August 2025: This is an Early Access release IntroductionRequirementsOkta RequirementsMicrosoft Intune RequirementsDemo - Windows Admin RecoveryEnable Desktop MFA recovery Desktop MFA access policiesGroup Policy-Based Deployment of Desktop MFA for WindowsConfigure Okta as a CA with delegated SCEP challenge for Microsoft IntuneRegister the AAD app credentials for Okta in Microsoft EntraSet the Intune permissions for SCEPSet the Microsoft Graph permissionsImplement the SCEP … Continue reading Streamlining Windows Admin Recovery with Okta Device Access and Intune Integration
Category: MS Intune
Fortifying the Zero Trust Framework with Okta Advanced Posture Checks for macOS
May 2025: This is an Early Access release Introduction In today's increasingly complex and perilous digital landscape, the concept of Zero Trust has evolved from a security buzzword to a fundamental architectural principle. Organizations are no longer able to implicitly trust any user or device, regardless of their location or network. This paradigm shift demands … Continue reading Fortifying the Zero Trust Framework with Okta Advanced Posture Checks for macOS
Mastering Okta Device Access: A Comprehensive Guide to Deploying Desktop MFA with Microsoft Intune
RequirementsOkta RequirementsMicrosoft Intune RequirementsOkta Desktop MFA ConfigurationOkta Verify DeploymentConvert Okta Verify into .intunewin PackageDeploy the Okta Verify .intunewin Package in Microsoft IntuneConfiguring Registry Settings for Okta Device Access in Microsoft Intune via a PowerShell ScriptConfigure and deploy Okta Device Access access policiesOkta Device Access - Windows DemosPasswordless LoginOffline login to Windows - Device Access CodeSelf-Service … Continue reading Mastering Okta Device Access: A Comprehensive Guide to Deploying Desktop MFA with Microsoft Intune
Okta Devices Access – Just in Time Account Creation for macOS with Microsoft Intune
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia Introduction to Just-in-Time Local Account Creation on macOS with Okta Just-in-Time (JIT) local account creation is a powerful feature that enables users to create a local account on a macOS device directly from the login window, using their Okta credentials. By … Continue reading Okta Devices Access – Just in Time Account Creation for macOS with Microsoft Intune
Okta Device Access – Allowed Factors on macOS
IntroductionPrerequisitesConfigure Allowed Factors MDM policyOmnissa Workspace ONE UEMJamf ProKandjiMicrosoft IntuneDemo Introduction Admins can now control which verification methods users are permitted to authenticate with by configuring a new registry value called AllowedFactors. This provides greater flexibility in managing authentication options within the system. Prerequisites Okta Device Access Desktop MFA configured in your environment Okta Verify … Continue reading Okta Device Access – Allowed Factors on macOS
Desktop MFA Recovery for macOS
August 2024: This is an Early Access Feature IntroductionPrerequisitesEnable Device RecoveryConfigure Device RecoveryOmnissa Workspace ONE UEMJamf ProKandjiMicrosoft IntuneRequest a Device Recovery PINDemo Request a Device Recovery PINCreate Device Recovery PINDemo Create Device Recovery PINDemo Desktop MFA Admin RecoveryConclusion Introduction In today's security-focused environment, Multi-Factor Authentication (MFA) is crucial for protecting user accounts and data. However, … Continue reading Desktop MFA Recovery for macOS
Desktop Password Sync meets Platform SSO 2.0 and Microsoft Intune
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia IntroductionPrerequisitesSet up Device Access SCEP certificatesConfigure Okta as a CA with delegated SCEP challenge for Microsoft IntuneRegister the AAD app credentials for Okta in Microsoft EntraSet the Intune scep_challenge_provider permissionsSet the Microsoft Graph Application.Read.All permissionsGenerate a SCEP URL in OktaDownload the x509 certificate from OktaCreate … Continue reading Desktop Password Sync meets Platform SSO 2.0 and Microsoft Intune
Okta Device Access macOS TOTP account link
IntroductionPrerequisitesCreate / Adjust MDM ProfilesWorkspace ONE UEM ProfileJamf PRO ProfileKandji ProfileMicrosoft Intune ProfileDemo Introduction In Desktop MFA for macOS, admins can now choose between Okta Verify push notification and Okta Verify Time-based One-Time Password as the user verification method used to link an Okta account to the local macOS account.In this blog I will show you … Continue reading Okta Device Access macOS TOTP account link
Better together: Okta Device Access and Okta FastPass
IntroductionmacOS Okta Device Access and FastPass experienceEnable Okta FastPassEnroll Okta FastPass on macOSConfigure authentication policiesOkta DashboardApplication PolicyAdditional configurations on macOS DevicesConfigure SSO extension for managed macOS devicesConfigure auto-launch Okta Verify on macOS devicesWindows Okta Device Access and FastPass experienceEnroll Okta FastPass on WindowsSkip the Open Okta Verify prompt Introduction Combining security and user experience sometimes seems to be a … Continue reading Better together: Okta Device Access and Okta FastPass
IAMSE