<p><span>Okta's Dan Hefley (https://www.linkedin.com/in/dan-hefley), Senior Product</span><br /> <span>Manager for Device Access, explains how Platform SSO brings enterprise identity</span><br /> <span>to the Mac. From day-zero Setup Assistant enrollment in macOS 26 to device</span><br /> <span>bound SSO using secure enclave keys, Dan covers what IT teams need to know</span><br /> <span>about deploying Platform SSO with Okta and Jamf.</span><br /> <span>Dan shares his perspective as a former MDM admin turned identity product</span><br /> <span>manager, discusses how device bound SSO prevents session hijacking with</span><br /> <span>hardware-backed keys, and explains why the Shared Signals Framework between</span><br /> <span>Okta and Jamf creates layered security. Hosts Josh Thornton and Kat Garbis</span><br /> <span>explore what this means for organizations managing Apple fleets.</span></p> <span>1:44 Meet Dan Hefley - Senior Product Manager at Okta</span><br /> <span>5:00 What Is Okta? Vendor-Neutral Identity Provider Overview</span><br /> <span>6:23 Why Identity and Device Security Go Hand in Hand</span><br /> <span>7:21 What Is Platform SSO? Native macOS Framework Defined</span><br /> <span>8:07 Evolution from Jamf Connect Basic to Platform SSO</span><br /> <span>9:15 Why Platform SSO Was</span><br /> <span>9:47 Platform SSO in Setup Assistant</span><br /> <span>10:08 Day-Zero Enrollment Flow - ABM to Jamf to Okta MFA</span><br /> <span>11:43 Solving Enrollment Friction with Separated Device and User Registration</span><br /> <span>12:18 Password Syncing Benefits</span><br /> <span>16:40 How Device Bound SSO Prevents Session Hijacking</span><br /> <span>17:53 Identity Threat Protection and Continuous Authentication</span><br /> <span>18:06 Shared Signals Framework - Okta and Jamf Working Together</span> <span>20:40 Okta FastPass and Passwordless Authentication on Mac</span><br /> <span>21:20 Device Bound SSO Completes the Day-Zero Story</span><br /> <span>22:30 Getting Started - Requirements and Deployment Considerations</span><br /> <span>26:26 Okta's Platform SSO Roadmap and Future Direction</span><br /> <span>27:43 Key Takeaway - Identity and Device Teams Belong in the Same Room</span> <br /> <span><em>RESOURCES:</em></span> <br /> <span>- Mac Admins Slack - Platform SSO Channel:</span> <span>https://macadmins.slack.com</span><br /> <span>- IAMSE Blog - Okta Integration Guides:</span> <span>https://iamse.blog</span><br /> <span>- Jamf Learning Hub:</span> <span>https://learn.jamf.com/</span><br /> <span>- Jamf and Okta integrations:</span> <span>https://www.jamf.com/integrations/okta/</span><br /> <span>Subscribe for Apple device management and security insights</span> <br /> <span><em>WHO THIS IS FOR:</em></span> <br /> <span>IT administrators and security teams managing Mac fleets in enterprise</span><br /> <span>environments. Relevant if you're evaluating Platform SSO with Okta, migrating</span><br /> <span>from Jamf Connect Basic, or planning identity integration for zero-touch Mac</span><br /> <span>deployment.</span> <br /> <span>#Okta #Jamf #macossecurity #AppleSecurity #DeviceBoundSSO #macOS</span><br /> <span>#IdentityManagement #PlatformSSO #ZeroTouchDeployment #JamfAfterDark</span><br /> <span>#EnterpriseSecurity #MacAdmin #TrustedAccess #podcast</span>