Hello all. I've spent around 20 minutes searching, but couldn't find anything conclusive, so...

My task is to be able to configure an MDM payload for iOS 13 / Mac os 10.15 and above, so that when I send down the Okta Extension app, as per: https://apps.apple.com/gb/app/okta-extension-app/id1439967473?mt=12 It's already configured for user, using the Single Sign On Extension payload

The info I need, is:

Extension Identifier - The bundle identifier of the extension binary.  This should be provided by your Single Sign On vendor

Sign-on Type - The type of Single Sign-on being provided. "Credential" types are based on locally handled username and password, "Redirect" types perform oauth via identity provider URL.

Realm - The realm name for "Credential" payload types.  This value is case-sensitive and is ignored for "Redirect" sign-on types.  

Team Identifier - Team identifier for the app extension. 

Domains - "Hosts key" in Apple’s documentation.  Should be host names or domain names of sites or apps which can access this identity endpoint. "Credential" payloads only, ignored for "Redirect" types.  

URLs - URL prefixes of identity providers where the extension will be redirecting for SSO.  Required for "Redirect" types, ignored for "Credential" types. 

Custom Extension Data - Custom extension data required for the SSO extension to function.  This information will be provided by your SSO/Extension vendor. 

Sign on type I'm guessing should be Redirect

Extension Identifier appears to be okta.ExtensionLauncher.Extension

Team Identifier, and Any Custom Extension Data I appear not to have

 Domains, are ignored for redirect

URLs ignored for redirect again

Any ideas you can throw my way, I'd be appreciative

Kind regards,

Paul