Announcement

Collapse
No announcement yet.

MacOS authentication against AzureAD

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • MacOS authentication against AzureAD

    I am consolidating identity management into Microsoft's AzureAD. This works great for Windows 10 systems and SaaS applications that support SSO. If I had no Mac users, this would be simple.

    Is there a way to allow MacOS users to authenticate on their laptops using AzureAD as the identity provider?

    -AC

    ----
    Twitter: @AccidentalCISO
    Blog: https://www.accidentalciso.net/

  • #2
    I'm currently in a mac shop where we're looking to do the same, and have no on-prem infrastructure. Currently the answer we're working with is 'we think it's doable', and I'll keep you updated.

    Comment


    • #3
      I'm planning to use InTune for management, since it will be included in our M3 licenses. I look forward to hearing what you decide to do. From what I can tell, authentication integration will require some sort of 3rd party tool. I'll let you know what I come up with as well.
      -AC

      ----
      Twitter: @AccidentalCISO
      Blog: https://www.accidentalciso.net/

      Comment


      • #4
        I haven’t touched this topic in over a year, so any memories related have been put into cold storage. Also we weren’t using AzuredAd and had on prem. Looks like you’re on the right path.

        https://www.microsoft.com/en-us/micr...tional-access/

        I’d be curious if this would give you the ability to manage software deployment in lieu of something like Jamf or if you can only limit to MS application management. If I recall, InTune was pretty thorough at listing applications on a device; pretty invasive in my opinion when used in conjunction with BYOD programs.
        -
        Sandpaper

        Comment


        • #5
          Conditional access is nice, but I'm just worried about having consistent source of authentication for both PC and Mac users when logging into their laptops.
          -AC

          ----
          Twitter: @AccidentalCISO
          Blog: https://www.accidentalciso.net/

          Comment

          Working...
          X