Help

Switching from LDAP to Cloud IdP (Entra)

SteveWalker
New Contributor III

Posted on ‎08-27-2024 09:39 PM

Our Jamf Pro is currently setup to use LDAP for adding Directory Accounts. 

I want to switch to using Entra for Cloud IdP.

Anybody run into any issues when making the switch? Did you do a straight swap or have both Cloud IdP and LDAP configured at the same time?

 

 

0 Kudos
Reply
3 REPLIES 3

AJPinto
Honored Contributor III

Posted on ‎08-28-2024 05:14 AM

There are a lot of differences, make sure that you know your local admin accounts password before making the switch. 

 

Once the connection is made, Jamf and Entra will assume any LOCAL Jamf group with the EXACT same name as an Entra AD group should be mapped. You will set all the access in the Jamf Local group, but you won't be able to see who has access. Also, users can only be granted access through a group or a local Jamf account as LDAP accounts won't work. Other things like policy limitations will work a bit differently. So long as you know your local Jamf admin password, there are no worries of breaking anything beyond repair with the transition. 

0 Kudos
Reply

mojo21221
Contributor II

Posted on ‎08-29-2024 08:14 AM

Also worth noting your Dashboard check boxes as well as each of your jamf users preferred Inventory display. Take some screen shots to quickly be able to recreate these after you setup the new login groups.

0 Kudos
Reply

jonesnack
New Contributor II

Posted on ‎08-31-2024 04:17 AM

@SteveWalker wrote:

Our Jamf Pro is currently setup to use LDAP for adding Directory Accounts. 

I want to switch to using Entra for Cloud IdP.

Anybody run into any issues when making the switch? Did you do a straight swap or have both Cloud IdP and LDAP configured at the same time?

 

 

Switching from LDAP to Entra for Cloud IdP in Jamf Pro can involve a few considerations:

  1. Configuration Overlap: It’s possible to have both LDAP and Entra configured simultaneously, which allows you to transition smoothly without disrupting existing user accounts. This can help ensure a seamless migration.

  2. Testing: Before fully switching, test the new Cloud IdP configuration in a staging environment to ensure it works as expected and that all necessary mappings and attributes are correctly set up.

0 Kudos
Reply