Jamf spotlighted in Okta Businesses at Work 2026 Report

We are proud that Jamf is recognized in Okta's Businesses at Work 2026 report, ranking 14th on the most popular apps list overall and earning recognition as the fastest-growing app in the retail sector by unique users, with 43% year-over-year growth. We see both of those data points as a reflection of something much bigger than a ranking: the recognition that Apple device management and security is now foundational infrastructure for the modern enterprise.

This year's report arrives at a pivotal moment for enterprise IT. Based on Okta platform data and a survey of more than 200 executives, it opens with a direct challenge to technology leaders: agentic AI readiness is identity readiness. Organizations are racing to deploy AI agents while the governance and identity infrastructure needed to secure them has not kept up — and the gap is widening.

The identity gap is real — and growing

The 2026 report's headline finding is striking. While 91% of organizations report they are already using AI agents, only 10% report having a well-developed strategy in place to manage them. As Okta puts it, this gap between adoption and strategy is particularly concerning given how quickly these agents operate and how much access they require.

AI agents are not passive tools. They access applications and data by relying on:

• Service accounts
• API keys
• Nonhuman identities (NHIs)

As these machine identities multiply, they expand the attack surface. Okta's research found that 58% of executives cite AI governance and oversight as their top security concern related to AI agents, yet fewer than a third secure those agents with the same rigor they apply to human employees.

The market is starting to respond. Okta reports 650% year-over-year growth in the number of service accounts being centrally managed. This is a meaningful signal that organizations are beginning to treat NHIs with the same seriousness as human identities. But the work is far from done.

Okta's answer to this challenge is Okta for AI Agents, now generally available, designed to help organizations establish three critical controls:

1. Knowing where their agents are
2. What systems they can connect to
3. What actions they are permitted to take

Where device trust fits into the AI security picture

The conversation about securing AI agents is, at its core, a conversation about identity. And identity without device trust is incomplete.

Jamf and Okta have long operated on this shared principle. Okta manages who gets access. Jamf manages the device that access happens on. Together, they provide organizations with continuous, real-time verification that both the identity and the device behind an access request should be trusted.

That foundation is just as relevant as organizations extend access to AI agents. Whether the entity requesting access is a person on a Mac or an automated agent executing a workflow, the access decision relies on trustworthy signals. Jamf provides those signals, continuously, through its integration with Okta's Shared Signals Framework (CAEP/SSF), such as:

• Device health
• Compliance status
• Management events

These signals flow from Jamf into Okta Identity Threat Protection in real time, allowing Okta to adjust access dynamically as conditions change.

How Jamf and Okta work together to deliver that trust

Passwordless authentication for Mac, iPhone and iPad

Platform Single Sign-On (PSSO), delivered via Okta Device Access, allows users to sign in once and access all Okta-protected apps using Apple's native authentication experience. On Mac devices, this includes biometric Touch ID support via Okta FastPass, eliminating passwords and out-of-band authentication entirely. For iPhone and iPad devices, Enrollment SSO reduces repeated authentication during MDM enrollment by leveraging Okta Verify. The result is a native, uninterrupted experience for end users and verifiable proof for security teams that every device is managed and compliant before access is granted.

Continuous Zero Trust enforcement through real-time device signals

Through the Shared Signals Framework (CAEP/SSF), Jamf continuously sends real-time device risk and management status events to Okta. Those signals feed directly into Okta Identity Threat Protection, enabling Okta to evaluate and adjust session access in real time based on the health and management status of the device. Access decisions are not made once at login and then forgotten – they are continuously re-evaluated as device conditions change.

macOS account provisioning and identity binding

Jamf Connect and Okta work together to create local Mac accounts authenticated with Okta credentials, keeping passwords synchronized and giving IT complete control over access without requiring a dependency on on-premises Active Directory. This is particularly powerful for organizations scaling Apple deployments in cloud-first environments.

A recognition that reflects our customers

Jamf's presence in the Okta Businesses at Work 2026 report reflects the work of the IT and security teams who have chosen to build their Apple environments on a foundation of best-in-class management and identity. Being featured alongside the most widely deployed enterprise platforms in the world is a recognition we share with them.

As organizations navigate the opportunities and challenges of agentic AI, we are committed to making sure the Apple devices in their environments remain a trusted, well governed part of the stack. That commitment – and our partnership with Okta – is built for what's next.