Anyone using EntraID for IDP with JC have any best practice suggestions
for what claims to include in the ID Token? We plan to use the Admin
Elevation feature for particular groups.
Looking to limit UIE to a specific group via SSO and/or Cloud Identity
Provider (Azure).Currently we have SSO configured via Okta and CIP setup
with Azure. Anyone got ideas on how to do the restrictions? I've tried
adding the group under Access, but ...
Noticed this morning we have a machine that logs say MDM Renewal was
completed, but since then the machine is no longer MDM Capable. Any easy
solutions?
Has anyone tried getting their advance search from the API in json
rather than xml? When I do this, the computer groups will only return 1
group in JSON but when I get XML, all groups are listed. Anyone know how
to get all groups as well?
We are exploring a "block all unless compliant" policy as well. When I
look at the CA logs, I'm seeing the JC Sync app is just not having our
policy applied. I didn't do any of the steps in the "make JC work with
CA"
Intune is not a LDAP service. Entra ID (Azure AD) is.
https://learn.jamf.com/en-US/bundle/jamf-pro-documentation-current/page/Azure_AD_Integration.html#ID-00005db2
