Using okta LDAP with Jamf

I recently had to setup okta LDAP into Jamf and I followed Travelling Tech Guy’s article and cleavenworth‘s gist article which got it up and working.

When I started testing I noticed a few issues;

  • Couldn’t sign into Self Service using an okta account. Giving server cannot be found error.
  • Could log into Jamf Pro using an okta group member but was immediately signed out.

So a couple of  Jamf tickets later and the answer was revealed, so thanks Alex in Jamf support.

The answer is simply to change one item in the LDAP mapping.

In the article it says User UUID: objectGUID .

Change this to be User UUID: uid and everything works.


So the full mapping I used is;

Jamfokta
User IDuid
Usernameuid
Real Namecn
Email Addressuid
Departmentdepartment
Positiontitle
User UUIDuid

And finally wildcard searching works so that can be switched on

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s