search

benwhitis / Jamf_Conditional_Access

Resources and documents for the Jamf Pro/Azure AD Conditional Access integration
MIT License
50 stars 5 forks source link

Update gatherAADInfo command to no longer point to alias. #6

Closed BigKev79 closed 2 months ago

BigKev79 commented 2 months ago

The gatherAADInfo command in the Tracking Registration section should be updated to point to the following instead of the alias:

/Library/Application\ Support/JAMF/Jamf.app/Contents/MacOS/Jamf\ Conditional\ Access.app/Contents/MacOS/Jamf\ Conditional\ Access gatherAADInfo

WPJ Key present, AAD ID not acquired

This signifies that the user has a WPJ certificate in their keychain, but jamfAAD has not successfully obtained the Azure AD ID of the user. JamfAAD may try again to grab the AAD ID of the user within the next two hours.

This scenario may also be remediated by running /usr/local/jamf/bin/jamfaad gatherAADInfo on that machine as the logged in user.

Note: If this command is run as root, it will do more harm than good. If running from Jamf Pro, make sure to run it as the logged in user!

benwhitis commented 2 months ago

Hey @BigKev79 thank you for reporting this! I've updated the document.