- Jamf Nation Community
- Products
- Jamf Pro
- Sending VPP Invitations
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 07-28-2014 05:53 PM
It appears that VPP invitations can only be sent to users with JSS accounts. However, we'd like to avoid creating user accounts for everyone in our LDAP.
The option to send invitations to users in LDAP does not exist unless a user has been added to the JSS or has been assigned an asset. In order to send out VPP invitations, I will have to manually assign every user in our AD to a device. That isn't helpful. Is there a way to to match machine users to their AD accounts and have the hardware automatically assigned?
Also, JAMF does not pull the e-mail address field from AD. It pulls the user logon name and appends the domain. In our case, the internal domain ends in .internal, so JAMF thinks that everyone's e-mail address is: john.doe@example.internal. It never actually looks at the e-mail field for AD, or at least it won't prefer the AD e-mail field over the logon name + domain name format that it keeps so dear.
Questions:
1.) Is it possible to send invitations to an LDAP user's e-mail address? If so, how?
2.) If option one isn't possible, what is the recommended method of importing everyone from LDAP into JSS? I see no easy way to do this.
Solved! Go to Solution.
1 ACCEPTED SOLUTION
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-16-2014 05:23 AM
Hi @Seven
I've actually seen the behavior you're describing with the email address not being populated correctly. The good news is, there's an easy fix. Look in your LDAP Server settings, navigate to the user mappings tab, and change the attribute for email address from what it is (most likely userPrincipalName) to the correct attribute (usually mail). Hopefully that will get you pointed in the right direction!
Reply
4 REPLIES 4
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 07-28-2014 06:05 PM
Yes, providing you have 9.32 build, and smtp setup, and the mail account populated for your users in your active directory and this information is accurate to their device and user account, then mail invites should work.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 07-29-2014 10:10 AM
@Malcolm - I've updated my original question. The issue is that one: you can only invite people who are in the JSS or who have been assigned an asset. And JAMF does not pull correct e-mail addresses.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-14-2014 03:31 PM
I've seen this same issue. It would be nice to have the ability to invite people, without being forced to first manually input them into JSS. With a couple thousand users that is not really an option.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-16-2014 05:23 AM
Hi @Seven
I've actually seen the behavior you're describing with the email address not being populated correctly. The good news is, there's an easy fix. Look in your LDAP Server settings, navigate to the user mappings tab, and change the attribute for email address from what it is (most likely userPrincipalName) to the correct attribute (usually mail). Hopefully that will get you pointed in the right direction!
Reply
