Self Service+ Sign-in Settings

Jamf Connect Documentation
Solution
Application
Jamf Connect
Content Type
Technical Documentation
Utilities & Services
ft:locale
en-US
  • Domaincom.jamf.connect
  • DictionarySignIn
  • Description

    Used to configure the sign-in user experience and multifactor authentication (MFA) options for Okta.

Setting

Description

Enable Automatic Sign-in

AutoAuthenticate

Determines if Jamf Connect automatically attempts to sign in the user if there are saved credentials in the user's keychain.

<key>AutoAuthenticate</key>
<false/>

Automatically Push Last MFA Method

AutoMFA

(Okta only) Determines if the multifactor authentication (MFA) method from a user's last sign-in via Jamf Connect is automatically pushed during their next Jamf Connect sign-in attempt.

Note:

Jamf Connect only detects MFA methods used within Self Service+. MFA methods used during sign-ins to the Okta dashboard via a web browser or another application are not detected.

<key>AutoMFA</key>
<false/>

Automatically Open App At Login

AutoOpenAppAtLogin

Sets Jamf Connect as a login item for users. This setting is disabled (set to false) by default.

Note:

  • Users must manually open the app at least one time to allow macOS to set the app as a login item.

  • If this setting is concurrently used with other methods to open Jamf Connect, such as the launch agent, multiple copies of the app may open on computers.

<key>AutoOpenAppAtLogin</key>
<false/>

Require Sign-in

RequireSignIn

Determines if the sign-in window is kept open on computers before users successfully authenticate. When set to true, the Close and Minimize buttons do not appear. 

<key>RequireSignIn</key>
<false/>

Username Field Label

UsernameLabel

Specifies custom text for the Username field in the sign-in window.

<key>UsernameLabel</key>
<string>Username:</string>

Password Field Label

PasswordLabel

Specifies custom text for the Password field in the sign-in window.

<key>PasswordLabel</key>
<string>Password:</string>

Sign-in Window Title

WindowTitle

Specifies a custom title for the sign-in window.

<key>WindowTitle</key>
<string>Connect</string>

MFA Option Names

MFARename

(Okta only) Specifies custom names for each MFA option used with Okta authentication in your organization. For more information about the types of MFA options you can configure with Jamf Connect and Okta, see Multifactor Authentication.

<key>MFARename</key>

<dict>
   <key>push</key>
   <string>Okta Verify app: Push Notification</string>
   <key>question</key>
   <string>Okta Verify app: Security Question</string>
   <key>token:hardware</key>
   <string>USB Security Key</string>
   <key>okta:token:software:totp</key>
   <string>Okta Verification Code</string>
   <key>google:token:software:totp</key>

   <string>Google Verification Code</string>
   <key>web</key>
   <string>Duo Mobile app</string>
</dict>

Hidden MFA Options

MFAExcluded

(Okta only) Specifies a list of MFA options that you do not want to display to users.

<key>MFAExcluded</key>
<array>

   <string>push</string>
   <string>question</string>

   <string>token:hardware</string>
   <string>okta:token:software:totp</string>
   <string>google:token:software:totp</string>

   <string>web</string>

</array>

One-time Password Message

OneTimePasswordMessage

(Okta only) Specifies the text displayed when a user must enter a one-time password (OTP) as a multifactor authentication (MFA) method.

<key>OneTimePasswordMessage</key>
<string>Enter the verification code</string> 

Offline MFA Reminder

OfflineMFAReminder

Specifies the frequency, by number of hours, with which users who have have multifactor authentication (MFA) enabled, but have not set up offline MFA, should be reminded to register their device for offline MFA.
<key>OfflineMFAReminder</key>
<integer>24</integer>