JonH.62350 (Customer) asked a question.
Azure AD Federation to Apple Business Manager when already using WS-Federation from Okta
We are using WS-Federation from our Okta instance to O365. We're also using Apple Business Manager in conjunction with MDM software to manage Apple devices. I know that you can set up ABM to allow federation from Azure AD, but I'm not sure how that would work (if at all) given we have Okta out in front of 365. Is this possible? I am concerned about breaking something but it doesn't look like ABM has an native SSO capabilities to use Okta as an IDP Thanks!
Hi @JonH.62350 (Customer) , Thank you for reaching out to the Okta Community!
I've looked into this and unfortunately we don't have any out-of-the-box implementation for this besides the SWA integration with ABM: https://www.okta.com/integrations/apple-business-manager/
In theory it should work as the authentication should be passed from ABM to Azure AD which in turn is federated with Okta, but my concern would be that ABM needs to support some form of modern auth to be able to translate the Okta authentication request (which typically requires MFA) into the user interface. In short, I don't think it can offer more that a simple "username + password field" interface, which would not satisfy the Okta requirements.
I've not been able to track down any precedence for this type of implementation either. Perhaps someone else in the Community can offer insight?
In the meantime, you can suggest this on the Okta Community page by going to the Community→ Ideas tab. Features suggested in our community are reviewed and can be voted and commented on by other members. High popularity will increase the likelihood of it being picked up by the Product Team and it being implemented.
More details here:
https://support.okta.com/help/s/blog/a674z000001cj7YAAQ/okta-ideas-faq?language=en_US
If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you.
Hope it helps!