Query structured spec data via REST or MCP. Get exactly what your agent needs.
https://console.jumpcloud.com/api/v2
/activedirectories/{activedirectory_id}/agents/{agent_id}
This endpoint deletes an Active Directory agent.
curl -X DELETE https://console.jumpcloud.com/api/v2/activedirectories/{activedirectory_id}/agents/{agent_id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| activedirectory_id | path | required | string | — |
| agent_id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /activedirectories/{activedirectory_id}/agents/{agent_id}
/activedirectories/{id}
This endpoint allows you to delete an Active Directory Instance.
curl -X DELETE https://console.jumpcloud.com/api/v2/activedirectories/{ActiveDirectory_ID} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | ObjectID of this Active Directory instance. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
DELETE /activedirectories/{id}
/administrators/{administrator_id}/organizationlinks/{id}
This endpoint removes the association link between an Administrator and an Organization.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| administrator_id | path | required | string | — |
| id | path | required | string | — |
No Content
DELETE /administrators/{administrator_id}/organizationlinks/{id}
/applemdms/{apple_mdm_id}/devices/{device_id}
Remove a single Apple MDM device from MDM enrollment.
curl -X DELETE https://console.jumpcloud.com/api/v2/applemdms/{apple_mdm_id}/devices/{device_id} \
-H 'accept: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
| apple_mdm_id | path | required | string | — |
| device_id | path | required | string | — |
OK
DELETE /applemdms/{apple_mdm_id}/devices/{device_id}
/applemdms/{id}
Removes an Apple MDM configuration.
Warning: This is a destructive operation and will remove your Apple Push Certificates. We will no longer be able to manage your devices and the only recovery option is to re-register all devices into MDM.
curl -X DELETE https://console.jumpcloud.com/api/v2/applemdms/{id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /applemdms/{id}
/applications/{application_id}/logo
Deletes the specified image from an application
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| application_id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
NO_CONTENT
DELETE /applications/{application_id}/logo
/authn/policies/{id}
Delete the specified authentication policy.
curl -X DELETE https://console.jumpcloud.com/api/v2/authn/policies/{id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | Unique identifier of the authentication policy |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
DELETE /authn/policies/{id}
/bulk/userstates/{id}
This endpoint deletes a scheduled statechange job.
curl -X DELETE "https://console.jumpcloud.com/api/v2/bulk/userstates/{ScheduledJob_ID}" \
-H 'x-api-key: {API_KEY}' \
-H 'Content-Type: application/json' \
-H 'Accept: application/json'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | Unique identifier of the scheduled statechange job. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
No Content
DELETE /bulk/userstates/{id}
/commandqueue/{workflow_instance_id}
This endpoint allows all queued commands for one workflow instance to be canceled.
curl -X DELETE https://console.jumpcloud.com/api/v2/commandqueue/{workflow_instance_id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| workflow_instance_id | path | required | string | Workflow instance Id of the queued commands to cancel. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
DELETE /commandqueue/{workflow_instance_id}
/customemails/{custom_email_type}
Delete the custom email configuration for the specified custom email type
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| custom_email_type | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
No Content
DELETE /customemails/{custom_email_type}
/duo/accounts/{account_id}/applications/{application_id}
Deletes the specified Duo application, an error will be returned if the application is used in a protected resource.
curl -X DELETE https://console.jumpcloud.com/api/v2/duo/accounts/{ACCOUNT_ID}/applications/{APPLICATION_ID} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}''
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| account_id | path | required | string | — |
| application_id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /duo/accounts/{account_id}/applications/{application_id}
/duo/accounts/{id}
Removes the specified Duo account, an error will be returned if the account has some Duo application used in a protected resource.
curl -X DELETE https://console.jumpcloud.com/api/v2/duo/accounts/{id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | ObjectID of the Duo Account |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /duo/accounts/{id}
/gsuites/{gsuite_id}/domains/{domainId}
Delete a domain from a specific Google Workspace directory sync integration instance.
curl -X DELETE https://console.jumpcloud.com/api/v2/gsuites/{gsuite_id}/domains/{domainId} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| gsuite_id | path | required | string | Id for the specific Google Workspace directory sync integration instance. |
| domainId | path | required | string | Id for the domain. |
An unexpected error response.
OK
Unauthorized
Forbidden
Not Found
Internal Server Error
DELETE /gsuites/{gsuite_id}/domains/{domainId}
/gsuites/{gsuite_id}/import/schedules/{scheduledJobId}
Endpoint to delete the specified scheduled job from gapps and kala.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| gsuite_id | path | required | string | ObjectID of the Google Workspace integration |
| scheduledJobId | path | required | string | ObjectID of the Scheduled Job |
An unexpected error response.
A successful response.
No Content
Unauthorized
Forbidden
Not Found
Internal Server Error
DELETE /gsuites/{gsuite_id}/import/schedules/{scheduledJobId}
/gsuites/{gsuite_id}/translationrules/{id}
This endpoint allows you to delete a translation rule for a specific G Suite instance. These rules specify how JumpCloud attributes translate to G Suite Admin SDK attributes.
curl -X DELETE https://console.jumpcloud.com/api/v2/gsuites/{gsuite_id}/translationrules/{id} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| gsuite_id | path | required | string | — |
| id | path | required | string | — |
DELETE /gsuites/{gsuite_id}/translationrules/{id}
/google-emm/enterprises/{enterpriseId}
Removes a Google EMM enterprise.
Warning: This is a destructive operation and will remove all data associated with Google EMM enterprise from JumpCloud including devices and applications associated with the given enterprise.
curl -X DELETE https://console.jumpcloud.com/api/v2/google-emm/devices/{enterpriseId} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}' \
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| enterpriseId | path | required | string | — |
A successful response.
DELETE /google-emm/enterprises/{enterpriseId}
/google-emm/enterprises/{enterpriseId}/enrollment-tokens/{tokenId}
Removes an Enrollment token for a given enterprise and token id.
curl -X DELETE https://console.jumpcloud.com/api/v2/enterprises/{enterprise_id}/enrollment-tokens/{token_id} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}' \
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| enterpriseId | path | required | string | — |
| tokenId | path | required | string | — |
A successful response.
DELETE /google-emm/enterprises/{enterpriseId}/enrollment-tokens/{tokenId}
/iplists/{id}
Delete a specific IP list.
curl -X DELETE https://console.jumpcloud.com/api/v2/iplists/{id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
DELETE /iplists/{id}
/office365s/{office365_id}/domains/{domain_id}
Delete a domain from a specific M365/Azure AD directory sync integration instance.
curl -X POST https://console.jumpcloud.com/api/v2/office365s/{OFFICE365_ID}/domains/{DOMAIN_ID} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| office365_id | path | required | string | Id for the specific M365/Azure AD directory sync integration instance. |
| domain_id | path | required | string | ObjectID of the domain to be deleted. |
An unexpected error response.
OK
DELETE /office365s/{office365_id}/domains/{domain_id}
/office365s/{office365_id}/translationrules/{id}
This endpoint allows you to delete a translation rule for a specific Office 365 instance. These rules specify how JumpCloud attributes translate to Microsoft Graph attributes.
curl -X DELETE https://console.jumpcloud.com/api/v2/office365s/{office365_id}/translationrules/{id} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| office365_id | path | required | string | — |
| id | path | required | string | — |
DELETE /office365s/{office365_id}/translationrules/{id}
/policies/{id}
This endpoint allows you to delete a policy.
curl -X DELETE https://console.jumpcloud.com/api/v2/policies/5a837ecd232e110d4291e6b9 \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | ObjectID of the Policy object. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
No Content
DELETE /policies/{id}
/policygroups/{id}
This endpoint allows you to delete a Policy Group.
curl -X DELETE https://console.jumpcloud.com/api/v2/policygroups/{GroupID} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | ObjectID of the Policy Group. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
No Content
DELETE /policygroups/{id}
/providers/{provider_id}/administrators/{id}
This endpoint removes an Administrator associated with the Provider. You must be associated with the provider to use this route.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| provider_id | path | required | string | — |
| id | path | required | string | — |
No Content
DELETE /providers/{provider_id}/administrators/{id}
/integrations/autotask/{UUID}
Removes a Autotask integration.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| UUID | path | required | string | — |
No Content
DELETE /integrations/autotask/{UUID}
/integrations/connectwise/{UUID}
Removes a ConnectWise integration.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| UUID | path | required | string | — |
No Content
DELETE /integrations/connectwise/{UUID}
/integrations/syncro/{UUID}
Removes a Syncro integration.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| UUID | path | required | string | — |
No Content
DELETE /integrations/syncro/{UUID}
/providers/{provider_id}/policygrouptemplates/{id}
Deletes a Policy Group Template.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| provider_id | path | required | string | — |
| id | path | required | string | — |
NO_CONTENT
DELETE /providers/{provider_id}/policygrouptemplates/{id}
/ldapservers/{ldapserver_id}/sambadomains/{id}
This endpoint allows you to delete a samba domain from an LDAP server.
curl -X DELETE https://console.jumpcloud.com/api/v2/ldapservers/{LDAP_ID}/sambadomains/{SAMBA_ID} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| ldapserver_id | path | required | string | Unique identifier of the LDAP server. |
| id | path | required | string | Unique identifier of the samba domain. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /ldapservers/{ldapserver_id}/sambadomains/{id}
/softwareapps/{id}
Removes a Software Application configuration.
Warning: This is a destructive operation and will unmanage the application on all affected systems.
curl -X DELETE https://console.jumpcloud.com/api/v2/softwareapps/{id} \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /softwareapps/{id}
/systemgroups/{id}
This endpoint allows you to delete a System Group.
curl -X DELETE https://console.jumpcloud.com/api/v2/systemgroups/{Group_ID} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | ObjectID of the System Group. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
No Content
DELETE /systemgroups/{id}
/usergroups/{id}
This endpoint allows you to delete a User Group.
curl -X DELETE https://console.jumpcloud.com/api/v2/usergroups/{GroupID} \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| id | path | required | string | ObjectID of the User Group. |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
No Content
DELETE /usergroups/{id}
/users/{user_id}/pushendpoints/{push_endpoint_id}
This endpoint will delete a push endpoint associated with a user.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| user_id | path | required | string | — |
| push_endpoint_id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
OK
DELETE /users/{user_id}/pushendpoints/{push_endpoint_id}
/workdays/{workday_id}/auth
Removes any and all authorization methods from the workday instance
curl -X DELETE https://console.jumpcloud.com/api/v2/workdays/{WorkDayID}/auth \
-H 'Accept: application/json' \
-H 'Content-Type: application/json' \
-H 'x-api-key: {API_KEY}'
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| workday_id | path | required | string | — |
| x-org-id | header | optional | string | Organization identifier that can be obtained from console settings. |
DELETE /workdays/{workday_id}/auth
ADE
{
"type": "object",
"title": "ADE",
"properties": {
"setupOptions": {
"type": "array",
"items": {
"$ref": "#/components/schemas/SetupAssistantOption"
},
"description": "A list of configured setup options for this enrollment."
},
"welcomeScreen": {
"$ref": "#/components/schemas/DEPWelcomeScreen"
},
"setupAssistantOptions": {
"type": "array",
"items": {
"$ref": "#/components/schemas/DEPSetupAssistantOption"
},
"description": "A Setup Option wrapped as an object",
"x-deprecated": true
},
"enableZeroTouchEnrollment": {
"type": "boolean",
"description": "A toggle to determine if ADE registered devices should go through JumpCloud Zero Touch Enrollment."
},
"defaultDeviceGroupObjectIds": {
"type": "array",
"items": {
"type": "string"
},
"nullable": true,
"description": "An array of ObjectIDs identifying the default device groups for this specific type (based on the OS family) of automated device enrollment. Currently, only a single DeviceGroupID is supported."
}
}
}
ADES
{
"type": "object",
"title": "ADES",
"properties": {
"ios": {
"$ref": "#/components/schemas/ADE"
},
"macos": {
"$ref": "#/components/schemas/ADE"
}
}
}
AccessRequestApiRevokeAccessRequestResponse
{
"type": "object",
"example": {},
"properties": {}
}
AccessRequestApiUpdateAccessRequestRequest
{
"type": "object",
"properties": {
"expiry": {
"type": "string",
"format": "date-time"
},
"remarks": {
"type": "string"
},
"additionalAttributes": {
"type": "object"
},
"organizationObjectId": {
"type": "string",
"format": "byte"
}
}
}
AccessRequestApiUpdateAccessRequestResponse
{
"type": "object",
"example": {},
"properties": {}
}
ActivedirectoriesAgentsListResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/active-directory-agent-list"
}
}
ActivedirectoriesListResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/active-directory"
}
}
Address
{
"type": "object",
"properties": {
"id": {
"type": "string"
},
"type": {
"type": "string",
"maxLength": 1024
},
"poBox": {
"type": "string",
"maxLength": 1024
},
"region": {
"type": "string",
"maxLength": 1024
},
"country": {
"type": "string",
"maxLength": 1024
},
"locality": {
"type": "string",
"maxLength": 1024
},
"postalCode": {
"type": "string",
"maxLength": 1024
},
"streetAddress": {
"type": "string",
"maxLength": 1024
},
"extendedAddress": {
"type": "string",
"maxLength": 1024
}
}
}
Administrator
{
"type": "object",
"title": "Administrator",
"example": {
"id": "0123456789abcdef01234567",
"email": "joe@example.com",
"lastname": "Blough",
"firstname": "Joe",
"registered": false,
"enableMultiFactor": true
},
"properties": {
"id": {
"type": "string"
},
"role": {
"type": "string"
},
"email": {
"type": "string"
},
"lastname": {
"type": "string"
},
"roleName": {
"type": "string"
},
"apiKeySet": {
"type": "boolean"
},
"firstname": {
"type": "string"
},
"suspended": {
"type": "boolean"
},
"registered": {
"type": "boolean"
},
"apiKeyAllowed": {
"type": "boolean"
},
"enableMultiFactor": {
"type": "boolean"
},
"organizationAccessTotal": {
"type": "number"
}
}
}
AdministratorOrganizationLink
{
"type": "object",
"title": "AdministratorOrganizationLink",
"example": {
"organization": "6230a0d26a4e4bc86c6b36f1",
"administrator": "6230a0c233a6cbea7c470398"
},
"properties": {
"organization": {
"type": "string",
"description": "The identifier for an organization"
},
"administrator": {
"type": "string",
"description": "The identifier for an administrator"
}
}
}
AdministratorOrganizationLinkReq
{
"type": "object",
"title": "AdministratorOrganizationLinkReq",
"example": {
"organization": "6230a0d26a4e4bc86c6b36f1"
},
"properties": {
"organization": {
"type": "string",
"description": "The identifier for an organization to link this administrator to."
}
}
}
AdministratorOrganizationsListByAdministratorResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/AdministratorOrganizationLink"
}
}
AdministratorOrganizationsListByOrganizationResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/AdministratorOrganizationLink"
}
}
AnyValue
{
"description": "Can be any value - string, number, boolean, array or object."
}
AppleMDM
{
"type": "object",
"title": "AppleMDM",
"required": [
"id"
],
"properties": {
"id": {
"type": "string",
"description": "ObjectId uniquely identifying an MDM Enrollment,"
},
"dep": {
"$ref": "#/components/schemas/DEP"
},
"ades": {
"$ref": "#/components/schemas/ADES"
},
"name": {
"type": "string",
"maxLength": 255,
"description": "A friendly name to identify this enrollment. Not required to be unique."
},
"organization": {
"type": "string",
"description": "The identifier for an organization"
},
"apnsPushTopic": {
"type": "string",
"description": "The push topic assigned to this enrollment by Apple after uploading the Signed CSR plist."
},
"apnsCertExpiry": {
"type": "string",
"description": "The expiration date and time for the APNS Certificate."
},
"depServerTokenState": {
"enum": [
"unknown",
"missing",
"valid",
"expired"
],
"type": "string",
"description": "The state of the dep server token, presence and expiry."
},
"defaultSystemGroupID": {
"type": "string",
"description": "ObjectId uniquely identifying the MDM default System Group.",
"x-deprecated": true
},
"depAccessTokenExpiry": {
"type": "string",
"description": "The expiration date and time for the DEP Access Token. This aligns with the DEP Server Token State."
},
"appleCertSerialNumber": {
"type": "string",
"description": "The serial number of the Apple signed certificate associated to the Device Manager."
},
"appleCertCreatorAppleID": {
"type": "string",
"description": "The Apple ID of the admin who created the Apple signed certificate associated to the Device Manager."
},
"allowMobileUserEnrollment": {
"type": "boolean",
"description": "A toggle to allow mobile device enrollment for an organization."
},
"defaultIosUserEnrollmentDeviceGroupID": {
"type": "string",
"description": "ObjectId uniquely identifying the MDM default iOS user enrollment device group."
}
}
}
ApplemdmsDevicesClearActivationLock500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesClearActivationLockResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesOsUpdateStatusResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesRefreshActivationLockInformation500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesRefreshActivationLockInformationResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesScheduleOsUpdateResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDeviceserase500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDeviceseraseRequest
{
"type": "object",
"properties": {
"pin": {
"type": "string",
"example": "123456",
"pattern": "^[0-9]{6}$",
"description": "6-digit PIN, required for MacOS, to erase the device"
}
}
}
ApplemdmsDeviceseraseResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDeviceslistResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/apple-mdm-device"
}
}
ApplemdmsDeviceslock500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDeviceslockRequest
{
"type": "object",
"properties": {
"pin": {
"type": "string",
"example": "123456",
"pattern": "^[0-9]{6}$",
"description": "6-digit PIN, required for MacOS, to lock the device"
}
}
}
ApplemdmsDeviceslockResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesrestart500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesrestartRequest
{
"type": "object",
"properties": {
"kextPaths": {
"type": "array",
"items": {
"type": "string"
},
"description": "The string to pass when doing a restart and performing a RebuildKernelCache."
}
}
}
ApplemdmsDevicesrestartResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesshutdown500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsDevicesshutdownResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsEnrollmentprofileslistResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/AppleMDM"
}
}
ApplemdmsListResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/AppleMDM"
}
}
ApplemdmsRefreshdepdevices500Response
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplemdmsRefreshdepdevicesResponse
{
"type": "object",
"properties": {
"message": {
"type": "string"
}
}
}
ApplicationsGetResponse
{
"type": "object",
"example": {},
"properties": {}
}
ApplicationsPostLogoRequest
{
"type": "object",
"properties": {
"image": {
"type": "string",
"format": "binary",
"description": "The file to upload."
}
}
}
Apps
{
"type": "array",
"items": {
"type": "object",
"properties": {
"osId": {
"type": "integer",
"format": "int32",
"example": 1
},
"appVersion": {
"type": "string",
"example": "1.1.1"
}
}
}
}
AuthnPolicy
{
"type": "object",
"title": "AuthnPolicy",
"properties": {
"id": {
"type": "string",
"readOnly": true
},
"name": {
"type": "string"
},
"type": {
"$ref": "#/components/schemas/AuthnPolicyType"
},
"effect": {
"$ref": "#/components/schemas/AuthnPolicyEffect"
},
"targets": {
"$ref": "#/components/schemas/AuthnPolicyTargets"
},
"disabled": {
"type": "boolean"
},
"conditions": {
"type": "object",
"description": "Conditions may be added to an authentication policy using the following conditional language:\n\n```\n<conditions> ::= <expression>\n<expression> ::= <deviceEncrypted> | <deviceManaged> | <ipAddressIn> |\n <locationIn> | <notExpression> | <allExpression> |\n <anyExpression>\n<deviceEncrypted> ::= { \"deviceEncrypted\": <boolean> }\n<deviceManaged> ::= { \"deviceManaged\": <boolean> }\n<ipAddressIn> ::= { \"ipAddressIn\": [ <objectId>, ... ] }\n<locationIn> ::= { \"locationIn\": {\n \"countries\": [\n <iso_3166_country_code>, ...\n ]\n }\n }\n<notExpression> ::= { \"not\": <expression> }\n<allExpression> ::= { \"all\": [ <expression>, ... ] }\n<anyExpression> ::= { \"any\": [ <expression>, ... ] }\n```\n\nFor example, to add a condition that applies to IP addresses in a given list, the following condition can be added:\n\n```\n{\"ipAddressIn\": [ <ip_list_object_id> ]}\n```\n\nIf you would rather exclude IP addresses in the given lists, the following condition could be added:\n\n```\n{\n \"not\": {\n \"ipAddressIn\": [ <ip_list_object_id_1>, <ip_list_object_id_2> ]\n }\n}\n```\n\nYou may also include more than one condition and choose whether \"all\" or \"any\" of them must be met for the policy to apply:\n\n```\n{\n \"all\": [\n {\n \"ipAddressIn\": [ <ip_list_object_id>, ... ]\n },\n {\n \"deviceManaged\": true\n },\n {\n \"locationIn\": {\n countries: [ <iso_3166_country_code>, ... ]\n }\n }\n ]\n}\n```"
},
"description": {
"type": "string"
}
},
"description": "This represents an authentication policy. See the details of each field for valid values and restrictions."
}
AuthnPolicyEffect
{
"type": "object",
"title": "AuthnPolicyEffect",
"required": [
"action"
],
"properties": {
"action": {
"enum": [
"allow",
"deny",
"unknown"
],
"type": "string"
},
"obligations": {
"$ref": "#/components/schemas/AuthnPolicyObligations"
}
},
"x-examples": {
"example-deny": {
"action": "deny"
},
"example-allow": {
"action": "allow"
},
"example-allow-with-mfa": {
"action": "allow",
"obligations": {
"mfa": {
"required": true
}
}
}
}
}
AuthnPolicyObligations
{
"type": "object",
"title": "AuthnPolicyObligations",
"properties": {
"mfa": {
"type": "object",
"properties": {
"required": {
"type": "boolean"
}
}
},
"userVerification": {
"type": "object",
"properties": {
"requirement": {
"enum": [
"none",
"optional",
"required"
],
"type": "string"
}
}
}
}
}
AuthnPolicyResourceTarget
{
"type": "object",
"title": "AuthnPolicyResourceTarget",
"required": [
"type"
],
"properties": {
"id": {
"type": "string",
"description": "Object ID of the resource target. If undefined, then all resources of the given type are targeted."
},
"type": {
"enum": [
"user_portal",
"application",
"ldap"
],
"type": "string"
}
}
}
AuthnPolicyTargets
{
"type": "object",
"title": "AuthnPolicyTargets",
"properties": {
"users": {
"$ref": "#/components/schemas/AuthnPolicyUserTarget"
},
"resources": {
"type": "array",
"items": {
"$ref": "#/components/schemas/AuthnPolicyResourceTarget"
}
},
"userGroups": {
"$ref": "#/components/schemas/AuthnPolicyUserGroupTarget"
},
"userAttributes": {
"$ref": "#/components/schemas/AuthnPolicyUserAttributeTarget"
}
}
}
AuthnPolicyType
{
"enum": [
"user_portal",
"application",
"ldap"
],
"type": "string",
"title": "AuthnPolicyType",
"default": "user_portal"
}
AuthnPolicyUserAttributeFilter
{
"type": "object",
"title": "AuthnPolicyUserAttributeFilter",
"properties": {
"field": {
"type": "string",
"description": "The only field that is currently supported is ldap_binding_user"
},
"value": {
"$ref": "#/components/schemas/AnyValue"
},
"operator": {
"enum": [
"EQ"
],
"type": "string"
}
}
}
AuthnPolicyUserAttributeTarget
{
"type": "object",
"title": "AuthnPolicyUserAttributeTarget",
"properties": {
"exclusions": {
"type": "array",
"items": {
"$ref": "#/components/schemas/AuthnPolicyUserAttributeFilter"
}
},
"inclusions": {
"type": "array",
"items": {
"$ref": "#/components/schemas/AuthnPolicyUserAttributeFilter"
}
}
},
"description": "User attribute targets are currently only supported for LDAP policies."
}
AuthnPolicyUserGroupTarget
{
"type": "object",
"title": "AuthnPolicyUserGroupTarget",
"properties": {
"exclusions": {
"type": "array",
"items": {
"type": "string"
}
},
"inclusions": {
"type": "array",
"items": {
"type": "string"
}
}
}
}
AuthnPolicyUserTarget
{
"type": "object",
"title": "AuthnPolicyUserTarget",
"properties": {
"inclusions": {
"type": "array",
"items": {
"type": "string"
}
}
}
}
| Version | Endpoints | Schemas | Ingested | Status |
|---|---|---|---|---|
| 2.0 | 416 | 669 | 2026-05-11 | current |
| 2.0 | 416 | 669 | 2026-04-20 | |
| 2.0 | 416 | 669 | 2026-04-20 | |
| 2.0 | 416 | 669 | 2026-04-16 |