Installation Process
Method: JAMF Admin Portal
Estimated Time to Complete: 5 minute
Installer: JAMF Administrator
Setup JAMF Webhook
Installation will be accomplished by generating an API Token from a “Read-only Admin” account. An administrator will need to ensure to create a Read-only admin account, assign Read-only permissions to an existing service account, or have access to the Read-only admin account. This requires 2-3 steps.
1. From the JAMF Administrator navigate to Settings =>Global => Webhooks
2. Click the + New button
3. Fill out the following fields as show EXCEPT for the for the "Webhook URL" field.
IMPORTANT - The webhookSS
Login as the Read-only Administrator and create an Api Key
Navigate to the Admin Portal => Security => API => Tokens
Create a new token with the name “Amplifier Security Automation Token” or anything else you see fit.
Be careful with this value since it will only be available once.
Capture the Okta Domain. This value will be used by Amplifiers automation jobs.
Note: This permission can be assigned directly or through group assignment. Amplifier only requires the Read-only Administrator permission, but other more permissive permissions could also be used.
Note: Create a token with a name that you will recognize. Note that Okta only shows you the token once.
Note: Copy the domain value. It will be used to configure the Amplifier Okta Integration, e.g. https://my-okta-domain.okta.com
Configuration
High At-Risk Group Memberships
Estimated Time to Complete: 10 minutes
We leverage group membership to identify users that have an elevated risk profile. Please collect a list of groups that identify users that have the following characteristics:
For each of these groups, get the group ID’s from the admin console using the following approach. The following approach will be improved in future iterations using type ahead selection. But for the time being use the following steps to capture the Group ID’s for any matching the above description.
Navigate to https://my-domain-admin.okta.com/admin/groups
For each of the groups matching the above descriptions, open the details page in a new tab, e.g. right click and “open in a new tab” or CMD click
Once the details page is open, capture the group name and group id (from the URL)
Collect these in the provided spreadsheet
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article