The Jamf Connect login window also supports the use of Client Certificate Authentication for MFA. This feature serves as an optional layer of authentication, where the identity provider requires the user to present a client certificate. If more than one client certificate is available on the computer, the user will be prompted to pick from the available certificates.
To use Client Certificate Authentication with your IdP, admins will need to deploy a client certificate and private key pair to the system keychain. The private key will need access to all apps or the JCDaemon app located at /Library/Application Support/JamfConnect/JCDaemon.app.