Sold by: Iru
Deployed on AWS
Free Trial
AWS Free Tier
Kandji is device management (MDM) and security built specifically to meet the unique needs of the Apple platform, with advanced endpoint detection and response optionally delivered through a single unified agent. Kandji is a modern, cloud-based solution to centrally manage and secure your Mac, iPhone, iPad, and Apple TV devices, saving IT teams countless hours of manual, repetitive work with features like one-click compliance templates and 150+ pre-built automations, apps, and workflows.
4.7
Overview
Kandji is the Apple device management and security platform that empowers secure and productive global work. With Kandji, Apple devices transform themselves into enterprise-ready endpoints, with all the right apps, settings, and security systems in place. Through advanced automation and thoughtful experiences, we are bringing much-needed harmony to the way IT, InfoSec, and Apple device users work today and tomorrow.
Features include:
True zero touch deployment Kandji takes the heavy lifting out of user setup with an interface built to give you more control without the technical challenges or unnecessary scripting. Our platform is clean, elegant, and customizable, allowing you to manage and elevate those crucial first-touch experiences. Start teams with the right apps, settings, and security controls, reduce support volume, and increase your onboarding efficiency.
Deep IdP and SSO Integration Make life simpler for your users with a single sign-on that does not sacrifice security. Automatically assign blueprints and controls based on user data from your identity provider. Create a login experience that is distinctly yours but matches the ease and style Apple users expect.
Self-healing device controls More than 150 toggle-on security settings allow you to customize nearly every aspect of your devices without additional scripting or configuration. All are monitored and enforced by the Kandji Agent, so they are automatically remediated if they slip out of spec.
Automated app patching Ensure users are always running the right software versions without the manual work of packaging, testing, or deployment. Kandji does the heavy lifting for you without interrupting users work.
Managed OS updates Managed OS is built-in to the Kandji platform and puts you in control of macOS across your fleet. Kandji supports all macOS updates from major overhauls to minor patches, and all updates are fully-enforced, so you never have to worry about teams running the correct version.
One-Click compliance templates Our pre-built templates, mapped to NIST, CIS, and STIG frameworks, deploy advanced security across your Mac fleet in minutes with the ability to customize individual settings.
Integrated endpoint security & response Kandji can deliver advanced endpoint security and response functionality through the same agent as management, radically simplifying Mac security. Kandji EDR gathers all metadata on files, analyzes them, detects the potential for malicious activity, and quarantines problems, all in the span between a user clicking download and the download completing.
Accelerated MDM migration The Kandji MDM migration tool and expert support take the stress out of switching from your old MDM solution. Our Migration Agent is custom-designed to fit your needs, deploys from your current MDM, and reduces user interaction to just a few clicks.
Unmatched Support Every Kandji support engineer has Mac admin experience, so we are like an extension of your company, available 24 hours a day, 5 days a week, and available to you free of charge. We know where you are coming from and provide peer-to-peer guidance on reaching your goals with device management and security.
For custom pricing, EULA, or a private contract, please contact aws-marketplace@kandji.io , for a private offer.
Highlights
- Zero-touch deployment Apple devices purchased through authorized resellers and managed with Kandji automatically transform themselves into enterprise-ready endpoints the first time they power on with all the right apps, settings, and security controls in place.
- Effortless management and compliance With automated updates for the OS and a library of 100+ business apps, admins can trust their device fleet will always stay up-to-date with the latest patches and features. And with blueprints that automatically enforce the things companies need to harden their fleet and meet benchmarks with the push of a button, it has never been easier to attain and maintain device compliance.
- Powerful detection and response Kandji runs MDM and EDR via a single agent, making advanced security simple to deploy and unremovable from devices. Kandji allows companies to see and respond to security threats instantly, with a detection powered by one of most comprehensive threat intelligence engines in the Apple ecosystem.
Details
Sold by
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Kandji MDM | Apple-specific Device Management | $25,000.00 |
Kandji EDR | Apple-specific Endpoint Detection and Response (requires Kandji MDM) | $25,000.00 |
Kandji Vulnerability Management | Apple-specific Vulnerability Management (requires Kandji MDM) | $25,000.00 |
Vendor refund policy
All Orders are non-cancellable and all fees and other amounts you pay under this Agreement are non-refundable.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Chat: Live chat is available 24 / 5 via the Chat Bubble at the bottom right of the Kandji Web App. Support hours begin Sundays at 22:00 (UTC) and end Saturdays at 01:00 (UTC) (excluding company holidays). Email: Reach out to us via email at support@kandji.io Knowledge Base: Available 24 / 7 at support.kandji.io, you'll find overviews of all areas of Kandji and frequently asked questions. You can also submit a ticket from anywhere in our Knowledge Base at the top or bottom of the page. Please email us at support@kandji.io
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
Top
10
In Device Security, Device Management
Top
10
In Device Management, IT Business Management
Top
50
In Device Management, Device Security
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Zero-Touch Device Deployment
Automatic transformation of Apple devices into enterprise-ready endpoints upon first power-on with pre-configured apps, settings, and security controls without user intervention.
Identity Provider and Single Sign-On Integration
Deep integration with identity providers enabling automatic blueprint and control assignment based on user data, with support for customized login experiences.
Self-Healing Security Controls
Over 150 configurable security settings monitored and automatically enforced by the Kandji Agent with automatic remediation if settings drift from specified configuration.
Unified Endpoint Detection and Response
Single agent delivering both MDM and EDR functionality with file metadata analysis, malicious activity detection, and quarantine capabilities during file download operations.
Compliance Framework Templates
Pre-built security templates mapped to NIST, CIS, and STIG frameworks enabling rapid deployment of advanced security configurations across device fleets with customizable individual settings.
Zero-Touch Device Deployment
Deploy devices to any employee anywhere by integrating with Apple deployment programs to deliver fully customized devices without manual intervention.
Dynamic Device Grouping and Automation
Utilize patented Smart Groups technology to automatically trigger real-time alerts and actions based on inventory data for dynamic device management.
Configuration and Policy Management
Apply configuration profiles, policies, and scripts to standardize Apple device settings and automate management across the fleet.
Application Distribution and Management
Integrate with Apple Business Manager to automate app assignment to users or devices and manage the app environment securely.
Native Security Implementation
Leverage native Apple security features to manage device settings, restrict malicious software, and deploy patches across Apple devices without user interaction.
Unified Endpoint Management
Manage multiple device types and operating systems including Android, iOS, iPadOS, Chrome OS, AR/VR devices, wearables, and rugged devices from a single console
Mobile Threat Defense
Enable mobile threat defense with continuous on-device protection and near real-time dashboards to identify and remediate security risks
Device Enrollment and Onboarding
Support Over-the-Air (OTA) device enrollment, Apple Business Manager integration, and Android Enterprise zero-touch enrollment for streamlined device setup
Enterprise Mobility Management
Provide MDM and EMM capabilities with containerization and device security features for inventory visibility of devices, apps, content, and corporate data across corporate-owned and BYOD programs
AI-Powered Security Automation
Deliver AI-powered real-time alerts and automated security policy enforcement through the Compliance Engine and Action Orchestrator for routine and complex endpoint tasks
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
No security profile
-
-
-
-
-
No security profile
Standard contract
No
No
No
Customer reviews
Marwan M.
Clear, Real-Time Tracking That Boosts Efficiency and Accountability
Reviewed on Feb 03, 2026
Review provided by G2
What do you like best about the product?
What I like best about Iru is the tracking feature. It gives clear, real-time visibility into activities and progress, which makes monitoring tasks and workflows much easier. Having everything tracked in one place reduced follow-ups, improved accountability, and helped me spot issues early. It noticeably improved efficiency and saved time compared to manual tracking methods.
What do you dislike about the product?
The tracking feature could be improved in terms of customization and performance. In some cases, it lacks flexible filters and advanced reporting options, which makes it harder to analyze data for specific time ranges or use cases. Occasional delays in updates also reduce real-time accuracy. Adding more configurable tracking views, faster refresh times, and exportable reports would significantly enhance the overall experience.
What problems is the product solving and how is that benefiting you?
Iru solves the problem of fragmented and manual tracking by centralizing all tracking activities in one platform. It improves visibility, reduces the risk of missing updates, and makes it easier to monitor progress in real time. As a result, I spend less time on follow-ups and manual reporting, decisions are made faster, and overall workflow efficiency has improved.
Marwan S.
Game-Changing Automation and AI Insights in One Streamlined Device Management Hub
Reviewed on Jan 31, 2026
Review provided by G2
What do you like best about the product?
The automation and AI-driven insights are absolute game-changers. Iru has successfully unified Apple, Windows, and Android management into a single, sleek interface. The "Auto Apps" library is particularly impressive—it handles patching and updates for over 200 applications autonomously, which has drastically reduced our IT ticket volume. The zero-touch deployment via Apple Business Manager works flawlessly every time.
What do you dislike about the product?
The transition from the Kandji branding to Iru was a bit sudden, and while the AI features are powerful, the learning curve for advanced "Assignment Maps" can be a bit steep for new admins. Additionally, the list view customization in the admin console could be more flexible to allow for better filtering of massive device fleets.
What problems is the product solving and how is that benefiting you?
Iru solved our fragmented tool problem. Before Iru, we were using three different tools to manage Macs, Windows PCs, and mobile security. Iru unified these under one lightweight agent. It has automated our security compliance (CIS Benchmarks) and ensured that our remote workforce is always patched without manual intervention. This has saved our team roughly 15-20 hours of manual labor per week.
Financial Services
Reliable, Easy Deployments for Standardized Configurations
Reviewed on Jan 30, 2026
Review provided by G2
What do you like best about the product?
Reliable and does its job well. Easy to use to deploy standardized configurations, prevent configuration drift, and keep apps up to date.
What do you dislike about the product?
The Windows support is somewhat newer. I don't use it to manage Windows, but might be a downside to some orgs.
What problems is the product solving and how is that benefiting you?
Standardized configuration enforcement is essential to any cybersecurity program, and Iru makes that easy.
Information Technology and Services
Easy-to-Manage macOS MDM with Solid Security Features
Reviewed on Jan 28, 2026
Review provided by G2
What do you like best about the product?
Iru has made managing our macOS fleet significantly easier. Device enrollment and policy management are straightforward, the UI is clean, and day-to-day administration is reliable. The Vulnerability Management capabilities have also been useful for improving visibility into endpoint risk and overall security posture.
What do you dislike about the product?
Pricing can be a consideration as the environment scales, but overall the feature set and support quality help justify the investment.
What problems is the product solving and how is that benefiting you?
Iru provides centralized device management and security enforcement for our macOS environment. It helps us standardize configurations, maintain compliance, and gain better visibility into endpoint health, which reduces operational overhead and improves security
Jeremy N.
Extremely Easy Apple Device Management with Helpful Alerts
Reviewed on Jan 28, 2026
Review provided by G2
What do you like best about the product?
It is extremely easy to use and manage Apple products. The device alerts allow me too quickly diagnose issues.
What do you dislike about the product?
For some reason it keeps disconnecting and unmanaging my apps. I am sure this is something on my end.
What problems is the product solving and how is that benefiting you?
Onboarding a user has become so easy. I am a Microsoft IT specialist and shy away from anything MAC. IRU has allowed me to manage Macs with confidence.