Workforce Identity
Endpoint Management
Endpoint Detection & Response
Vulnerability Management
Compliance Automation
Trust Center
Single Sign-On Extension
Published by Apple, Inc.
Configure Single Sign-On (SSO) authentication for Apple devices using Kerberos or certificate-based methods to streamline user access to network resources and enterprise applications. Define authentication realms, certificate mappings, and URL patterns that trigger SSO behavior. Deploy this extension to eliminate repetitive login prompts, improve user experience when accessing internal web services, and enforce centralized authentication policies. Supports integration with Active Directory, identity providers, and custom authentication infrastructures to maintain secure, seamless access across managed Mac devices.
Configure digital certificates for authentication, encryption, and secure communications across devices and services. Deploy trusted root certificates, intermediate CA certificates, user identity certificates, or device certificates to enable secure network access, VPN connections, email signing and encryption, or application authentication. Manage certificate trust settings, specify allowed uses, and ensure proper certificate chain validation to maintain security standards across your organization.
Configure login window behavior and authentication options for Mac devices, including automatic login settings, user list display, password hints, and login screen messages. Control access security by managing guest account access, fast user switching, and restart/shutdown button availability. Deploy this profile to standardize authentication workflows, enhance security posture by restricting login options, or display custom messages for compliance and user guidance. Settings apply to the Mac login window interface and affect all user accounts on managed devices.
Automate secure certificate distribution across your Apple and Windows devices using industry-standard Simple Certificate Enrollment Protocol (SCEP). Seamlessly provision digital certificates from your Certificate Authority to devices for authentication, encryption, and network access, eliminating manual certificate deployment while maintaining enterprise-grade security. Enable secure 802.1x network authentication, VPN connections, email signing, Wi-Fi access, and application-level authentication with centrally managed, automatically renewed certificates that scale across your entire organization.