Inquiry About Jamf Policy Deployment on Network-Isolated Mac

Jeff-DC
New Contributor

Hi everyone,

I have a question. I have a batch of experimental Macs that need to be managed and registered with Jamf.

Question 1: These experimental Macs cannot connect to the internet. Is there a way to deploy policies through Jamf?

Question 2: If internet access is needed for proper deployment, I know Jamf has port information. I would like to ask experienced experts which specific ports need to be opened.

All Macs with normal internet access can receive policies correctly. I want to know how to ensure that the network-isolated Macs can also receive policies from Jamf. Thank you, everyone.

2 REPLIES 2

jamf-42
Valued Contributor II

For jamf to function it requires APNS, this requires internet access 

https://learn.jamf.com/en-US/bundle/technical-articles/page/Network_Ports_Used_by_Jamf_Pro.html

Ports used by Apple for enterprise 

https://support.apple.com/en-gb/101555

 

AJPinto
Honored Contributor III
  1. Jamf even if on prem requires access to APNS on the device level. Some functions will work without the device having internet access, but not many and certainly not enough to test with.
    1. If you have Jamf Cloud, that is SaaS and without access to AWS forget anything working.
  2. Jamf and Apple both have all their ports and hosts well documented, searching the respective vendors documentation should yield all you need to know.
    1. I have shoved the table that I used to ensure what we need is allowed. Be warned I have not updated it in a while, and both Apple and Jamf will make updates to these hosts/ports without notice. 
    2. I also put some relevant network links for source.

 

Use Apple products on enterprise networks - Apple Support

IP Address and Domain Changelog for Inbound/Outbound Traffic with Jamf Cloud - Technical Articles | ...

Network Ports Used by Jamf Pro - Technical Articles | Jamf

External ports needed:

Apple:

 

JAMF Pro:

Internal ports needed: