This guide walks you through creating API credentials in Jamf Pro and configuring a Jamf Endpoint Management integration in Synqly.

## Create an API Client in Jamf Pro

You will need OAuth2 client credentials (a Client ID and Client Secret) to authenticate the integration.

### 1. Log in to Jamf Pro

Navigate to your Jamf Pro instance (e.g., `https://yourorg.jamfcloud.com`).

### 2. Open API Roles and Clients

Go to **Settings** > **System** > **API Roles and Clients**.

### 3. Create an API Role

Click **New** under **API Roles**. Give the role a descriptive name (e.g., "Synqly Integration") and grant it the following privileges:

**Required for device inventory:**

- **Read Computers**
- **Read Mobile Devices**


**Required for compliance (smart group membership):**

- **Read Smart Computer Groups**
- **Read Smart Mobile Device Groups**


**Required for remediation (MDM commands):**

- **View MDM command information in Jamf Pro API**


The remediation privilege is only needed if you intend to use the remediation operation (device lock, erase, restart, shutdown, or clear passcode). You can omit it for read-only integrations.

Click **Save**.

### 4. Create an API Client

Click **New** under **API Clients**. Give it a descriptive name and assign the API role you created in step 3. Set the **Access Token Lifetime** to your organization's policy. Click **Save**.

### 5. Copy the Client ID and generate a Client Secret

After saving, copy the **Client ID**. Click **Generate Client Secret**, then copy the **Client Secret**. Store both values securely — the Client Secret is shown only once.

For more details, see the [Jamf Pro API documentation](https://learn.jamf.com/en-US/bundle/jamf-pro-documentation/page/API_Roles_and_Clients.html).

## Configure the Integration

Create your integration by supplying the following values.

**Instance URL**
Your Jamf Pro instance URL, e.g. `https://yourorg.jamfcloud.com`.

**Credential**
OAuth2 Client ID and Client Secret from step 5.