![]() Time for another post from the tales of an Integrator! Migrating macOS Devi… on Migrating macOS Devices from o…ĭazwallace on Moving devices from Adobe Shar…įoigus on Moving devices from Adobe Shar…ĭazwallace on Uninstalling Adobe Software MacAdmins at PSU 2021: Campfire Sessions – What’s new with Adobe 2021 in Education.What’s new with Adobe 2021 in Education – Content.Jamf Pro, Intune* and the Jamf Cloud Connector. This time I was helping a customer integrator Azure Active Directory with Jamf Cloud for SSO/SAML. Now Jamf has a number of KB articles on the matter but there’s always a window between the last time these are updated and when an IdP vender makes some changes. Additionally, sometimes it’s helpful to utilise a guide written from a different prospective to get a better understanding. This allows you to add the Single Sign-On PreStage Pane. Tutorial: Azure Active Directory integration with Jamf Pro Why is this better? A New Hope GuideĪfter searching around for updated guides and more information, I stumbled across a new guide from Microsoft themselves. To enable single sign-on (SSO), you must configure settings in both your IdPs console and Jamf Pro. Well, firstly it should be more current with the Azure specific options (since both the KB and Azure are under Microsoft’s control). This should speed up the process, as well as reduce mistakes and miss-configurations! That’s right! you can install a Microsoft browser extension that will automatically configure the SSO settings in your Jamf Cloud console with the right options! Secondly, was this little gem I found part-way through: I’m afraid there doesn’t seem to be an extension for Safari, so you’ll have to use Chrome or Firefox. Troubleshooting Single Sign-On in Jamf Pro.Ĭonfiguring Single Sign-On with Active Directory Federation Services.Jamf Pro 10.10 administrators guide – Single Sign On Settings.I’ve also included links to the Jamf KBs below: If anyone has a chance to test with IE and Edge, let me know and I’ll update the post.This post covers a different (arguably better) way to setup Azure SSO with Jamf Pro. As always, if you have any questions, queries or comments, let me know below (or on Mac Admins Slack) and I’ll try to respond to and delve into as many as I can. I will not compensate you in any way whatsoever if you ever happen to suffer a loss/inconvenience/damage because of/while making use of information in this blog.Apple Business Manager is one of the most powerful services available to IT admins deploying and managing Apple at scale, and recently it got even better with support for Microsoft Azure Active Directory (AD)! While the author has taken care to provide our readers with accurate information, please use your discretion before acting upon information based on the blog post. Last week, Apple announced that Apple Business Manager was adding support for federated authentication with Azure AD. ![]() It was a huge announcement and something that anyone running Azure AD will want to take a look at.įederated authentication was previously available for Apple School Manager and was even in beta for Apple Business Manager but this is the first time it is fully available for users on either service. Over the years, many IT teams have made significant investments in their Azure Active Directory service, Microsoft’s identity system that allows organizations to maintain a “source of truth” for all users. Self Service is able to access any existing usernames from the IdP.If your organization is in the same boat, you will know how important it is to continue leveraging that infrastructure while also modernizing your deployment plan. The username entered during SSO authentication will be used by Jamf Pro for scope calculations. Users must authenticate with an IdP to access Self Service. ![]() ![]() The username entered during SSO authentication will be used by Jamf Pro to populate the Username field in the User and Location category during an inventory update. Users must authenticate with an IdP to complete User-initiated Enrollment.
0 Comments
Leave a Reply. |