(Originally posted 6 days ago)
Hello all,
Creating a topic here to possibly get some help on an issue we’ve been running into using Duo MFA and macOS.
We are deploying Duo through Jamf and we have no issues using the automated enrollment for Mac users that are in office. Our issue is with the Mac users that work remote. As i understand it by default macOS will not allow you to select or change wifi networks from the login screen. This causes conflicts with Duo to where a user is unable to login to the Mac because it is not connected to the internet and it will block a user from logging in, We have it set to enroll them into offline access as well, but this will not prompt them to do so until after they complete the 1st initial authentication while online.
All of our Macs are on the latest software at the time of writing, 12.5.1 and we are using MacLogon-2.0.0.pkg being installed through a policy in Jamf Pro.
If we install Duo on a Macbook then ship it to a remote user, it is essentially a paper weight that they can’t login to or connect to the internet with.
Has anyone else ran into this issue or found an alternative way of deploying Duo to Macs ?
Any and all help would be greatly appreciated.
Thank you