Jamf Nation Community

@drenigoln If you're talking about building out an on-prem Jamf Pro installation you're going to be building a cluster configuration, typically a primary JSS instance that handles devices on your internal network, and a public facing JSS instance in your DMZ that handles devices when they're not on your internal network. Unless you're planning on setting up your own Cloud hosted distribution point (e.g. AWS S3) you'll also need at least two file share distribution point servers running SMB to support files being added by Jamf Admin and HTTPS to support your endpoints downloading files (no security organization is going to allow you to have a public facing SMB server). You'll also need to have a daily backup plan in place for the MySQL server needed to host the JSS database, and for every JSS update you'll have the excitement of making sure everything is backed up before installing the update so you can then revert back to a working environment if anything goes wrong. And depending on how the JSS/DP/MySQL hosts are managed you also get the excitement of patching them, or if you're not responsible for your own patching you get to hope whoever in your org is doesn't break your Jamf Pro system when they do their periodic updates.

Personally, after having set up a couple of different on-prem Jamf Pro environment where I got to do all of the things mentioned above (as well as many other things I left out because this post is already longer than I'd planned), I'd much rather leave all of the maintenance and operation duties for managing a Jamf Pro environment to Jamf, so I can concentrate on actually using it to manage my org's Macs.

Edit: As @cdev and @MehdiYawari point out there are also features already not included with on-prem Jamf Pro (e.g. Jamf App Catalog) and features that are known to be going away for on-prem (e.g. Conditional Access integration with Intune). That latter group is likely to expand as Jamf looks to push more customers to Jamf Cloud.