Posted on 07-12-2023 01:27 AM
Hi,
We have integrated Jamf Pro and Microsoft Intune to define Conditional Access Policies for MacOS devices in our company. In this way, we can see the devices on Azure AD. In order to enroll devices on Intune, we also installed the Company Portal application as specified on the Jamf Pro site. After the installation, the user authenticates and registers. So far everything is running normally. However, after a while, authentication is requested again on MacOS devices at random times. What is the reason for this and is there a way to prevent it? I have shared the screenshots below. Thank you very much for your help in advance.
This verification request is very annoying and bad experience for users and us technical teams.
08-08-2023 06:43 AM - edited 08-08-2023 06:48 AM
The mostly likely cause is upon the enrolment into condition access, at the stage where the user needs to grant keychain access for the WPJ Key token they hit the return key which auto-selects the dialog default of "Allow" rather that clicking the "Always Allow" button (as per the instructions).
This works fine until there's a password change and then it will keep asking for the password again as keychain access was only originally granted access for the life of that password.
You can restrospectly fix by the user opening the keychain item for their WPJ Key and manually changing the trust to Always Allow
Posted on 08-09-2023 06:35 AM
Hi,
I paid particular attention to the issue you mentioned. However, some users still reported that these warnings appear occasionally. I already took these screenshots from the moments. I also asked Microsoft company. However, I did not get a satisfactory answer. We proceeded by choosing the Always Allow option.
Have you installed Company Portal on the devices by integrating between Intune and Jamf in your own environment? Have you ever encountered the problem I mentioned?
Posted on 08-09-2023 06:36 AM
Hi,
I want to ask while I think of it. Is your default web browser Safari? I see this in the screenshot. The default web browser for some users is Chrome. Could this be the cause of the problem?
Posted on 08-23-2023 04:11 AM
Hi,
I solved this problem.
Posted on 11-17-2023 01:11 PM
Hello, I have the same issue. How did you solve the problem in the end ?
Thanks
Posted on 11-20-2024 09:11 PM
We solved the problem by removing the script triggers, selecting execution frequency as ongoing, this way it shows permanently in the Self Serve App until we are ready to click the link for Entra registration. No annoying continual popups for anything.