Jamf opened its annual JNUC occasion for Apple admins right now with a slew of bulletins centered on system administration and safety, a brand new Jamf Trust app, additional data on its just lately introduced ZecOps deal and different updates prone to be of curiosity to Apple IT professionals.The firm additionally dedicated to supporting Microsoft Device Compliance on Macs later this yr, with help for Google’s context-aware zero belief framework (BeyondCorp) on iOS gadgets in early 2023.What drives the Jamf method?In advance of JNUC, I spoke with Jamf CEO Dean Hager, who defined the philosophy behind what the corporate is asserting. Ultimately, it’s a continuation of Jamf’s core mission, which is to carry advanced enterprise tech integration into the 21st century by guaranteeing not solely that it helps Apple’s tech, however that its implementation is married to the sort of shopper simplicity you count on on Cupertino’s platforms.“We’ll kick off the event by asking two simple questions: ‘Do your users love their work technology?’” he said. “‘Does your organization trust all the access that is coming in from that technology?’ And it’s our view that you should see a resounding ‘yes’ to both. We believe that through the melding or the combining of management, software and security software, we feel like that combination is what makes that love and trust possible.”Jamf additionally confirmed that it now manages 29 million Apple gadgets worldwide with 69,000 clients — that’s up 15% since earlier this yr. Complex simplicity makes a distinction.Here’s what Jamf unveiled at first of JNUC 2022 What is Jamf Trust?The Jamf Trust app binds person id to a tool in order that Jamf’s safety providers are dynamically configured based on person id and position. This casts a protecting cloak throughout the enterprise, inserting protections round software entry and making highly effective enterprise-class safety shopper easy.What this implies in impact is that Jamf can now guarantee macOS and iOS gadgets are configured accurately and secured in opposition to cyber-attacks from first boot. Jamf

Jamf Trust in motion. The system can mechanically react to an incoming menace, warn the person, clarify the issue and alert the safety monitoring system.

What’s new in Jamf Protect?Next month, Jamf Protect will achieve wealthy endpoint telemetry information assortment together with a brand new offline deployment mode that streams telemetry information on to a SIEM (Security Information and Event Management) system for patrons with high-compliance necessities.To help this new characteristic, the corporate has already scanned over 430 million distinctive domains. “By measuring a multitude of dimensions of these sites, including top-level domains, subdomain entropy, domain compositions and brand impersonation, Jamf has been able to identify and block more than 122,000 zero-day phishing attacks just in the last year,” the corporate stated.Powerful distant entryComing in early 2023, Jamf plans a brand new Remote Access characteristic that can empower IT admins to authenticate and take distant management of any Mac of their fleet — each bodily and digital — straight from inside Jamf Pro.Making app deployment easy (and safe)Jamf already ensures its methods are prepared to put in when Apple’s personal working methods ship. Last yr, it started work to make third-party apps simpler to handle and replace with App Installers within the firm’s App Catalog. The firm now displays greater than 1,000 titles which are incessantly utilized by its clients with greater than 100 obtainable App Installers. IT can use the latter to put in totally patched and up to date variations of the apps they want.Since it could possibly occur on the MDM finish, endpoints are protected in opposition to unintended set up of unapproved or unverified apps. The firm is getting ready to introduce enhancements in its App Installer person notifications system, together with simplifying App set up inside Self Service, to make sure solely apps related to the person and approved by IT are displayed of their custom-made app catalog.Maximum safety? Zero belief?The firm additionally improved its patented Smart Group expertise by synthesizing a number of layers of knowledge, together with person, system, and new-risk information into safety workflows that allow organizations to establish threats and act on menace information mechanically. Among different issues, this exploits Jamf’s potential to dam entry to a tool or to particular system capabilities if a compliance drawback is detected.The firm additionally hinted at extra work with cloud id suppliers resembling Okta. It can now implement use of Private Access to make sure solely protected gadgets with encrypted information can run enterprise apps, whereas mechanically blocking compromised customers and gadgets. As famous, the corporate can also be seeking to ease ache factors in authorization. Microsoft Device Compliance will likely be obtainable to Jamf-protected Macs later this yr, whereas Google’s context-aware zero belief framework (BeyondCorp) will likely be obtainable to iOS gadgets in early 2023. These protections are already obtainable on iOS and Mac, respectively.Jamf says the mix of all these new zero-trust capabilities will ship a number of layers of organizational safety by way of system well being scores and Smart Groups to dam non-compliant utilization at system, community, and cloud layers. Hager defined the strategy maximizes the potential of zero belief. “We would rather talk about trusted access,” he stated. “That’s where the Microsoft and the Google integration comes in.“Because, let’s face it, if Jamf senses that something is wrong with a device or person, we can block that device immediately. We can shut off that device at the network level. With our private access, or Microsoft and Google through their integration with us, they can shut off access so we actually have the ability to block access at the device level, at the network level, and at the cloud level. And honestly, I don’t know of anybody else in the industry that can do that. And as a result, an organization can trust every point of access that’s coming in.”Hager additionally identified how Jamf Protect can create viable obstacles between private and enterprise use of a tool, defending privateness whereas defending the system – and the enterprise. It’s all about sustaining Apple’s “relentless focus on the person” within the enterprise, Hager stated on stage at JNUC.Making plastic entry badges historyThose plastic entry playing cards/badges everybody loses ought to be consigned to the landfill of historical past. Starting subsequent yr, Jamf will combine SwiftConnect’s cloud platform in order that organizations can present staff with digital worker badges accessed by way of Apple Wallet on the iPhone and Apple Watch and authenticated by way of the worker’s cloud id. It principally means your watch or iPhone will likely be your workplace key.Reassuringly, this integration between Jamf Trust and SwiftConnect’s cloud platform can even combine with cloud id, credential administration, and entry management trade leaders together with Microsoft, Okta, Google, HID, Lenel, Genetec, and others.Jamf embraces Declarative Device ManagementApple will help Declarative Device Management in Macs beginning subsequent yr.Coming subsequent month, Jamf will help this performance. It means gadgets will proactively report their standing in real-time, which suggests IT can automate or make higher selections round system safety. In associated information, Jamf and AWS final week introduced their new partnership to mechanically enroll digital EC2 Macs into Jamf Pro when they’re provisioned by way of the AWS portal.There is extra coming from the occasion, so keep tuned as I dig deep into the bulletins from the present.Please observe me on Twitter, or be part of me within the AppleHolic’s bar & grill and Apple Discussions teams on MeWe.

Copyright © 2022 IDG Communications, Inc.