Once two Jamf Connect applications have been created, you must edit your Okta Sign On or Authentication policies to properly enforce multifactor authentication (MFA) at the macOS login window.
Requirements
Access to your organization's Okta Identity Engine admin console.
An authentication policy that requires multifactor authentication.
Two separate Jamf Connect applications, one for password checks and another to support interactive logins at the macOS login window.
- Log in to the Okta Admin Console.
- Click Applications.
- Locate the Jamf Connect application that supports interactive logins at the macOS login window.
- Navigate to the Sign On tab.
- In the User authentication section, click Edit.
- Select the name of your authentication policy that includes your multifactor authentication requirements.
- Click Save.
Users who are assigned to your Jamf Connect application must now complete an MFA challenge on login.