Help

OKTA Device Trust

Go to solution
Yam_Moktan
New Contributor III

a month ago

Hi Guys, 

We are trying to implement Device Trust with OKTA and JAMF.  While setting up OKTA verify app in mac, we are unable to silently enrol the user account into OKTA Verify app without user intervention. The OKTA Verify app configuration documentation by OKTA doesn't have any info.

Is it possible to register OKTA verify app into user account automatically without needing user to do manually. 

Thank you

0 Kudos
Reply
1 ACCEPTED SOLUTION

Go to solution
AJPinto
Esteemed Contributor

a month ago

Okta is an identity management tool, I personally dont see how you would validate user identity without the user being interactively involved. It may be possible if you used PSSO with Okta, as macOS would have a token it could pass from the login screen that they already interactively created. However, this is all Okta and I recommend reaching out to Okta on this one.

View solution in original post

Reply
3 REPLIES 3

Go to solution
AJPinto
Esteemed Contributor

a month ago

Okta is an identity management tool, I personally dont see how you would validate user identity without the user being interactively involved. It may be possible if you used PSSO with Okta, as macOS would have a token it could pass from the login screen that they already interactively created. However, this is all Okta and I recommend reaching out to Okta on this one.

Reply

Go to solution
karthikeyan_mac
Valued Contributor

a month ago

Hi @Yam_Moktan I don't think its possible. User need to authenticate for configuring the Okta Verify. You can reach out in Okta channel in Mac Admins slack.

Thanks.

0 Kudos
Reply

Go to solution
Yam_Moktan
New Contributor III

4 weeks ago

Hi @AJPinto @karthikeyan_mac 
Thank you for your reply, yeah looks like its not possible which was my thought as well. But the project team was almost sure we can do this without user interaction. 

0 Kudos
Reply