User identity is critical to ensure that only authorized and trusted users are able to access your organization's data from trusted devices.
Given the importance of being able to reliably assert a user's identity in a way that is attack resistant, the Trusted Access solution requires that user authentication is performed using modern authentication techniques via a third party identity provider. Virtually any identity provider that supports SAML and OIDC are supported, which notably includes:
- Microsoft Entra ID (formerly Azure AD)
- Okta
- Google Workspace
- Ping Identity
An identity provider must be configured in two Jamf products to be able to realize full functionality of Trusted Access:
| Product | Configuration | Documentation |
|---|---|---|
| Jamf Pro | End User Single Sign On for User Enrollment | Configuring Single Sign On |
| Jamf Security Cloud (RADAR) | Linked Identity Providers | Linking Identity Providers |
| Jamf Account | Cloud IdP integration for multiple Jamf products | Jamf Single Sign-On with Jamf Account |