2025-07-16

Jamf Account Documentation
Solution
Application
Content Type
Technical Documentation
Utilities & Services
ft:locale
en-US

OIDC-Based Single Sign-On (SSO) Enhancements

  • You can view certain claims your identity provider (IdP) sent to Jamf during previous logins, and how they were mapped to your ID token. To access this new feature, navigate to Profile > Login History. Viewable claims:

    • Expiration date

    • Issued at date

    • Groups

    • Email

    • Connection name

    • Full name

    • Language

    • Username

    • Theme

    • Nickname

    • Timezone

    • Updated at date

    • Picture

    • Issuer

    • Session ID

  • For organizations using Google Identity as an IdP, you can select Authorize URL to allow Google Workspace groups to be sent to Jamf portals including Jamf Account, Jamf Pro, and Jamf Protect.

  • Failed SSO login attempts display a custom error page with an error UUID. You can share this information with Jamf Support to more efficiently troubleshoot login issues.

Resolved Issues

Fixed: SSO login with Google Identity fails when the profile image URL is more than 1,024 characters.