JumpCloud
Status: Scaffold — content in progress
JumpCloud is a cloud-native directory service positioned as an AD replacement for cloud-first or hybrid organizations. It provides user/device management, SSO, RADIUS, LDAP-as-a-Service, and MDM in a single platform.
Platform Capabilities
| Capability | Description |
|---|---|
| Cloud Directory | LDAP/SCIM-based user directory |
| SSO | SAML/OIDC federation to SaaS apps |
| RADIUS | Network authentication via JumpCloud cloud RADIUS |
| LDAP | LDAP-as-a-Service (LDAPS only) |
| MDM | Device management (macOS, Windows, Linux, mobile) |
| Zero Trust | Conditional access policies |
Security Considerations
- JumpCloud admin console compromise = full directory + device management
- JumpCloud is the IdP — Golden SAML equivalent if signing key is exposed
- API key theft → full programmatic control
- Notable: JumpCloud disclosed an APT supply-chain attack in July 2023 targeting its customers via malicious agent updates
Cross-Links
| Topic | Link |
|---|---|
| Okta Overview | okta-overview |