Posted on 03-16-2022 11:00 AM
We are getting flagged by Okta for devices exceeding the rate limit. over 60 per min coming from Jamf. We are having trouble tracking down where this is coming from or why its happening.
Does anyone else have this issue or know anything about it?
Posted on 08-17-2022 10:50 AM
If you leverage _and_ LDAP groups via the Okta connection, a lookup is done for every possible group membership one after the other on multiple different UI element clicks in browser. It is INSANELY inefficient and destroys your rate limit. You need to convert them all to standard groups with the name of the group that's passed along in by SAML. You lose the ability to use group based limitations in Self Service, but it's the only option.