Jamf Connect Login LocalFallback

okelhemin
New Contributor

I need some help sorting out an issue that popped up yesterday. The issue was a user was at a hotel and had to be logged in to authenticate to the hotel's wifi therefore no network at the Jamf Connect Login was available.

 

We are using Jamf Connect Login to authenticate with Azure AD. I've set DenyLocal to true and LocalFalback to true and am wondering with the settings in the plist this way if there is no network will the user be able to log in? The user in question still had an old config loaded that was DenyLocal to false so he still had a local login button and was able to login to connect to the hotel wifi. In the end I don't want DenyLocal = false because when entering the local password to decrypt the drive after a reboot the user skips the Jamf Connect Login and logs straight in.

2 REPLIES 2

bwoods
Valued Contributor

If Deny Local is set to true and Local Fallback is set to true, then the user is able to log in if no network connection exists. In my opinion, this is a good workflow because the user is able to access the machine without an internet connection or if your Idp is on the fritz for some reason. Turning off wifi in the top right hand corner can also accomplish this.

The reason that your Jamf Connect login is being skipped is because the DisableFDEAutoLogin key needs to be set to true. Simply add this key to your Jamf Connect Login configuration profile to stop the this behavior. Read more below: 

bwoods_0-1640787117660.png

 

 

 

bwoods
Valued Contributor

bwoods_1-1640787291599.png