Users must authenticate with an IdP to access Self Service. The username entered during SSO authentication will be used by Jamf Pro to populate the Username field in the User and Location category during an inventory update. Users must authenticate with an IdP to complete User-initiated Enrollment. User-Initiated Enrollment (iOS and macOS).SSO with Jamf Pro can be enabled for the following:Įvery time an unauthenticated user attempts to access the Jamf Pro server, they will be redirected to the IdP login page unless the Allow users to bypass the Single Sign-On authentication checkbox is selected in Jamf Pro's Single Sign-On settings. After authentication, users obtain access to the resource they were attempting to access. When SSO is configured and enabled, users are automatically redirected to your organization's IdP login page. The use of these names, trademarks, and brands do not constitute an endorsement by the Acceptto Corporation.You can integrate with a third-party identity provider (IdP) to enable single sign-on (SSO) for portions of Jamf Pro. Disclaimer #Īll product names, trademarks, and registered trademarks are the property of their respective owners.Īll company, product, and service names used in this document are for identification purposes only. Want to learn more about our MFA solutions? Contact our Professional Services for a Demo today. If you require assistance, please email us at Sales # If you have any problems logging into Jamf Pro with Acceptto SSO and need to edit the settings you can open the failover login page at. Select your desired method and accept the authentication request.Īfter successful authentication, you will be redirected to the Jamf Pro landing page. You will be redirected to the Acceptto SSO page.Īfter successful authentication, you’ll see the Acceptto MFA options. Open the Jamf Pro login URL through a browser of choice. Single Logout URL - The URL used to log out of your Jamf Pro instance.Assertion Consumer Service (ACS) URL - Enter the URL on the service provider to where the identity provider will redirect to with its authentication response.Name Identifier - Select " Email" from the dropdown menu. NameID Format - Select " Email address" from the dropdown menu.Sign in URL - The URL used to log in to your Jamf Pro instance.Issuer or Entity ID– Enter the EntityID of your Jamf Pro instance, which you can find in the Jamf metadata file.Under the SAML Service Provider Configuration tab, enter the following values: Message for MFA Requests - Enter the user-facing message for Push, SMS, and email MFA requests (optional).Out of Band Methods - Select the allowed methods for approving MFA requests.Type - Select "SAML Service Provider" from the options.Name - The application name displayed in the admin panel and application portal and used for push notifications and audit logs.In the New Application form, enter the following values under the General tab. Login to the Acceptto Dashboard with an administrative account and go to Applications.Ĭreate a new application by selecting the Create New Application. ![]() Keep the default settings in the User Mapping section.Īcceptto SAML Configuration as Identity Provider (IdP) # It should be, where myorganization is your unique identifier in Acceptto cloud. In the Identity Provider Metadata Source, select Metadata URL and paste your organization's Metadata URL on Acceptto. This is the metadata URL of Jamf Pro, and is required for the Acceptto configuration in the next section. In the Identity Provider part, select Other and type a name in the blank part. On the Single Sign-On Settings page, click Edit.Ĭheck the Enable Single-Sign-On Authentication box. Login to your Jamf Pro tenant and navigate to System Setting > Single Sign-On. Pre-Requisites #Īn Acceptto account with a configured Identity Provider and LDAP Agent (See this page for the instruction).Ī user with administrative privileges for the Jamf Pro portal.Ĭonfigure Jamf Pro as a SAML Service Provider # Acceptto integrates with Jamf Pro to improve the security of users' logins into the Jamf Pro through its Intelligent SSO-MFA solution. Jamf Pro is the Enterprise Mobility Management software that can manage an organization's Apple Ecosystem. Multi-factor authentication (MFA) is an extra layer of security used when logging into websites or apps to authenticate users through more than one required security and validation procedure that only they know or have access to.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |