# JAMF Pro Integration By integrating JAMF Pro, Rezonate embeds an additional layer of device security in the Identities as part of the Identity Centric module. It also unlocks some security controls required for SOC\ISO regarding encryption and device policy. ### Integration Steps 1. Create API Role: 1. Sign in to JAMF Pro and navigate to **Settings > API roles and clients** (type ‘API’ in the search box)

2. Click “New+” on the top right screen of API roles and clients 3. Name the role “Rezonate Integration Role” 4. Add the following privileges and click save: | Read Accounts | Read Computers | Read Computer Security | | --------------------------- | --------------------------------- | ----------------------------------- | | Read User | Read API Roles | Read Mobile Devices | | Read Conditional Access | Read Departments | Read Disk Encryption Configurations | | Read Jamf Protect Settings | Read Jamf Connect Settings | Read Password Policy | | Read Patch Policies | Read Policies | Read SSO Settings | | Read Static Computer Groups | Read Static Mobile Devices Groups | Read Static User Group | | Read Smart Computer Groups | Read Smart Mobile Devices Groups | Read Smart User Group | | Read Webhooks | Read API Integrations | Read Managed Software Updates |

2. Create an API Client: 1. Navigate to **Settings > API roles and clients** 2. Select the API Clients tab 3. Click “New+” on the top right screen 4. Name the client “Rezonate Integration” 5. In the API roles section, select the new “Rezonate Integration Role” 6. Set the access token lifetime to 3000 (5 minutes)

7. Click “Enable API Client” 8. Click Save 9. Click on the “Generate client secret” button and then create a secret

10. Copy and save the client ID and client secret 11. Share with Rezonate the following: 1. Your JAMF Domain in the form of \.jamfcloud.com 2. Client ID 3. Client Secret ### Integrating in Rezonate In the integrations page, add a new integration and select JAMF.