Integrate Jamf Pro User Enrollment with Okta

Enable provisioning for your Jamf Pro User Enrollment instance to integrate with Okta.

Before you begin

• You have an active Jamf Pro account with admin privileges to manage users and enable provisioning using OAuth client credentials.
• You have an API client role or use an existing one with the following permissions:
  • Delete User
  • Create User
  • Read Sites
  • Update User
  • Create Static User Groups
  • Read Static User Groups
  • Read User
  • Delete Static User Groups
  • Update Static User Groups
• New credentials can be generated using API roles.

Start this task

To configure provisioning for the Jamf Pro User Enrollment app, complete the following steps:

1. In the Admin Console, go to ApplicationsApplications.

2. Search for and select the Jamf Pro Admin Console integration.
3. On the General tab, enter the Application label.
4. Enter the Domain.

   The domain must not include the following:

   • Protocols: For example, https://.
   • Paths: For example, /index.html.
   • Unsupported ports: Only ports 80, 443, and 8443 are permitted.
   • Invalid formatting: Domains can't start or end with a hyphen (for example, -jamf.com or jamf-.com).
5. Click Done.
6. Click the Provisioning tab, click Configure API Integration, and select Enable API integration.
7. Enter your Client ID and Client Secret.
8. Click Test API Credentials.
9. After Jamf Pro User Enrollment is successfully verified, click Save.
10. Select To App under Settings. Click Edit, and then select the provisioning features that you want to enable.
11. Click Save.

Related topics

Jamf Pro User Enrollment supported features