- Jamf Nation Community
- Products
- Jamf Pro
- Re: jamf connect azure failure logs
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
jamf connect azure failure logs
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-07-2021 09:48 AM
Hi all,
So we have JAMF Connect working perfectly in our company but the other day we noticed that there are 1000s of failure logs.
Logging in through the login screen there is a successful login in the azure logs but after that there are failure logs throughout the day.
It looks like it might be the menu app causing these failures when it tries to verify the passwords but I cant pin point what is the problem.
Has anyone else had this issue?
7 REPLIES 7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-18-2021 12:44 PM
I also had this issue - I believe it's due to conditional access config for me. Did you figure out a way around it?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-22-2021 07:34 AM
So Jamf told me that this is expected behaviour. As the Menu app doesn't use MFA and just does a password sync, Azure interprets it as a failed login attempt.
Not the best if you ask me but it seems to work fine.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 03-01-2021 09:09 PM
Yeah, unfortunately, those failures get InfoSec's hackles up. I was able to solve this by creating an enterprise application (instead of an app registration). then i added the user.read scope and granted consent for my org (and whatever else needed in that app registration for Jamf Connect). The outcome is that the enterprise app shows up in the conditional access policy list of cloud apps. i can then exclude it from the MFA policy and redirect these failures. I'll try and put together a writeup for this...
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 03-03-2021 06:02 AM
@scheb that would be awesome if you could get a write up on that. Would defo get the security team off our backs!
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 04-30-2021 06:04 AM
Hi
So we see this issue also since long time. May a few months. Never found a solution and jamf support said to me also, that this is normal behavior. But something strange must be happen, because my user is the only one since two weeks, that never run in this login failures.
I dont know how to troubleshoot exactly. I need to go back and look what we have changed in azure (maybe) with my user.
I have also an admin user in azure, but this is not the one I use for jamf CONNECT.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 05-05-2021 12:39 AM
really strange, my user are back with the errors in azure ad. I dont know how to solve it.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 05-05-2021 12:41 AM
@scheb did you the write up already?
I tried the same with the enterprise application but it doesn't work for us.
