Fortinet black logo

(iOS) Administration Guide

Home FortiClient 7.0.0 (iOS) Administration Guide

Configuring Jamf integration

7.0.0
7.2.0
7.0.0
6.4.0
6.2.0
Copy Link
Copy Doc ID 9defe1ea-d080-11eb-97f7-00505692583a:691222
Download PDF

Configuring Jamf integration

To configure integration between Jamf and FortiClient (iOS):
  1. In Jamf, go to All Settings. Configure the settings in SMTP Server and Push Certificates.

  2. Go to Global Management, and enable User-Initiated Enrollment.

  3. Go to Mobile Device Apps and add FortiClient from the App Store or by uploading it.

  4. Configure how the app is installed.

  5. Add App Configuration for FortiClient (iOS). This enables FortiClient (iOS) to read the MAC address and UDID from the iOS device. FortiClient sends this information to EMS. Supported keys include the following:

    Key

    Description

    mac_address

    iOS device MAC address.

    udid

    iOS device UDID.

    group_tag

    This value is used as a group tag for configuration in EMS. The example uses the string "field_engineer" as a group tag, which is used when FortiClient (iOS) initially connects to EMS. EMS uses this value as an installer ID to assign the endpoint to a group. See Group assignment rule types.

    cloud_invite_code

    This value is used for connecting FortiClient (iOS) to FortiClient Cloud. Enter the invite code received from FortiClient Cloud.

  6. Configure a configuration profile:
    1. Go to Configuration Profiles and add a configuration profile.

    2. Under Options, select Content Filter. Add a content filter to point to the desired EMS.

    3. Enable Single App Mode for FortiClient. Single app mode launches the FortiClient app and connects it to EMS. If FortiClient does not launch in single app mode, it does not connect to EMS.

  7. Enroll the device:
    1. Go to Devices > Enrollment Invitations, then send an enrollment invitation to the device.

    2. Enroll the device.

  8. When the device is enrolled, FortiClient (iOS) automatically connects to on-premise EMS or FortiClient Cloud, depending on the configuration. Once FortiClient (iOS) is connected to EMS, disable single app mode for the device. Keep the EMS URL in the Content Filter section.

    The following shows the on-premise EMS GUI after FortiClient (iOS) connects Telemetry.

Previous
Next

Configuring Jamf integration

To configure integration between Jamf and FortiClient (iOS):
  1. In Jamf, go to All Settings. Configure the settings in SMTP Server and Push Certificates.

  2. Go to Global Management, and enable User-Initiated Enrollment.

  3. Go to Mobile Device Apps and add FortiClient from the App Store or by uploading it.

  4. Configure how the app is installed.

  5. Add App Configuration for FortiClient (iOS). This enables FortiClient (iOS) to read the MAC address and UDID from the iOS device. FortiClient sends this information to EMS. Supported keys include the following:

    Key

    Description

    mac_address

    iOS device MAC address.

    udid

    iOS device UDID.

    group_tag

    This value is used as a group tag for configuration in EMS. The example uses the string "field_engineer" as a group tag, which is used when FortiClient (iOS) initially connects to EMS. EMS uses this value as an installer ID to assign the endpoint to a group. See Group assignment rule types.

    cloud_invite_code

    This value is used for connecting FortiClient (iOS) to FortiClient Cloud. Enter the invite code received from FortiClient Cloud.

  6. Configure a configuration profile:
    1. Go to Configuration Profiles and add a configuration profile.

    2. Under Options, select Content Filter. Add a content filter to point to the desired EMS.

    3. Enable Single App Mode for FortiClient. Single app mode launches the FortiClient app and connects it to EMS. If FortiClient does not launch in single app mode, it does not connect to EMS.

  7. Enroll the device:
    1. Go to Devices > Enrollment Invitations, then send an enrollment invitation to the device.

    2. Enroll the device.

  8. When the device is enrolled, FortiClient (iOS) automatically connects to on-premise EMS or FortiClient Cloud, depending on the configuration. Once FortiClient (iOS) is connected to EMS, disable single app mode for the device. Keep the EMS URL in the Content Filter section.

    The following shows the on-premise EMS GUI after FortiClient (iOS) connects Telemetry.

Previous
Next