All Collections
Authentication guides
Jamf Authentication Guide (OAuth)
Jamf Authentication Guide (OAuth)

How to authenticate Jamf for use with Tines

Daniel Stoeski avatar
Written by Daniel Stoeski
Updated over a week ago

Jamf Pro, is a comprehensive management system for Apple macOS and iOS devices. With Jamf, IT Technicians can proactively manage the entire lifecycle of Apple devices. This includes deploying and maintaining software, responding to security threats, distributing settings, and analyzing inventory data.

First, create a Jamf API role and client

  1. Login to your Jamf tenant, i.e. https://<tenant>.jamfcloud.com

  2. Click the "Settings" icon


  3. Click "API Roles and Clients"

  4. Click the "API Roles" tab and then "+ New"


  5. Name the role, choose the privileges for the role and click "Save"


  6. Click the "API Clients" tab and then "+ New"


  7. Name the client, choose the API role you created, click "Enable API client" and then "Save"


  8. Click "Generate client secret"


  9. Click "Copy client credentials to clipboard" and paste into a text editor, then click "Close"

Lastly, create a Jamf credential in Tines

You will need to create three credentials:

  • Two Text type: "jamf_client_id" and "jamf_client_secret"

  • One HTTP request type: "Jamf"

Text type

  1. Navigate to the team that will be using the API and click "Credential"

  2. Click "+ New Credential" and select "Text"

  3. Input the values for the Jamf credential

    1. Name: jamf_client_id

    2. Description: Optional

    3. Value: Client ID you copied earlier

  4. Optional

    1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains

    2. Access: What other teams can also use the API

  5. Click "Save"

  6. Click "+ New Credential" and select "Text"

  7. Input the values for the Jamf credential

    1. Name: jamf_client_secret

    2. Description: Optional

    3. Value: Client Secret you copied earlier

  8. Optional

    1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains

    2. Access: What other teams can also use the API

  9. Click "Save"

HTTP request type

  1. Navigate to the team that will be using the API and click "Credentials"

  2. Click "+ New Credential" and select "HTTP Request"

  3. Input the values for the Jamf credential

    1. Name: Jamf

    2. Description: Optional

    3. URL: https://<tenant>.jamfcloud.com/api/oauth/token

    4. Content Type: Form

    5. Method: post

    6. Payload: Copy the below object and paste into the "Plain code" section:

      {
      "client_id":"<<CREDENTIAL.jamf_client_id>>",
      "client_secret":"<<CREDENTIAL.jamf_client_secret>>",
      "grant_type":"client_credentials"
      }

    7. Click "Run options", navigate to the access_token key and double click on the key


    8. Location of token from response: Paste the path to the token in the value pill

  4. Optional

    1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains

    2. Access: What other teams can also use the API

  5. Click "Save"

Your credential should look like the following:

More on creating credentials in Tines here.

You can also find a selection of Jamf stories in the story library.

Related Articles
Exabeam Authentication Guide
GitHub (OAuth) Authentication Guide
JAMF Authentication Guide
Zoom Authentication Guide (OAuth)
ConducterOne Authentication Guide
Did this answer your question?