Category Filter

How to enroll a device in Hexnode with Okta authentication?

Utilizing multiple platforms to manage organizational assets can often lead to confusion and inconsistencies. If your business is using Okta identity management service in addition to Hexnode, you can integrate your Okta account with Hexnode. The integration will help you sync your Okta directory users and user groups to Hexnode in real-time and lets users enroll their devices via Okta authentication. Nevertheless, any modifications or additions to the synced data in Okta will automatically reciprocate in Hexnode via the integration.

This integration simplifies the device enrollment for IT admins as they only have to provide the enrollment server address to the end-users. To configure Okta enrollment, you should first configure the Okta domain in Hexnode.

Okta integration with Hexnode MDM

Enroll Android devices with Okta authentication

To enroll with Okta credentials,

In Hexnode MDM Portal

  1. Navigate to Enroll > Platform-Specific > Android > QR Code, Email or SMS.
  2. Switch to ‘Authenticated Enrollment’.
  3. Select Okta User corresponding to Enrollment Request or Self Enrollment based on how you want to enroll your device.
  4. Choose the Ownership type and click Next.
  5. Specify the Domain and select the User to send enrollment requests via SMS, Email, or both.
Notes:

  • During Samsung Knox Device Owner enrollment with Okta authentication, if you have enabled the option Disable system applications in the Samsung Knox portal while configuring the Device Owner profile, the device enrollment will be disrupted with an error message “No browsers detected! Install one to complete authentication to enroll in Hexnode”.
  • It will show the same error message if you are enrolling a device in Android Enterprise as device owner and have disabled Show system applications in Enroll > Platform-Specific > Android > Android Enterprise.

    On the device

    1. Download the Hexnode MDM app on your device.
    2. Open the app and enter the server address or scan the QR code. The server address will be of the form “portalname.hexnodemdm.com”.
    3. Click on Sign in with Okta.
    4. Enter the username and password for your Okta user account and proceed.
    5. If the Ownership type is selected as Let the user choose (or Allow user to choose) you will be asked to select the ownership of the device. You can choose between Personal and Corporate.
    6. Follow the on-screen instructions to complete the enrollment procedure.

    Enroll iOS devices with Okta authentication

    In Hexnode MDM Portal

    1. Head on to Enroll > Platform-Specific > iOS > Email or SMS.
    2. Click on ‘Authenticated Enrollment’.
    3. Next, click on Okta User under Enrollment Request or Self Enrollment based on how you want to enroll your device.
    4. Select the Ownership type and click on Next.
    5. Next, select the mode of sending requests as Email, SMS, or even both. Then, specify the Domain and select the User to whom enrollment request has to be sent.

    On the device

    1. Install the Hexnode MDM app on your device.
    2. Open the app and click on Agree & Continue.
    3. Provide the server address and click Next.
    4. Click on Sign in with Okta.
    5. Next, authenticate with the username and password for your Okta user account and proceed.
    6. If the Ownership type is selected as Let the user choose (or Allow user to choose) you will be asked to select the ownership of the device. You can choose between Personal and Corporate.
    7. Follow the on-screen instructions to enroll your devices in Hexnode.

    Enroll macOS devices with Okta authentication

    In Hexnode MDM Portal

    1. Go to Enroll > Platform-Specific > macOS > Email or SMS.
    2. Choose Authenticated Enrollment.
    3. Click on Okta User corresponding to Enrollment Request or Self Enrollment.
    4. Choose the device Ownership type and click on Next.
    5. Select the Domain and the User to send enrollment requests via Email, SMS or even both.

    On the device

    1. Open the Safari browser.
    2. Enter the enrollment URL. It will be in the format “portal-name.hexnodemdm.com/enroll”.
    3. Click Enroll.
    4. Click on Authenticate with Okta and enter your Okta username and password.
    5. If the Ownership type is selected as Let the user choose (or Allow user to choose) you will be asked to select the ownership of the device. You can choose between Personal and Corporate.
    6. Click Submit. The MDM profile gets downloaded.
    7. To install the MDM profiles, click Continue and click Install.
    8. Enter the Mac administrator’s username and password.

    Enroll Windows devices with Okta authentication

    To enroll with Okta credentials,

    In Hexnode MDM Portal

    1. Navigate to Enroll > Platform-Specific > Windows PCs & Tablets.
    2. Click on Authenticated Enrollment.
    3. Select Okta User under Enrollment Request or Self Enrollment.
    4. Select the device Ownership type and click on Next.
    5. Specify the Domain and select the User to whom enrollment request has to be sent. Also, select the mode of sending requests.

    On the device

    1. Go to Settings > Accounts > Access work or school.
    2. Select Enroll only in device management.
    3. Enter your work email.
    4. Enter the enrollment URL, it will be in the format: “portal-name.hexnodemdm.com/enroll” and click Next.
    5. Enter the Okta Directory username and password and click Authenticate.
    6. If the Ownership type is selected as Let the user choose (or Allow user to choose) you will be asked to select the ownership of the device. You can choose between Personal and Corporate.
    7. Click Submit. The MDM profile gets downloaded.
    8. Click Got it. You have now successfully enrolled your laptop.
    Note:


    If your Okta username is associated with more than one Okta domain configured in Hexnode, users will be asked to select the Okta domain name from the drop-down list after entering the username during device enrollment.