Introducing Auto Apps, SCEP Profile, and More

The Kandji team is excited to announce Auto Apps, a library of applications that Kandji pre-packages, hosts, and automatically patches. We also released several other updates to provide IT teams with the most modern Apple device management experience, such as new Profiles (SCEP, AirPlay Security, Login Window), Parameters (Set Computer Name), Global Profile Variables, and more. In case you missed it, we also released tvOS support and new assignment workflows last month. Auto Apps Auto Apps are designed to streamline …

Keep Reading

Guide for Apple IT: Device Enrollment (UAMDM, TCC, and Device Supervision)

For any business that runs on Apple, choosing the right device enrollment method is essential to speed up onboarding and provide the right balance between privacy (for corporate and personal data) and management capabilities. In this guide, we’re going to take a look at three device enrollment methods that Apple offers, breaking down their strengths, weaknesses, and ideal use cases. We’ll also discuss how they relate to important privacy and policy topics like user approved MDM (UAMDM) status, “Transparency, Consent, …

Keep Reading

Guide for Apple IT: Threat Detection and Apple’s New EndpointSecurity Framework

In macOS 10.15 Catalina, Apple released new frameworks that have big implications for the future of macOS threat detection and the development of security solutions: the EndpointSecurity framework and the SystemExtension framework. Beyond expanding the safety and security of macOS, Apple is using these frameworks as userspace alternatives to KEXTs (Kernel Extensions). Moving forward, if a Kernel Extension feature has a System Extension equivalent, the Kernel Extension feature is considered deprecated and the developer should work to migrate those features …

Keep Reading

Product Update: tvOS Support, New Assignment Workflows

Today, the Kandji team is excited to release a few major updates that will streamline how Library Items are created and managed. We are also announcing general availability of Apple TV support for all customers, along with new tvOS-specific profiles. tvOS Generally Available We’re incredibly proud to announce that, as of today, Kandji admins can manage every single Apple device in their fleet. We’ve added Apple TV support, adding to the existing roster of devices (Mac, iPhone, and iPad) you …

Keep Reading

Guide for Apple IT: Identity & SSO

Apple has introduced two big changes with macOS Catalina: Extensible Enterprise SSO (single sign-on) and Enrollment Customization. We’ll break these down throughout this guide, but for now, just know that optimizing them can create a seamless onboarding and login experience for your employees, letting them access all of their applications with one set of login credentials – all while taking a load off of IT’s back. As you can imagine, these changes have some big implications for Mac identity management, …

Keep Reading

Guide for Apple IT: Introduction to Mac Scripting

In this beginner-friendly guide, we’re going to walk you through the building blocks of Mac scripting, and then we’ll see how using scripts with your mobile device management (MDM) solution can help IT more effectively manage company owned devices. Here’s a quick overview of some of the topics we’ll cover: What are Scripts? Using Scripts with an MDM Solution Terminal Commands vs. Shell Scripts What are Shells: Bash vs. Zsh? Basics of Scripting with Bash What are Scripts? Scripts are …

Keep Reading

Introducing 120+ New Apple Device Restrictions

Today, Kandji admins have 120 new one-click configurations at their fingertips. This new set of Apple device configurations is based on Apple’s Restrictions profile, which restricts the ability for users to take certain actions on devices such as accessing a specific app, service, or function. Although the range of restrictions available is vast (for example, IT could do anything from deferring an OS software update to disallowing the use of Siri), the goal is to standardize device settings across your …

Keep Reading