everyone. My name is Angela Diaco. I am senior product marketing manager here at Addigy. And I don’t like my headshots, so that’s why you’re not gonna see it here. But our main speakers today are gonna be Mikaela Gilman, who’s senior product manager here at Addigy. She is also the head of end user apps and identity solutions and previously was at Apple, so we have a a true Apple expert here in our midst, and the illustrious Tim Pearson, who’s CEO and founder, owner of Creative Techs, and also an Apple premium technical partner. So I know Tim here works with teams to simplify their Apple environments with particularly a focus on identity security and device management, hence why we wanted you here. And his team is known for helping companies cut through the complexity and make decisions that actually work for their tech. So Tim works with small and medium sized businesses, which span, you know, professional services, creative services, health care, tech, but, really, it’s less about industry and more about the mindset. So anyone that wants their technology to just work and that they can, you know, do that so that they can do what they do best, that’s Tim’s team. So hi, Mikaela and Tim. Good to have you here. Hello. Hello. Thank you for introducing. Yeah. **** ****. That’s a lot to live up to. Thank you. Well, you know what? I’m glad, you know, Gabe, we’re not we’re not talking to robots here. That’s not on my twenty twenty six bingo card, but, you know, you never know. It’s only it’s only June. So we’ll go through our agenda. So what to expect? We’ll go through what is SSO and your options, how Tim and one Mac admin admin really uses SSO today, a framework, and this is really the meat of it, a framework to really find your best SSO solution and more of a deep dive on what each of those solutions are and what they offer. And, exciting look at what is launching today within Addigy Identity, led by Mikaela. And then we’ll have time for q and a. A little bit of a a blip here on our end. We did originally slate this webinar for thirty minutes, but we realized we had so much more to talk about. So the official run time is forty five minutes. But for folks that do have questions and maybe need to hop off, if you could add your questions to the chat sooner rather than later so we can maybe even weave that into some of what we’re gonna be talking about, that would be great. But for those of you who missed that end portion here, again, this session will be recorded and sent out later. And if you would like to know more about Addigy, let us know in the chat, and we will also offer a chance for folks to raise their hand for a demo or even just talking to someone on the team more about what we talked about today. Alright. So sound good, everyone? We got some more folks from New York. Oh, nice. Go next. Miami, San Diego, Boston, Toledo. Very cool. Alright. So we’ll dive in here. So, four ways to do SSO, but most, admins can’t tell them apart. So this really this webinar came from a conversation I was having with Mikaela, who was saying that many of the conversations she has around identity is exactly this, is that there’s still not really a clear sense of what each solution can do and what works for what environments. And so we wanted to really make this more about helping you to better understand what fits for your environment and also, right, why we revamped Addigy Identity in light of all this. But, hopefully, by the end of this session, you’ll be able to advise your clients or also just take a different approach to looking at your own environment. Yeah. And, hopefully, learn a little bit more about Addigy. So just to get us all on the same page here in terms of what is SSO, single sign on in terms of what we’re talking about with an Apple MDM. This is a you log in once, and with that set of credentials, you get into everything you’re allowed to use, so your device, apps, any services. For end users, this really alleviates the password fatigue of having to remember a million passwords, but also lessens the risk of phishing on their part. For admins, this is really more about control and reducing risks. So, right, if you have one place where you can provision or deprovision access, that is much better. You have a clear audit trail of how things have been working within your environment to be able to go back and plug any holes. And we also know that from most data breaches, they come from stolen or reused passwords. So the less of those you have floating around, the better. And that actually will lead us to our first poll here. And I am just, checking in on the chat. Oh, thank you, Matthew. I really appreciate that. So we’ll get to our first poll. Oh, there we go. So who is your identity provider? So for IT folks, right, answer this just for your organization. For MSPs, if there’s one that stands out over the others in your environment, go for it. But if there is other or multiple, Eddie, I’m not sure if they can actually add that in here. So add it into the chat if you can’t find the option there. And we’ll wait a little bit here. And I’ve been told that the rule of thumb is that if you’re ever presenting somewhere and you need to leave time for people to answer, you just stay silent for seven seconds. People can’t stand silence for more than seven seconds. So here you get some of my ramblings in this webinar. There you go. A little extra. Okay. I don’t know how to do quiet for seven seconds. Oh, man. Yeah. Right? Well, it’s test it out next time. You just you count until seven, and someone will chime in because it’s like that. You know, that takes patience, and that’s something I don’t know if I have enough of. Oh, no. It’s that’s that’s why you got a lifetime to work on it. Right? Oh, very true. Nice. Okay. Alright. We have a hundred and thirteen folks that voted. We’ll leave it open for a little bit more. Even quiet for two seconds has me, Nancy, Angela. Oh, Bernie, I’m so sorry to hear that. But, yeah, I I feel you, especially if I’ve had too much coffee. Awesome. Very cool. I am taking note of all of your questions. Awesome. Awesome. How can we get the recording for this webinar? This will be emailed out to everyone who attended and also anyone who registered and wasn’t able to make it today. So just making sure you know that. Very cool. Alright. We will close out the poll here, and what we’ll do is that our moderators here can see the answers so that we’re taking that into account as we answer, yeah, as we continue to go along. So with that, we’ll get into your options. So four ways to do SSO on Apple devices, and this is where someone much smarter than I on this topic comes in. So, Mikaela, if you can take us away here. Yeah. I guess before I actually dive in, not to be a buzzkill, I’m just curious from Tim’s point of view, what were some of the, opportunities or, you know, problems that you were noticing in the, you know, identity identity management space, before you started looking into some of, what Addigy had to offer? Well, I think, you know, as a I’ll say, as an Apple premium technical partner, we run across issues all the time. I just gotta get that in, like, once or twice. Right? But we when we often would run into stuff where when we would take on new customers and we would work you know, I think a real easy win for us is identity when when you come into, like, I’ll call them, like, health care adjacent type customers where they may have tons of computers and tons of users and data that they actually need to protect and be thoughtful about how they protect it. And yet they operate kind of in retail type environments where maybe there are twenty or thirty IMAX that are set up around a around a location, and they’re all using the exact same login shared login and shared login and access to resources. And so Wow. You know? Right. So to be able to, have a product that is you know, to tie those users to those devices and, you know, you instantly up the security game. Right? And you you instantly are making it it’s a it’s a big win. It’s just I I think that’s the easiest way to put it. Like, when we can put that on, people know their login and their password. They have to type it anyway, and now they’re just in their tools and where they belong. I think it’s it’s a big deal. Yeah. Alright. Yeah. That’s that’s a great way to start off. Like, definitely, for anyone, I would put it in the comments, the problems that you guys are are having right now, with, you know, SSO. If it’s anywhere around identity management, if it’s, you know, like, I definitely wanna see what those comments are. Is it, you know, phishing? Is it, you know, password syncing? You know, what are those problems that you guys are seeing? And I I’m gonna touch on the different solutions that we offer today. But one thing I will say is that we are consistently working on this. So if there’s something that we haven’t addressed yet, please reach out to product dot Addigy or your CSM or, various contacts at Addigy, and we can we can absolutely have a a conversation with you. Anyway, to dive into this, so we have four different solutions here. We have, enrollment SSO, platform SSO, extensible SSO, and Addigy identity. Definitely keep track of how many times I say SSO here. But to go on to the next slide here. So with enrollment SSO, the best way to think about this is this is almost your one time gate into automated device enrollment where it sits at the intersection of, you know, that device management page and the terms and conditions that you can set through Addigy. And then right after, you’re met with, a wonderful login screen. And, basically, what this allows, IT teams and organizations, to do is to actually secure their fleet. That way, they can ensure that no one else is actually signing in to these devices, especially if you’re shipping them off to, employees or, other remote locations, so that those devices don’t get enrolled into Addigy, and it’s, you know, specific individuals that are authenticating in and, you know, getting them set up. That way, they don’t have access to company resources. So, that’s the best way to think about enrollment SSO and just to go on to the next page. I’m just high level touching on these solutions. By the way, if you notice in the corner, we do have setup guides, and we can obviously walk you through these individual solutions. But at the very end, we’ll we’ll walk you through something that we’ve actually built, that will help you even further. So but so with enrollment SSO, here’s an example where it’s supported by iPhone, iPad, Mac. This is important just because, you know, the login windows on mobile devices, not every, you know, vendor has this ability. So this is awesome because you can also take it one step further with, end user directory syncing for those, who are existing Addigy customers. If you haven’t taken a look at that, that’s our SCIM server, and I’ll dive in more, later with that. But to go into our next solution, we do have platform SSO as well. This is actually Apple’s native, login solution. It looks just like the native, login window. You can authenticate, through FileVaults, various states. And then it is only supported on Mac. And they did recently add, within the last year, actually, setup assistant, which is huge. That was, I know, a major blocker for some folks in adopting platform SSO. This does show up at the login window, like I said, but it also does authenticate you through, native apps and browsers. And today, Entra and Okta are the only two that support this natively. There is quite a few restrictions, on this solution here. So, hardware, OS, you know, how how old is your entire fleet? And then also, what are the type of users that are actually using this? This is one, I would say, a thing to note here, is that this is still maturing. So, it is a newer solution. So just keep in mind, I highly recommend testing this, especially if you’re in Addigy. Set up a separate policy. You know, don’t do it in a production environment and see how your, profiles and the platform SSO setup is directly gonna impact that end user. One small change in the extensible SSO profile can be drastic. Just from personal experience, I’ve even locked myself out. So, that was early days, but so just caution, and obviously reach out to Addigy, and we can absolutely help you. Going on to our video here. So this is actually showing, the existing experience that, most folks are are used to. This is actually the password syncing solution already at the desktop. So if this device has already run through ADE, this is actually the experience they would see. They would see that native notification registration option and then that prompt that you saw, running through. You’re then running through, MFA. And then from there, once it’s authenticated, it is going to prompt sync that password, and it is binding the account to, the local, Mac account. So from there, you can see a successful state. This is obviously the happy path. And one awesome thing that they’ve added is you can actually see that it successfully registered via that green dot. So definitely nice for troubleshooting there. That was just a sneak peek. We’ll I’ll show you another setup of platform SSO a little later as to what’s coming. Now extensible SSO. Extensible SSO is the overall, framework that platform SSO is actually built on top of. But what’s nice about extensible flexible. So you could implement this in a way where if you just wanted to, have your users sign in to apps and, you know, websites rather than having it at the login window, you could do that. So I think this is definitely a nice entry level, way to start getting your feet wet with, Extensible SSO, you know, Apple’s framework here, and then eventually, you know, move to platform SSO. It is, obviously, like, you know, the same framework, but you do have far more control. Like I said, you wanna be careful with end users. It will on the platform SSO sign, it can keep prompting the end user if you’re not careful. So, just keep that in mind. This one is supported by Mac, iPhone, and iPad. And going on to the next solution, we have good old trusty Addigy Identity that has been around for a while. So Addigy Identity is our custom login window. It is it was recently redone, completely revamped, redesigned. So it does look like a swift native, application. And it does have the just in time user creation, that, IDP password sync, the MFA options, also the emergency offline, and then the overall, I would say it is a lot faster to set up, just being fully transparent. Obviously, I’m telling you, this just because also, like, we don’t charge for any of these solutions here. So whatever one is best for you is honestly the one that we would want you to go with. So, couple things to know with Addigy identity. If you’re using any sort of captive portals or public Wi Fi networks, this is definitely not the recommended solution. And then, also, if you are wanting Touch ID at the login window, the best one for that is actually platform SSO. That’s just because of the technical restrictions that custom login windows have versus something that’s built in and native. And this one is supported on macOS only. And just going to the next screen here, and this is just a demo of our redesigned, Addigy identity. This has already been out for a while. So those of you who are currently using it, this will look familiar. For those of you who haven’t revisited it, definitely recommend taking a look. But like I said earlier, pick whichever one is best for you. I just recommend that you start testing it out. Definitely don’t deploy it out to your, you know, production environments. And, yeah, let’s go ahead and go to the next slide here. And I’m actually gonna pass it back off to, Tim, not to to put you on the spot here, Tim, but, you know, we definitely wanna hear from you and how you know, what what solution are you using? Why? Are there any other solutions that you’re looking at as well? I will I will say that so this I actually learned something in the presentation already today, so that’s awesome. Thank you. I tend to not follow all the directions all the time. I think that, for us, and I I think that we we use Addigy identity a lot. It it’s it’s our preferred method. We want people you know, if they’re, if they’re Google Workspace customers or they’re Office three sixty five customers, we’re gonna tie their identity to the device and and get that log. That’s how we’re gonna handle their device logins. We we really like it. It’s been really successful for us. And I think what I like most about it is it’s really low lift. So, you know, Michele, you and I have talked before about some of the Apple platform SSO stuff, and it’s awesome. And I’m really excited about it in twenty twenty seven or twenty twenty eight. It’s not something I wanna put a customer through today with our customers. Now that doesn’t mean that it wouldn’t be a great solution for other other, teams. But for our customer base, it’s just not a fit. Addigy identity just works for us. It it, you know, we can set it up in a matter of minutes, training the users how to log in to their device. It feels weird. They will they will tell me, you know, when you’ve got this, graphic designer who’s run used a Mac for twenty years, then I show I tell them now, you’re just gonna log in with your your Microsoft, and you’re gonna have this little Microsoft screen. They’re like you know, especially in the Pacific Northwest where it’s like home of Microsoft and Apple people are pretty much, anti Microsoft here. It feels really weird to them. Right? But I think that it’s also been super successful, and people get it, and it just works. And I feel better about it. I sleep better at night because I know we’ve got that login tied to the device, and we’re able to shut things down if we need to easily and quickly. And and it’s it just it just works. So Awesome. I guess, like, going into, some of your, you know, experience, with what you’ve run into, I remember us talking about, you know, some of the the setup stories that you’ve had, especially the one with the CEO. And I know a lot of times, you know, there’s always hesitation with executive team or or CEOs, and you don’t wanna, you know, mess with their device. And, I guess, you know, do you mind kinda diving into that? Yeah. No. I I’m happy to talk about this. So, this is Andy. Andy, I I hope none of his employees are here, watching this today because I didn’t get Andy’s okay to talk about him. But what I’ll say is, you know, Andy is is a, CEO of a very, very, very large print marketing company. They do fantastic work. They have probably four or five hundred employees, and we manage a hundred of their Apple devices for them. They’re great people. They’re great to work with. Andy’s had his Mac for a few years, and we he we didn’t have when we first rolled it out, we didn’t have identity. And, you know, Andy’s a busy guy, so we just never got an opportunity to go, like, get him enrolled. And and you don’t wanna break his stuff. Right? But, like, of all the people, you don’t wanna break his stuff. So, anyway, yeah. So I sent, so what we did was and I think somebody was asking about this in the chat, I I can talk about it a little bit. But, we shipped a box to Andy’s home. Andy you know, direct from Apple. Andy opened the laptop, got it on his, home network, and waited, you know, a couple minutes. He he clicked through the things, got to the registration screen, waited, and then he was prompted with his Microsoft login. And I hadn’t told him it was coming. I didn’t tell him that this experience was there. And he was, like, kinda like, hey. What what what is this? And so I said, just log in. He called you know, he Slacked me. I said, hey. Just log in. So he logged in and got logged right into his device right away. His then, you know, about ten seconds later, Assist jumped in. And he saw Assist for the first time, and it installed, you know, all of his apps and everything he needed. He was ready to go. And so in a very, very short period of time, he was ready. Yeah. And I think you’ve got that next slide that this is this was Andy’s response to me. So, you know, that’s a great win, right, when your CEO is saying that this is slick as if. So I would you know, it’s a good good deal. And I think that’s exactly what we’re trying to do. You know? This this that’s the experience that we’re trying to deliver our customers, and it’s just it it’s a great end user experience. Yeah. Yeah. I definitely think no matter what solution that you go with, as long as it’s, you know, a good end user experience, Obviously, the less painful it will be, but it’s good to hear that, you know, it was, it just works, and it was simple to set up, especially with the CEO. Like Yeah. Right? Mean, the CEO and and so that’s a big thing. And then now, you know, our biggest pain port our biggest pain point, and I’m sure everybody out out there, you know, if you when you’re in when you’re in environments where, you know, security matters a little bit more and you like laptops, like, we like to have file vault protection on laptops. And some of our customers, like this one in particular, their, their requirements are that they have to rotate their passwords on a very regular schedule for a lot of their employees. And so, you know, that creates some friction. Right? Because users, they go ahead, they change their password, but then they don’t necessarily remember that they need to log out, change their you know? So we were dealing with a lot of file vault people look getting themselves locked up at the file vault screen. And so, you know, one of the nice the nice benefits, you know, of this latest workflow I think I can talk about this. Right? It’s it’s public now? It is coming. Yeah. Yeah. It’s we’re actually talking about it couple slides. Okay. Alright. But, really, I don’t wanna I don’t wanna sit on your thing. So I’ll have happen. Tim. I I’m sorry. I’ll I’ll I’ll back up with quickly. Enthusiasm. Don’t tell don’t tell Tim anything. No. I can say we’ve been using it in production, our tickets have dropped quite a bit. That’s all that’s what I’ll say. Okay. Drum roll, please. No. The so to go into, what’s new, and also what’s next. To be honest with you, we’ve been working on so many identity features over not even just Addigy identity. As you saw, we have, a lot of them, even more than what was, what’s being, you know, brought up in this presentation here. We have, just so many changes and advancements coming. And so one of them is actually the silent file will unlock. It is actually was released yesterday. So for those of you who have been wanting this, time has is now. You can actually go in and enable it just by a single checkbox. On the left hand side of the screen here, this video that we’re watching is with the setting on. You’ll see we’re already at the Addigy identity screen. And then on the right hand side, you’ll actually see that, it is off. So this is your standard Addigy identity workflow, where we just got to the, screen where you had to unlock FileVault first. And that’s actually even me typing in the password wrong on the left hand side, you know, doing what a classic end user does and mistypes. And I’m actually already at the desktop screen on the right hand side. And on the left hand side, I’m still trying to log in, and I’m still, you know, working my way through two FA right now. And it’s not till now I reached the desktop. So even in the matter of seconds you’re saving your end user, it’s also just, you know, less friction overall, and it only takes one checkbox. So if you are interested, there is a QR code there. It does walk you through the steps on how to enable it. I do recommend always testing out these features beforehand and, you know, take a look, see how they work. That way you can explain it to your end users. But it does if your end user is not, FileVault, like, they don’t have the, secure token or they, you know, it it does fail gracefully. And what I mean by that is I will present the FileVault, screen as well. We do that just for, security purposes. But if they are allowed to unlock FileVault, then, we will silently unlock it for them. And like I said, at that QR code, you can actually read more about that feature. If you do have questions, please reach out to us. And, yeah, going on to our next feature that we also released yesterday, which is super exciting. I know a lot of you were, begging for this feature, and it’s the end user directory assignment, that is driven by Addigy identity. This is also just a single checkbox that you have to enable as long as you have a a SCIM server set up. So in that end users tab, on the left hand side of your screen, if you click on that, you can actually see your directories. That’s actually where you can set up that SCIM server. In this image here, you can actually see that we’re looking at an individual person, and you can see the devices that are assigned to them. With enrollment SSO and now Addigy Identity, you’re able to automatically have those users automatically assigned, in real time. That way you have, proper and updated inventory, management. That way you can also set up automations if you wanted to to automatically lock these or erase them, if someone leaves or, you know, if they’re lost or or whatever. So, going on to our next feature here is simplified setup for platform SSO. We’ve also gotten a lot of questions with this. This is a newer feature. This is actually bringing platform SSO into ADE, and it is actually enforcing the login experience. As you saw, we created a user. It’s now authenticating via the SSO extension. I’m gonna run through, two FA here and provide my password. That way, the password syncing capability, can occur. Also, you know, you can always look at smart card. There’s some really cool workflows that you can do. That’s all controlled through the identity provider. Also, Microsoft recently did, announce their support with this as well. And like I mentioned earlier, platform SSO natively only supports, or Microsoft and Okta natively support platform SSO. So if your identity provider doesn’t support it, obviously mention it to them. But also let us know, and we can always potentially see if we can help advocate, and see what other options that you have, to try to get you there as close as we possibly can. And this is coming soon, I would say, in the next week or so. We’re just getting all of our resources and documentation, sorted, and, yeah, more to come. Very cool. Mikaela, thank you so much, and, take a sip of water. I feel you’ve been doing a lot of the talking here. This is great. But, yes, really great questions coming in through the chat. And just making sure, Mikaela, what’s the best way for folks to get in touch if they do have feedback or any of the sort of questions that maybe we won’t have time to answer today? What’s the best way to kinda get in touch? I sort of showed people maybe post on the Addigy subreddit. I know we have posted product at addigy dot com. Are there any other ways you want folks to get in touch? Honestly, looping in your your customer success manager. That way, they can also help advocate. And, also, product dot Addigy is always the way any sort of the entire product team, reads all of those messages, so, that’s definitely the best way. Awesome. Very cool. And, yeah, you want me to run through the why it matters, or you wanna talk a little bit more about this since this is okay. I definitely need that sip of water. That’s first. I was about to say. So awesome. So from product marketing right, we just went through a lot of the sort of technical in and outs of what’s launching. There’s even more that’s coming, so I’d really encourage you to check out our blog post on this on our site. But, really, the reason why we did all this and sort of what we want to you know, sort of the promise we’re making to our user base is that Apple management starts at hello. And all of these features really sort of come up to the fact that we really wanna make there to just be one identity at the Mac login. So this is the same, you know, credentials that users already end users are already using. We don’t want them to have to, you know, deal with any separate Mac passwords to reset. This also just lessens the burden on you as the admin. We want the sign ins to do the work, so this is increasing the automation within the platform. So making sure that these logins then help auto map the user to the device and keep those assignments aligned within your IDP. FileVault stays on. So, again, we had mentioned that. Noted too that the first time you do turn this on, the user will need to log in twice. Remember that was a a question someone had had earlier. So just that first time, they will need to authenticate twice, but then moving forward, it will be silently unlocked there. And, really, all of this, you know, aside from just the features and functionality and benefits to you, you know, from a, you know, foundational level, we really don’t think that something like this, that core identity features should have a price tag. This is so core to the security of your environments, to your peace of mind. Isn’t it admin that this should not be a line item? And especially, you know, for MSPs here on the call, this should not be something that you need to pay in extra or road your margins to. And, you know, Tim, I I think you you had just mentioned this earlier on the call when we were talking. You know? It just makes sense. You know? And this is a point where I’d ask you, you know, do you charge extra for identity solutions or identity management with your clients? And that might be good just for the MSPs here on the call. Yeah. And I I think I mean, there are situations where we do, but in general, we don’t. We try to avoid it. It’s it’s included because it just makes sense. And and I think what I told what I what I said is it’s to me, it’s one of those sleep at night things, and and it it it helps me sleep better at night, and that’s all that really matters. Like like, I care about the customers, but the reality is, at the end of the day, I worry about them more than they worry about them. Their things. Yeah. So, you know, this type of thing that’s that’s just it’s kinda baked in, and we would be giving it to people regardless. So, yeah, I think it’s I I agree. I I like that it’s just included. Very cool. Awesome. Well, Tim, thank you. And, Mikayla, we can sort of tag team this here. But in terms of finding your fit, I know that we only had so much time today in this webinar to go through all these different options, but Mikayla had this brilliant idea to come up with a free interactive tool to help you find the right answer for your fleet. And it is now live actually on addigy dot com. So if you go to this URL here, you’ll be able to actually sort of access this framework that we’re using to really think about how do we set up the best, SSO experience for our end users, for the problems we’re managing. And, yeah, Mikaela, did you wanna talk through a little bit of this? We’ll give people a little bit of a taste, and then we can get into the q and a. Yeah. Honestly, little disclaimer. This is, there’s obviously a lot of, you know, technical restrictions, a lot of different variables that come into, you know, our mind when we’re actually making a recommendation. So, this tool is brand new. So if there’s if you have more questions or you definitely don’t agree with the, you know, outcome of it, please let us know. And we are, you know, interested to hear your thoughts on this as well. If there’s any feedback that you have, please share with us. But more importantly, it is there to also expose all your different options. A lot of admins I speak to, don’t actually know that there’s, you know, baby steps that they can take to actually get their end users a little closer. That way it’s not as painful when they do switch, you know, identity, authentication methods. So, I know it’s a big jump going from, you know, something like Addigy identity to platform SSO, that end user experience is completely different. But there’s definitely ways that you can get there that’s a little bit, you know, smoother, and also just reducing some of the friction. So, oftentimes, admins will mention, you know, login, fatigue or password alignment or, you know, they’re just getting so many help desk tickets. And so overall, if you wanted to start with the problem, by all means, or if you wanted to start with your specific setup, your fleet, and then that way we can recommend a solution that way, or try both out. You know, it’s free. You can do it as many times as you want. And then, you know, going to the next slide here is actually what a solution would actually look like, when going through the form. So it has the best fit, but then it also has what else you could consider, depending upon the options that you selected. And then also maybe what’s not the best fit for you depending upon your overall goals. So we’re just trying to be transparent, call it out. Obviously, if there’s a different route you wanna go with it, by all means. But, yeah. And just going into, like I said, test it out, see if there’s any feedback that you have. And, yeah, our next poll is live. Yes. So we, we have about five minutes here left. But, just so that we capture the folks that do wanna talk a little bit more about Addigy identity, whether that’s, you know, existing customers here that just want a little bit more detail or if there are any, you know, folks that don’t have a solution yet, but you maybe do wanna get connected with someone on our team. We do have a very knowledgeable team about these sort of issues here. So if you do wanna get in touch, please just raise your hand, and we’ll be able to get in touch with you after this webinar. And, yes, we will be sending the recording again as just a heads up, and we’ll give folks just a couple seconds just to chime in here. If you would like to see a demo, you know, even just talk to the team, see if there’s other options for you. If you’re looking at Apple MDM solutions specifically, if you’re looking maybe even for something like a security suite that we also offer, Now is a really good time to to get on board just given all the improvements we’ve made here to identity. Very cool. Alright. Thank you. So with that, we will move on to q and a. Thanks, folks. So yeah. Wow. Mikaela, we got a lot of questions here in the chat. Would we want to start with news from Google? If Addigy supports platform SSO, were there some burning questions that you saw that you knew you wanted to dive into specifically? Yeah. I see, Bernie, I see you were asking a couple times about passwordless solution for Addigy identity. Definitely more to come on this. We don’t have it is definitely a priority. I know exactly what you’re talking about with that. Passwordless is definitely the ideal solution. In fact, I would highly encourage if you actually wanna schedule a call with us or anyone, please reach out to us, and we can potentially show you what we’re what we’re thinking about coming out with. So, little sneak peek. If you if you wanna take a look behind the curtain, please reach out to us, and, we can get your feedback on that. But it is a priority overall. Let’s see. Does platform SSO sync user data, like identity of to use for auto assignment and Addigy? No. It does not sync just like Addigy identity. I know if you’re comparing it just for, you know, everyone else’s sake, if you’re looking at that checkbox of those user attributes, it doesn’t sync in the same way. But what you can do is set up that directory, that SCIM server, and you can actually pull in all those user attributes, group assignments, any anything that you actually assign to that application. And then that will actually be pulled over, into Addigy, and you can actually do auto assignments based upon that. You can also do multiple directory assignments. So I know that’s important for MSPs here on the call, but you can also just do one, for our standard IT teams. And then, does Addigy work with, JumpCloud, identity provide no. It does not. At least for Addigy identity, if you’re looking for, you know, a enrollment SSO, if you’re looking for a generic like SCIM, it just you know, all it takes is a a generic setup. So there are identity features that we do support, you know, generic, IDP configurations. Identity Addigy identity is not one of them, though. Can I can I bounce in real quick? And Yeah. Okay. So because I’ll I’ll talk about that for just a second because we do have customers who are using JumpCloud, and we do Addigy identity in the Addigy identity login is locked is linked to their Entre, and their JumpCloud, is also linked to Entre. And so we’re using, like, they’re maybe logging into their Synology server with their JumpCloud credentials, and they’re logging into their, their Apple dev their Mac with their also with their jump credentials, but it’s a the Microsoft login window, if that makes any sense. And that probably just muddied the water more to what that question was, but you I guess all I’m saying is you you you could do identity if if JumpCloud wasn’t your only IDP or only provider. Yeah? Yeah. Okay. Yeah. We definitely see that, especially for organizations that you know, maybe you’ve had acquisitions and you have multiple IDPs. That’s, like, definitely very common there. Let’s see. I see Ross. What are the current barriers and opportunities when it comes to lowering the number of time a user has to authenticate with the IDP from enrollment SSO, the platform SSO, the Addigy Identity, to Microsoft conditional access integration, and the MacManage? That was a mouthful, and I’m already tired just saying it, and I had didn’t have to authenticate all those times. Definitely, my answer there is not to adopt all of the SSO solutions. It is pick the ones that work for you. So in this case, if you are looking for, that SCIM directory, I think, Ross, we’ve we’ve, spoken about that or you’ve mentioned that in the past, or maybe I’m wrong. But if you’re looking for that, you could always use Addigy identity now, now that we just came out with that end user directory syncing. And you could actually have them auto map to those end users. That should actually take care of the enrollment SSO aspect of it. And then I would either pick platform SSO or Addigy identity, depending upon, you know, the ideal needs there. And then from there, the, the actual extensible SSO profile, if it’s set up correctly, should actually connect with platform SSO. So the cleanest experience would actually be platform SSO, and that actually works very cleanly, especially now as of lately with our latest release of, self-service, with the updated SDKs of, conditional access. So if you use, our updated self-service version, which everyone is, mixed with platform SSO, you’ll have an extensible SSO profile on the device, and it is a nice, clean experience where we’ll log you in. So that is the overall I know it’s long winded, but I would say pick what works best for you and just narrowing down those SSO solutions. But the cleanest one is platform SSO mixed with Addigy Microsoft conditional access. Awesome. And, Mikayla, here. I know we’re over time here. So for folks that that are still on and who would like to participate, this is just good info for us and also would help us to just further you know? I don’t know, Mikaela, if you wanna still answer some questions after the poll after this, maybe for, like, another minute or two if there’s something. Yeah. Yeah? Okay. Cool. Alright. But, yeah, what would help us to maybe even just figure out if there’s, you know, need for another session or how we can sort of help you all and what your environment’s looking like today. If you do wanna just weigh in on how you handle Mac login and identity today in the poll, that just helps us better be able to serve you and and also just give us a sense of, you know, hey. What what in the future could we could we do to help people out and other news to keep in mind. Very cool. And I’m seeing more questions come in on the chat, which is awesome. Yeah. And anyone else who would like to weigh in on the poll, give you another two seconds, three seconds, and then we’ll go with more questions. Alright. Okay. Mikaela, take it away for your next one. Yeah. So, Evan, if you definitely wanna reach out to us, we can absolutely show you, like, a demo of that Apple platform SSO and if you’re using conditional access too and what that looks like. Basically, what platform SSO is doing behind the scene is when you’re logging in, and you perform that registration, it does then continue that it carries that token throughout other authentication sessions. So, it just makes it a lot more frictionless and, yeah, we can we can show you a lot more in-depth. And then, let’s see. Is there any news about how to get, interesting with no Wi Fi access at the login window? Martin, definitely reach out to us at product dot Addigy. I’m definitely curious about your use case here. There is some alternative solutions you can look at, like, offline access with, you know, platform SSO. But depending upon who your IDP is, that may or may not be a good solution for you. If you are I’m just curious at what you’re wanting, to stick with, and then we can obviously go from there. And then let’s see. We wanna do, one more here and also to yeah, Tim, thank you for, for sticking on. And and, Mikayla, you too for giving more of your time to answer these questions. Really, really exciting. I know. Thank you also for, carrying the poll, and it looks like we’re getting a lot of great answers there. And let’s see. Ah, Andrew. Okay. So, mentioned an issue. So I mentioned an issue where platform SSO users would keep getting prompted for credentials. What should we look out for to avoid this? Amazing question. This actually I’m so excited to answer this. So, overall, I would highly recommend as the IT admin or the expert, for your organization, would recommend having a separate policy, for a test device. I would have platform SSO set up just the way that you’re wanting for your end users, and then I would make sure that you are on the beta. So the macOS beta, that way you are able to see if that next release is going to impact that login window. I say that just because over the last couple of years, we’ve seen some impacts there. And so if you, you know, are able to, you know, catch it, submit that feedback early, Apple is very, like, responsive in that sense, especially with the login window. And, obviously, you know, mention it to us as well, and we can help advocate. So that is definitely one way. Like I said, platform SSO is still maturing. So this is one of the caveats to platform SSO, but it is the way that the puck is moving. So whether you adopt it today or not, I do recommend keeping your eye on it, getting yourself exposed to it because it is the way that, you know, Mac authentication is moving forward. So, and yeah. Anyone else who has questions who I didn’t answer, feel free to reach out to your customer success manager or product at Addigy, and we will get those answered. I know that there’s a lot of, you know, custom setup, so we can absolutely dive into it more. And I will talk all of your ears off about all SSO solutions. So as long as you guys are okay with that, I’ll happily do it. Awesome. Alright. Well, with that, we will leave you all to go and enjoy the rest of your summer wherever you are in the world, and, thank you for tuning in again. Take care. Thanks, everybody. Thank you. Thank you, Tim. Thank you, Angela. Thank you, Eddie. Take care, everyone.
