[Jan 14, 2021] Gordon Hu from WeGalvanize posted:
Hi Automation pros,
Has anyone used Jamf Pro API? Here is my current challenge:
We’ve automate password expiry reminder via Slack/Email. But we would like to take a step further to remind them “how” to change password, depending on which user/device types. I am sort of stuck in Jamf part. There doesn’t seem to be an unique identifier that helps me link a mac local user and an Okta user. The two names have “similar” naming convention but not quite match.
An example would be:
A work around would be to
Hope to hear from you if you have better suggestions 😊 . Thanks in advance!
[Jan 14, 2021] Gordon Hu from WeGalvanize replied:
Actually, I may have a work around.
Pre-requisite: a place to park the data (e.g., lookup table/box csv file), add all known Jamf Connect enrolled user’s okta username there manually (1 time).
Recipe Trigger: every 15 minutes
With this method, new enrolled users will be added to the file automatically. The only manual pain will be in the beginning.
[Jan 15, 2021] George Kozlov (Director of Engineering Operations at People.ai) replied:
I built the automation that uses Jamf API and Okta API for a bit different task but didn't experience any issues with neither Jamf nor Okta APIs.I did the trick to use an asset tag in jamf to keep Okta's user unique Id, which might be a primary email or actual Id, depending on your needs.Then we search for machines in Jamf based on the asset tag.
I assume you can add a custom field in Jamf if you don't like an asset tag for some reason.
[Jan 16, 2021] George Kozlov (Director of Engineering Operations at People.ai) replied:
We populate it manually with each enrollment.I don't see any way to automate it as you never know beforehand which device belongs to whom. Moving forward, I want to implement Jamf Connect, and I assume it will give you a way to associate the device with the logged-in user.