11 Nov Nov 2016 – Mac Managers Meeting
Nov, 16th 2016 – University of Utah, Mac Managers Meeting
The University of Utah, MacAdmins Meeting is held monthly at the Marriott Library on the 3rd Wednesday of each month at 1 PM Mountain Time. Presentations cover Apple technology and integration in a heterogeneous university enterprise environment. This months meeting will be held on Wed, Nov 16th, and we provide live broadcasted and archives that will be made available 2-3 days after the meeting.
If you have suggestions on presentations, questions or comments, please your the Contact Us option.
Zentral – Event Aggregation with osquery & Santa by Henry Stamerjohann – Apfelwerk
Zentral at it’s core is a monitoring solution to easily deploy and manage configuration for the
osquery and
Santa security tools with a unified server. osquery gives you the ability to query and log things like running processes, logged in users, password changes, USB devices, firewall exceptions, listening ports, and more. osquery allows you to easily ask questions about your Linux, Windows, and OS X infrastructure. Whether your goal is intrusion detection, infrastructure reliability, or compliance, osquery gives you the ability to empower and inform a broad set of organizations within your institution. Santa is a binary whitelisting/blacklisting system for macOS. It consists of a kernel extension that monitors for executions, a userland daemon that makes execution decisions based on the contents of a SQLite database, a GUI agent that notifies the user in case of a block decision and a command-line utility for managing the system and synchronizing the database with a server.
With Zentral inventory can sync with popular mac management tools such as Munki, JAMF Pro, and others to complement the data from osquery and Santa with additional information for review or incident response. Events and data aggregation run in parallel from multiple sources into one place. Data is stored in a powerful time-series database with full-text search and is quickly accessible with visualization tools to search, discover, and view trends over time. It combines ad hoc inventory scan functionality with scheduled collections from endpoints on the Mac and Linux platform. Its powerful event filters and notifications will enable unique ways for probes with IFTTT like automations that can work across the full toolchain.
Zentral is an open source solution to help you get away from complex requirements that come up when building up a custom monitoring solution on your own. Start using amazing tools like osquery and Santa right now and save valuable time to prepare and refine your thread model.
Henry has been working as a systems engineer and consultant in the mac domain for more than a decade. Based in Hamburg / Germany he is part of
Apfelwerk, a company of well known Apple specialists, Managed Services Provider, and JAMF Resellers in Germany. In the company he works as a Solution Architect and Professional Services Engineer to drive commercial and open source tools for a broad range of Education and Business customers.
Henry has presented previously at MacSysAdmin,
MacAD.uk, JNUC and MacDevOps Vancouver.
To view archived presentation, click here.
What’s New in Managing Office 2016 for Mac – By Paul Bowden, Microsoft
Paul will give an update on the advances made in the last 6 months for helping IT admins get the latest Office 2016 updates to their users. We’ll talk through the new features and roadmap for Microsoft AutoUpdate (MAU), then switch gears and talk about the managing app preferences at scale, including manipulation of MicrosoftRegistrationDB.reg.
Paul is a Principal Engineer in the Apple Platform Experience (APEX) team at Microsoft, and primarily works on Office for Mac, and Office for iOS. Paul is the lead engineer for product installation and update experience. Paul has been at Microsoft for 20 years, with much of his career working in the Exchange team, designing Office 365 and ActiveSync. When he’s not working with the latest Apple gadgetry, you can find him on his farm feeding goats and pigs.
To view archived presentation, click here.
Cisco AnyConnect Client Management – by Richard Glaser, Marriott Library
With the campus soon requiring two factor authentication for campus provided VPN, and lack of campus support for Mac & iOS support for the built-in IPSec clients with Duo Security, campus users will need to migrate to Cisco AnyConnect software if they will be using the campus provide VPN service. This presentation will cover options for downloading, installing, customizing installation & configuration for Mac and iOS clients.
To view archived presentation, click here.
View blog post on “Managing Cisco Anyconnect on Apple Systems”
Open Discussion
Questions, comments, problems and fixes.
Directions
Note, due to scheduling conflicts with our usual meeting location, we will be meeting at the Marriott Library room 1705A located inside the Faculty Center located north of Mom’s Cafe.
For directions to the University of Utah monthly Mac Managers Meetings see the following web page.
Archive & Live Presentation(s)
- A live broadcast of the presentations will be available from this web page.
- Archives of the presentations will be available from this web page.
No Comments