Note:
Jamf Pro read-only tools are also available in Elevate.
Explain Tools
Use these tools to understand what configurations do, what they affect, and how to interpret them.
| Explain tool | Description |
|---|---|
| Configuration explain | Analyze what a specific Jamf Pro object does, what depends on it, and whether there is a more effective way to configure the object. Generates detailed explanations and diagrams, such as pie charts, flow charts, and tables to illustrate its findings. Note: Analyze a single object per query for best results. |
| Blueprint search | Find specific blueprints by name or by the configurations they contain. |
| Blueprint explain | Analyze blueprints and their contents to understand what they deploy to scoped devices. |
| Configuration profile analysis | Search and explain configuration profiles with advanced filtering by platform (computer or mobile device), payload type, profile name, UUID, or specific payload keys. Returns a PLIST file analysis for specific profiles. Note:Scoping information, including target groups, devices, and exclusions, is not currently returned by this tool. To identify which devices have a specific profile applied, use the inventory search tool. |
Investigate Tools
Use these tools to query your fleet, search for objects, and assess security and risk posture.
| Investigate tool | Description |
|---|---|
| Inventory search | Query your Mac and mobile device fleet using natural language. Generates results in the form of lists, tables, or charts based on your question. A maximum of 100 specific entries (e.g., individual computer records) are listed per query. Note: By default, the tool queries an initial curated subset of roughly 5,000 records. For organizations with larger data sets (e.g., 50,000 records), Jamf recommends narrowing your query by department or category to ensure the output is relevant and timely. |
| Configuration search | Find any Jamf Pro object by name or ID, such as a policy, script, smart group, or extension attribute. |
| Compliance benchmark | Check device security compliance against industry-standard security frameworks, including CIS Level 1, CIS Level 2, NIST 800-171, and DoD STIG. |
| Mobile app risk | Identify potentially hazardous mobile device apps. Powered by NowSecure's Mobile Application Risk Intelligence (MARI), this tool returns risk scores (A–F), categorized risk findings (security vulnerabilities, privacy concerns, and policy violations), and remediation guidance. |
| App OS lookup | Get current version information for all Apple operating systems, including macOS, iOS, iPadOS, watchOS, tvOS, and visionOS. Returns version numbers, build identifiers, and release dates sourced from Apple's Global Device Management Framework (GDMF) API. |
| App lookup | Retrieve app version and patch availability information from the Jamf Patch Feed (primary) and iTunes Search API (secondary). |