OIDC-Based Single Sign-On (SSO) Enhancements
Starting with Jamf Pro 11.20.0, you can specify a custom username claim when you integrate Jamf Pro with Microsoft Entra or Google Workspace as your identity provider (IdP). This is helpful if your environment does not use email claims to identify users. If you use Okta or Generic OIDC connections, you can configure username mapping using the custom mapping feature.
User and Contact Management Enhancements
You can remove users from the IdP users list in Jamf Account.
Note:
You must also remove users from the identity provider (IdP).
Resolved Issues
Fixed: Managed Service Providers may be unable to manage users, contacts, or roles for customer accounts.
Fixed: Safelisted custom Jamf Pro domains may still display a redirect warning.