SaFi Bank Space : Safi WIFI Access with OKTA and JAMF Integration

Created by User 7142e, last modified on Feb 09, 2023

Introduction:

The purpose of this documentation is to discuss the implementation of secure office wifi access using OKTA and JAMF integration. This technology solution replaces the traditional method of using certificates in wifi access, and highlights why it's a better approach.

Network Set Up and Infrastructure:

The network includes 2 ISPs (PLDT and Globe) that are connected to a Fortinet 61F for load balancing. The Fortinet 61F is then connected to a Cisco 3750X core switch, which hosts several networking devices. These include a Unifi cloudkey 2 gen plus, 6 Unifi wifi APs, and a Mikrotik cloudcore router.

Wifi Network Security:

The Unifi cloudkey 2 gen plus controls 6 wifi APs, which provide 2 different wifi networks: SFB-Ops and SFB-Open. SFB-Ops security is through WPA3 with MAC address filtering, while SFB-Open is open to the public with a limited bandwidth of 10mbps. The Mikrotik router with Mikrotik wifi APs provides a wifi ssid called SFB-BU, which is secured by WPA3.

OKTA and JAMF Integration:

The main security for the wifi networks is carried out through the integration of OKTA and JAMF. Laptops issued to users have JAMF profiles that allow automatic login on the SFB-Ops wifi network. If the login fails, the device will automatically connect to the SFB-BU network. OKTA integration with cloudflare zero trust provides secure access to office systems.

Advantages of OKTA and JAMF Integration over Certificates in Wifi Access:

OKTA and JAMF integration offers several advantages over traditional certificates in wifi access, such as:

  1. Automated and secure device authentication

  2. Centralized management of user access and device profiles

  3. Improved security for office systems and data

  4. Streamlined and simplified user experience

Conclusion:

In conclusion, the implementation of OKTA and JAMF integration for secure office wifi access offers many advantages over traditional certificates in wifi access. This technology solution provides automated and secure device authentication, centralized management of user access, improved security for office systems, and a streamlined user experience.

Attachments:

WIFI-NETWORK-SEC.png (image/png)
secnetwork.png (image/png)