Jamf Nation Community

@AJPinto from what I can see, the Jamf Connect menu bar still exists, it’s just been renamed and bundled into Self Service+. But it seems like Self Service+ still relies on the same configuration (or a very similar one) that the old menu bar app did.

That said, Self Service+ isn’t deployed automatically via Jamf Connect/ enrollement yet, it looks like you still need to package and push it yourself, which makes me question whether it’s fully ready as a native replacement.

If there’s a way to ditch the menu bar entirely and still retain password sync, that would be ideal, but right now it doesn’t seem like you can cleanly replace that functionality without relying on either the old menu bar for SS+.

Open to being wrong if there’s a better approach, I’ve just found that a lot of the Jamf documentation around Jamf Connect and Self Service+ seems either redundant or outdated, especially as things have evolved. It’s been tricky to tell what’s still current and what’s been superseded.

We’re definitely interested in Platform SSO longer-term, but it still feels pretty fresh and possibly not quite ready for our setup just yet. Still working through what the cleanest and most reliable long-term direction looks like.

@tillerya We’re definitely interested in Platform SSO longer-term, but it still feels pretty fresh and possibly not quite ready for our setup just yet. Still working through what the cleanest and most reliable long-term direction looks like. Have you used it with Entra yet, and if so how has it been?

@mline Yup we set it up with Entra last summer for student devices and used it the entire school year with our middle school and high school Macs, and went so well we started rolling it out on teacher and admin devices midway through the school year. We are thinking about switching staff over to the Secure Enclave option so their Mac is usable for MFA.  It was a little finiky on our older Intels but it was solid on all the Apple Silicon. My only real complaint was sometimes it took a little longer than I would have liked for the notification to pop up but thats minor to me.  Only needing to type in a passwords 4 times instead of 10+ definatly made it worth while to me.  

@tillerya That’s great to hear, sounds like you’ve had a solid run with it.

Are you using Company Portal just for Entra registration and Secure Enclave access, or are you also enrolling devices fully into Intune for compliance?

Also curious how you’re handling the initial account creation — are you still using Jamf Connect Login to create the local account, or have you moved to Prestage + Platform SSO fully? Trying to understand how early in the setup you’re getting the identity linked, and whether password sync kicks in reliably after that.

Any detail on your enrolment flow would be super helpful — keen to hear what’s been working well (and what hasn’t) from your side.

@talkingmoose thanks - that’s exactly how we have it set up already: separate configuration profiles for Jamf Connect Login, the menu bar, and the license.

I’ll give authchanger -reset another go on a fresh build, but it’s odd because I’ve seen the menu bar app stop working after the reset in my testing (including SS+ not showing the pw sync options etc) so I’m not sure if something in our config is conflicting or something else happened.

Curious if there’s anything specific that needs to persist in the login profile to keep the menu bar running cleanly after disabling login?

Cool, thanks for the help, since testing the authchanger -reset again it works. Dunno I was doing last time but working fine now.

Also agree with holding on PSSO, even with Entra it seems a bit of a process to roll out, doesn't do user creation etc yet and I think will confuse staff until it's properly tried and tested.
We have 7 sites and I don't have the energy to be a guinea pig lol.