Description
Some Entra ID Cloud Identity Provider (IdP) integrations with Jamf Pro temporarily stopped working on February 26, 2026. This impacted:
API authentication and administrator authentication to Jamf Pro with Cloud IdP accounts
End user authentication during Self Service or enrollment workflows if requiring authentication through the Cloud IdP
User and group data lookups to Entra ID, which can impact scoping
Logs showed entries similar to:
AADSTS7000222: The provided client secret keys for app 'xxxxxxxxxxxxxxxxxxxx' are expired. Visit the Azure portal to create new keys for your app or consider using certificate credentials for added security.
Verifying Connection
To test if your organization is impacted, perform a test lookup. If it succeeds, your integration is not impacted.
Restoring Connection
The steps below were successful for restoring the Cloud Identity Provider connection for impacted organizations.
In Jamf Pro, go to Settings > Server > Cloud identity providers.
Select your Entra ID Cloud Identity Provider integration.
Click Edit.
Click Save.
If your organization is still experiencing the issue and you can't login to Jamf Pro to change this setting, reach out to Jamf Support.