By Zach DeMeyer Posted November 1, 2019
By integrating JumpCloud® and Jamf, you can securely manage your entire fleet of systems using a single authoritative directory (JumpCloud) and a mobile device management (MDM) platform (Jamf) while experiencing benefits in control and efficiency.
What is JumpCloud?
JumpCloud is the first core directory service that’s available completely from the cloud, reimagining Active Directory for the modern era. IT organizations use JumpCloud to tightly control their user identities and access to systems (Windows®, Mac®, Linux®), applications (cloud and on-prem via SAML and LDAP), WiFi and VPN networks (via RADIUS), server infrastructure, file servers (via Samba), and much more.
With JumpCloud, admins provide their users access to all of these resources with a single set of secure credentials, backed by multi-factor authentication (MFA), and with a focus on end user self-service. JumpCloud acts as the central hub for identity and access management (IAM) across an IT organization, providing remote domain binding from a single cloud console. JumpCloud also specializes in support for macOS systems, treating them, Linux servers, and Windows machines as first class citizens. JumpCloud enables organizations with Keychain synchronization, SecureToken support, as well as event logging and system status auditing capabilities.
What is Jamf?
Jamf offers best-in-class enterprise Apple system management and mobile device management (MDM) solution. From unboxing to system retirement, Jamf does all things macOS® and iOS® device management, enabling IT admins to proactively manage the full lifecycle of their Apple devices.
JumpCloud + Jamf
Because Jamf offers integrations to identity providers through LDAP and SAML-based single sign-on (SSO) solutions, organizations can link their Jamf environment to their cloud-based JumpCloud instance via LDAP-as-a-Service or SAML SSO. By using them in tandem, organizations achieve a couple of key benefits, namely complete fleet management (for users and systems) and zero-touch macOS system deployment.
Complete Fleet Management
Used in concert, JumpCloud and Jamf can cover most (if not all) of an organization’s identity and system management needs. Jamf, of course, covers all things Apple, providing tight control over both Mac workstations and iOS mobile devices. JumpCloud then tackles an organization’s Windows and Linux system needs, with cross-OS Policy management across all three major operating systems as well as identity management for macOS systems.
The users of each of these systems will need their passwords and identity needs to be managed as well. JumpCloud controls user identity access to Windows, Linux, and Jamf-managed Macs, along with access to RADIUS-protected WiFi and VPN networks, applications via LDAP and SAML, cloud server infrastructure, and more.
Zero-Touch macOS System Deployment
One of the biggest timesinks for IT admins is the unboxing and deployment of new systems for onboarding. Jamf natively offers many features to speed up the process for Mac systems, but the true magic happens when it’s paired with JumpCloud.
With Apple’s Device Enrollment Program (DEP), IT admins can use Jamf’s MDM prestage enrollment to download both the Jamf and JumpCloud agents, as well as any required applications for system out of the box. Through some initial configuration in Jamf and the JumpCloud portal and the creation of a flat pkg, admins can build a true zero-touch onboarding experience for both users and systems using JumpCloud’s documented prestage user enrollment guide.
Once this workflow is implemented, users can take company-issued systems out of the box and get to work without having to set up anything. Most importantly, the IT admin can leverage zero-touch deployment to onboard Mac systems en masse, all without having to touch a single Macbook®.