Source Configuration for Jamf
Jamf Pro Connection Configuration
We offer two configuration options to connect to Jamf Pro:
Username/Password: This is the traditional configuration method for using admin credentials.
Client ID/Client Secret New: Jamf Pro APIs now support Client Credentials-based authorization. This new method grants access exclusively to Jamf Pro APIs, enhancing the security of your Jamf Pro Administrators' credentials.
You will find the step-by-step guide for both options below:
You will need help from the Jamf Admin in your organization for the following configuration.
Option 1: Username / Password
To integrate with Jamf Pro, a user must be registered in the Jamf Pro environment. Once you create the User, you can fill in the Jamf URL, User Name, and Password values for the Jamf Connection Configuration.
1- Login to your Jamf Pro site (yoursitename.jamfcloud.com)
Your Jamf site should be in one of the following formats:
https://*.jamfcloud.com/
https://*.jamfcloud.com:8443/
Other domain names are not supported. In case you have another URL, most probably there is a network setting which routes the URL to one of these destinations. Kindly check with your Network Team.
2- Select the settings menu.
3- Select User accounts and groups
|
4- Create a new User who will be used only for this integration. Set the access level to “Full Access” and Privilege to “Auditor.” Store the Username and Password in a secure place.
5- Open Jamf Importer for JSM Assets application and select the Source tab.
6- Click the Username/Password option and add Jamf URL, User Name, and Password values. Click Save & Check Connection button.
Please don’t forget to add the / to the end of the URL.
7- Now, it is time to configure the Destination.
Option 2: Client ID/Client Secret New
To integrate with Jamf Pro, a role and a client must be registered in the Jamf Pro environment. Once you create them, you can fill in the Jamf URL, Client ID, and Client Secret values for the Jamf Connection Configuration.
1- Login to your Jamf Pro site (yoursitename.jamfcloud.com)
2- Select the settings menu.
3- Select API roles and clients
|
4- Click the New button on the top right of the screen to create a new API Role.
5- Set the Display Name and select the Privileges as follows:
Display Name: Jamf Importer for JSM Assets
Privileges: Read Mobile Devices, Read Computers, Read User, Read Departments, Read Buildings
6- Click Save at the bottom right.
7- Go back to the API Roles and Clients screen. Select the API Clients tab this time.
8- Click the New button to create a new API Client definition.
9- Set the Display Name for the API Client as follows.
Display Name: Jamf Importer for JSM Assets
10 - Select the Role you created. i.e., Jamf Importer for JSM Assets
11- First, click the Enable API Client button to enable the configuration, and then click the Save button at the bottom right.
12- Copy the Client ID on the next page and save it to a safe place.
13- Click the Generate client secret button to create a secret for your new client definition.
14- Click the Create secret button.
15- You will find the Client secret on the next page. Copy it to a safe place and close the menu.
16- Open Jamf Importer for JSM Assets application and select the Source tab.
17- Click the Client ID/Client Secret option and add the Jamf URL, Client ID, and Client Secret values. Then, click the Save & Check Connection button.
18- Now, it is time to configure the Destination.