When I started testing I noticed a few issues;
- Couldn’t sign into Self Service using an okta account. Giving server cannot be found error.
- Could log into Jamf Pro using an okta group member but was immediately signed out.
So a couple of Jamf tickets later and the answer was revealed, so thanks Alex in Jamf support.
The answer is simply to change one item in the LDAP mapping.
In the article it says User UUID: objectGUID .
Change this to be User UUID: uid and everything works.
So the full mapping I used is;
And finally wildcard searching works so that can be switched on