Roles and Privileges Enhancements
Jamf Account has updated roles and privileges offerings to include both system roles with preset privileges and the ability to create custom roles with selected privileges. This update affects Jamf Account roles and privileges only. Previous role names have changed, but previously assigned access based on roles and privileges will be largely unaffected. Managed Service Provider (MSP) privileges supersede new privileges.
For more information about system roles, see Adding a Jamf ID User.
For more information about custom roles, see Creating a Custom User Role.
Team Member Management Enhancements
Team members in Jamf Account are separated into Jamf ID users, IdP users, and contacts. Users have access to Jamf Account and other Jamf tools, and can be assigned roles and privileges. Contacts do not have access to Jamf Account, but can be assigned roles for organization operations.
SSO Enhancements
You can customize the
userinfoendpoint for Generic OIDC connections.You can specify a group filter for an IdP connection. Only the groups that match the given filter will be included on the token.
Jamf ID Enhancements
You can disable Jamf ID logins to Jamf apps on verified domains. Affected users are notified. To disable Jamf ID logins, navigate to .