If you are wanting to deliver managed resources from Jamf Pro to your end users through AppsAnywhere, you will need to link it with a Jamf Pro environment. In this article, we will discover how to create a new connection to a Jamf Pro environment.
In this article
Also in this section
There are no sub-sections to this page
AppsAnywhere has the ability to link to any Jamf Pro environment in order to deliver managed resources to end users. Once you link AppsAnywhere to a new Jamf Pro environment you will be able to import policies, e-books and mac app store applications that are configured in that environment into AppsAnywhere and make them available to your users through as part of your delivery strategy.
Creating the connection
- Log into AppsAnywhere as an admin user
- Click on Return to Admin to access the AppsAnywhere admin portal
- On the navigation menu at the top of the page, go to Jamf Pro > Manage Jamf Pro Environments
- Click on the Add button on the top right of the page
Enter the details of your Jamf Pro environment:
|Form Field Name||Explanation||Expected Value||Example|
|Name||A friendly name for the connection||You can call the connection anything you want||My Jamf Pro Environment|
|Host||The fully qualified domain name for your Jamf Pro instance||This should be the highest-level DNS name available for your Jamf Pro instance. This can be a cloud instance or a local instance||myorganisation.jamfcloud.com|
The port that your Jamf Pro instance is running on
|This usually depends on whether you are using a secure connection or not, but we presume you are by default||8443|
|Service User||The account that AppsAnywhere will use to authenticate with the Jamf Pro API||The username for the service account you created (see details further down the page)||appsanywhere_service_user|
|Service User Password||The password for the service user that AppsAnywhere will use to authenticate with the Jamf Pro API||The secure password that was created for the service account when it was set up in Jamf Pro.|
* please don't use that one..
|Allow User-Level MDM||Indicates whether users logged into their macOS device with a local user account can still access Jamf Pro resources. This only applies to devices that are not joined to the domain||This option should only be enabled if you fully understand the implications of enabling user-level MDM (see warning below) and you are happy for AppsAnywhere to enable User-Level MDM on your user's devices||Do Not Allow|
Enabling User-Level MDM can impact existing workflows. Use with caution!
For computers with macOS 10.13.2 and later, the workflow AppsAnywhere uses for enabling MDM for local user accounts will reset any previous User Approved MDM Enrollments. If you use UAMDM as a part of any existing ongoing workflows within your organisation, you should evaluate the impact of these changes before enabling this setting in AppsAnywhere.
See the Jamf Knowledgebase for more information.
Save the connection
Once you have entered all of the relevant details of the connection, hit thebutton
You will then be sent back to the Viewing Jamf Pro Environments page, where you should see your new connection and the following message:
Service Account Requirements
For AppsAnywhere to interact with your Jamf Pro environment, a service account is required. The credentials for this service account are entered into the details for the Jamf Pro environment, as described above.
For security reasons, we recommend creating a dedicated account to use for this integration, the requirements for which are set out below:
- Log into your Jamf Pro environment with an account that has permissions to create new users.
- Click on the Settings Cog ( ) in the top right corner
- Go to Jamf Pro User Accounts & Groups
- Click New
- Select Create Standard Account and click Next
- Choose a Username for the service user (e.g. appsanywhere_service_user)
- Set Access Level to Full Access
- Set Privilege Set to Custom
- Set Access Status to Enabled
- Choose your own Display Name for the user (e.g. AppsAnywhere User)
- Enter an Email Address for the account (we suggest a group account, so no one person is responsible for the account)
- Choose a secure Password for the account (recommended > 20 characters, random characters including numbers and symbols)
- Leave Force user to change password at next login unchecked
- Click on the Privileges tab at the top
- Select the required privileges as shown in the table below
- Click Save
Jamf Pro Server Objects
|Mac App Store Apps||YES||YES|