JumpCloud

Unified Identity

• Single cloud directory that can connect to all IT resources. Seamless integrations with G Suite, Active Directory, HR systems, and others.

Device Management

• Manage Windows, Mac, and Linux devices from a single platform. From user provisioning and permissions control to MFA and full disk encryption enforcement, manage and secure your device with point-and-click simplicity.

Secure, Frictionless Access

• From web-based, mobile apps to on-premises and servers, securely access via SAML and LDAP.

Automate and Scale with API Services

• Manage your cloud directory platform with greater ease and efficiency using JumpCloud’s advanced automation tools, APIs, and extensive built-in features. Use our APIs or our PowerShell module to operate at scale by performing operations in bulk across users, devices, and groups — and save time for other high-value tasks.

Customize with RESTful API and SDKs

• Operate JumpCloud’s core directory services entirely through RESTful commands to automate and scale your infrastructure. Establish automatic onboarding and offboarding workflows, as well as workflows to manage and export your directory events data. You can also create custom integrations to allow third-party products and services to tap into JumpCloud for authentication — whether on-premises or remote — or other tasks.

Save Time and Scale with Automation

• Use a variety of in-console features and integrated tools to trigger workflows and take bulk actions in your directory: Execute commands to configure Mac, Windows, and Linux devices at scale. Schedule them to run in the future, on repeat, or in response to a webhook trigger. Use the CSV import and export features to migrate and update users at scale.

Manage with PowerShell Module

• Active Directory admins — put your PowerShell expertise to use. Programmatically control your directory from the command line using the JumpCloud PowerShell Module. Automate tasks such as importing and exporting users, customizing user attributes, binding users to devices, modifying data at scale, resetting passwords, triggering commands, and more. The JumpCloud PowerShell Module also works on Linux and Mac.

Connectors for Popular Apps

• Provide access to apps via SAML 2.0, SCIM, and LDAP, including a library of hundreds of pre-configured connectors.

App Identity Management

• Create and manage user accounts in applications directly from JumpCloud with SAML JIT and SCIM, plus pass groups, roles, and permissions to those apps.

MFA at Login

• Layer multi-factor authentication (MFA) for SP- and IdP-initiated authentication to SAML-based apps and the JumpCloud User Portal.

Cloud LDAP

• Cloud-hosted LDAP provides you with all of the abilities of the LDAP protocol with none of the usual setup, maintenance, or failover requirements of traditional LDAP implementations. Since our cloud LDAP servers are already stood up and ready to use, all you need to do is point your LDAP-connected endpoints to JumpCloud and you’re on your way.

Complete Control

• Manage LDAP access from your browser through the JumpCloud Admin Portal, as well as through your command line or our RESTful APIs. With group-based access controls, you can streamline LDAP management to best suit your needs.

Hyper Secure

• Our OpenLDAP RFC 2307 compliant cloud LDAP offering is encrypted by LDAPS & Start TLS, ensuring your LDAP authentication remains as secure as possible. What’s more, you can require multi-factor authentication upon entry to LDAP resources to keep your data locked down.

AuthN to Apps & Services

• JumpCloud provides authentication for any application or service that can defer authentication via LDAP. Integrate with apps such as Atlassian Jira and Confluence or with DevOps infrastructures such as Jenkins, Ansible, Kubernetes, Docker, OpenVPN, and thousands of others.

NAS Authentication with LDAP & Samba Attributes

• LDAP-as-a-Service includes secure support for authentication and group-based authorization on Samba file servers or commercial NAS appliances such as Synology, QNAP, Morro Data, and more.

Cloud RADIUS

• Get the strength and security of the RADIUS protocol without building, maintaining, or monitoring physical servers. Quickly roll out managed RADIUS to your organization to authenticate users to Wi-Fi, VPNs, switches, and network devices securely.

Save Time and Money

• Leave the heavy lifting to JumpCloud, eliminate the costs associated with maintaining physical RADIUS servers, and use managed RADIUS as part of your core directory platform.

Ensure Network Security

• JumpCloud automatically generates complex passwords (shared secrets) for authentication between your WAPs and JumpCloud’s RADIUS servers. This maintains a secure connection between infrastructure endpoints while users log in with their individual credentials. An additional method, certificate trust, verify that your client desktops, laptops, and mobile devices are talking to the correct RADIUS server.

Control User Access

• Each RADIUS server you add to JumpCloud can be connected to user groups to provide network access at scale and to restrict specific networks or VPNs to specific groups of users. Further segmentation is possible through dynamic VLAN tagging.

Ready-to-Use Insights

• Eliminate the time spent collecting and formatting logs across disparate point solutions. Directory Insights aggregates event logs across user activity and virtually every IT resource and surfaces them in a standardized format with instantly actionable data.

Prove Compliance Without Hassles

• Create audit trails leading up to critical events so you know the who, what, where, when, and how across directory activities to certify organizational compliance. Easily meet industry standards and procedures like SOC 2, PCI DSS, and HIPAA.

Analyze End-to-End Events

• Equip your team with insights when you need to investigate events across user activities and cloud or on-premises resources, including SSO applications, LDAP servers, RADIUS networks, MDM commands, and every managed Mac, Windows, and Linux device.

System Insights

• System Insights collates event data across all JumpCloud managed devices. This data provides a real-time centralized view of detailed device-level information across the organization, enabling admins to proactively identify issues and minimize security risks associated with out-of-date or unapproved programs and applications.

Fast Access to Data

• View System Insights data within the JumpCloud Admin Portal, export to CSV, or use the API to send your system data to a SIEM, Asset Management system, or analytics platform for advanced reporting and anomaly detection.

Granular Visibility to Applications on Individual Devices

• System insights delivers robust fleetwide information on device OS, applications, and program versions that help administrators assess device health and identify non-compliant systems for immediate remediation.

Automate your Hardware Inventory Management

• Identify aging devices across the organization by collecting information on memory, storage capacity, uptime, and shared resources. This allows for more granularity in IT budgeting and ensures employees don’t have unwanted downtime from device malfunctions.

Security at its Core

• Allow Security and DevOps teams to interrogate machines, identify critical security vulnerabilities, and proactively remediate potential issues without interruption to employees.

Quick and Efficient Onboarding/Offboarding

• Use group-based access control to instantly grant new users access to the resources their role/department requires. When a user leaves your organization, simply suspend their account and their resource access goes with it — keeping confidential data and processes secure.

Remote User Management

• Unlike traditional directory services, JumpCloud leverages cloud infrastructure to provide you with full remote control over your user base. No VPN is required to push changes or grant access.

Secure Identities

• Full-scale password and SSH key management capabilities grant you the ability to ensure users are as secure as possible when authenticating. Backed by TOTP, Duo Push, or WebAuthn physical key MFA, JumpCloud makes sure that your users’ identities are safe.

Multi-Factor Authentication (MFA)

• One-touch, frictionless authentication to secure IT resources, prevent unauthorized access, and bring you to a Zero Trust Security model.

Push MFA, TOTP, or U2F – Your Choice

• Make the right choice for your users’ convenience. Leverage JumpCloud Protect’s simple push-to-verify process, time-based one-time passwords (TOTP), U2F keys, or in-device biometrics to meet your organization’s needs.

Conditional Access

• Enforce or relax multi-factor authentication requirements based on whether users are on a trusted device, network, or location or not. Simultaneously simplify your employee's login process while protecting your company from possible breaches.

User-Friendly Enrollment

• Use enrollment periods to establish a specific time frame for users to set up their MFA and provide the flexibility to initiate it when it doesn’t disrupt their work — while also leveraging automating reminders and hard deadlines to ensure eventual compliance.

MDM

• JumpCloud MDM simplifies device onboarding, security, and configuration workflows while providing frictionless user access across virtually every resource in any work environment — all from a cloud-based console.

One Console for Every OS

• Bring together the Windows, Mac, and Linux devices at your organization within one cloud console for centralized operating system management.

Security Without Hurdles

• Secure your organization’s devices that carry sensitive data by enabling the right posture and compliance standards.

End-to-End Insights

• Directory Insights surfaces every event across devices and more so you can see everything that happens in your environment, while System Insights provides near real-time reporting for every managed device for robust monitoring.

Zero-Touch Enrollment

• Zero-Touch Enrollment lets admins dropship a Mac to a user that’s auto-configured when they log in with their JumpCloud Identity, so employees can make work happen right after unboxing.

Secure for Remote Work

• JumpCloud enables IT admins to apply fleetwide configurations in the JumpCloud admin console UI to enforce device posture and security commands to end-user devices anywhere they are.

Customizable Experiences

• Administer laptops and workstations to your organization’s specifications with Apple MDM payloads, commands, and policies. Personalize the device setup experience for Mac users to streamline their onboarding experience (supported on macOS 10.15+).

Server Access

• Simplify how you manage yours with JumpCloud. Streamline the way you manage and provide access to your organization’s servers, from cloud RADIUS and LDAP servers to virtual servers. JumpCloud’s support for server infrastructure covers a wide array of Windows distributions and native support for LTS Amazon Linux, RHEL, CentOS, Debian, and Ubuntu.

Cloud-Based Control

• An agent installed on each server communicates securely to JumpCloud’s cloud-based directory platform so you can execute tasks on Linux and Windows servers with AWS, GCP, Azure, and other providers. Use tools like Chef, Puppet, Ansible, and Salt to install the JumpCloud agent programmatically across servers.

Secure Provisioning

• Securely provision employee access to servers with 2FA settings for storage infrastructure, user-generated and admin-governed SSH keys to achieving compliance, and insights into device status.

User Access Management

• Onboard new employees to on-premises or virtual servers efficiently and easily — no coding required. Plus, automate processes with APIs for limitless auto-scaling to ensure users have the right access to servers.

Patch Management

• Visibility and clarity to the current state of your device operating system (OS), browsers, and applications, with tools to automate patches that keep devices up-to-date and secure.

Strengthen Device Security Posture at All Times

• Improve your devices’ security and eliminate vulnerabilities with the latest patch updates at all times, with minimal IT effort.

Automate and Efficiently Rollout Patch Updates

• Define and automate specific rollout schedules as needed. Ability to quickly add/edit/remove schedule entries.

Full Version Visibility and Reporting

• Provide visibility on OS, browser, and application patch versions to ensure nothing is amiss.