May 2025: This is an Early Access release Introduction In today's increasingly complex and perilous digital landscape, the concept of Zero Trust has evolved from a security buzzword to a fundamental architectural principle. Organizations are no longer able to implicitly trust any user or device, regardless of their location or network. This paradigm shift demands … Continue reading Fortifying the Zero Trust Framework with Okta Advanced Posture Checks for macOS
Category: VMWare Workspace One
Enhancing Security with Okta Identity Threat Protection and Omnissa
IntroductionPrerequisitesOktaOmnissaOmnissa configurationConfigure Security Events in OmnissaWorkspace ONE UEM Compliance policiesOkta Identity Threat Protection ConfigurationConfigure the shared signal receiverEntity Risk PolicyPolicy Structure and EvaluationActions Based on Matching RulesAdd an entity risk policy rule for Universal LogoutAdd an entity risk policy rule to run a WorkflowDemosITP Universal Logout - Omnissa Workspace ONE enrolled DeviceObservability & InsightsReview logs … Continue reading Enhancing Security with Okta Identity Threat Protection and Omnissa
Okta Device Access – Allowed Factors on macOS
IntroductionPrerequisitesConfigure Allowed Factors MDM policyOmnissa Workspace ONE UEMJamf ProKandjiMicrosoft IntuneDemo Introduction Admins can now control which verification methods users are permitted to authenticate with by configuring a new registry value called AllowedFactors. This provides greater flexibility in managing authentication options within the system. Prerequisites Okta Device Access Desktop MFA configured in your environment Okta Verify … Continue reading Okta Device Access – Allowed Factors on macOS
Desktop MFA Recovery for macOS
August 2024: This is an Early Access Feature IntroductionPrerequisitesEnable Device RecoveryConfigure Device RecoveryOmnissa Workspace ONE UEMJamf ProKandjiMicrosoft IntuneRequest a Device Recovery PINDemo Request a Device Recovery PINCreate Device Recovery PINDemo Create Device Recovery PINDemo Desktop MFA Admin RecoveryConclusion Introduction In today's security-focused environment, Multi-Factor Authentication (MFA) is crucial for protecting user accounts and data. However, … Continue reading Desktop MFA Recovery for macOS
Okta Device Access macOS TOTP account link
IntroductionPrerequisitesCreate / Adjust MDM ProfilesWorkspace ONE UEM ProfileJamf PRO ProfileKandji ProfileMicrosoft Intune ProfileDemo Introduction In Desktop MFA for macOS, admins can now choose between Okta Verify push notification and Okta Verify Time-based One-Time Password as the user verification method used to link an Okta account to the local macOS account.In this blog I will show you … Continue reading Okta Device Access macOS TOTP account link
Desktop Password Sync meets Platform SSO 2.0 and Workspace ONE
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia (mobileconfig template was updated) IntroductionPrerequisitesSet up Device Access SCEP certificatesConfigure Okta as a CA for Device AccessDownload the x509 certificate from OktaWorkspace ONE SCEP configurationCreate a Certificate AuthorityAdd a Certificate Template Create a device profile to deploy the Okta CA Create a user … Continue reading Desktop Password Sync meets Platform SSO 2.0 and Workspace ONE
Okta secure devices Videos on IAMSE.blog
Introduction Remote and hybrid work is here to stay, so are all your devices secured?In recent weeks and months, I've written various blogs on the topic endpoint integration and security.In this blog post, I would like to briefly demonstrate once again with some demos how Okta can help with this from enrollment to logging on … Continue reading Okta secure devices Videos on IAMSE.blog
Okta mobile devices Integration with Workspace ONE
Introduction You can ensure that devices are managed by an endpoint management(in my example Workspace ONE) tool before end users can access apps from the device. Devices are managed if they meet these conditions: The device is registered (enrolled in Okta Verify). A profile associated with the device is managed by a device management solution. The device is … Continue reading Okta mobile devices Integration with Workspace ONE
Okta Device Integration with Workspace ONE
Introduction You can ensure that devices are managed by an endpoint management (in my example Workspace ONE) tool before end users can access apps from the device. Devices are managed if they meet these conditions: The device is registered (enrolled in Okta Verify). A user profile associated with the device is managed by a device … Continue reading Okta Device Integration with Workspace ONE
Okta Device Access – Desktop Password Sync for macOS
October 2024: The Okta application name from "Desktop Password Sync" to"Platform Single Sign-On for macOS" April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia (mobileconfig template was updated) Introduction With macOS Ventura, Apple introduced Platform SSO, which enables developers to create a single sign-on (SSO) extension that interacts directly with the macOS login … Continue reading Okta Device Access – Desktop Password Sync for macOS
IAMSE