Vanta

Open Integrations from the left-hand navigation panel

Search for Jamf Pro in the Available tab

Log in to your Jamf Pro administrator account

- Note: We do not currently support using Okta SSO to log into Jamf Pro during this step

Select the settings icon, and choose User accounts and groups

- Open Integrations from the left-hand navigation panel
- Search for Jamf Pro in the Available tab
- Select Connect
- Log in to your Jamf Pro administrator account
 - Note: We do not currently support using Okta SSO to log into Jamf Pro during this step
- Select the settings icon, and choose User accounts and groups

Create a new user that meets Vanta’s requirements

- Username: We recommend vanta_service_user to help you remember its relation to Vanta
- Access Level: Full access
 - Note: We also support Site Access and Group Access, allowing Vanta to have access only to specific Jamf objects belonging to a <a href="https://learn.jamf.com/bundle/jamf-pro-documentation-current/page/Sites.html" rel="nofollow noopener noreferrer" target="_blank">site</a>. However, Users with Site Access cannot fetch Jamf accounts for Vanta access-related workflows. Proceed with this option if you do not wish to monitor Jamf account access in Vanta.
 - Please note that only workspace domains can utilize site scoping. An alternative for non-workspace domains is to use the VantaNoAlert group, a special group for removing computers from scoping.
- Privilege Set: Custom

- Create a new user that meets Vanta’s requirements
 - Username: We recommend vanta_service_user to help you remember its relation to Vanta
 - Access Level: Full access
 - Note: We also support Site Access and Group Access, allowing Vanta to have access only to specific Jamf objects belonging to a <a href="https://learn.jamf.com/bundle/jamf-pro-documentation-current/page/Sites.html" rel="nofollow noopener noreferrer" target="_blank">site</a>. However, Users with Site Access cannot fetch Jamf accounts for Vanta access-related workflows. Proceed with this option if you do not wish to monitor Jamf account access in Vanta.
 - Please note that only workspace domains can utilize site scoping. An alternative for non-workspace domains is to use the VantaNoAlert group, a special group for removing computers from scoping.
 - Privilege Set: Custom

Hold on to the username/password– you’ll need to add them to Vanta

Navigate to Privileges and grant the following read-only privileges

- If you selected Full Access:
 - User accounts and groups
 - Computers
 - macOS Configuration Profiles
- If you selected Site Access:
 - Computers
 - macOS Configuration Profiles

Fill in the remaining details with your full name, email address, and password. Remember to save the password.

Enter the credentials for this account and your *.jamfcloud.com domain into the Vanta connections flow.

You will receive either a confirmation that the credentials are configured correctly or an error message explaining how they’re misconfigured.

- Hold on to the username/password– you’ll need to add them to Vanta
- Navigate to Privileges and grant the following read-only privileges
 - If you selected Full Access:
 - User accounts and groups
 - Computers
 - macOS Configuration Profiles
 - If you selected Site Access:
 - Computers
 - macOS Configuration Profiles
- Fill in the remaining details with your full name, email address, and password. Remember to save the password.
- Return to Vanta
- Enter the credentials for this account and your *.jamfcloud.com domain into the Vanta connections flow.
- Select Validate credentials
- You will receive either a confirmation that the credentials are configured correctly or an error message explaining how they’re misconfigured.

Please remember that Machines not managed by Jamf Pro should still use the <a href="https://help.vanta.com/en/articles/11345407">Vanta</a> Device Monitor

Currently, Vanta does not support the on-prem deployment of Jamf Pro.

Currently, Vanta does not support Jamf Now or Jamf Business

Currently, Vanta only supports integrating one Jamf instance at a time.

- Please remember that Machines not managed by Jamf Pro should still use the <a href="https://help.vanta.com/en/articles/11345407">Vanta</a> Device Monitor 
- Currently, Vanta does not support the on-prem deployment of Jamf Pro.
- Currently, Vanta does not support Jamf Now or Jamf Business
- Currently, Vanta only supports integrating one Jamf instance at a time.

Vanta’s Jamf integration enables you to control which computers and accounts should be automatically marked in and out of scope in Vanta by creating and managing Vanta groups within Jamf.

Log in to Jamf Pro and click Settings in the left sidebar

Navigate to Network followed by Sites.

Click the New button at the top right corner to create a site for scoping accounts and computers, both within and outside of Vanta. The name should start with 'Vanta' followed by any text, e.g., 'Vanta Employees'.

Assign the group in Vanta to the desired accounts and computers. For more detailed instructions, visit the <a href="https://docs.jamf.com/10.33.0/jamf-pro/administrator-guide/Sites.html" rel="nofollow noopener noreferrer" target="_blank">Jamf Pro product documentation</a>.

- Log in to Jamf Pro and click Settings in the left sidebar
- Navigate to Network followed by Sites.
- Click the New button at the top right corner to create a site for scoping accounts and computers, both within and outside of Vanta. The name should start with 'Vanta' followed by any text, e.g., 'Vanta Employees'.
- Assign the group in Vanta to the desired accounts and computers. For more detailed instructions, visit the <a href="https://docs.jamf.com/10.33.0/jamf-pro/administrator-guide/Sites.html" rel="nofollow noopener noreferrer" target="_blank">Jamf Pro product documentation</a>.

For Workspace customers, please visit <a href="https://help.vanta.com/en/articles/11345706">Control Scope with Jamf for Workspace</a>.

Connecting Vanta & Jamf Pro

Back to Vanta

Live training

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Connecting Vanta & Jamf Pro

Connecting Vanta & Jamf Pro

Controlling Scope through Jamf Pro