April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia (mobileconfig template was updated) Introduction In this blog post, I’ll guide you through the process of configuring Okta Device Access Desktop MFA and Platform SSO for macOS devices managed with mosyle MDM. We’ll begin by setting up the required configurations within Okta, … Continue reading Okta Device Access with mosyle a step-by-step guide
Category: Device Access
Okta Devices Access – Just in Time Account Creation for macOS with Microsoft Intune
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia Introduction to Just-in-Time Local Account Creation on macOS with Okta Just-in-Time (JIT) local account creation is a powerful feature that enables users to create a local account on a macOS device directly from the login window, using their Okta credentials. By … Continue reading Okta Devices Access – Just in Time Account Creation for macOS with Microsoft Intune
Just in Time Account Creation for macOS with Jamf Pro
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia Introduction to Just-in-Time Local Account Creation on macOS with OktaRequirements for Implementing Just-in-Time Local Account Creation with Okta on macOSEnable JIT provisioning in the Admin ConsoleAdd custom attributes to Platform SSO appSet up Device Access SCEP certificatesConfigure Okta as a CA for Device AccessCreate … Continue reading Just in Time Account Creation for macOS with Jamf Pro
Okta Device Access – Allowed Factors on macOS
IntroductionPrerequisitesConfigure Allowed Factors MDM policyOmnissa Workspace ONE UEMJamf ProKandjiMicrosoft IntuneDemo Introduction Admins can now control which verification methods users are permitted to authenticate with by configuring a new registry value called AllowedFactors. This provides greater flexibility in managing authentication options within the system. Prerequisites Okta Device Access Desktop MFA configured in your environment Okta Verify … Continue reading Okta Device Access – Allowed Factors on macOS
Desktop MFA Recovery for macOS
August 2024: This is an Early Access Feature IntroductionPrerequisitesEnable Device RecoveryConfigure Device RecoveryOmnissa Workspace ONE UEMJamf ProKandjiMicrosoft IntuneRequest a Device Recovery PINDemo Request a Device Recovery PINCreate Device Recovery PINDemo Create Device Recovery PINDemo Desktop MFA Admin RecoveryConclusion Introduction In today's security-focused environment, Multi-Factor Authentication (MFA) is crucial for protecting user accounts and data. However, … Continue reading Desktop MFA Recovery for macOS
Desktop Password Sync meets Platform SSO 2.0 and Microsoft Intune
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia IntroductionPrerequisitesSet up Device Access SCEP certificatesConfigure Okta as a CA with delegated SCEP challenge for Microsoft IntuneRegister the AAD app credentials for Okta in Microsoft EntraSet the Intune scep_challenge_provider permissionsSet the Microsoft Graph Application.Read.All permissionsGenerate a SCEP URL in OktaDownload the x509 certificate from OktaCreate … Continue reading Desktop Password Sync meets Platform SSO 2.0 and Microsoft Intune
Okta Device Access macOS TOTP account link
IntroductionPrerequisitesCreate / Adjust MDM ProfilesWorkspace ONE UEM ProfileJamf PRO ProfileKandji ProfileMicrosoft Intune ProfileDemo Introduction In Desktop MFA for macOS, admins can now choose between Okta Verify push notification and Okta Verify Time-based One-Time Password as the user verification method used to link an Okta account to the local macOS account.In this blog I will show you … Continue reading Okta Device Access macOS TOTP account link
Desktop Password Sync meets Platform SSO 2.0 and Kandji
October 2024: The Okta application name from "Desktop Password Sync" to"Platform Single Sign-On for macOS"April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia (mobileconfig template was updated) IntroductionPrerequisitesSet up Device Access SCEP certificatesConfigure Okta as a CA for Device AccessKandji SCEP configurationVerify that certificate was installed on deviceUpdate your Kandji Library profilesPlatform … Continue reading Desktop Password Sync meets Platform SSO 2.0 and Kandji
Desktop Password Sync meets Platform SSO 2.0 and Workspace ONE
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia (mobileconfig template was updated) IntroductionPrerequisitesSet up Device Access SCEP certificatesConfigure Okta as a CA for Device AccessDownload the x509 certificate from OktaWorkspace ONE SCEP configurationCreate a Certificate AuthorityAdd a Certificate Template Create a device profile to deploy the Okta CA Create a user … Continue reading Desktop Password Sync meets Platform SSO 2.0 and Workspace ONE
Desktop Password Sync meets Platform SSO 2.0 and Jamf Pro
April 2025: Additional app identifier required for the associated domain entry on macOS 15 Sequoia IntroductionPrerequisitesSet up Device Access SCEP certificatesConfigure Okta as a CA for Device AccessCreate a dynamic SCEP profile in Jamf ProVerify that the Okta CA was installed on your devicesUpdate your MDM profilesUpdate your device management profile Update your single sign-on extension profileDemo … Continue reading Desktop Password Sync meets Platform SSO 2.0 and Jamf Pro
IAMSE