MDM Integration: Jamf Pro
NOTE: Applies to iOS devices only.
Imprivata Mobile Access Management is integrated with Jamf Pro. The instructions below describe how to set up Mobile Access Management to use Jamf Pro APIs. Optionally, you may add an Enrollment Profile for touch-free enrollments of non-DEP devices.
API Integration
Jamf Pro API Integration is recommended for both DEP and non-DEP enrollments. API integration adds additional features to customize your workflows, including device delete, clear passcode and enable Lost Mode on overdue devices.
Jamf Pro API Integration Account Permissions
The minimum permissions the Jamf Pro API Integration account (API user) will need:
-
Sites [Read]
-
Mobile Devices [Create, Read, Update, Delete]
-
Send Mobile Device Remove Passcode Command
-
Send Mobile Device Lost Mode Command
-
Users [Update]
If your organization does not intend to use the passcode or Lost Mode features, you can omit those permissions.
Mobile Access Management Setup
-
In the MAM admin console, navigate to Admin > MDMs.
-
Click Add to a new MDM, and select Jamf Pro.
-
Skip the enrollment profile. Switch API Integration to ON and click Configure.
Click to enlarge
-
In the dialog, type your Host, API User and API Password.
Click to enlarge
-
Click Test to verify a successful connection.
