Scoop has an Ethical Paywall
Work smarter with a Pro licence Learn More

Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 

Centrify tightens up admin security for Macs

News release: June 14, 2017

Centrify, the leader in securing hybrid enterprises through the power of identity services, has enhanced its Centrify Identity Platform to increase administrator security and ease of use for managing Mac computers.

Centrify’s enhancements deliver local administrator password management for Macs and comprehensive Mac application management and software distribution via turnkey integration with the Munki open source solution. These new capabilities enable Mac administrators to implement best practices for controlling privileged access on Macs while at the same time simplifying management of Mac endpoints.

Centrify Senior Director APAC Sales Niall King said these latest security capabilities extended shared account password management (SAPM) from servers, network devices, Windows and Linux endpoints to Mac. “At the same time, they simplify Mac application management with Munki support that enables users to install applications without knowing the admin password,” he said.

“The Centrify Identity Platform secures Mac endpoints as well as Windows and Linux with our market leading Identity-as-a-Service (IDaaS) and privileged identity management (PIM) solutions that help stop breaches across endpoints, infrastructure and apps.”

Control Shared Passwords
It is common for organisations to maintain administrative accounts on their users’ Macs and use the same admin password across all Macs. This introduces risk, because inevitably the password is shared with an end user who needs to install applications on their Mac, or is known by admins who leave the company.

Advertisement - scroll to continue reading

Are you getting our free newsletter?

Subscribe to Scoop’s 'The Catch Up' our free weekly newsletter sent to your inbox every Monday with stories from across our network.

These users and ex-employees now have full administrative privilege across every Mac, leaving an organisation highly susceptible to breaches that start on Mac endpoints. This challenge demands a solution that enables organisations to minimise and centrally control access to Mac administrative accounts, just as they do for Windows and Linux endpoints, servers and network devices.

The Centrify Identity Platform closes this gap in security with local administrator password management (LAPM) for Mac, which enables administrators to generate a unique administrator password for each Mac. With Centrify, organisations eliminate the sharing of a single Mac admin password across an entire organisation.

The solution can be enabled for all Macs enrolled in the cloud-based management service, ensuring support for remote machines as well as those on the corporate network. Authorised admins can check out the admin password, while rotation of the admin password is automated. Who accessed what and when is fully audited across Mac administrative access and all other endpoints and infrastructure and available through comprehensive reporting.

Eliminate admin access for daily use
End users cannot install software without local admin rights. However, local admin rights mean your end users — or anyone who compromises their accounts — are privileged users on their Mac. This increases your attack surface and makes endpoints an effective target for malware and rogue applications.

By seamlessly combining the Centrify Identity Platform with the open source Munki solution — the leading Mac app and patch management solution — your end users can install and manage applications without local admin rights.

Munki’s open-source toolset provides a rich Apple App Store like end user experience, where the specific apps an organisation approves are available for seamless installation. Centrify simplifies the Munki setup, management, security and ongoing support to make it easier for organisations to deploy and operate their own enterprise Mac app store. Additionally, Centrify’s cloud-based app repository extends Munki to remote Mac users regardless of their location or status on the corporate network.

Controlling access to shared administrative passwords for endpoints and eliminating the need for local admin rights to install software on Macs are established PIM best practices.

A recent Forrester study found a direct correlation between the number of PIM best practices an organisation has implemented and the number of security incidents it encounters. The Centrify Identity Platform now makes it easy for organisations to extend best practices to Mac in order to stop breaches that start on endpoints.

For more information, go to http://www.centrify.com/mac.

© Scoop Media

Advertisement - scroll to continue reading
 
 
 
Business Headlines | Sci-Tech Headlines

 
GenPro: General Practices Begin Issuing Clause 14 Notices

GenPro has been copied into a rising number of Clause 14 notices issued since the NZNO lodged its Primary Practice Pay Equity Claim against General Practice employers in December 2023.More

SPADA: Screen Industry Unites For Streaming Platform Regulation & Intellectual Property Protections

In an unprecedented international collaboration, representatives of screen producing organisations from around the world have released a joint statement.More

 
 
 
 
 
 
 
 
 
 
 
 

Join Our Free Newsletter

Subscribe to Scoop’s 'The Catch Up' our free weekly newsletter sent to your inbox every Monday with stories from across our network.