta under Physical Delivery Office Name. Ri... View more
Anyone know all the plist keys for the Adobe Creative Cloud Desktop App? I'm trying to see if they hid a way to pre populate the users email address in the sign in field for that app. I've just recently started using the $EMAIL field in Office to pre... View more
Very soon (most likely next week) our order of 1300 iPads will be arriving. We require user authentication for enrollment. The Jamf server is tied to Microsoft Active DirectoryI will be creating a new PreStage. In there I will be skipping enrollment ... View more
We are deploying a large number of iOS devices and want to use our Google SSO configuration for users to self assign their device. Users log in and their device is assigned correctly, but we would like to pull additional data from LDAP for the equiva... View more
I'd like JAMF to notify me when a user is moved to the "Disabled" OU in AD, this way I will know when a Mac user has left the business and I can begin chasing down their device. I have tried changing the LDAP settings for "Position" mapping to "membe... View more
Hello everyone Due to COVID-19 situation we have to setup two MacBook need to be join to windows AD domain over VPN (forticlient) We are currently depolying windows machine while joining the new machine ToVPN and it works fine without any issue. We d... View more
Hey everyone Due to COVID situation we have to setup MacBook on domain over VPN (forticlient).In normal situation we are able to join Windows domain while on office network without any issue. I am new with Mac world and we do not know have that many ... View more
Has anyone seen this before? I'm seeing it on several policies this morning that I had scoped to all computers and limited to a few LDAP groups each. When I go in to look at the policy the scope is now "specific computers" with no targets, but the LD... View more
Hey folks,We're looking for a way to populate as many fields in JAMF using our OKTA-LDAP integration (already set up). Currently we're populating the email, username and full name fields.1. Is there a place that lists the values that need to be fille... View more
I'm having some issues configuring LDAP logins for a new NetSUS installation. I've created a group in AD, and assigned relevant users. I've transferred directly from the Attributes on the Group in AD to the NetSUS fields; copying the Group name to AD... View more