Skip to main content
Solved

Jamf Connect + Onelogin: Unable to load Identity Provider

  • February 23, 2022
  • 7 replies
  • 37 views
F
Forum|alt.badge.img+10

Hello :) 

because I'm still struggling with Jamf Connect for testing Onelogin. I'm using the latest version of Jamf Configurator (2.9.0) Please note, for my test instance, I didn't configure MFA for Onelogin. 

I don't know if it's the OIDCTenant or something else why it's not working but I tested already these things for OIDCTenant. 

Error message from Jamf Configurator: " Unable to load Identity Provider "

Error message from Onelogin: "OIDC authorization code for Jamf Connect FAILED" 

 

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>CreateJamfConnectPassword</key>
<true/>
<key>OIDCClientID</key>
<string>Onelogin-Client-ID</string>
<key>OIDCClientSecret</key>
<string>Secret</string>
<key>OIDCDiscoveryURL</key>
<string>https://<mycompanyname>.onelogin.com/oidc/2/.well-known/openid-configuration</string>
<key>OIDCIgnoreCookies</key>
<false/>
<key>OIDCProvider</key>
<string>OneLogin</string>
<key>OIDCROPGID</key>
<string>Onelogin-Client-ID</string>
<key>OIDCRedirectURI</key>
<string>https://127.0.0.1/jamfconnect</string>
<key>OIDCTenant</key>
<string>Onelogin-Client-ID</string>
</dict>
</plist>

Best answer by Flaurian

What was your OIDC test result in the Jamf Connect Configuration? We use the most basic setup. 

 


Thanks, @YanW I solved it finally with the Jamf Support team. It looks like for me, they missed keeping the Onelogin documentation up2date. 

In case, u configured OneLogin as an OIDC connection u have to change the authentication method to "POST" not to "none". Afterward, I got tokens and I configured also ROPG / Discovery URL / Secret 

    7 replies

    YanW
    Forum|alt.badge.img+11
    • YanW
    • Contributor
    • February 23, 2022

    We put MFA even it's not configured. We tried 1 thing at a time, using the most basic configuration, at the end, we removed the DiscoveryURL and Secret. 

    <key>ROPGSuccessCodes</key> <array> <string>MFA</string> </array>

      

    F
    F
    Forum|alt.badge.img+10
    • Flaurian
    • Author
    • Valued Contributor
    • February 24, 2022

    We put MFA even it's not configured. We tried 1 thing at a time, using the most basic configuration, at the end, we removed the DiscoveryURL and Secret. 

    <key>ROPGSuccessCodes</key> <array> <string>MFA</string> </array>

      


    Thanks for ur answer but if I remove "DiscoveryURL and Secret" I'm unable to SignIn to OneLogin. I already tested it to add "MFA" as ROPGSuccessCodes but no chance - same result. 

     

    YanW
    Forum|alt.badge.img+11
    • YanW
    • Contributor
    • February 24, 2022

    Thanks for ur answer but if I remove "DiscoveryURL and Secret" I'm unable to SignIn to OneLogin. I already tested it to add "MFA" as ROPGSuccessCodes but no chance - same result. 

     


    What was your OIDC test result in the Jamf Connect Configuration? We use the most basic setup. 

     

    F
    F
    Forum|alt.badge.img+10
    • Flaurian
    • Author
    • Valued Contributor
    • Answer
    • February 24, 2022

    What was your OIDC test result in the Jamf Connect Configuration? We use the most basic setup. 

     


    Thanks, @YanW I solved it finally with the Jamf Support team. It looks like for me, they missed keeping the Onelogin documentation up2date. 

    In case, u configured OneLogin as an OIDC connection u have to change the authentication method to "POST" not to "none". Afterward, I got tokens and I configured also ROPG / Discovery URL / Secret 

    YanW
    J
    J
    Forum|alt.badge.img+4
    • jbresee
    • Contributor
    • March 9, 2022

    Thanks, @YanW I solved it finally with the Jamf Support team. It looks like for me, they missed keeping the Onelogin documentation up2date. 

    In case, u configured OneLogin as an OIDC connection u have to change the authentication method to "POST" not to "none". Afterward, I got tokens and I configured also ROPG / Discovery URL / Secret 


    Thanks for posting this! 

    It helped me fix my configuration. I was getting an error with JAMF connect that was corrected by switching from NONE to POST on the onelogin side.

    You rock!!

    P
    Forum|alt.badge.img+3
    • Prabhu
    • New Contributor
    • October 9, 2023

    Hello Everyone, 

    When we signed into Jamf Connect menubar we're getting MFA error, does anyone have a idea about this error. 

    Attached the screenshot for reference. 

    B
    Forum|alt.badge.img
    • blackj
    • New Contributor
    • May 13, 2025

    Hello Everyone, 

    When we signed into Jamf Connect menubar we're getting MFA error, does anyone have a idea about this error. 

    Attached the screenshot for reference. 


    Is any one else still having trouble with this.


    The one thing that I think I am getting stuck on is where do I find the Tenant line.  I have all the other boxes fill out and have the authentication set to Post.

    Terms & ConditionsCookie settingsAccessibility statement