Looking for same help with Okta SSO into Jamf Admin. We have it working for Admin accounts that already existed in Jamf and for directory users, but I want to transition to the correct way of controlling access to Jamf Admin using User Groups. I've tried both Standard Group and Directory Service Group, matching the name to the group name in Okta. I've captured the SAML assertion and it is listing the group name, I've done group membership lookup in ldap test and it sees the user in the group, but when a user in the "Jamf Admins" Okta group who doesn't already have a Jamf Pro admin account attempts to log in via Okta they get an "Access Denied" error. Any ideas?
