The company had implemented Jamf Software Server as its primary Mobile Device Management (MDM) solution on premises. But the administrator hadn’t enrolled all of the Mac devices in the tool. Some roamed freely, presenting security risks.
Additionally, a good portion of the support tickets employees submitted centered on password issues between Active Directory and macOS. If Active Directory required user password changes every 90 days, for example, the security structure of the Mac systems prohibited their ability to process those requests, resulting in out-of-sync passwords and employee downtime.
Assessing needs
The company needed to fix these issues to improve employee productivity and simplify device procurement and management. It reached out to Insight for help.
Our Connected Workforce team assessed the client’s IT environment and presented a list of recommendations to the company, including:
- Migrating to the cloud
- Automating device enrollment
- Standardizing procurement
Optimized device procurement and deployment
Aware of Insight’s knowledge and experience in managing Mac devices and expertise in shifting from on-premises solutions to the cloud, the client agreed with the proposal. We implemented Insight Managed Mobility, a comprehensive end-to-end solution, to secure and enable the enterprise’s workforce devices. It involved device acquisition through our procurement platform, device provisioning and MDM.
Enrolling the 1,500 Mac devices in Apple Business Manager and the Apple Volume Purchase Program streamlined device configuration and improved security. It also eliminated multiple touchpoints. The client gained confidence each device is configured in a standard way.
Moving the company from on-premises Jamf Software Server to the cloud-based Jamf Pro platform alleviated the problem of on-premises maintenance tasks, such as database backups and server updates. This freed the single administrator to focus on core management of macOS in the enterprise.
Jamf Pro simplified management of Active Directory password changes on Mac devices, as well as access to file shares and file services on premises. The solution mitigated the authentication issue and allowed the client to leverage identity management services.
The enterprise had already invested in Okta Adaptive Multi-Factor Authentication for identity management. Jamf Pro enabled the company to integrate with Okta instead of using on-premises Active Directory for identity management.