Introducing Platform Single Sign on for macOS with Microsoft Intune
Вставка
- Опубліковано 5 тра 2024
- Enrolling macOS devices with Microsoft Intune just got easier. With Platform Single Sign-on capabilities, users need a single credential for their device and access to corporate resources.
-------------------------------------------------------------------------------------------------------------------------------
👉 Keep up with the latest news: aka.ms/IntuneForMac
🔎 See all capabilities in Microsoft Intune for Mac: aka.ms/IntuneForMacDocs - Наука та технологія
I have a question regarding Mac computer login. How can users log in using their Entra ID on existing Mac devices? Is it necessary for everything to go through Autopilot, or is there an alternative method?
Hi Team this is great news. Even though the FileVault screen is set to show in Setup Assistant, it does not show during the process. Is there some sort of prerequisite for that?
Finally !
Why is the "local account" screen necessary if the password gets synced anyways.
This was the main thing I was hoping to get rid of..
Unfortunately this is a Apple macOS requirement, no way to bypass. Alos this is happening before the password sync is initiated due to the way macOS builds
PSSO requires a local account for the first identity to sync to, there is no way around that currently.
Its how macOS works today, I'd recommend providing feedback to Apple if your organization has contacts with them.
You still need it because the sync doesn't happen until after the local account creation point in the setup assistant process. It's the company portal app I believe that helps drive the process.
Will this work in a lab environment where you have various students logging into the same Macs?
I have this question as well. Tested successfully here in a school setting but if its only good for one account then its terrible in a multi user environment
No, really only for one user, one device. Similar to Windows autopilot
PSSO supports shared device, we're currently working on a video and some instructions for that scenario too.
Yes, you can configure it to support multi-user devices where anyone from the Entra ID tenant can log in. This does require macOS Sonoma though, it doesn't work in Ventura.
Is Platform SSO available with a BYOD enrollment of Macbooks?
No, only with ABM
yes it is
yes
Yes, the enrollment type doesn't matter for PSSO. It can be deployed via MDM regardless of enrollment type, but MDM management is always required.
I'm getting issues with the user account being populated by the Entra ID automátic and the to register the device. Company portal is not prompting