- Create an app registration in Microsoft Entra ID. For more information, see Integrating Jamf Connect with Microsoft Entra ID in the Jamf Connect Documentation.
- Copy the Application ID found in the overview of the app registration and create a new configuration in Jamf Connect Configuration.
- In the new configuration, under the Identity provider tab, paste the Application ID into the OIDC client ID and the ROPG client ID fields.
- Click Test in the upper-right corner and select OIDC from the pop-up menu.
- Sign in on the new window with credentials of a user who exists in a federated domain and who is assigned to the application.
If a positive test result appears with a message confirming you have successfully authenticated to your Open ID Connect provider, move on to the next step.
If a negative test result appears, check your App registration, and follow the instructions in Integrating Jamf Connect with Microsoft Entra ID in the Jamf Connect Documentation.
- Click Test in the upper right corner and select ROPG from the pop-up menu.
- In the new window, sign in with the same credentials used for the previous test. Do not use an on-premises Active Directory short name for the username; Microsoft Entra ID user names are in UPN format (e.g., edith.mackenzie@example.com).
If a negative test result appears, ensure: The username and password are correct.
The user is assigned to the application.
Allow public client flows is set to Yes in the app registration in Microsoft Entra ID.
If the negative test result was not caused by one of the above errors, see Creating a Home Realm Discovery (HRD) Policy.