Self Service+ State Settings

Jamf Connect Documentation

Solution

Application

Jamf Connect

Content Type

Technical Documentation

Utilities & Services

ft:locale

en-US

The following table contains all the available Self Service+ state settings without a Kerberos integration:

Important:

Self Service+ state settings should not be configured or edited. Manual changes to these settings may cause unintended behavior in Self Service+. State setting information will only populate with new information after deleting the state setting PLIST file and re-authenticating the user's Kerberos token.


Key	Description
`DisplayName`	The full name of the user in your identity provider (IdP)
`ExpirationWarningLast`	A timestamp of the last password expiration notification
`FirstRunDone`	A boolean value that confirms whether a user has opened Self Service+ at least one time
`LastCertificateExpiration`	A timestamp of when the last Windows CA certificate will expire for the user
`LastSignIn`	A timestamp of the last successful sign-in with Self Service+
`LastTOTPNotification`	A timestamp of the when the last temporary one-time password was generated with Jamf Connect
`LicenseCheckLastRequestDate`	A timestamp of the last license check with Jamf Connect
`OfflineMFASetupSuccess`	A value that confirms a user is using offline MFA with Self Service+
`PasswordCurrent`	A boolean value that confirms whether the user's network and local passwords are in sync
`UnsentOfflineMFAEvents`	A value which assists with Jamf Connect license checks
`UserLoginName`	The network username of the last user to sign in with Self Service+ on the computer

The following table contains all the available Self Service+ state settings with a Kerberos integration:


Key	Description
`ADExpiration`	The date the user's network password expires
`ComputedPasswordExpireDate`	The date the user's Active Directory password expires
`CustomShortName`	A short name that was entered by the user via the `AskForShortName` preference in Self Service+
`DisplayName`	The full name of the user in your identity provider (IdP)
`FirstRunDone`	A boolean value that confirms whether a user has opened Self Service+ at least one time
`PasswordExpirationRemainingDays`	The number of days remaining until the user's password expires Note: This setting can operate without a Kerberos integration if your identity provider is Okta Classic Engine and the Password Expiration Manual Override (`ExpirationManualOverrideDays`) setting is in use.
`PasswordLength`	A network password length requirement found for the user
`UserCN`	The user's CN
`UserEmail`	The user's email address
`UserFirstName`	The user's first name
`UserFullName`	The user's full name
`UserGroups`	Group membership of the user in your identity provider
`UserHomeDirectory`	The user's home directory
`UserLastName`	The user's last name
`UserPasswordSet`	The date the user last set a new password
`UserPrincipal`	The user's principal name
`UserShortName`	The user's short name
`UserUPN`	The user's UPN