Jamf Standard Cloud-hosted, Jamf Premium Cloud-hosted, or StateRAMP environment
One of the following:
A Jamf ID
An identity provider (IdP) configured in Jamf Account. For more information about configuring an IdP in Jamf Account, see Creating an OIDC App in Your IdP in the Jamf Account Documentation.
Jamf Pro user accounts or groups with credentials that match the Jamf ID or IdP account. For more information about creating user accounts and groups in Jamf Pro, see Jamf Pro User Accounts and Groups.
In Jamf Pro, click Settings
in the sidebar.
In the System section, click Single
sign-on
.
Click Edit .
Select Enable SSO Authentication to enable the configuration.
Note:
In the Failover Login URL box, click Copy to clipboard, and then save the failover login URL to a secure location. This URL will allow you to log in using your Jamf Pro credentials after SSO is configured and enabled.
Select Jamf Account (OIDC).
(Optional) To enable single sign-on for end users, select Use SAML authentication for end users (using IdP settings from Jamf Pro).
To configure SAML authentication, follow the instructions in SSO with SAML.
Under OIDC IdP integration settings, click Username or Email for Jamf Pro User Mapping.
Jamf Pro must have user accounts or groups with usernames or email addresses that match those associated with your Jamf ID or IdP account.
These options determine how users in your IdP will be mapped to Jamf Pro users. By default, Jamf Pro gets information about the user from the IdP and matches it with existing Jamf Pro user accounts. If the incoming user account does not exist in Jamf Pro, then group name matching occurs.
Click Save .
After OIDC authentication is enabled, you will be able to log in to Jamf Pro using single sign-on with Jamf Account by entering your Jamf Account username and password at login.
Alternatively, go to your Jamf Proinstances in the Jamf Account portal and click Log In next to the instance you want to log in to.