DOCSLIB.ORG

Macos Device Management

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Macos Device Management macOS Device Management VMware Workspace ONE UEM macOS Device Management You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ VMware, Inc. 3401 Hillview Ave. Palo Alto, CA 94304 www.vmware.com © Copyright 2020 VMware, Inc. All rights reserved. Copyright and trademark information. VMware, Inc. 2 Contents 1 Introduction to Workspace ONE UEM powered by AirWatch for macOS 6 Workspace ONE UEM macOS Management Prerequisites 6 2 macOS Device Enrollment 8 Enrollment with macOS Intelligent Hub 10 macOS Workspace ONE Intelligent Hub Download 10 Enable the Workspace ONE Intelligent Hub for Web-based Enrollment on macOS Devices 11 Deploying VMware Workspace ONE Intelligent Hub 11 Stage macOS Devices for Single User Enrollment 12 Configure a Sideloading Enrollment Profile for macOS Devices 13 Configure Multi-User Staging for macOS Devices 14 Single Staging with Pre-Registration and Non-Domain Joined Local User 15 Create Single-Staging Flow with Pre-Registration 15 Single Staging with API 17 Apple Business Manager - DEP 17 Custom Bootstrap Packages for Device Enrollment 18 Deploy a Bootstrap Package 19 3 Software Distribution and Management for macOS Applications 21 4 macOS Device Profiles 22 Configure a Passcode Policy Profile 24 Configure a Network Access Profile 25 Configure a VPN Profile 27 Configure a VPN On Demand Profile 29 Configure an Email Profile 30 Configure an Exchange Web Services Profile 31 Configure an LDAP Profile 33 Configure a CalDAV or CardDAV Profile 34 Configure a Web Clips Profile 34 Configure a SCEP/Credentials Profile 35 Configure a Privacy Preferences Control Profile 37 Configure a Dock Profile 39 Configure a Restrictions Profile 40 Configure a Software Update Server Profile 43 Configure a Parental Controls Profile 45 Configure a Directory Profile 45 VMware, Inc. 3 macOS Device Management Configure a Security and Privacy Settings Profile 47 Configure a Full Disk Encryption Profile 48 Configure a Login Items Profile 52 Configure a Login Window Profile 52 Configure an Energy Saver Profile 53 Configure a Time Machine Profile 54 Configure a Finder Profile 55 Configure an Accessibility Profile 56 Configure a Printer Configuration Profile 57 Configure a Messages Profile 58 Configure a Proxy Profile 58 Configure a Smart Card Profile 60 Configure a Mobility Profile 61 Configure an Associated Domains Profile 62 Configure a Managed Domains Profile 63 Configure an SSO Extension Profile 63 Configure a System Extensions Profile 65 Configure a Web Content Filter Profile 66 Configure an AirPlay Whitelist Profile 67 Configure an AirPrint Profile 68 Retrieve AirPrint Printer Information 68 Configure an Xsan Storage Profile 69 Configure a Firewall Profile 70 Configure a Firmware Password Profile 70 Configure a Custom Attributes Profile 71 Configure a Custom Settings Profile 72 Configure a Kernel Extension Policy Profile 73 5 Full Disk Encryption with FileVault 74 Institutional and Personal Recovery for macOS Devices 74 Institutional Recovery for macOS Devices 75 Configure a FileVault Institutional Recovery Key for macOS Devices 75 Personal Recovery for macOS Devices 81 Enable Personal Recovery Encryption for a macOS Device 81 View Escrowed Personal Recovery Key on the UEM Console 81 View Escrowed Personal Recovery Key on the SSP 82 Recover an Encrypted Disk Using a Personal Recovery Key 83 Personal Recovery Key Rotation 85 6 Compliance Policies 88 VMware, Inc. 4 macOS Device Management 7 Apps for macOS Devices 89 Workspace ONE Intelligent Hub 89 Configure Settings for the macOS Workspace ONE Intelligent Hub 90 (Legacy) AirWatch Catalog and Workspace ONE Catalog 91 Content Locker Sync 91 8 Additional macOS Configurations 92 Build a Device Kiosk for a macOS Device 92 Additional macOS Profiles for Kiosk Mode 93 Mirror Screens with Apple AirPlay on macOS Devices 93 Custom Fonts for macOS Devices 94 Manage Fonts on macOS Devices 95 Product Provisioning for macOS Devices 95 Workspace ONE Assist 95 9 macOS Device Management 96 Device Dashboard 96 Device List View 97 Device Details Page for macOS Devices 98 Certificate Profile Resiliency 100 Admin Password Auto-Rotation 101 Device Actions 102 Request Device Logs 105 Configure and Deploy a Custom Command to a Managed Device 107 AppleCare GSX 107 Obtain an Apple Certificate to Integrate AppleCare GSX 108 Configure AppleCare GSX in the UEM Console 109 10 Shared Devices 110 Define the Shared Device Hierarchy 111 Log In and log out of Shared macOS Devices 112 VMware, Inc. 5 Introduction to Workspace ONE UEM powered by AirWatch for macOS 1 Workspace ONE UEM powered by AirWatch provides complete management solutions for macOS devices. Workspace ONE UEM's Mobile Device Management (MDM) solution enables enterprises to manage Corporate-Dedicated, Corporate-Shared or Employee Owned (BYOD) macOS devices throughout the entire device lifecycle. Workspace ONE UEM supports macOS versions 10.9 and higher, and all devices running those operating system versions. This guide shows administrators how to enroll devices or allow end users to enroll themselves, create profiles to manage compliance, configure the Workspace ONE Intelligent Hub, manage applications, manage devices through the Workspace ONE UEM console and on the Self-Service Portal (SSP), integrate with macOS tools such as File Vault 2, and enable Product Provisioning. This chapter includes the following topics: n Workspace ONE UEM macOS Management Prerequisites Workspace ONE UEM macOS Management Prerequisites To manage macOS devices, make sure you have the all the prequisites mentioned in this section. You must have the following materials ready: n Active Environment – This is your active Workspace ONE UEM environment and access to the UEM console. n Appropriate Admin Permissions – This type of permission allows you to create profiles, policies and manage devices within the UEM console. n Enrollment URL – This is the web address entered into Safari to begin the enrollment procedure. This location is specific to your company's enrollment environment. For example, this enrollment URL will follow the format of https://<companyspecificdeviceservicesurl>/ enroll. n Group ID – This is a unique identifier for the organization group where the device is enrolled that defines all configurations the device receives. VMware, Inc. 6 macOS Device Management n Credentials – This a username and password combination used to identify and authenticate the user account to which the device belongs. This can be AD/LDAP user credentials. n Apple ID for Apple Business Manager – An Apple ID is needed to purchase managed distribution or the user-based licenses when using the Volume Purchase Program with a macOS deployment and to enroll macOS device through Device Enrollment Program (DEP) Note Apple ID that is used for VPP or DEP should not be entered in the settings or preferences on the device. For example, do not use for iTunes or iCloud. n Apple Push Notification service (APNs) Certificate – This is a certificate issued to your organization to authorize use of Apple's cloud messaging services. Supported Devices Workspace ONE UEM currently supports devices running mac 10.9 and higher, including: n MacBook n iMac n MacBook Pro n Mac Mini n MacBook Air n Mac Pro n iMac Pro VMware, Inc. 7 macOS Device Enrollment 2 Each device in your organization's deployment must be enrolled in your organization's environment before it can communicate with Workspace ONE UEM and access internal content and features. macOS devices enroll using MDM functionality built into the native OS in conjunction with Workspace ONE UEM functionality. Enrollment Methods There are three ways to initiate enrollment for macOS devices: n Enroll a device using the Workspace ONE Intelligent Hub n Sideload devices with an MDM profile n Utilize Apple Business Manager's Device Enrollment Program End user Enrollment Using the Workspace ONE Intelligent Hub The Hub-based enrollment process secures a connection between macOS devices and your Workspace ONE UEM environment through the Workspace ONE Intelligent Hub app. The Workspace ONE Intelligent Hub application facilitates User-Approved Device Enrollment, and then allows for real-time management and access to device information. For more information, see: n Chapter 7 Apps for macOS Devices n Enrollment with macOS Intelligent Hub Admin Enrollment Using a Sideloaded Staging Profile Device Staging on the Workspace ONE UEM console allows a single admin to outfit devices for other users on their behalf, which can be particularly useful for IT admins provisioning a fleet of devices. Admins can sideload a staging profile for a single user devices and multi-user devices. VMware, Inc. 8 macOS Device Management Single-User Staging Single-user staging allows an admin to stage devices for a single user, such as a company-issued laptop. LDAP binding or pre-registration is required when staging devices for single users. For more information, see Stage macOS Devices for Single User Enrollment. Single Staging with Pre-Registration and Local User Workspace ONE UEM also supports a new single staging enrollment flow for a local user with pre-registration to help macOS admins who are moving towards a deployment model without domain join. For more information, see Single Staging with Pre-Registration and Non-Domain Joined Local User. Multi-User Staging Multi-user device staging allows an admin to provision devices intended to be used by more than one user, such as a customer service kiosk computer. Multi-user staging allows the device to dynamically change its assigned user as the different network users log into that device. For more information, see Configure Multi-User Staging for macOS Devices. Bulk Device Enrollment Depending on your deployment type and device ownership model, you may want to enroll devices in bulk. Workspace ONE UEM provides bulk enrollment capabilities for macOS devices using the Apple Business Manager and Automated Enrollment. Bulk Enrollment with Apple Business Manager Deploying a bulk enrollment through the Apple Business Manager's DEP allows you to install a non-removable MDM profile on a device, which prevents end users from being able to remove the profile from their devices.
Load more

Recommended publications
  • Shorten Device Boot Time for Automotive IVI and Navigation Systems
    Shorten Device Boot Time for Automotive IVI and Navigation Systems Jim Huang ( 黃敬群 ) <[email protected]> Dr. Shi-wu Lo <[email protected]> May 28, 2013 / Automotive Linux Summit (Spring) Rights to copy © Copyright 2013 0xlab http://0xlab.org/ [email protected] Attribution – ShareAlike 3.0 Corrections, suggestions, contributions and translations You are free are welcome! to copy, distribute, display, and perform the work to make derivative works Latest update: May 28, 2013 to make commercial use of the work Under the following conditions Attribution. You must give the original author credit. Share Alike. If you alter, transform, or build upon this work, you may distribute the resulting work only under a license identical to this one. For any reuse or distribution, you must make clear to others the license terms of this work. Any of these conditions can be waived if you get permission from the copyright holder. Your fair use and other rights are in no way affected by the above. License text: http://creativecommons.org/licenses/by-sa/3.0/legalcode Goal of This Presentation • Propose a practical approach of the mixture of ARM hibernation (suspend to disk) and Linux user-space checkpointing – to shorten device boot time • An intrusive technique for Android/Linux – minimal init script and root file system changes are required • Boot time is one of the key factors for Automotive IVI – mentioned by “Linux Powered Clusters” and “Silver Bullet of Virtualization (Pitfalls, Challenges and Concerns) Continued” at ALS 2013 – highlighted by “Boot Time Optimizations” at ALS 2012 About this presentation • joint development efforts of the following entities – 0xlab team - http://0xlab.org/ – OSLab, National Chung Cheng University of Taiwan, led by Dr.
    [Show full text]
  • Secure Browser Installation Guide –
    Commercial Online Banking: Corporate First Mid Bank & Trust Commercial Online Banking Secure Browser Installation Guide for Mac Commercial Online Banking: Corporate Commercial Online Banking Secure Browser Commercial Online Banking Secure Browser is a secure solution that helps to provide a hardened stance against fraud. From new client implementation to ongoing support, Secure Browser offers a smooth customer experience. • Secure Site Access with consistent user & device authentication • Not susceptiBle to malware attacks • Prevents misdirection of users to false sites • Reduce risk By avoiding sites with malware • Eliminate hard tokens or 3rd party security products • Data integrity Getting Started - Installation In order to access Commercial Online Banking, users must install the Secure Browser on your PC. First Mid’s Secure Browser is a java-based application that runs on a user’s computer and which provides a captive, safe environment for accessing Commercial Online Banking and other weB sites that are permitted to the company by First Mid Bank & Trust. Secure Browser is a fully self-contained browser that does not use any other internet browser previously installed on a user’s computer, thereby insulating it from any malware that might Be attached to those other browsers. Users are allowed access to only web sites and applications defined and configured by the bank. Secure Browser does not produce an address line, so it is impossible for users to navigate away from entitled sites. All users are required by First Mid Bank & Trust to use the Secure Browser to access Commercial Online Banking. Getting Started • Secure Browser Installation | 2 Commercial Online Banking: Corporate Before You Begin Ensure You Have: • Strong internet connection • Administrative User privileges for the computer Secure Browser is to Be installed.
    [Show full text]
  • Mac OS X Server Administrator's Guide
    034-9285.S4AdminPDF 6/27/02 2:07 PM Page 1 Mac OS X Server Administrator’s Guide K Apple Computer, Inc. © 2002 Apple Computer, Inc. All rights reserved. Under the copyright laws, this publication may not be copied, in whole or in part, without the written consent of Apple. The Apple logo is a trademark of Apple Computer, Inc., registered in the U.S. and other countries. Use of the “keyboard” Apple logo (Option-Shift-K) for commercial purposes without the prior written consent of Apple may constitute trademark infringement and unfair competition in violation of federal and state laws. Apple, the Apple logo, AppleScript, AppleShare, AppleTalk, ColorSync, FireWire, Keychain, Mac, Macintosh, Power Macintosh, QuickTime, Sherlock, and WebObjects are trademarks of Apple Computer, Inc., registered in the U.S. and other countries. AirPort, Extensions Manager, Finder, iMac, and Power Mac are trademarks of Apple Computer, Inc. Adobe and PostScript are trademarks of Adobe Systems Incorporated. Java and all Java-based trademarks and logos are trademarks or registered trademarks of Sun Microsystems, Inc. in the U.S. and other countries. Netscape Navigator is a trademark of Netscape Communications Corporation. RealAudio is a trademark of Progressive Networks, Inc. © 1995–2001 The Apache Group. All rights reserved. UNIX is a registered trademark in the United States and other countries, licensed exclusively through X/Open Company, Ltd. 062-9285/7-26-02 LL9285.Book Page 3 Tuesday, June 25, 2002 3:59 PM Contents Preface How to Use This Guide 39 What’s Included
    [Show full text]
  • Apple Has Built a Solution Into Every Mac
    Overview Mac OS X iPhone iPod + iTunes Resources Vision Mac OS X solutions VoiceOver from third parties. Browse the wide variety of To make it easier for the blind and those with low-vision to use a accessibility solutions supported computer, Apple has built a solution into every Mac. Called VoiceOver, by Mac OS X. Learn more it’s reliable, simple to learn, and enjoyable to use. In Depth Device Support Application Support Downloads VoiceOver Application Support VoiceOver. A unique solution for the vision-impaired. Every new Mac comes with Mac OS X and VoiceOver installed and includes a variety of accessible More than 50 reasons to use applications. You can also purchase additional Apple and third-party applications to use with VoiceOver. VoiceOver. Learn more While this page lists a few of the most popular applications, many more are available. If you use an application with VoiceOver that’s not on this list, and you would like to have it added, send email to [email protected]. Unlike traditional screen readers, VoiceOver is integrated into the operating system, so you can start using new accessible applications right away. You don’t need to buy an update to VoiceOver, install a new copy, or add the application to a “white list.” Moreover, VoiceOver commands work the same way in every application, so once you learn how to use them, you’ll be able to apply what you know to any accessible application. Apple provides developers with a Cocoa framework that contains common, reusable application components (such as menus, text fields, buttons, and sliders), so developers don’t have to re-create these elements each time they write a new application.
    [Show full text]
  • Tinkertool System 7 Reference Manual Ii
    Documentation 0642-1075/2 TinkerTool System 7 Reference Manual ii Version 7.5, August 24, 2021. US-English edition. MBS Documentation 0642-1075/2 © Copyright 2003 – 2021 by Marcel Bresink Software-Systeme Marcel Bresink Software-Systeme Ringstr. 21 56630 Kretz Germany All rights reserved. No part of this publication may be redistributed, translated in other languages, or transmitted, in any form or by any means, electronic, mechanical, recording, or otherwise, without the prior written permission of the publisher. This publication may contain examples of data used in daily business operations. To illustrate them as completely as possible, the examples include the names of individuals, companies, brands, and products. All of these names are fictitious and any similarity to the names and addresses used by an actual business enterprise is entirely coincidental. This publication could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. The publisher may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice. Make sure that you are using the correct edition of the publication for the level of the product. The version number can be found at the top of this page. Apple, macOS, iCloud, and FireWire are registered trademarks of Apple Inc. Intel is a registered trademark of Intel Corporation. UNIX is a registered trademark of The Open Group. Broadcom is a registered trademark of Broadcom, Inc. Amazon Web Services is a registered trademark of Amazon.com, Inc.
    [Show full text]
  • Everything You Need to Know About Apple File System for Macos
    WHITE PAPER Everything you need to know about Apple File System for macOS Picture it: the ship date for macOS High Sierra has arrived. Sweat drips down your face; your hands shake as you push “upgrade.” How did I get here? What will happen to my policies? Is imaging dead? Fear not, because the move from HFS+ (the current Mac file system) to Apple File System (APFS) with macOS High Sierra is a good thing. And, with this handy guide, you’ll have everything you need to prepare your environment. In short, don’t fear APFS. To see how Jamf Pro can facilitate seamless macOS High Sierra upgrades in your environment, visit: www.jamf.com • After upgrading to macOS High Sierra, end users will Wait, how did we get here? likely see less total space consumed on a volume due to new cloning options. Bonus: End users can store HFS, and the little known MFS, were introduced in 1984 up to nine quintillion files on a single volume. with the original Macintosh. Fast forward 13 years, and • APFS provides us with a new feature called HFS+ served as a major file system upgrade for the Mac. snapshots. Snapshots make backups work more In fact, it was such a robust file system that it’s been the efficiently and offer a new way to revert changes primary file system on Apple devices. That is all about to back to a given point in time. As snapshots evolve change with APFS. and APIs become available, third-party vendors will Nineteen years after HFS+ was rolled out, Apple be able to build new workflows using this feature.
    [Show full text]
  • User's Manual 2
    USER'S MANUAL 2 - © 2018. All Rights Reserved. Nitro 5 Covers: AN515-42 / AN515-52 This revision: March 2018 Important This manual contains proprietary information that is protected by copyright laws. The information contained in this manual is subject to change without notice. Some features described in this manual may not be supported depending on the Operating System version. Images provided herein are for reference only and may contain information or features that do not apply to your computer. Acer Group shall not be liable for technical or editorial errors or omissions contained in this manual. Register your Acer product 1. Ensure you are connected to the Internet. 2. Open the Acer Product Registration app. 3. Install any required updates. 4. Sign up for an Acer ID or sign in if you already have an Acer ID, it will automatically register your product. After we receive your product registration, you will be sent a confirmation email with important data. Model number: _________________________________ Serial number: _________________________________ Date of purchase: ______________________________ Place of purchase: ______________________________ Table of contents - 3 TABLE OF CONTENTS First things first 6 BIOS utility 39 Your guides ............................................. 6 Boot sequence....................................... 39 Basic care and tips for using your Setting passwords ................................. 39 computer.................................................. 6 Power management 40 Turning your computer off..........................
    [Show full text]
  • Enterprise Best Practices for Ios Devices On
    White Paper Enterprise Best Practices for iOS devices and Mac computers on Cisco Wireless LAN Updated: January 2018 © 2018 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 51 Contents SCOPE .............................................................................................................................................. 4 BACKGROUND .................................................................................................................................. 4 WIRELESS LAN CONSIDERATIONS .................................................................................................... 5 RF Design Guidelines for iOS devices and Mac computers on Cisco WLAN ........................................................ 5 RF Design Recommendations for iOS devices and Mac computers on Cisco WLAN ........................................... 6 Wi-Fi Channel Coverage .................................................................................................................................. 7 ClientLink Beamforming ................................................................................................................................ 10 Wi-Fi Channel Bandwidth ............................................................................................................................. 10 Data Rates .................................................................................................................................................... 12 802.1X/EAP Authentication ..........................................................................................................................
    [Show full text]
  • Implementing Keychain Management
    Implementing Keychain Management This module describes how to implement keychain management on. Keychain management is a common method of authentication to configure shared secrets on all entities that exchange secrets such as keys, before establishing trust with each other. Routing protocols and network management applications on Cisco IOS XR software often use authentication to enhance security while communicating with peers. Feature History for Implementing Keychain Management Release Modification Release 3.3.0 This feature was introduced. Release 3.4.0 • Support for the MAC authentication algorithm was added. • Support for hitless key rollover and key acceptance tolerance were added. Release 3.5.0 Support for hitless key rollover for Open Shortest Path First (OSPF) and Intermediate System-to-Intermediate System (IS-IS) was added. • Prerequisites for Configuring Keychain Management, on page 1 • Restrictions for Implementing Keychain Management, on page 1 • Information About Implementing Keychain Management, on page 2 • How to Implement Keychain Management, on page 2 • Configuration Examples for Implementing Keychain Management, on page 11 • Additional References, on page 12 Prerequisites for Configuring Keychain Management You must be in a user group associated with a task group that includes the proper task IDs. The command reference guides include the task IDs required for each command. If you suspect user group assignment is preventing you from using a command, contact your AAA administrator for assistance. Restrictions for Implementing Keychain Management You must be aware that changing the system clock impacts the validity of the keys in the existing configuration. Implementing Keychain Management 1 Implementing Keychain Management Information About Implementing Keychain Management Information About Implementing Keychain Management The keychain by itself has no relevance; therefore, it must be used by an application that needs to communicate by using the keys (for authentication) with its peers.
    [Show full text]
  • Powerpanel Personal Edition User Manual
    PowerPanel Personal Edition User Manual User Manual PowerPanel® Personal Edition Rev. 9 2015/12/2 PowerPanel Personal Edition User Manual ELECTRONIC END USER LICENSE AGREEMENT FOR CYBERPOWER POWERPANEL PERSONAL EDITION NOTICE TO USER: THIS IS A CONTRACT. BY INSTALLING THIS SOFTWARE YOU ACCEPT ALL THE TERMS AND CONDITIONS OF THIS AGREEMENT. The End User License Agreement and copyright of CyberPower PowerPanel® Personal Edition product and related explanatory materials ("Software") are owned by Cyber Power Systems (USA), Inc. The term "Software" also shall include any upgrades, modified versions or updates of the Software licensed to you by Cyber Power Systems (USA), Inc. Please read this Agreement carefully. At the end, you will be asked to accept this agreement and continue to install or, if you do not wish to accept this Agreement, to decline this agreement, in which case you will not be able to use the Software. Upon your acceptance of this Agreement, The Cyber Power Systems (USA), Inc. grants to you a nonexclusive license to use the Software, provided that you agree to the following: 1. Use of the Software. You may install the Software on a hard disk or other storage device; install and use the Software on a file server for use on a network for the purposes of (i) permanent installation onto hard disks or other storage devices or (ii) use of the Software over such network; and make backup copies of the Software. You may make and distribute unlimited copies of the Software, including copies for commercial distribution, as long as each copy that you make and distribute contains this Agreement, the CyberPower PowerPanel® Personal Edition installer, and the same copyright and other proprietary notices pertaining to this Software that appear in the Software.
    [Show full text]
  • Macos at CCSU – What’S New?
    MacOS at CCSU – What’s New? MacOS is faster, more secure, and has several new features: 1. Jamf Computer Management and Self-Service Software Installations 2. Encryption and VPN for Laptops 3. Password Reset Procedures and Synchronization with NOMAD 4. Automatic Weekly Maintenance 5. Music, Video, Podcast and Safari Updates Jamf Computer Management & Self-Service Software Installations Jamf is a tool that allows the IT department to manage policies, updates and software on Mac computers. It allows us to keep the software on your computer updated to protect against security threats. Jamf also allows us to set policies to keep your account and computer safe, such as auto locking your computer after 15 minutes of inactivity. In addition, Jamf provides a Self-Service Software Installation tool that allows you to install CCSU-licensed software on your computer when needed. To access Self-Service, click on the icon in the Dock. If you do not see the icon, then open it from the Applications folder. To install an application from Self-Service, simply click on the Install button. Applications available to install include Adobe Creative Cloud, Chrome, Jabber, Webex, SPSS, Firefox, and more. MacOS Laptops If you use a MacBook Pro as your primary CCSU-issued computer, there are some added features: VPN (Virtual Private Network) The VPN connects your MacBook Drive Encryption to the campus network even when off campus. The connection to the The hard drive of your laptop is encrypted for campus network allows direct added security. Encryption uses your BlueNet access to resources such as Secure account as the credentials, so it is important to Apps (secureapps.ccsu.edu) for review the information on Page 2 to ensure the access to Banner, WebNow, encryption password stays synchronized.
    [Show full text]
  • BLACKLIGHT 2020 R1 Release Notes
    BlackLight 2020 R1 Release Notes April 20, 2020 Thank you for using BlackBag Technologies products. The Release Notes for this version include important information about new features and improvements made to BlackLight. In addition, this document contains known limitations, supported versions, and updated system requirements. While this information is complete at time of release, it is subject to change without notice and is provided for informational purposes only. Summary To enhance our forensic analysis tool, BlackLight 2020 R1 includes: • Apple Keychain Processing • Processing iCloud Productions obtained via search warrants from Apple • Additional processing of Spotlight Artifacts • Updated Recent Items parsing for macOS In Actionable Intel • Parsing AirDrop Artifacts • Updates to information parsed for macOS systems in Extended Information • Added support for log file parsing from logical evidence files or folders • Support added for Volexity Surge Memory images • Email loading process improved for faster load times • Support added for extended attributes in logical evidence files • Newly parsed items added to Smart Index (Keychain, Spotlight, and AirDrop) NEW FEATURES Apple Keychain Processing Keychains are encrypted containers built into macOS and iOS. Keychains store passwords and account information so users do not have to type in usernames and passwords. Form autofill information and secure notes can also be stored in keychains. In macOS a System keychain, accessible by all users, stores AirPort (WiFi) and Time Machine passwords. The System keychain does not require a password to open. Each user account has its own login keychain. By default, each user’s login keychain is opened with the user’s login password. While users can change this, most users do not.
    [Show full text]