Jamf Connect Login User Experience

The following steps describe the general process for user creation via Automated Device Enrollment (formerly DEP) or user migration.

Local Account Creation via Automated Device Enrollment

Note: The login user experience may vary based on the identity provider (IdP) and preferences used in your environment.

  1. The user follows on-screen steps to complete Apple's Setup Assistant, and the computer is enrolled in MDM.

  2. The user can do one of the following when the login window appears:

    • Enter their IdP account username and password. Note: The user may be prompted to authenticate using a multi-factor authentication (MFA) method on another device, if required by your IdP.

    • Click Local Auth at the bottom of the window and authenticate locally, if a local account was provisioned via MDM.

  3. If a local account was not provisioned, the user must create a local account by doing one of the following:

    • Create and verify a new local password. Users are prompted to create a new local password if the OIDCNewPassword preference key is set to true.

    • Enter an already existing IdP password. User are prompted to enter their existing IdP password if the OIDCNewPassword preference key is set to false. This ensures that a user's network and local password are synchronized during the account provisioning process.

  4. The user clicks Continue or Create Account, and then the computer completes the setup process and loads the Finder.

Local Account Migration

Jamf Connect Login can connect existing local user accounts to IdP user accounts using the User Migration setting. The following steps describe the process a user should experience when User Migration is enabled.

  1. After Jamf Connect Login is installed, the macOS login window is replaced with the Jamf Connect login window.

  2. The user logs in with their network account credentials.

  3. The user is prompted to select a local account and enter its password.


    The local user account is connected to the network account.

  4. If the local user account password does not match the network account password, Jamf Connect Login prompts the user to update it.


    The local user account password is synced with the network password, and the user is logged in.

Copyright     Privacy Policy     Terms of Use     Security
© copyright 2002-2020 Jamf. All rights reserved.