Sign up to save your podcasts
Or
Share Platform SSO and Okta: Identity Meets Jamf Device Management on Mac
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Platform SSO and Okta: Identity Meets Jamf Device Management on Mac
Okta's Dan Hefley (https://www.linkedin.com/in/dan-hefley), Senior Product
Manager for Device Access, explains how Platform SSO brings enterprise identity
to the Mac. From day-zero Setup Assistant enrollment in macOS 26 to device
bound SSO using secure enclave keys, Dan covers what IT teams need to know
about deploying Platform SSO with Okta and Jamf.
Dan shares his perspective as a former MDM admin turned identity product
manager, discusses how device bound SSO prevents session hijacking with
hardware-backed keys, and explains why the Shared Signals Framework between
Okta and Jamf creates layered security. Hosts Josh Thornton and Kat Garbis
explore what this means for organizations managing Apple fleets.
5:00 What Is Okta? Vendor-Neutral Identity Provider Overview
6:23 Why Identity and Device Security Go Hand in Hand
7:21 What Is Platform SSO? Native macOS Framework Defined
8:07 Evolution from Jamf Connect Basic to Platform SSO
9:15 Why Platform SSO Was
9:47 Platform SSO in Setup Assistant
10:08 Day-Zero Enrollment Flow - ABM to Jamf to Okta MFA
11:43 Solving Enrollment Friction with Separated Device and User Registration
12:18 Password Syncing Benefits
16:40 How Device Bound SSO Prevents Session Hijacking
17:53 Identity Threat Protection and Continuous Authentication
18:06 Shared Signals Framework - Okta and Jamf Working Together 20:40 Okta FastPass and Passwordless Authentication on Mac
21:20 Device Bound SSO Completes the Day-Zero Story
22:30 Getting Started - Requirements and Deployment Considerations
26:26 Okta's Platform SSO Roadmap and Future Direction
27:43 Key Takeaway - Identity and Device Teams Belong in the Same Room
RESOURCES:
- Mac Admins Slack - Platform SSO Channel: https://macadmins.slack.com
- IAMSE Blog - Okta Integration Guides: https://iamse.blog
- Jamf Learning Hub: https://learn.jamf.com/
- Jamf and Okta integrations: https://www.jamf.com/integrations/okta/
Subscribe for Apple device management and security insights
WHO THIS IS FOR:
IT administrators and security teams managing Mac fleets in enterprise
environments. Relevant if you're evaluating Platform SSO with Okta, migrating
from Jamf Connect Basic, or planning identity integration for zero-touch Mac
deployment.
#Okta #Jamf #macossecurity #AppleSecurity #DeviceBoundSSO #macOS
#IdentityManagement #PlatformSSO #ZeroTouchDeployment #JamfAfterDark
#EnterpriseSecurity #MacAdmin #TrustedAccess #podcast
View all episodes
By Jamf
4.9
5151 ratings
Okta's Dan Hefley (https://www.linkedin.com/in/dan-hefley), Senior Product
Manager for Device Access, explains how Platform SSO brings enterprise identity
to the Mac. From day-zero Setup Assistant enrollment in macOS 26 to device
bound SSO using secure enclave keys, Dan covers what IT teams need to know
about deploying Platform SSO with Okta and Jamf.
Dan shares his perspective as a former MDM admin turned identity product
manager, discusses how device bound SSO prevents session hijacking with
hardware-backed keys, and explains why the Shared Signals Framework between
Okta and Jamf creates layered security. Hosts Josh Thornton and Kat Garbis
explore what this means for organizations managing Apple fleets.
5:00 What Is Okta? Vendor-Neutral Identity Provider Overview
6:23 Why Identity and Device Security Go Hand in Hand
7:21 What Is Platform SSO? Native macOS Framework Defined
8:07 Evolution from Jamf Connect Basic to Platform SSO
9:15 Why Platform SSO Was
9:47 Platform SSO in Setup Assistant
10:08 Day-Zero Enrollment Flow - ABM to Jamf to Okta MFA
11:43 Solving Enrollment Friction with Separated Device and User Registration
12:18 Password Syncing Benefits
16:40 How Device Bound SSO Prevents Session Hijacking
17:53 Identity Threat Protection and Continuous Authentication
18:06 Shared Signals Framework - Okta and Jamf Working Together 20:40 Okta FastPass and Passwordless Authentication on Mac
21:20 Device Bound SSO Completes the Day-Zero Story
22:30 Getting Started - Requirements and Deployment Considerations
26:26 Okta's Platform SSO Roadmap and Future Direction
27:43 Key Takeaway - Identity and Device Teams Belong in the Same Room
RESOURCES:
- Mac Admins Slack - Platform SSO Channel: https://macadmins.slack.com
- IAMSE Blog - Okta Integration Guides: https://iamse.blog
- Jamf Learning Hub: https://learn.jamf.com/
- Jamf and Okta integrations: https://www.jamf.com/integrations/okta/
Subscribe for Apple device management and security insights
WHO THIS IS FOR:
IT administrators and security teams managing Mac fleets in enterprise
environments. Relevant if you're evaluating Platform SSO with Okta, migrating
from Jamf Connect Basic, or planning identity integration for zero-touch Mac
deployment.
#Okta #Jamf #macossecurity #AppleSecurity #DeviceBoundSSO #macOS
#IdentityManagement #PlatformSSO #ZeroTouchDeployment #JamfAfterDark
#EnterpriseSecurity #MacAdmin #TrustedAccess #podcast
More shows like Jamf After Dark
View all
Mac Admins Podcast
100 Listeners