How are you identifying Apple Mac devices/making sure they are part of your organization before letting them connect through Global Protect? We have an MDM - that joins our MACs, but the User ID-MDM integration is proving to be a bit more difficult than I had plannned. Are most of you using a certificate that is exported to a machine, and or verifying plists on the device?
Is there a better more common way to verify Apple MACs are part of your organization?
Solved! Go to Solution.
Certificate based authentication is always my go to, regardless of primary operating system. If you tie this together with HIP checks I find that it meets the security requirements for the vast majority of organizations.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!