I have a On-Prem directory that I have leveraged to build AWS Workspaces by using the AD Connector. I am planning to deploy a OKTA AD Agent into this on-Prem AD. But i am not clear how I can use OKTA IDP/SSO features when users use the Workspace client app on their BYOD desktops/Laptops. Anyone tried this config ?
There's no way to initiate the client app from the Okta portal. I believe that browser-based WorkSpace access is on the public AWS roadmap, and that would probably work, but no SSO for the thick client at the moment.