Learn how to add, configure, and manage device integrations in Okta for macOS and iOS
This article is used in conjunction with the Okta Device Trust: Integration Setup support article.
- Adding device integrations in Okta
- Add macOS as a device integration
- Add iOS as a device integration
- Modifying a device integration in Okta
Adding device integrations in Okta
- Log in to the Okta admin portal.
- In the left-hand navigation, click Security > Device Integrations.
- Click Add Platform.
Add macOS as a device integration
- On the Select Platform step, select Desktop (Windows and macOS only), click Next.
- On the Configure Management Attestation step, for Certificate Authority, select Use Okta as Certificate Authority
- For SCEP URL Challenge Type, select Dynamic SCEP URL and Generic.
Next to SCEP URL, click the Generate button.
Copy the SCEP URL, Challenge URL, Username, and Password to a safe place. This info will be used later in Kandji when setting up macOS as a device platform.
Please copy the password, as it will be the only time you can view it. You can rotate the password later in the menu from the main Device integrations page in Okta if needed.
Click Save.
Add iOS as a device integration
- On the Select Platform step, select iOS, click Next.
- On the Configure Management Attestation step, copy the Secret Key to a safe place for use later in Kandji when adding iOS as a device platform in Kandji.
Please copy the Secret key, as it will be the only time you can view it. You can rotate the password later in the menu from the main Device integrations page in Okta if needed.
- For Device Management Provider, enter something like Kandji MDM.
- For Enrollment Link, enter your Kandji tenant’s device enrollment link (https://subdomain.kandji.io).
Click Save.
Modifying a device integration in Okta
Rotate a macOS challenge password or iOS Secret
- Go to the Device Integrations page.
- Next to the integration that you want to change, click the Actions menu.
- Click the reset option for that platform.
- Click the Reset button in the modal that appears.
Delete a macOS challenge password or iOS Secret
- Go to the Device Integrations page.
- Next to the integration that you want to change, click the Actions menu.
- Click Delete.
- Click the Delete button in the modal that appears.