.png?sv=2019-07-07&sig=Tvr3Vpkh1OytETdjQ9soajTHkDowAQHjEBFUoUKQkE0%3D&spr=https%2Chttp&st=2023-10-02T07%3A41%3A08Z&se=2023-10-02T07%3A51%3A08Z&srt=o&ss=b&sp=r){kind=logo}
Kandji
- 18 Jun 2023
- 2 Minutes to read
- Print
- DarkLight
- PDF
Kandji
- Updated on 18 Jun 2023
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article Summary
Share feedback
Thanks for sharing your feedback!
Kandji is an Apple device management (MDM) solution for macOS, iOS, iPadOS, and tvOS.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Devices
- Users
- SaaS data
Parameters
Host Name or IP Address (required) - The hostname or IP address of the Kandji server.
API Token (required) - An API Token associated with a user account that has permissions to fetch assets.
To generate an API Token, see Generate an API Token.Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
Advanced Settings
Note:
Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to Advanced Configuration for Adapters.
- Enrich device information (optional) - Select whether to fetch additional device information about the device.
- Fetch applications (optional) - Select whether to fetch additional information about all installed apps on devices.
Note:
To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.
APIs
Axonius uses the Kandji API and Devices API.
Adapter Integration Setup
Create a User Account in Kandji
While to access SaaS data you need to grant roles and/or permissions that include write capabilities, the adapter only actually reads data from the application.
- From the Kandji console, click Settings in the left-hand navigation bar.
- Select the Access tab.
- Click New User on the top right.
- Fill in the First Name, Last Name, and Email Address fields
- Choose an Admin access level for the new team member.
- Click Submit.
- Login to the supplied email address and open the Kandji invitation. Complete the login process and supply a password.
Create an API Token
- Login with an admin user or with the user account you just created.
- From the Kandji console, click Settings in the left-hand navigation bar.
- Log in and click on Settings.
- Click the Access tab.
- Click Add API Token.
- Provide a Name and a Description for your API token.
- Click Create.
- Copy the generated token.
- Click Next.
- In Axonius configuration paste the copied token in the API Token field.
- Configure token permissions:
- Back in Kandji, Click Configure.
- In the Devices section, select the following options:
- Device details
- Device list
- Device ID
- Application list
- Device Parameters
- Click Save.
Supported From Version
Supported from Axonius version 4.5