10 Oct October 2023 – MacAdmins Meeting
October 18th, 2023 – University of Utah, MacAdmins Meeting
The University of Utah, MacAdmins Meeting is held monthly virtually on the 3rd Wednesday of each month at 11 AM Mountain Time. Presentations cover Apple technology and integration in a heterogeneous university enterprise environment. This month’s meeting will be held on Wed, October 18th, 2023 at 11 AM MT and we will provide live broadcasts and archives that will be made available 2-3 days after the meeting.
ITS-LOG! for MacAdmins – Brad Chapman, NBCUniversal
This presentation covers a tool called “ITS-LOG” designed to help diagnose Mac issues. It covers addressed common challenges faced by IT administrators, emphasizing the need for detailed user input during troubleshooting. Users input incident details, which triggers the tool to collect diagnostic logs. The tool then compresses and uploads logs to an S3 bucket via Amazon Web Services (AWS). The flow involved setting up an email account, Amazon Simple Notification Service (SNS), S3 bucket, Lambda function, Identity and Access Management (IAM) policies, and SwiftDialog. 
The tool collects the “sysdiagnose” file, a compressed archive containing extensive macOS logs. Users are guided through the process and can upload logs even on slow connections. The logs are crucial for detailed troubleshooting with AppleCare. 
- Video – To view the archived presentation video, click here.
- Slides – To view the archived presentation slides, click here.
Managing User Identity on Macs – Sean Rabbitt, Jamf
This presentation will cover a comprehensive overview of managing user identity on Mac computers, emphasizing the Unix foundation of macOS and explaining fundamental concepts like user accounts, group permissions, and unique identifiers.
Explore the intricacies of Mac’s management of local accounts, delve into essential commands for programmatic user account management, and unravel the role of FileVault encryption. Discover the implications of utilizing login window replacements like Jamf Connect, and gain insights into the future landscape with Platform Single Sign On, understanding its impact on local user accounts.
About Sean Rabbit
Sean was born a small human child and has since gotten larger. He is currently a Sr. Consulting Engineer for Identity and Access Management at Jamf where he writes a lot of documentation that people ignore. He is often seen in an Airstream trailer traveling the country.
- Video – To view the archived presentation video, click here.
- Slides – To view the archived presentation slides, click here.
Microsoft Enterprise SSO plug-in for Apple Devices Update – Michael Epping, Microsoft
In this presentation, you’ll receive an update on the Microsoft Enterprise SSO plug-in designed for Apple devices. Will cover some of the things Microsoft has been seeing since it was release under General Availability (GA), including common support issues, etc.
This plug-in facilitates seamless single sign-on (SSO) for applications and websites utilizing Microsoft Azure Active Directory (AD) authentication, including Microsoft 365. By leveraging the Apple single sign-on extension, it minimizes authentication prompts for users on devices managed by Mobile Device Management (MDM), such as Microsoft Intune. Once configured, applications supporting the Microsoft Authentication Library (MSAL) automatically utilize the Microsoft Enterprise SSO plug-in (preview). For applications lacking MSAL support, they can still utilize the extension by adding their Bundle ID or prefix to the extension configuration.
The presentation also addresses the integration challenges faced by organizations using macOS, Azure AD, and M365, delving into the technical aspects and offering best practices for implementation. Attendees will gain insights into enhancing security, user experience, enabling SSO for M365 resources, and maximizing macOS features for seamless integration with the Azure AD identity platform.
About Michael Epping
Michael Epping is a Senior Product Manager in the Azure AD Engineering team at Microsoft. He is part of the customer experience team and his role is to accelerate the adoption of cloud services across enterprise customers. Michael helps customers deploy Azure AD features and capabilities via long-term engagements that can last years, as well as working within the engineering organization as an advocate on behalf of those customers. Michael has more than 9 years of experience working with customers to deploy Microsoft products like Azure AD, Intune, and Office 365. He’s spoken at various industry events, such as BSides and The Experts Conference.
- Video – To view the archived presentation video, click here.
- Slides – To view the archived presentation slides, click here.
Open Discussion
Questions, comments, problems, and fixes.
Directions
Due to the coronavirus (aka COVID-19) crisis, this meeting will not be held in person but will currently be done virtually using Zoom video communications architecture.
- Require a Password to Join This meeting will require a password to join the meeting. Information will be emailed via a campus internal list, but if you are external and want to attend the meeting, please use the contact us form to receive details. Else, the archive of the meeting will be available 2-3 days after the live meeting.
- Waiting Room When joining the meeting you will be placed in the Waiting Room by default and the hosts will give you access to the live meeting.
- Miscellaneous We will also implement other settings and safeguards to secure the meeting.
Archived Presentation(s)
- Archives of the presentations will be available on this web page.
No Comments