This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to establish Device Trust for Apple iOS Devices with Okta by using JumpCloud's Apple MDM?

JuergenKlaassen
Rising Star III
Rising Star III

‎05-10-2023 04:39 AM - edited ‎05-10-2023 04:41 AM

Hi Community Folks

Yesterday I wrote about: "How to establish Device Trust for Android Devices with Okta by using JumpCloud's Android EMM?"
Now you might wonder: Can I do the same for iOS-devices as well? Yes, certainly you can. 

Please refer to the article for Android (link above) as well as most configuration steps are literally the same.
What differs though is certainly the payload which you need to pass along the managed application (Okta Verify). 

Integration steps

1. Okta: Device Integrations

Navigate to Security -> Device Integrations (1) -> Endpoint Management. Then click 'Add Platform' and select 'iOS'. Next copy the 'Secret Key', provide a name (2) and populate the Enrollment Link for iOS (4):

SCR-20230510-oghk.png

 

2. JumpCloud Integration steps

Add/configure Okta Verify under Software Management for iOS MDM

- Add 'Okta Verify' via Apple Business Manager. Once done, it will be available for further configuration

SCR-20230510-okkt.png
- Click on the app itself, click 'Supply configuration' and provide the following payload according to your settings:

 

<dict>
<key>managementHint</key>
<string>YOUR_SECRET_KEY_GOES_HERE</string>
<key>OktaVerify.OrgUrl</key>
<string>YOUR_OKTA_TENANT_URL_GOES_HERE</string>
</dict>

 

SCR-20230510-olte.png

- Now you can apply this app to Device Groups or individual Devices according to your needs. 

Just like for Android, it's straightforward and done that easily.
You can now either create a new Authentication Policy or extend an existing one by adding iOS as another platform:

SCR-20230510-oobv.png

 

Within the logs your will get the details accordingly: 

SCR-20230510-ooyi.png

 Additional KB's/resources: 
https://www.appconfig.org/content/dam/app-config/images/appconfig-media/appconfig-content/uploads/20...
https://help.okta.com/oie/en-us/Content/Topics/identity-engine/devices/managed-app-configs-ios.htm

 Cheers
-Juergen

 

0 REPLIES 0
You Might Like

New to the site? Take a look at these additional resources:

Community created scripts

Keep up with Product News

Read our community guidelines

Ready to join us? You can register here.