Skip to main content
Applies to BloodHound Enterprise and CE Represents the Single Sign-On (SSO) integration configured in the Jamf Pro tenant. When enabled, the SSO provider can map attributes to authenticate as any Jamf account or group, making it a Tier 0 node with significant security implications.

Created by

process_sso_node in lib/preprocess.py

Edges

The tables below list edges defined by the Jamf extension only. Additional edges to or from this node may be created by other extensions.

Inbound Edges

Outbound Edges

Edge TypeDestination Node TypesTraversable
jamf_SSO_Loginjamf_Account, jamf_DisabledAccount, jamf_Group

Properties

Property NameData TypeDescription
sso_enabledbooleanWhether SSO is enabled
idp_urlstringIdentity Provider URL
idp_provider_typestringType of identity provider
entity_idstringSAML entity ID
group_attribute_namestringAttribute name for group mapping
group_rdn_keystringRDN key for group lookups
site_idstringSite ID (always “-1” for global)
tierintegerSecurity tier classification (0)
namestringName of the SSO integration
enrollment_sso_configstringEnrollment SSO configuration

Relationship Diagram