Welcome to JumpCloud’s April Newsletter. In this issue we cover, JumpCloud Updates: OpenVPN Webinar, Zero-Touch Deployment, and More
Coming Soon: Group Management for SAML-connected Web Apps
JumpCloud admins will soon be able to propagate user group memberships to applications connected to JumpCloud via the generic SAML connector.
With this release, when a user accesses an application using SAML, JumpCloud can provide the user’s group memberships to the application for use in determining application permissions.
By assigning users to groups in a SAML-connected app, admins can control the privileges for the entire group, rather than having to manage each user individually. After this release, admins can ensure that their users’ access in applications is restricted to only what features they need; nothing more and nothing less.
Once again, this feature will only be available for applications connected to JumpCloud via the generic SAML connector. Group management for other out-of-the-box connections is coming soon. You can learn more about SAML group management at our Knowledge Base.
Integrated Access Management with OpenVPN® and JumpCloud
Join us for a discussion on the current challenges with securing authentication for resources protected by VPN, featuring Greg Keller, JumpCloud’s Chief Strategy Officer, and Johan Draaisma, OpenVPN’s Access Server Project Lead. The webinar will include a demo of Access Server and JumpCloud in action – which creates an integrated solution for ensuring seamless and secure access control to VPN sign-on from the cloud.
New Solution Functionality: Zero-Touch Mac Deployment
JumpCloud’s Solution Architecture (SA) team takes the Directory-as-a-Service® product and, using pre-existing APIs, finds ways to do extraordinary things with JumpCloud identities. For instance, the JumpCloud SA team recently developed zero-touch deployment capabilities for Mac systems in JumpCloud, when used in tandem with a mobile device management (MDM) solution like Jamf Pro or Workspace One UEM.
At our Knowledge Base (linked above) or GitHub repo (linked below), you can find out how you can leverage JumpCloud’s LDAP-as-a-Service and an MDM to authenticate Mac systems in an instant, saving significant time otherwise spent on onboarding new user systems.
Coming Soon: Updates to Mac Password Change Behaviors
Soon, we will be introducing a change to the JumpCloud Agent on Mac systems to help ensure that JumpCloud-managed users are changing their passwords only in the proper locations. By doing so, we believe that JumpCloud admins will experience a decrease in organization password sync issues due to improvements in user password change behaviors.
After this change is introduced, JumpCloud users will no longer be able to change their Mac system password in the System Preferences menu. The proper path for a JumpCloud-managed user to change their password is through the Mac Menu Bar App, or through the JumpCloud User Portal.
Current Password Now Required at Voluntary Password Reset
JumpCloud users are now required to confirm their existing password when they voluntarily reset their password. This additional step in the password reset process considerably enhances security. As a reminder, users should always change their password from the JumpCloud User Portal or, for Mac users, from the JumpCloud Mac App for all password changes.
NIST 800-63 Password Complexity 2019
We’d like to inform you of the most recent updates to the NIST 800-63 password guidelines. As an admin, you can use JumpCloud’s password complexity management to comply with NIST-approved password standards. Learn more about password complexity management at our Knowledge Base .
JumpCloud Status Page – Subscribe for Updates
Uptime and reliability are central to JumpCloud. As a critical part of your core IT infrastructure, we understand the importance of equipping you with information about service incidents and upcoming maintenance events so that you can quickly take action and plan ahead. We provide this important information on the JumpCloud Status page.
If you haven’t already, we encourage you to subscribe to this page. You can use the Status page to view performance for various resources. You can also choose to be alerted on service incidents and scheduled maintenance via email, SMS, webhook, or RSS.