# JumpCloud Groups

## Overview

If your organization manages access to apps and accounts using IdP groups, for example by adding users to shift groups, you can now create Access Flow to control who can request temporary group membership.

Upon approved request, Apono will add users to groups and remove them after the access time is up.

## Prerequisites

* **JumpCloud** - Super Admin privilege to the Okta Admin Console
* **Cloud Provider/K8S** - Create secret privileges in cloud provider or Kubernetes secrets manager
* JumpCloud admin API Key

## Integrating JumpCloud groups

### 1. Get API Token from the JumpCloud Admin UI

1. Log in to your JumpCloud organization with the *Apono dedicated admin user*
2. Click on your Profile (icon with your initials)
3. In the menu click *My API Key*
4. Copy the admin API Key

### 2. Create a secret

1. Go to your cloud provider secret manager and create a new secret
2. In the secret content store the following fields:\
   Key: token\
   Value: The **JumpCloud admin API token** you copied in the previous step
3. Tag the created secret with the following tag:\
   Key: apono-connector-read\
   Value: true
4. Store the newly created secret

{% hint style="success" %}
You can also use an existing secret you've already created for Apono
{% endhint %}

### 3. In Apono - Connect JumpCloud integration

1. Go to the Apono Catalog
2. Under Resources, find the JumpCloud integration
3. Click the integration
4. Give the integration a name
5. In Select Connector, choose a connector from the list of connectors or add a new connector
6. In the Secret Store section, choose the secret store location you created in step 2. You can also use an existing secret you've already created for Apono
7. Click Connect
8. That's it!


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.apono.io/docs/additional-integrations/identity-providers/jumpcloud-groups.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.