Jamf Nation Community

SzymonManiurski · ‎12-19-2022

Hi

Hello
I am looking for a solution to the problem of retrieving user information from google cloud.
The problem is that I am connected to Cloud Identity Providers -> company name - mapping. I can perform a test and find people from my organization there, there is a full list of data from google cloud - what I need.

However when enrolling a laptop where the user has to log in after SSO. Policies are downloading, laptop is configuring but I don't have any information either in user data or in Computer -user and location.

What could be wrong here?
I tried to wait, wait a long time (more than 24 hours even though I have a checkin for 5 minutes) - I tried sudo jamf recon and nothing.

SzymonManiurski · ‎12-20-2022

i solved this

problem was with mapping

so for example - when you enrolled your laptop with name.surname@company.com that username was then this email adress

so when mapping asked google to reveal additional user data - google does not know who that is because google wanted just name.surname

so i changed mapping - username is now mail and that helped with that case.

View solution in original post

SzymonManiurski · ‎12-19-2022

ok i think i get it

username - i have name.surname@company.com

but to proper mapping i need username as name.surname

jamf populates this as first SSO login thru enrollmnent (you need to put your email adress - so this is confussion)

anybody knows how to change that?

AtillaTheC · ‎12-20-2022

we had to use google LDAP instead for login to solve this, had a ticket open with Jamf forever but found no other way. This is just a stop gap for us until we get Okta up and running for Jamf.

Downside here is no 2-factor at enrollment with this work around. Users will sign in with first.last and google password.

SzymonManiurski · ‎12-20-2022