Help

Use Active Directory Groups

sinclake
New Contributor II

Posted on ‎01-23-2023 11:35 AM

Looking to use Active Directory groups to populate smart user groups. We currently have SSO and Azure AD as a Cloud Identity Provider setup. Do I also need to add an LDAP server?

 

Thank you.

Kevin 

0 Kudos
Reply
4 REPLIES 4

sinclake
New Contributor II

Posted on ‎01-23-2023 11:38 AM

We're using Jamf Pro.

0 Kudos
Reply

AJPinto
Honored Contributor III

Posted on ‎01-23-2023 12:06 PM

JAMF cannot do make smart groups based on AD membership. If you need to do AD reporting that will need to come out of Azure. If you are trying to target something at an AD group that is possible. You target the policy/configuration profile to all devices/users and set an exclusion for the desired AD group. The wording is poor, but the exclusion means only users in that AD group will see the policy/configuration profile.

 

Yes you need a LDAP Server setup for JAMF to be able to search that domain. There is also some extension attributes you need to configure, and inventory collection stuff, nothing complicated.

0 Kudos
Reply

SirThomas
New Contributor
In response to AJPinto

Posted on ‎05-11-2023 09:13 AM

Clarification needed; LDAP Server Setup on Top of the Azure Cloud Connection?

0 Kudos
Reply

A_Collins
Contributor

Posted on ‎01-23-2023 12:48 PM

You can use limitations in scoping. Jamf can only read Azure group membership from there. You have to enter exact name I believe. 

0 Kudos
Reply