JumpCloud is an Open Directory platform enabling IT organizations to support their entire team by managing and connecting them to the resources they need to do their jobs efficiently including devices, applications, files, and networks.
JumpCloud manages a lot of data that’s beneficial for both users and organizations. Part of keeping this data secure is offering MDM (Mobile Device Management) solutions. Most businesses have company owned devices, with MDM configured so that organizations can keep their assets secure. This is a very common practice used by secure organizations, world-wide, often to meet some compliance requirement for Data Loss and Prevention. Other similar solutions include JAMF, Kandji, Intune etc.
Coupling MDM with Identity Management, and features like Single Sign On (SSO), provides users with a seamless login experience, using only one set of JumpCloud managed credentials to access all of their company resources.
While the JumpCloud agent can be installed on the device being used, it is not a “surveillance” or “monitoring” capability.
- JumpCloud tracks authentication traffic, this includes things like when you log in to your device, access SSO applications, or LDAP/RADIUS authentication.
- System Insights reports telemetry on the device. Things like battery status, device model & serial number, wifi status, installed applications, encryption status, etc. See Get Started: System Insights to learn more.
An Admin could see events like when you were last logged in to your device, and from which location based on IP address through our Directory Insights. See View the Directory Insights Data Activity Log for a list of data events that can be seen by Admins.
Agents like JumpCloud and any other MDM solution do access devices for the ability to change settings (to set security baselines, schedule software updates, etc), add or modify new or existing users, run commands etc. See Understand the JumpCloud Agent to learn more.
- Because the JumpCloud agent executes background tasks that could be flagged as unusual, this could be flagged by your antivirus vendor; however, this is how the agent works by design, and is not malicious. Antivirus software may flag the JumpCloud agent at any time, even if it hasn’t happened previously.
- It’s recommended to add the JumpCloud installation folder as well as the JumpCloud agent application for Mac, Windows, and Linux systems to an allow list. If the JumpCloud agent or scripts run by the agent are flagged as suspicious after you have added the JumpCloud agent to your allow list, we recommend contacting your antivirus vendor. See Add the JumpCloud Agent to an Allow List to learn more.