You can configure your base Okta Sign On policy to bypass multifactor authentication (MFA) requirements for all devices that are using Jamf Connect's Zero Trust Network Access.
This configuration effectively replaces app or SMS-based factors with "Zero Trust Network Access as a Factor"; meaning that the presence of the Zero Trust Network Access app on a device with Zero Trust Network Access running is considered to be an authentication factor when logging in.
This feature is not a replacement for end-user authentication. Users must still authenticate with their credentials as defined in Okta.
This configuration also does not impact the users or groups authorized to use any given application.
Steps include:
Configuring Jamf Security Cloud
Configuring Okta
Testing Okta Login with Jamf Trust as a Factor
Testing SSO App Login with Jamf Trust as a Factor