Setup Guide

You need to create an API role and API client in Jamf, then enter the credentials into the Pult Dashboard.

Credentials you'll collect along the way:

Step 1: Create an API Role

1. In Jamf Pro, go to Settings → API roles and clients.
2. Create a new API Role with the following settings:
   • Display name: e.g., "Pult Role"
   • Privileges: Enable only Read Computers and Read Mobile Devices
3. Click Save.

Step 2: Create an API Client

1. Still in API roles and clients, create a new API Client:
   • Display name: e.g., "Pult"
   • API Role: Select the role created in Step 1
   • Access token lifetime: 3600
   • Enable API Client: Enabled
2. Click Save.
3. Click Generate Client Secret. Copy the Client ID and Client Secret immediately -- the secret will not be shown again.

Step 3: Configure in Pult

1. In the Pult Dashboard, go to Settings → Presence → MDM Settings.
2. Click Add Integration and select Jamf.
3. Fill in the fields:
   • Jamf Tenant Domain -- e.g., company.jamfcloud.com
   • Client ID -- from Step 2
   • Client Secret -- from Step 2
4. Click Save.

Pult validates the credentials on save. Devices will be synced on the next periodic sync cycle.

Disabling WiFi MAC Address Randomization

For WiFi Presence to work reliably with Jamf-managed devices, WiFi MAC address randomization must be disabled. If enabled, devices report different MAC addresses over time, making it impossible to match WiFi activity to MDM device records.

You can enforce this setting via MDM configuration profiles in Jamf:

• macOS: Create a Wi-Fi configuration profile and disable "Use random MAC address".
• iOS: Create a Wi-Fi configuration profile and disable "Private Wi-Fi Address".