This guide applies to iOS, iPadOS, and macOS devices
Product Name Update: Throughout this guide, you may notice references to both “Kandji” and “Iru Endpoint.” Our product is now called Iru Endpoint, but some integration interfaces may still display the previous name. This is a temporary situation that will be resolved as our integration partners update their systems.
About Adding Device Platforms to Okta Device Trust
Adding device platforms to Okta Device Trust allows you to configure which device types (iOS, iPadOS, macOS) are supported in your Okta Device Trust integration with Iru Endpoint.How It Works
This article is used in conjunction with the Okta Device Trust: Integration Setup support article.
Adding device integrations in Okta
1
Log In to Okta Admin Portal
Log in to the Okta admin portal.
2
Navigate to Device Integrations
In the left-hand navigation, click Security > Device Integrations.
3
Add Platform
Click Add Platform.
Add macOS as a device integration
1
Select Desktop Platform
On the Select Platform step, select Desktop (Windows and macOS only), click Next.
2
Configure Certificate Authority
On the Configure Management Attestation step, for Certificate Authority, select Use Okta as Certificate Authority.
3
Configure SCEP URL Challenge
For SCEP URL Challenge Type, select Dynamic SCEP URL and Generic.
4
Generate SCEP URL
Next to SCEP URL, click the Generate button.Copy the SCEP URL, Challenge URL, Username, and Password to a safe place. This info will be used later in Iru Endpoint when setting up macOS as a device platform.
Please copy the password, as it will be the only time you can view it. You can rotate the password later in the menu from the main Device integrations page in Okta if needed.
5
Save Configuration
Click Save.
Add iOS as a device integration
1
Select iOS Platform
On the Select Platform step, select iOS, click Next.
2
Copy Secret Key
On the Configure Management Attestation step, copy the Secret Key to a safe place for use later in Iru Endpoint when adding iOS as a device platform in Iru Endpoint.
Please copy the Secret key, as it will be the only time you can view it. You can rotate the password later in the menu from the main Device integrations page in Okta if needed.
3
Enter Device Management Provider
For Device Management Provider, enter something like Iru Endpoint MDM.
4
Enter Enrollment Link
For Enrollment Link, enter your Iru Endpoint tenant’s device enrollment link (https://subdomain..io).
5
Save Configuration
Click Save.
Modifying a device integration in Okta
Rotate a macOS challenge password or iOS Secret
1
Navigate to Device Integrations
Go to the Device Integrations page.
2
Access Actions Menu
Next to the integration that you want to change, click the Actions menu.
3
Select Reset Option
Click the reset option for that platform.
4
Confirm Reset
Click the Reset button in the modal that appears.
Delete a macOS challenge password or iOS Secret
1
Navigate to Device Integrations
Go to the Device Integrations page.
2
Access Actions Menu
Next to the integration that you want to change, click the Actions menu.
3
Select Delete
Click Delete.
4
Confirm Delete
Click the Delete button in the modal that appears.