SELF-HOSTED MAC FLEET MANAGEMENT

Own your Mac fleet — every device, every byte.

Deploy software, enforce compliance, and support every Mac in your organisation from one console you host yourself. No per-seat pricing. No data leaving your infrastructure.

Start free trial Explore the live demo

$0: per-seat fees
100%: your data, your servers
AGPL: source available

ownmdm.com/dashboard

ownMDM

Dashboard

Devices

Software

Users

Analytics

Policies

Settings

Dashboard

247

Devices

98%

Compliant

Pending

189

Active 24h

Recent check-insLast 24h

design-mbp-14sarah.chenSynced

eng-studio-m3marcus.liuInstalling

qa-imac-propriya.rSynced

finance-air-13david.wPending

API

Munki

Redis

Postgres

Built onMunkiDockerPostgreSQL Self-hosted · AGPL-3.0

THE PLATFORM

Everything modern Mac management needs.

Four pillars — deploy, monitor, support, and scale — in one self-hosted console.

DEPLOY

Zero-touch software delivery.

Package once, deploy everywhere. Munki-backed installs and policy-driven catalogs put the right software on the right Macs — automatically.

Smart groups auto-assign by criteria
Per-department & per-device manifests
Signed, notarized PKG pipeline

ownmdm.com/software

ownMDM

Dashboard

Devices

Software

Users

Analytics

Policies

Settings

Software catalog

+ Add package

NameVersionSizeInstallsCategory

1Password

8.10.34142 MB247Security

Slack

4.37.94230 MB241Comms

Figma

124.6.0212 MB118Design

Docker Desktop

4.29.01.2 GB86Dev

Zoom

5.17.571 MB247Comms

Google Chrome

124.0.6367320 MB242Browser

Xcode

15.39.1 GB42Dev

MONITOR

See your whole fleet at a glance.

Real-time check-ins, live compliance posture, and OS inventory across every device — no spreadsheets, no guessing.

Live compliance scoring
macOS version distribution
Append-only audit trail

ownmdm.com/analytics

ownMDM

Dashboard

Devices

Software

Users

Analytics

Policies

Settings

Analytics

Compliance score

+2 this week

macOS distribution

14.4.172%

14.3.218%

13.6.410%

7-day check-ins

SUPPORT

Help users from anywhere.

Start a remote session, push a fix, or recover a device straight from the console — RustDesk with a native VNC fallback, built in.

One-click remote control
Device actions & trust-token recovery
Self-service software catalog

SCALE

Multi-tenant from day one.

Run isolated tenants per org, region, or business unit — strict row-level isolation, subdomain routing, and edge-aware distribution.

Row-level tenant isolation
Subdomain routing + SSO / SAML
Edge / CDN-backed repo distribution

Deploy in minutes.

Docker Compose. One command. Production ready.

Terminal — zsh

Why ownMDM?

Honest comparison with the MDM tools you already know.

Feature	ownMDM	Jamf Pro	Mosyle
Self-hosted (source available)		—	—
Starting price (≤25 devices)	$29/mo	$358/mo	$150/mo
Built on Munki		—	—
Multi-tenant management			—
White-label branding		—	—
SSO (SAML 2.0)
Remote control
Public API			Partial
Cost for 100 devices/mo	$79	~$358	~$150

SECURITY & COMPLIANCE

Built to pass your security review.

Nine security audits and counting. The controls your security team asks about are built in — not bolted on.

AGPL-3.0Self-hostedSAML 2.0Append-only audit6-role RBACTiming-safe auth

Tenant isolation

Row-level isolation on every model. JWT cross-validated against tenant context on every request.

Granular RBAC

Six roles with per-scope manage/view, department scoping, and cross-tenant predicate gates.

Device trust tokens

Rotating tokens authenticate check-in, helpdesk, and portal. One revoke kills all three.

Append-only audit log

DB-enforced immutable trail with before→after diffs and 365-day retention.

SSO & SAML 2.0

LDAP, SAML, and local auth with lockout, backoff, and must-change-password flows.

Your infrastructure

Self-hosted via Docker Compose, source-available under AGPL-3.0. Your data never leaves.

Everything you need.

Built for IT teams managing macOS at scale.

Smart Groups

Dynamic segments based on OS, serial, department, or custom attributes.

SSO

SAML & OIDC with Okta, Azure AD, Google Workspace.

Branding

White-label the portal with your org's identity.

Webhooks

Real-time event streams to any downstream system.

AI Insights

Anomaly detection and automated triage suggestions.

Compliance

CIS benchmarks, FileVault, SIP, secure boot checks.

Self-service Catalog

Managed Software Center powered by Munki.

Remote Control

Screen sharing over a secure WebRTC tunnel.

RBAC

Fine-grained roles, teams, and scoped permissions.

Edge Distribution

CDN-backed package delivery worldwide.

REST API

Automate every resource programmatically.

Monitoring

Built-in Prometheus, Grafana, and health dashboards.

Simple, transparent pricing.

Self-hosted. No per-seat fees.

Starter

$29/ month

5 features included

Start Free TrialMOST POPULAR

Business

$79/ month

Up to 100 devices
SSO (SAML 2.0)
Compliance policy
Remote sessions (RustDesk)
Webhooks & API keys
Founder-led support

Start Free Trial

Enterprise

$199/ month

6 features included

Start Free Trial

Enterprise Plus

Custompricing

6 features included

Contact sales

Beta — design partner program open

Be the first paying customer.

ownMDM is pre-launch. We're looking for one Mac IT shop (30–60 devices) to use the platform daily and shape v1 with us.

Free for the first year

Full Business tier, no cap, no upsells. We do the install for you remotely.

Direct line to the founder

Weekly 30-min call. Slack/email reply within 4 hours during business days.

Your voice on the roadmap

Bug reports and feature requests from design partners ship before anything else.

Become a referenceable customer

After 6 months, opt in to be quoted on this page — or stay private. Your call.

Apply to be a design partner

15-minute intro call · We'll only take one partner per industry.

Frequently asked.

How does ownMDM compare to Jamf Pro?

ownMDM is self-hosted with predictable flat pricing, and its package management is built on Munki — which many teams already rely on. Jamf has a bigger feature surface; we trade some of that breadth for control, cost, and data ownership.

How long does setup actually take?

With Docker Compose, a working instance is typically online in 10–15 minutes. Enrolling your first device adds roughly another 20 minutes.

Can I run it fully on-premises?

Yes. ownMDM runs on any Linux host with Docker. No outbound calls are required beyond Apple's MDM and APNs endpoints.

Which macOS versions are supported?

macOS 12 Monterey and newer. Apple's Declarative Device Management features (14+) are fully supported.

How do I get started today?

ownMDM is pre-launch. We're looking for one Mac IT shop (30–60 devices) to be our first design partner: free for the first year, white-glove onboarding, weekly call. Email hello@ownmdm.com or scroll up to the design-partner section.

Does it support SSO?

Yes — SAML 2.0 on the Business and Enterprise plans. Pre-wired integrations for Okta, Azure AD, and Google Workspace are on the roadmap; bring-your-own-IdP via SAML works today.

Ready to own your fleet?

14-day trial. No credit card. Your instance, your data.

Start Free Trial