Creating a Privilege Manager Credential
Privilege Manager needs a username and password to access Jamf PRO. Starting with 12.0, Privilege Manager supports the Jamf Bearer Token Authentication method. This require updating the Privilege Manager credential that is used to connect to Jamf Pro. Refer to the Prerequisites.
Prerequisites
From your Jamf Pro Instance, create an API role and API client that will be used by Privilege Manager to connect to your Jamf instance.
This is done in your Jamf Pro Cloud Server, under Settings | API roles and clients and requires:
-
An API role that contains the following Privileges: Read Smart Computer Groups, Read Computers, Read Static Computer Groups.
-
An API client that is assigned the role you just created.
Make sure to note the Client ID and Client Secret, as these will be required to create your user credential in Privilege Manager.
Creating the Credential
Privilege Manager needs a username and password based on the API Client created to access Jamf PRO. To create the credential in the Privilege Manager:
-
Navigate to Admin | Configuration | Credentials.
-
Click Create.
-
Enter a Name in the Details section.
-
In the Settings section:
-
Enter Jamf API Client as the Account Name.
-
Enter the Jamf API Client Secret as the Password.
-
-
Click Save Changes.