Admins have various solutions they can use to manage Mac machines (and Windows ® and Linux ®, if needed). Although users can access productivity suites via their cell phones, they are more likely to use their laptops for most tasks, including editing and file sharing, so it’s crucial that their laptops and productivity logins are synchronized. Users’ machines serve as the gateway through which they access most other resources, so the machines and the credentials used to access them should be centrally managed and monitored. However, IT security best practice research indicates users should have one digital identity to access the tools they need to get their jobs done.
They might leave Mac machines unmanaged or maintain separate directories for resources outside Azure AD. In environments with Microsoft 365, and thereby Azure Active Directory ®, admins don’t automatically have the tools they need to synchronize Microsoft identities with and manage Mac machines. Here, we examine solutions IT admins can deploy to ensure credentials are synchronized across their environments. In heterogeneous environments, this approach includes the ability for a user to log into their Mac ® system with the same password they use to access their Microsoft 365™ resources. You can consider adding multi-factor authentication to this identity where possible to make it even more secure. This approach is more simple for them - they only have to remember one secure password - and more secure from IT’s perspective because administrators can centrally manage and revoke access across their environment. Ideally, users can enter the same credentials to access all their IT resources, including their workstations and email accounts.
0 kommentar(er)
