Jamf Ports Vulnerable

agakhan_admin
New Contributor II

Recently, my network team blocked Jamf ports ( 8443 AND 137,138,139 AND 443) stating to be Vulnerable. SMB ports needs to be blocked. 8443 I use to access my Jamf portal and also , many Mac machines enrolled via Jamf URL (user initiated enrolment programme) has 8443 port. (https://Jamf.xxx.xxx:8443) Any advice what can be done? to resume Jamf services ?

3 REPLIES 3

bentoms
Honored Contributor III
Honored Contributor III

@agakhan_admin err.. 8443 and 443 are not SMB.

8443 and 443 are HTTPS ports.

Are your clients also looking at https://Jamf.xxx.xxx:8443?

If so, changes will need re-enrolling.

agakhan_admin
New Contributor II

Yes, 8443 and 443 are not SMB ports, sorry that I didn't elaborated. CActually I enrol one of the client though User initiated enrolment programs and the link takes to the URL that is https//jamf.xxx.xxx:8443/enroll. I didn't saw the machine first but later, I figured out that now the machine is under "Unmanaged"

Also, do you know that Quick Add package is not working on Big Sur?

sdagley
Honored Contributor II

@agakhan_admin Quick Add is not supported for Big Sur due to changes for how Configuration Profiles can be installed. You'll need to use Apple Business/School Manager to enable Automated Device Enrollment via Jamf Pro, or use the user initiated enrollment via https://yourjssURL:8443/enroll