Jamf Connect Login User Experience

The following steps describe the process a user should experience with a successful configuration and authentication of Jamf Connect Login.

Note: The login user experience may vary based on the identity provider (IdP) and preference keys used in your environment.

  1. The user follows on-screen steps to complete Apple's Setup Assistant, and the computer is enrolled in MDM.

  2. The user can do one of the following when the login window appears:

    • Enter their IdP account username and password.

      Note: The user may be prompted to authenticate using a multi-factor authentication (MFA) method on another device, if required by your IdP.

    • Click Local Auth at the bottom of the window and authenticate locally with the Jamf Connect login window, if a local account was provisioned via MDM.

  3. If a local account was not provisioned, the user must create a local account by doing one of the following:

    • Create and verify a new local password. Users are prompted to create a new local password if the OIDCNewPassword preference key is set to true.

      images/download/attachments/79176357/JCLogin_OIDCNewPassTrue.png
    • Enter an already existing IdP password. User are prompted to enter their existing IdP password if the OIDCNewPassword preference key is set to false. This ensures that a user's network and local password are synchronized during the account provisioning process.

      images/download/attachments/79176357/JCLogin_OIDCNewPassFalse.png
  4. The user clicks Continue or Create Account, and then the computer completes the setup process and loads the Finder.

Account Verification

To verify that the user account is configured correctly, you can do the following on the user's computer:

  1. Open System Preferences, and then click User & Groups to verify the local account was created.

  2. Open Directory Utility, and then do the following:

    1. Click the Directory Editor tab.

    2. Enter the local account username in the search bar in the left pane.

    3. Ensure the "NetworkUser" field contains the user's IdP username.

Copyright     Privacy Policy     Terms of Use     Security
© copyright 2002-2019 Jamf. All rights reserved.