Skip to main content

Jamf

Visualize Jamf admins, users, groups, devices, and profiles, map Jamf users to employees, and monitor changes through queries and alerts.

Installation

To use this integration, JupiterOne requires your Jamf hostname to interact with the API as well as authentication credentials. These authentication credentials can either be a Client ID and Client Secret for an API Client, or a user's username and password used to authenticate with Jamf.

The JupiterOne integration uses the Classic API to fetch Jamf data.

The JupiterOne integration uses the Bearer Authentication token to authorize the APIs.

Required Permissions:

  • Read - Jamf Pro User Accounts & Groups
  • Read - Users
  • Read - Mobile Devices
  • Read - Computers
  • Read - Advanced Computer Searches
  • Read - macOS Configuration Profiles

Configuration in JupiterOne

To install the Jamf integration in JupiterOne, navigate to the Integrations tab in JupiterOne and select Jamf. Click New Instance to begin configuring your integration, providing the following:

  • Account Name used to identify the Jamf account in JupiterOne. Ingested entities will have this value stored in tag.AccountName when the AccountName option is enabled.

  • Description to assist in identifying the integration instance, if desired.

  • Polling Interval that you feel is sufficient for your monitoring needs. You may leave this as DISABLED and manually execute the integration.

  • Authentication method in which to authenticate with Jamf. OAuth is the new preferred mechanism.

  • Hostname of your Jamf organization.

  • Client ID of the API Client you have created within Jamf, should the OAuth authentication method be selected.

  • Client Secret of the API Client you have created within Jamf, should the OAuth authentication method be selected.

  • Username used to authenticate with Jamf when having selected Basic for authentication method.

  • Password associated with the username to authenticate with Jamf via the Basic authentication method.

Click Create once all values are provided to finalize the integration.

Next steps

Now that your integration instance has been configured, it will begin running on the polling interval you provided, populating data within JupiterOne. Continue on to our Instance management guide to learn more about working with and editing integration instances.