Posted on 04-23-2023 06:47 PM
Hi all,
We are using Jamf Pro server on-prem in a network environment disconnected from the Internet.
Jamf Pro servers and devices are communicating with Apple through a proxy.
In this case, is there a way to use the ABM device as an ADE without the intervention of the administrator?
Please, help me.
Posted on 04-24-2023 04:51 AM
I'm not entirely confident in saying yes it should work, as I have never had to manage that sort of setup. That said, Apples documentation seems to suggest that it will work as long as packet inspection is disabled.
04-24-2023 05:07 AM - edited 04-24-2023 05:08 AM
I am going to lean to this will probably not work, and if it does it will probably be very volatile and high maintenance. Apple does not allow any form of traffic inspection or redirection, which is more or less what a proxy does. JAMF Cloud may be the best solution if you cannot allow a direct connection.
Just to satisfy my own curiosity, is there any reason your employer is not wanting to allow direct internet traffic to apples network block or specific set of services required for ABM? I work for a pretty heavy handed org myself.