AbhishekC.96202 (Customer) asked a question.
We have a test tenant https://<>-preview.oktapreview.com/
and a prod tenant https://<>-prod.okta.com/
We are using test tenant for all our testing. However we dont have *test SCCM* * test Intune* *test JAMF* setup at our enterprise.
We are going with Okta device access and deploying SCEP URLs and certs for device attestation.
However since we dont have test SCCM with Cloud managment gateway which they use for multiple things like - updating policies, content download and policy management etc.
How do we test the below scenarios:-
1. Hybrid ad joined devices - These are standard AD joined devices of about 5K+ which were provisioned to users. Here is the note from MS and I think has to be ensured so that users can access M365 and any other cloud apps without any issue
Understanding Primary Refresh Token (PRT) in Microsoft Entra ID - Microsoft Entra ID | Microsoft Learn
2. Cloud management gateway (CMG) - SCCM CMG authentication - which caters to internet endpoints (content download and policy management).
Configure CMG client authentication - Configuration Manager | Microsoft Learn
Our current setup for internet client is to use Entra ID authentication
which uses Device identity but it can also use user authentication in scenarios where we push User policy or, apps to users. more about CMG app in Entra id -
Hello @AbhishekC.96202 (Customer) Thank you for posting on our Community page!
The Okta Community Questions forum isn't really meant for in-depth troubleshooting.
If you already have a Support ticket open, then I recommend continuing the discussion with the assigned Technical Support Engineers. They'll be able to access additional tools and resources to help you get to the bottom of it.
Thank you for reaching out to our Community and have a great day!
--
Help others in the community by liking or hitting Select as Best if this response helped you.
Just released: More Okta Community badges just added.