Self Service for macOS supports the FIDO2 authentication method for single sign-on. FIDO2 is a type of Universal 2nd Factor (U2F) authentication where credentials can be accessed from a device instead of a server. It enables passwordless authentication, including passkeys, local biometric access, and hardware keys.
FIDO2 must be configured through your IdP and enabled in Jamf Pro.
When FIDO2 authentication is enabled, Self Service opens a private browser window to authenticate user credentials. Because the private browser window does not retain cookies, more frequent logins are required when FIDO2 authentication is active.