Top SitesJumpCloud: Unified Platform for Identity, Access, & Devices

Machine Readiness

Stored receipt and evidence

Overall

20

Readable

65

Callable

0

Commerce

0

Payment

0

Machine Access

Inspect the site's MCP endpoint

Open MCP explorer

DialtoneApp can scan the stored discovery files for this domain, try the MCP initialize handshake, and show the raw protocol transcript.

Purchase boundary

read only

Control boundary

unknown

Payment rails

None

Payment providers

None

Payment methods

None

Payment protocols

None

Payment assets

None

Payment networks

None

Capabilities

None

Verified payment surface

No

Crypto only

No

Readable docs

robots, llms

Products

0

Variants

0

Priced variants

0

Currencies

0

Offers

0

Priced offers

0

Priced actions

0

Samples

Offer samples

No stored offer samples.

Samples

Action samples

No stored action samples.

Samples

Product samples

No stored product samples.

Document

robots.txt

Open robots.txt
User-agent: *
Allow: /llms.txt
Disallow: /wp/wp-admin/
Disallow: /blog/search?*
Disallow: /lp/
Disallow: /start-your-trial
Disallow: /expert-trial-setup
Disallow: /expert-trial-setup-error

Sitemap: https://jumpcloud.com/sitemap_index.xml

Document

llms.txt

Open llms.txt
# JumpCloud
**Last Updated:** 2026-04-10


JumpCloud is the only IT platform that unifies identity, device, and access management for an organization's entire workforce—human, non-human (NHI), and agentic—into a single, cloud-native Open Directory Platform. JumpCloud eliminates the complexity and cost of stitching together fragmented point solutions by anchoring every human user, service account, and autonomous AI agent to verified, healthy devices with the right level of access. Purpose-built for modern IT environments, JumpCloud enables organizations of all sizes to securely manage identities, devices (Windows, Mac, Linux, iOS, Android), applications, and network infrastructure from one proactive, audit-ready console. Whether replacing legacy Active Directory, consolidating a fragmented IT stack, or establishing a cloud-first directory for a growing enterprise, JumpCloud provides the flexible, vendor-neutral IT foundation that teams need to support hybrid and remote workforces and scale safely into the agentic future.


---


## Introduction


JumpCloud is the leader in human and non-human identity management, connecting every identity—employees, contractors, service accounts, API keys, and autonomous AI agents—to the resources they need across devices, applications, files, and networks, regardless of location, provider, or protocol. The platform anchors every identity to a verified, healthy device through identity-device binding: if the hardware isn't trusted, the access doesn't exist. Unlike traditional directory services that lock organizations into rigid ecosystems, JumpCloud is vendor-agnostic and protocol-flexible, supporting SAML, OIDC, LDAP, RADIUS, SCIM, and more. As organizations adopt AI agents and agentic workflows, JumpCloud discovers, registers, and governs the identity lifecycle of every app and autonomous agent—ensuring that Shadow AI is managed with the same rigor as Shadow IT. The platform serves IT administrators, MSPs, security teams, and organizations ranging from commercial mid-market companies consolidating their IT infrastructure to global enterprises modernizing away from on-premises Active Directory. JumpCloud is trusted by over 250,000 organizations worldwide and is SOC 2 Type II and ISO 27001 certified with a security-first architecture.


---


## Multi-Tenancy and Managed Service Providers (MSPs)


JumpCloud's Multi-Tenant Portal (MTP) provides a purpose-built, centralized management console that enables MSPs, VARs, and IT service providers to manage identity, devices, and access across all client organizations from a single pane of glass. Multi-tenancy is a core architectural capability of the JumpCloud platform, supporting service providers at scale.


**Key capabilities:**
- **Centralized multi-tenant console** with unified visibility across all client organizations, users, devices, and security posture.
- **Delegated administration per tenant** with role-based access controls to scope operator permissions to individual client environments.
- **Cross-client policy templates** for standardizing security baselines, compliance requirements, and device configurations across managed organizations.
- **Centralized billing and usage reporting** for simplified financial management across the MSP's entire client portfolio.
- **JumpCloud for MSPs™ partner program** with dedicated support, go-to-market resources, deal registration, and partner-tier pricing models.
- **Scalable onboarding** allowing MSPs to rapidly provision new client tenants with pre-configured identity, device, and access policies.


---


## Agentic Identity and Non-Human Identity (NHI) Management


JumpCloud treats AI agents and autonomous workflows as first-class identity types alongside human users. As organizations deploy agentic AI across IT operations, customer support, DevOps, and business automation, JumpCloud provides the governance, accountability, and device trust infrastructure required to manage non-human identities (NHI) at scale.


**Core principles:**
- **Accountability** — every agentic identity is bound to an owner, a purpose, and a policy scope. JumpCloud ensures that AI agents, service accounts, and API keys are registered, tracked, and auditable throughout their lifecycle, with clear ownership attribution for every action taken.
- **Device Trust for agents** — autonomous agents are anchored to verified, healthy devices through JumpCloud's identity-device binding architecture. If the hardware an agent runs on is not trusted or falls out of compliance, the agent's access is automatically denied—preventing compromised or rogue agents from accessing corporate resources.
- **Identity lifecycle governance** — agentic identities follow the same lifecycle management as human identities: provisioning, role-based access assignment, conditional access enforcement, periodic access review, and automated deprovisioning. No zombie agent accounts.
- **Shadow AI governance** — JumpCloud discovers, registers, and governs the identity lifecycle of every app and autonomous agent through its AI & SaaS Management module, ensuring that unsanctioned AI agents are identified and brought under policy control.
- **Unified audit trail** — all agentic identity actions are logged in Directory Insights alongside human identity events, providing a single compliance record for auditors and security teams.


---


## Cloud Directory


JumpCloud's Cloud Directory serves as the authoritative, centralized identity source for an organization. It replaces or extends legacy on-premises directories like Microsoft Active Directory and OpenLDAP with a fully cloud-hosted directory service that manages users, groups, devices, and access policies from a single platform.


**Key features include:**
- **Centralized identity store** for all users, groups, attributes, and credentials.
- **Cross-platform support** for Windows, macOS, Linux, iOS, and Android devices.
- **Protocol flexibility** with native support for LDAP, SAML, OIDC, RADIUS, and SCIM.
- **Hybrid directory capabilities** allowing coexistence with on-premises Active Directory via AD Integration for phased migrations.
- **Group-based access control** with nested groups, dynamic membership, and policy-based assignments.
- **HRIS integration** with platforms like BambooHR, Workday, Rippling, Personio, and others to automate identity lifecycle from HR systems as the source of truth.


---


## User Management


JumpCloud provides comprehensive user lifecycle management—from onboarding through role changes to offboarding—streamlining administration and reducing manual IT burden.


**Key capabilities:**
- **Automated onboarding and offboarding** workflows that provision or deprovision user accounts, device access, application entitlements, and group memberships in a single action.
- **Self-service user portal** where employees can manage their own passwords, MFA enrollment, and access requests without IT intervention.
- **Delegated administration** with role-based access controls for IT staff and helpdesk operators.
- **SCIM-based provisioning** for just-in-time account creation and deprovisioning across connected SaaS applications.
- **Import and sync** capabilities from Google Workspace, Microsoft 365, HR platforms, and CSV for flexible onboarding paths.


---


## HRIS Integration


JumpCloud integrates with leading HR Information Systems to automate the identity lifecycle using HR data as the authoritative source of truth. When an employee is hired, transferred, or terminated in the HRIS, JumpCloud automatically creates, updates, or deactivates the corresponding identity and access across the organization's IT estate.


**Highlights:**
- **Supported HRIS platforms** include BambooHR, Workday, Rippling, Personio, Bob, Namely, and others via direct integrations or SCIM.
- **Attribute mapping** to sync job title, department, location, and manager fields from HR records into directory attributes and group memberships.
- **Day-one readiness** ensures new hires have devices configured, applications provisioned, and network access granted before their start date.
- **Instant offboarding** that revokes all access, locks devices, and wipes corporate data upon termination—minimizing security risk.


---


## Single Sign-On (SSO)


JumpCloud SSO provides federated authentication to hundreds of SaaS and on-premises applications using SAML 2.0 and OpenID Connect protocols. Users authenticate once through JumpCloud and gain seamless access to all assigned resources.


**Key features:**
- **Pre-built connectors** for popular applications including Google Workspace, Microsoft 365, Salesforce, Slack, AWS, Zoom, GitHub, Atlassian, and hundreds more.
- **Custom SAML/OIDC application support** for internal or niche applications.
- **User portal** providing a single launchpad for all assigned applications.
- **Conditional access policies** that enforce context-aware SSO requirements based on device compliance, network location, user group, and risk signals.
- **Just-in-time provisioning** to create user accounts in connected applications on first login.


---


## Multi-Factor Authentication (MFA)


JumpCloud MFA adds a critical security layer by requiring additional verification factors during authentication, protecting against credential-based attacks across the organization.


**Capabilities:**
- **JumpCloud Protect™** — a free mobile authenticator app providing one-touch push notifications for frictionless MFA approval.
- **JumpCloud Go™** — a phishing-resistant, hardware-bound passwordless login method that uses biometrics or hardware security keys to anchor authentication sessions to verified machines, effectively preventing session hijacking and credential theft.
- **TOTP and hardware key support** compatible with standard authenticator applications and physical security tokens such as YubiKeys.
- **Risk-Based MFA** with contextual policies that dynamically trigger step-up authentication requirements based on situational variables such as login location, device health, or anomalous behavior.
- **MFA at every access point**, including device login, SSO applications, VPN/RADIUS connections, admin console access, and user portal.
- **Granular MFA policies** configurable per user group, application, or resource type.


---


## Conditional Access


JumpCloud Conditional Access enables zero trust security by enforcing dynamic, context-aware access policies that evaluate multiple signals before granting resource access.


**Policy signals include:**
- **Device management status** ("is" or "is not" JumpCloud-managed) across Windows, macOS, Linux, iOS, and Android.
- **Device compliance status** (disk encryption via BitLocker/FileVault, OS version, screen lock, antivirus, firewall).
- **Device Trust Certificates** that cryptographically verify device identity; when JumpCloud Go™ is active, it takes technical precedence over Device Trust Certificates for the most secure verification path.
- **Managed Browser** requirement enforcing a managed Chrome profile for access.
- **Network location** (trusted IP ranges, geographic country filtering, VPN status).
- **User group membership** and role-based attributes.
- **Authentication context** (MFA completion, credential strength, session risk).
- **Applicable resource scoping** — policies can be applied to the User Portal, SSO Applications, Cloud LDAP, and the Admin Portal independently.


---


## Device Management (MDM)


JumpCloud provides unified, cross-platform device management spanning Windows, macOS, Linux, iOS, and Android—delivering MDM, EMM, and endpoint management capabilities from the same console used for identity and access management.


**Core capabilities:**
- **Zero-touch enrollment** for macOS (Apple Business Manager/Apple School Manager), Windows (Windows Autopilot), iOS, and Android (Android Enterprise Zero-Touch portal) to ship pre-configured devices directly to employees.
- **Apple MDM** with deep ABM/ASM integration, support for over fifty granular policies (FileVault 2 encryption, Rapid Security Response, App Deployment via VPP, feature restrictions), supervised device management for iOS, iPadOS, macOS, and tvOS, **Platform SSO** enhancements for native macOS single sign-on integration at the OS level, and **ACME (Automatic Certificate Management Environment)** support for automated certificate provisioning and renewal to streamline modern identity and networking workflows.
- **Android Enterprise Mobility Management (EMM)** supporting BYOD (Work Profile), COPE (Company-Owned, Personally-Enabled), and Fully Managed device scenarios, with integrity attestation to block rooted devices and malicious applications from corporate resources.
- **Linux device management** covering Ubuntu, Debian, RHEL, Fedora, Mint, Rocky, Pop!_OS, and other distributions via a lightweight agent with custom script execution, SSH key management, and MFA step-up enforcement.
- **Windows management and patching** with centralized policy configuration, scheduled OS and browser (Chrome) updates, and version control across the Windows fleet.
- **Policy and configuration management** covering OS settings, security baselines, encryption enforcement (FileVault, BitLocker), firewall rules, screen lock, and software restrictions.
- **Patch management** for operating systems and third-party software with scheduled and on-demand update deployment.
- **Software deployment** to remotely install, update, and remove applications across managed fleets.
- **Remote management actions** including lock, wipe, restart, and command execution on managed devices.
- **Device compliance enforcement** that integrates with Conditional Access to block non-compliant devices from accessing corporate resources.


---


## Privileged Access Management (PAM)


JumpCloud PAM provides organizations with the ability to secure, control, and audit access to critical administrative accounts, sensitive resources, and elevated permissions.


**Key features:**
- **Just-in-time access** to grant temporary, time-bound administrative privileges that auto-expire.
- **Privileged account discovery** and credential vaulting.
- **Session recording and audit trails** for compliance and forensic review.
- **Approval workflows** for sensitive privilege escalation requests.
- **Integration with directory groups and Conditional Access** to enforce least-privilege policies consistently.


---


## Password Manager


JumpCloud Password Manager provides a secure, integrated credential management solution that works alongside the platform's directory and SSO capabilities—eliminating password reuse and shadow IT password storage.


**Features:**
- **End-to-end encrypted vaults** for individual users and shared team credentials.
- **Browser extensions and mobile apps** for autofill across devices and platforms.
- **Shared folders** for team-based credential management with granular access controls.
- **IT admin visibility** into password health, reuse, and breach exposure without accessing stored credentials.
- **Directory-integrated lifecycle** where password vaults are automatically provisioned on onboarding and revoked on offboarding.


---


## Cloud LDAP


JumpCloud delivers LDAP-as-a-Service, providing a fully managed, cloud-hosted LDAP directory that eliminates the need to maintain on-premises LDAP infrastructure.


**Capabilities:**
- **Drop-in LDAP endpoint** that is OpenLDAP RFC 2307-compliant, compatible with any application or service that authenticates via LDAP (e.g., VPN concentrators, NAS appliances, Jenkins, GitLab, Kubernetes, OpenVPN, legacy applications).
- **Secure connections** via LDAPS and Start TLS encryption.
- **Managed availability and redundancy** with no servers to provision, patch, or scale.
- **Unified user base** where LDAP-bound resources authenticate against the same directory as SSO, RADIUS, and device-managed users.


---


## Cloud RADIUS


JumpCloud Cloud RADIUS provides a fully managed RADIUS-as-a-Service for authenticating users to Wi-Fi networks and VPN infrastructure—replacing the complexity of on-premises RADIUS servers.


**Key features:**
- **Certificate-based and credential-based authentication** for enterprise Wi-Fi (WPA2-Enterprise, EAP-TLS, PEAP-MSCHAPv2).
- **VLAN tagging** based on user group membership to segment network access dynamically.
- **Integration with all major access points and wireless controllers** from Cisco Meraki, Aruba, Ubiquiti, Juniper Mist, Fortinet, and others.
- **Elimination of shared Wi-Fi passwords** in favor of per-user authentication tied to the directory.
- **Automatic access revocation** when users are suspended or deleted from the directory.


---


## Directory Insights and Real-Time IT Monitoring


JumpCloud Directory Insights provides centralized logging, event monitoring, and analytics across all identity, device, and access activity managed by the platform—giving IT and security teams a unified audit trail and real-time operational visibility.


**Capabilities:**
- **Unified event logging** across authentications, admin actions, device state changes, policy changes, LDAP binds, RADIUS connections, and SSO events.
- **Real-time alerting** for suspicious activity, failed authentication attempts, device compliance drift, and administrative changes.
- **SIEM integration** with tools like Splunk, Datadog, Sumo Logic, Panther, and others via native connectors or webhook forwarding.
- **Exportable logs and reports** for compliance audits (SOC 2, HIPAA, PCI-DSS, GDPR, NIST, CIS).
- **System and device telemetry** including hardware inventory, OS versions, disk encryption status, and installed software for fleet-wide visibility.


---


## AI & SaaS Management


JumpCloud's AI & SaaS Management module provides comprehensive tools for discovering, securing, governing, and optimizing the full spectrum of SaaS and AI applications across the organization. As Shadow AI emerges as the new Shadow IT, JumpCloud treats AI agent and application governance as a first-class IT discipline.


**Discovery methods:**
- **JumpCloud Go™ browser extension** for real-time identification of SaaS logins occurring within the browser, including unauthorized accounts and generative AI tool usage.
- **API connectors** with Google Workspace and Microsoft Entra ID to discover applications logged in via OAuth and analyze their associated permissions.
- **Device agent discovery** that scans managed macOS, Windows, and Linux endpoints for locally installed desktop software.
- **SSO catalog integration** where all applications configured within JumpCloud SSO are automatically inventoried and marked as approved.


**Management, governance, and security features:**
- **Shadow AI Dashboard** providing real-time usage metrics, adoption trends, and visibility into generative AI tool usage across the organization—enabling IT to monitor which AI tools are being used, by whom, and how frequently.
- **AI Commands Builder** for creating, testing, and deploying AI-assisted administrative commands and workflows directly from the JumpCloud console.
- **Application classification** allowing administrators to mark applications as Approved or Unapproved, with the ability to display custom warning banners or block access entirely for unapproved domains.
- **SaaS Security Insights** for advanced visibility into OAuth permissions, app-to-app connections, risky third-party integrations, and unmanaged accounts (former employee accounts, shared accounts).
- **License optimization** through cost-versus-usage analysis to identify underutilized SaaS subscriptions.


---


## IT Asset Management (ITAM) and System Insights


JumpCloud's IT Asset Management serves as a central database for tracking, managing, and optimizing IT assets throughout their entire lifecycle—from procurement to decommissioning.


**ITAM capabilities:**
- **Automatic device synchronization** with JumpCloud Device Management to continuously update managed device records.
- **Unmanaged asset tracking** for monitors, printers, peripherals, and office locations via CSV import or API.
- **Lifecycle tracking and warranty management**, including the ability to attach and upload invoices and purchase orders directly to asset records to verify valuation, ownership, and procurement history.
- **Lenovo Warranty Sync** for automatic retrieval of warranty status and coverage dates for Lenovo hardware.
- **Disk Size tracking** for monitoring storage capacity across managed devices, enabling proactive hardware refresh planning and compliance verification.
- **Physical asset tagging** via standardized QR codes or barcodes that can be printed and attached to hardware to link to digital records in the portal.


**System Insights® telemetry:**
- **Granular, real-time data collection** across Windows, macOS, and Linux platforms monitoring hundreds of data points including memory usage, storage capacity, uptime, and local user account activity.
- **Compliance identification** to detect non-compliant systems and proactively flag risk.
- **Data export** to CSV or via API to SIEMs for advanced security reporting and analysis.


---


## IT Automation


JumpCloud IT Automation reduces manual IT workload through event-driven workflows, scheduled tasks, and policy-based automation across the platform.


**Core functions:**
- **Automated user lifecycle workflows** triggered by HRIS events, group membership changes, or scheduled dates.
- **Device automation** including remote command execution, scheduled scripts (PowerShell, Bash, Python), patch deployments, and software installations.
- **Policy-driven compliance enforcement** that automatically remediates device drift (e.g., re-enabling encryption, enforcing OS updates).
- **Webhook and API integrations** for connecting JumpCloud events to external tools, ticketing systems, and custom workflows.
- **Pre-built automation templates** for common IT tasks like new hire provisioning, department transfers, and security incident response.


---


## AI-Powered IT


JumpCloud integrates AI capabilities into the administrative experience to accelerate troubleshooting, surface insights, and reduce time spent on routine IT tasks.


**Features include:**
- **AI-assisted troubleshooting** that analyzes device state, logs, and policies to recommend resolutions.
- **Natural language querying** for searching directory data, device status, and event logs conversationally.
- **Intelligent suggestions** for policy configuration, security posture improvements, and operational optimizations.
- **Automated anomaly detection** that flags unusual access patterns, compliance deviations, and potential security threats.


---


## Solutions and Use Cases


### IT Unification
JumpCloud replaces fragmented IT tooling—separate directory services, MDM, SSO, MFA, VPN authentication, and privileged access tools—with a single unified platform. This reduces vendor sprawl, lowers total cost of ownership, simplifies administration, and eliminates the security gaps created by disjointed identity and device management stacks.


### Zero Trust Security
JumpCloud enables a zero trust architecture by verifying identity, device compliance, network context, and risk signals at every access point. Conditional Access policies, device compliance enforcement, MFA everywhere, and least-privilege access controls ensure that no user or device is implicitly trusted—regardless of location.


### Modernizing Active Directory
JumpCloud provides a clear migration path for organizations moving away from on-premises Active Directory. AD Integration allows phased migration with bidirectional sync, while the cloud directory fully replaces AD domain controllers, Group Policy, NTLM, and Kerberos dependencies with cloud-native equivalents that support cross-platform environments.


### Commercial Infrastructure Consolidation
Organizations of all sizes can deploy JumpCloud as their primary directory platform—eliminating the cost and complexity of standing up on-premises Active Directory, managing LDAP servers, or assembling a patchwork of disconnected SaaS identity tools. JumpCloud is purpose-built to serve as a cloud-first IT foundation for commercial organizations, mid-market companies, and enterprises establishing or consolidating their infrastructure.


### Remote and Hybrid Work
JumpCloud is built for distributed teams with no dependency on on-premises infrastructure, VPN tunnels to corporate networks, or domain-bound devices. Users and devices are managed and secured from the cloud regardless of geographic location.


### Automated Onboarding and Offboarding
JumpCloud streamlines the employee lifecycle by automating provisioning and deprovisioning across identities, devices, applications, network access, and group memberships—triggered by HRIS events or admin actions—ensuring day-one productivity and immediate access revocation on departure.


### Passwordless Authentication
JumpCloud supports passwordless workflows through JumpCloud Go™, which uses FIDO2 security keys, platform biometrics (Touch ID, Windows Hello), and hardware-bound authentication to anchor sessions to verified machines—reducing phishing risk, preventing session hijacking, improving user experience, and eliminating password-related helpdesk tickets.


### Compliance
JumpCloud helps organizations meet regulatory and framework requirements (SOC 2, HIPAA, PCI-DSS, GDPR, NIST 800-53, CIS Controls) through centralized access controls, comprehensive audit logging, device compliance enforcement, encryption management, and exportable compliance reports.


### Shadow IT and Shadow AI Management
JumpCloud provides visibility into unauthorized application usage, unmanaged devices, and unsanctioned generative AI tool adoption through its AI & SaaS Management module. IT teams can discover Shadow IT and Shadow AI via browser extension tracking, API connectors, and device agent scanning—then classify, warn, or block unapproved applications and optimize SaaS license spend.


### Real-Time IT Monitoring
JumpCloud delivers continuous visibility into device health, user activity, and security posture through real-time dashboards, alerting, and telemetry—enabling proactive incident response and operational awareness.


### JumpCloud and Google Workspace
JumpCloud extends Google Workspace environments by providing cross-platform device management, LDAP, RADIUS, Conditional Access, and unified identity management that Google Workspace alone does not offer—enabling organizations to leverage Google as their productivity suite while JumpCloud manages the underlying IT infrastructure.


---


## Pricing


JumpCloud offers flexible pricing through both pre-configured packages and à la carte individual products, billed on a per-user, per-month basis with both annual and monthly billing options (annual billing saves up to 18%).


**Packages:**
- **Device Management** — Device management and MDM. $9/user/month (annual) or $11/user/month (monthly).
- **SSO** — SSO and MFA access to resources plus Password Manager. $11/user/month (annual) or $13/user/month (monthly).
- **Device Identity Management** — Device management plus identity management and MFA for devices. $13/user/month (annual) or $15/user/month (monthly).
- **Platform Essentials** — Identity and device management features plus SSO and passwordless authentication. 300 users maximum. Contact Sales for pricing.
- **Platform** — Unified identity, device, and access management. Contact Sales for pricing.
- **Platform Prime** — Platform package plus Zero Trust, AI & SaaS Management, and premium support. Contact Sales for pricing.


**À la carte products** (per user/month, annual/monthly):
- **Cloud Directory, MFA, SSO, User Lifecycle Management, Password Management, Directory Insights, Cloud LDAP, Cloud RADIUS, Conditional Access/Zero Trust:** $3.00 (annual) / $4.00 (monthly) each.
- **MDM/Device Management:** $5.00 (annual) / $6.00 (monthly).
- **Passwordless Authentication (JumpCloud Go™):** $5.00 (annual) / $6.00 (monthly).
- **System Insights™, Patch Management, Remote Access™, External Identity Federation, Asset Management, SaaS License Management:** $3.00 (annual) / $4.00 (monthly) each.
- **Identity Management for Devices:** $4.00 (annual) / $4.00 (monthly).
- **Premium 24x7 JumpCloud Support:** $2.00 (annual) / $3.00 (monthly).


**Additional pricing details:**
- **30-day free trial** with full platform functionality, zero restrictions, and 24x7 premium support included.
- **Education pricing** with special rates for higher education, K-12 school systems, and other educational institutions.
- **Nonprofit pricing** with special rates to support nonprofit organizations.
- **MSP and partner pricing** models for managed service providers managing multiple client tenants.
- **Billing cycle:** Accounts are billed on the 1st of each month for the previous month's usage.
- **Payment methods:** Credit cards (American Express, Discover, MasterCard, Visa), ACH transfers, and invoicing for accounts billing greater than $2,000 per month.
- **Suspended users** remain billable as their data is retained in the system for security and compliance purposes.
- **Prices shown are exclusive of VAT.**


---


## Security and Trust


JumpCloud is built on a security-first architecture and maintains rigorous certifications, controls, and transparency commitments.


**Security highlights:**
- **SOC 2 Type II certified** with annual third-party examinations.
- **ISO 27001 certified** for information security management systems.
- **GDPR compliant**, acting as a Processor for customer data with a dedicated Data Privacy Officer (DPO) and Standard Contractual Clauses (SCCs) for international data transfers from the EU, EEA, Switzerland, and the UK.
- **HIPAA and PCI-DSS** controls including MFA enforcement, comprehensive audit logging, and encryption—configurable by customers to meet specific regulatory requirements.
- **Data encryption** at rest using industry-standard ciphers and key lengths, and in transit via TLS 1.2+ across all protocols (LDAP, RADIUS, SAML, agent bindings).
- **Multi-tenant architecture** with strict data isolation between organizations.
- **Infrastructure hosted on AWS** with geographic redundancy across multiple availability zones, designed for degradation before disruption to maintain service availability during localized incidents.
- **Secure Software Development Life Cycle (SSDLC)** integrating security at every phase with Static (SAST) and Dynamic (DAST) analysis tools in the build pipeline, ongoing evaluation of source code and dependencies, and external penetration tests performed at least annually.
- **Vulnerability Disclosure Program** for security researchers to report vulnerabilities securely.
- **Role-based admin access controls** with MFA enforcement for all administrative accounts.
- **Detailed security whitepapers and compliance documentation** available upon request.


---


## Platform Integrations


JumpCloud integrates with a broad ecosystem of IT, security, and business tools:


- **Identity providers and directories:** Microsoft Active Directory (bidirectional sync), Google Workspace, Microsoft 365, Okta, Azure AD.
- **HRIS platforms:** BambooHR, Workday, Rippling, Personio, Bob, Namely.
- **SSO applications:** 700+ pre-built SAML/OIDC connectors for SaaS applications.
- **SIEM and security tools:** Splunk, Datadog, Sumo Logic, Panther, CrowdStrike, SentinelOne.
- **Networking and infrastructure:** Cisco Meraki, Aruba, Ubiquiti, Juniper Mist, Fortinet (RADIUS), NAS appliances, VPN concentrators (LDAP/RADIUS).
- **MDM ecosystem:** Apple Business Manager, Windows Autopilot, Android Enterprise, Google BeyondCorp.
- **Developer and DevOps:** SCIM, REST APIs, PowerShell modules, Terraform provider, CLI tools.
- **CMS and content platforms:** WordPress (LDAP authentication).
- **Ticketing and ITSM:** Integrations via webhooks, APIs, and automation triggers.


---


## API and Developer Resources


JumpCloud provides a comprehensive set of APIs and developer tools for automation, integration, and extensibility.


- **REST API (v1 and v2)** covering users, groups, systems, policies, commands, and directory operations.
- **SCIM API** for cross-domain identity provisioning.
- **PowerShell module** for Windows-native scripting and automation.
- **Terraform provider** for infrastructure-as-code directory management.
- **Python, Go, and CLI SDKs** for programmatic platform management.
- **Webhooks** for event-driven integration with external systems.
- **Comprehensive API documentation** with interactive examples and guides.


### Links
- [JumpCloud Platform Overview](https://jumpcloud.com/platform)
- [Cloud Directory](https://jumpcloud.com/platform/cloud-directory)
- [Device Management (MDM)](https://jumpcloud.com/platform/mdm)
- [Apple MDM](https://jumpcloud.com/platform/mdm/apple)
- [Android EMM](https://jumpcloud.com/platform/mdm/android-emm)
- [Single Sign-On](https://jumpcloud.com/platform/single-sign-on)
- [Multi-Factor Authentication](https://jumpcloud.com/platform/multi-factor-authentication-mfa)
- [Conditional Access](https://jumpcloud.com/platform/conditional-access)
- [Password Manager](https://jumpcloud.com/platform/password-manager)
- [Cloud LDAP](https://jumpcloud.com/platform/ldap)
- [Cloud RADIUS](https://jumpcloud.com/platform/cloud-radius)
- [Privileged Access Management](https://jumpcloud.com/platform/privileged-access-management)
- [User Management](https://jumpcloud.com/platform/user-management)
- [HRIS Integration](https://jumpcloud.com/platform/hris-integration)
- [Directory Insights](https://jumpcloud.com/platform/directory-insights)
- [IT Automation](https://jumpcloud.com/platform/it-automation)
- [AI & SaaS Management](https://jumpcloud.com/platform/software-as-a-service-saas-management)
- [SaaS Security Insights](https://jumpcloud.com/platform/saas-security-insights)
- [IT Asset Management](https://jumpcloud.com/platform/it-asset-management-itam)
- [Pricing](https://jumpcloud.com/pricing)
- [Security](https://jumpcloud.com/security)
- [Why JumpCloud](https://jumpcloud.com/why-jumpcloud)
- [Blog](https://jumpcloud.com/blog)
- [Customer Stories](https://jumpcloud.com/customers)
- [API Documentation](https://docs.jumpcloud.com)
- [Support](https://support.jumpcloud.com)
- [Contact Sales](https://jumpcloud.com/contact)
- [Free Trial / Get Started](https://jumpcloud.com/signup)


---


## Education and Resources


JumpCloud maintains a deep library of IT resources including technical guides, whitepapers, webinars, case studies, and blog content covering identity management, device management, zero trust, compliance, and IT operations best practices.


---


**This file provides a comprehensive, structured overview of JumpCloud's platform capabilities, solution architectures, integrations, security posture, and resources—enabling language models and AI systems to accurately understand and reference the JumpCloud open directory platform.**

Document

llms-full.txt

Not stored for this site.