Addigy, a provider of cloud-based Apple device management software, has highlighted a seven-point checklist for ensuring macOS/iOS enterprise readiness in the enterprise.
Over the last several years, macOS/iOS devices have been growing in popularity because of the improvements in productivity, reduced help desk requirements, lower management costs, and better overall user experience, according to Addigy CEO Jason Dettbarn. However, deploying macOS/iOS systems in the enterprise requires the administrator to take several steps to ensure these devices are ready for the most secure and regulated computing environments, he adds.
“Readying macOS/iOS systems with the necessary authentication, encryption, management controls and reporting are necessary to ensuring a secure and compliant deployment,” Dettbarn says. “Therefore, providing the same level of protections afforded to PCs is an important consideration when integrating these devices into the business landscape.”
To prepare macOS/iOS devices for use in the enterprise, Addigy says to follow these steps when configuring these systems for enterprise use:
DEP/Apple Business Manager Registration: In order to ensure that all future Apple device purchases are linked, register for a DEP/Apple Business Manager account as soon as possible since macOS systems cannot be retroactively added.
Mobile Device Management (MDM) Profile Approval: Make sure that MDM profiles from your MDM provider are approved by the user or via DEP enrollment. This is a critical step with the release of macOS Mojave and is required for Apple’s Remote Lock and Remote Wipe functionality.
Firmware Password Configuration: For newer Mac models that support use of the utility, enter a firmware password in the fields provided, then click Set Password to prevent unauthorized usage. Store this password in a secure location.
Device Encryption: Instead of the usual macOS login window after your Mac is booted, the login window is the first thing you will see. Your device requires the user’s password before it can boot. Make sure that all macOS devices are encrypted using FileVault 2 to prevent possible data theft or loss.
Enable GateKeeper: Make sure macOS devices have GateKeeper enabled to prevent users from installing suspicious applications.
Secure Apple ScreenSaver and Sleep: Set the device to require a password using an MDM solution so that when it wakes from sleep, the user will enter their login name and password to continue working. This will prevent unauthorized access to unattended devices. Use the administrator name and password to unlock the screen if the user is not available.
Reporting and Compliance: Utilize an Apple device management platform to gain full network visibility and centralize security software management by deploying and enforcing third-party security applications. Quickly patch devices for vulnerabilities as soon as a new system update is available. Make data-driven decisions by leveraging automated and customizable reports and respond to audits faster and more accurately.
Addigy’s full-stack cloud-based Apple Device Management platform allows for centralized management of distributed macOS/iOS computing environments. A free trial of the Addigy Apple Device Management Platform is available at https://www.addigy.com/#signup-form.