Jamf Business Plan
JamfExternal reviews
2,091 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Jamf Pro is a helpful and robust mobile device management system.
What do you like best about the product?
The product is very scalable. It can be used to do basic things quickly and easily. It can also grow with the skill level of the administrator and advanced functionality can be added to the existing infrastructure over time. Even some advanced tasks can be completed easily via the GUI that would otherwise require complex code writing and configuration creation.
What do you dislike about the product?
Some of the requirements to use advanced features are annoying. Either technical requirements like the Jamf Account SSO for some features or just additional fees to use some very helpful features of the product.
What problems is the product solving and how is that benefiting you?
Ensuring a large fleet of computers and devices is up to date, patched, and secured from exploitation.
Managing Macs at Scale with Jamf Pro – A Practical Review
What do you like best about the product?
1. Zero-Touch Deployment via ABM + PreStage Enrollment
• New Macs auto-enroll, apply configuration profiles, and install apps right out of the box
• Saves time, ensures consistency, and reduces IT handholding
⸻
2. Smart Groups for Dynamic Policy Targeting
• Automatically group devices by OS version, app presence, MDM status, etc.
• Used to scope updates, enforce compliance, or generate reporting
e.g., “All Macs not on macOS 15.5” → trigger a force update policy
⸻
3. Custom Configuration Profiles + Scripts
• Fine-tune settings like Dock layout, energy saver prefs, password rules
• Push scripts that run maintenance tasks, enforce settings, or clean up junk
⸻
4. Software Patch Management
• Deploy and enforce app updates — Adobe, Zoom, Chrome, and custom PKGs
• Combined with Smart Groups, you can enforce updates at scale
⸻
5. Remote Commands
• Lock, wipe, restart, update, or even issue custom MDM commands on demand
⸻
6. Inventory & Reporting
• Deep inventory of hardware, installed apps, security status, and more
• Use saved searches and advanced criteria for audits or compliance
⸻
7. Extension Attributes
• Pull in custom info (like firmware password status, FileVault status, etc.)
• Combine with Smart Groups for powerful automation
⸻
8. Self Service
• Give users access to approved apps, scripts, and settings via a branded portal
• Cuts down on help desk tickets while keeping control
• New Macs auto-enroll, apply configuration profiles, and install apps right out of the box
• Saves time, ensures consistency, and reduces IT handholding
⸻
2. Smart Groups for Dynamic Policy Targeting
• Automatically group devices by OS version, app presence, MDM status, etc.
• Used to scope updates, enforce compliance, or generate reporting
e.g., “All Macs not on macOS 15.5” → trigger a force update policy
⸻
3. Custom Configuration Profiles + Scripts
• Fine-tune settings like Dock layout, energy saver prefs, password rules
• Push scripts that run maintenance tasks, enforce settings, or clean up junk
⸻
4. Software Patch Management
• Deploy and enforce app updates — Adobe, Zoom, Chrome, and custom PKGs
• Combined with Smart Groups, you can enforce updates at scale
⸻
5. Remote Commands
• Lock, wipe, restart, update, or even issue custom MDM commands on demand
⸻
6. Inventory & Reporting
• Deep inventory of hardware, installed apps, security status, and more
• Use saved searches and advanced criteria for audits or compliance
⸻
7. Extension Attributes
• Pull in custom info (like firmware password status, FileVault status, etc.)
• Combine with Smart Groups for powerful automation
⸻
8. Self Service
• Give users access to approved apps, scripts, and settings via a branded portal
• Cuts down on help desk tickets while keeping control
What do you dislike about the product?
1. UI/UX Can Be Clunky
• Some areas of the admin console (like PreStage scope editing or extension attribute editing) feel dated and unintuitive.
• Searching and filtering across multiple tabs isn’t smooth—no quick “global search” for devices and users.
⸻
2. Limited Visibility Into Deployment Logs
• You can deploy policies or profiles, but there’s no unified log view to see exactly why something failed across devices.
• You’re often flipping between logs, smart groups, and history per machine.
⸻
3. Smart Groups Can Lag
• Sometimes there’s a noticeable delay before Smart Groups update after a config or inventory change—especially annoying during testing.
⸻
4. No Native Multi-Tenant Support
• JAMF isn’t ideal if you manage multiple orgs or sub-divisions.
• Everything lives in a single tenant, so access control and data separation are limited.
⸻
5. Patch Management Gaps
• While it covers the basics, JAMF’s patch management still lacks depth (e.g., no automated rollback, limited third-party app coverage unless using external tools like AutoPkg or Kinobi).
⸻
6. macOS OS Updates Can Be Flaky
• Forcing major macOS updates remotely is still hit-or-miss depending on SecureToken, user presence, or MDM support.
• “Force updates” may fail silently without useful error feedback.
⸻
7. PreStage Confusion with ABM Syncing
• As you recently dealt with—PreStage enrollments sometimes don’t sync cleanly with ABM, leading to ghost enrollments or devices stuck in auto-enroll loops.
• Some areas of the admin console (like PreStage scope editing or extension attribute editing) feel dated and unintuitive.
• Searching and filtering across multiple tabs isn’t smooth—no quick “global search” for devices and users.
⸻
2. Limited Visibility Into Deployment Logs
• You can deploy policies or profiles, but there’s no unified log view to see exactly why something failed across devices.
• You’re often flipping between logs, smart groups, and history per machine.
⸻
3. Smart Groups Can Lag
• Sometimes there’s a noticeable delay before Smart Groups update after a config or inventory change—especially annoying during testing.
⸻
4. No Native Multi-Tenant Support
• JAMF isn’t ideal if you manage multiple orgs or sub-divisions.
• Everything lives in a single tenant, so access control and data separation are limited.
⸻
5. Patch Management Gaps
• While it covers the basics, JAMF’s patch management still lacks depth (e.g., no automated rollback, limited third-party app coverage unless using external tools like AutoPkg or Kinobi).
⸻
6. macOS OS Updates Can Be Flaky
• Forcing major macOS updates remotely is still hit-or-miss depending on SecureToken, user presence, or MDM support.
• “Force updates” may fail silently without useful error feedback.
⸻
7. PreStage Confusion with ABM Syncing
• As you recently dealt with—PreStage enrollments sometimes don’t sync cleanly with ABM, leading to ghost enrollments or devices stuck in auto-enroll loops.
What problems is the product solving and how is that benefiting you?
When I think about what Jamf Pro is really doing for us, it comes down to control, scale, and security — without adding overhead.
First, zero-touch deployment has been a game-changer. I can ship a Mac straight from Apple to a remote employee, and by the time they log in, it’s already configured with all the right apps, settings, and security policies. We’re not spending time hand-holding setups or walking people through configuration over Zoom. It just works — most of the time.
Second, Jamf helps us stay compliant. Whether it’s keeping macOS versions current, enforcing FileVault, or making sure antivirus is installed and active, we’re using smart groups and automated policies to catch issues before they become a problem. That visibility has saved us a lot of fire drills.
Then there’s the remote management side. I can push scripts, install software, or remove a rogue profile from a machine without anyone bringing it in or mailing it back. And when you’re working with a lean IT team, that kind of control matters.
We’ve also tied Jamf into our identity provider, so users authenticate using their SSO credentials, and that’s what unlocks the Mac. No shared accounts, no local admin workarounds — it’s secure and simple.
Finally, Jamf gives us real inventory. I know who’s compliant, who’s out of date, and who hasn’t checked in — and I can prove it if I need to. That’s huge for audits, trade-ins, and just keeping our environment clean.
Is it perfect? No — syncing with ABM can still be a little frustrating, and the UI isn’t exactly intuitive. But overall, it’s solved more problems than it’s caused, and it’s become a core part of how we manage Apple devices at scale.
First, zero-touch deployment has been a game-changer. I can ship a Mac straight from Apple to a remote employee, and by the time they log in, it’s already configured with all the right apps, settings, and security policies. We’re not spending time hand-holding setups or walking people through configuration over Zoom. It just works — most of the time.
Second, Jamf helps us stay compliant. Whether it’s keeping macOS versions current, enforcing FileVault, or making sure antivirus is installed and active, we’re using smart groups and automated policies to catch issues before they become a problem. That visibility has saved us a lot of fire drills.
Then there’s the remote management side. I can push scripts, install software, or remove a rogue profile from a machine without anyone bringing it in or mailing it back. And when you’re working with a lean IT team, that kind of control matters.
We’ve also tied Jamf into our identity provider, so users authenticate using their SSO credentials, and that’s what unlocks the Mac. No shared accounts, no local admin workarounds — it’s secure and simple.
Finally, Jamf gives us real inventory. I know who’s compliant, who’s out of date, and who hasn’t checked in — and I can prove it if I need to. That’s huge for audits, trade-ins, and just keeping our environment clean.
Is it perfect? No — syncing with ABM can still be a little frustrating, and the UI isn’t exactly intuitive. But overall, it’s solved more problems than it’s caused, and it’s become a core part of how we manage Apple devices at scale.
Successfully Managing 1000's of Macs in the last 9 years
What do you like best about the product?
Jamf is incredibly flexible—far beyond what other MDMs offer. It gives you the freedom to configure, automate, and control nearly every aspect of macOS management. If you can script it, you can do it. No other solution matches this level of depth and customization.
What do you dislike about the product?
Jamf requires a significant learning curve to fully master, especially when it comes to scripting, policies, and configuration profiles. While it’s powerful, it still lags behind in areas like CIS compliance coverage, Declarative Device Management (DDM), and lacks a streamlined blueprinting system for consistent, reusable configurations.
What problems is the product solving and how is that benefiting you?
Jamf Pro helps us keep all our devices secure and under control. With Jamf Protect and SSO-enabled logins via Jamf Connect, we ensure both compliance and user convenience. It simplifies monitoring and managing our entire Mac fleet, freeing us to focus on more strategic IT initiatives.
The best MDM for macOS.
What do you like best about the product?
Functionality and support are the best in Jamf.
What do you dislike about the product?
It is difficult to request specific features that you need.
What problems is the product solving and how is that benefiting you?
Security, processes automation.
Jamf user dating back to v.7.31
What do you like best about the product?
Jamf Pro is a tried and true Apple MDM that is one of very few products out there that continues to support local package distribution and multiple VPP accounts.
What do you dislike about the product?
Printers have never been able to be site specific.
What problems is the product solving and how is that benefiting you?
Mass deployment of apps, centralized updates, self service options for users.
JAMF Pro if powerful and easy to use
What do you like best about the product?
I use JAMF on a daily basis and I can say it's so easy to use and setup. Setting up iPad & Macbook prestages makes setting up 1:1 iPads throughout our district a breeze! I really like the Preload feature which helps greatly in allowing me to enroll devices with a generic username nad it will then assign the devices using hte Prestage templete. When we do have issues, it's very easy to get a hold of somone and they are always super helpful and kind!
What do you dislike about the product?
We previoiusly had JAMf Pro on-prem and moved to the cloud thinking it would be better, but instead it's slower than ever!
What problems is the product solving and how is that benefiting you?
JAMF pro makes it wasy to setup iPads, Macbooks and Apple TV's. We save so much time by using JAMF Pro.
Facilitates automation and seamless IT workflows in managing Apple devices
What is our primary use case?
What is most valuable?
Jamf Pro is the industry-leading product in its class for managing Macs. Its ability to facilitate automation in IT workflows, such as zero-touch onboarding, is a significant advantage. The product automatically updates to include new security features, ensuring that customers are always using the latest version of macOS and app packages.
What needs improvement?
The biggest area for improvement is the price and the structure of Jamf's onboarding process, especially the mandatory JumpStart consultation, which can be costly for small organizations. The solution is also limited to managing only Apple devices, as it cannot manage Windows or Android devices. However, this is a strategic choice rather than a flaw.
For how long have I used the solution?
I have been using Jamf Pro for 15 years.
What do I think about the stability of the solution?
Jamf Pro is very stable, with no glitches or latency issues.
What do I think about the scalability of the solution?
Jamf Pro is a fully scalable solution.
How are customer service and support?
The vendor support is excellent. I would rate it at eight out of ten points.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup is straightforward at the most basic level yet can become incredibly complex depending on customer requirements.
What's my experience with pricing, setup cost, and licensing?
The pricing structure is one of the cons. However, the licensing model is simple and easy to manage from an MSP perspective. Licenses are annual, and any changes are communicated effectively.
What other advice do I have?
Overall, I would rate Jamf Pro at eight out of ten.
The room for improvement exists in pricing, onboarding with new customers, and the inability to manage Windows and Android devices, though the latter is intentional.
Jamf Pro is a powerful and flexible tool for managing macOS and iOS devices
What do you like best about the product?
Jamf Pro is extremely confurable and offers lots of functionality and intergrations in one place.
What do you dislike about the product?
Jamf Pro can be complicated and challenging to understand and get the most our of the product.
What problems is the product solving and how is that benefiting you?
Jamf Pro allows powerful and granular management of Apple devices, but also crucially offers key integrations with the Microsoft 365 ecosystem. This includes things like SSO, integration with Apple Business Manager and Managed Apple IDs, macOS SSO to Microsoft identifies, and conditional access integration.
Community Support
What do you like best about the product?
Tons of support from vendors. Jamf is usually explicitly included in vendor documentation as it is the lead product for Apple MDM
What do you dislike about the product?
Need more cowbell... and by cowbell, i mean the RAMP to cloud. Most new features are cloud only, which is disheartening for OnPrem users.
What problems is the product solving and how is that benefiting you?
Management of Workstation Fleet.
Easy to use powerful mdm
What do you like best about the product?
The vast open source and community available knowledge makes learning the app very accessible
What do you dislike about the product?
Can be hard to understand when first approaching the platform
What problems is the product solving and how is that benefiting you?
Solving device recovery, update management, profile management
showing 31 - 40