Many organizations struggle with handling BYOD and mobile devices. Permitting those devices to access resources poses a larger challenge for governance, risk, and compliance (GRC). Questions of how to deploy approved apps and updates remain unresolved. It’s an even greater struggle when legacy Active Directory infrastructure is added to the mix. The temptation to piece together a strategy with point solutions can be met with resistance from IT directors who favor consolidation. These challenges are very real and deserve attention and careful consideration.
You may not have had a chance to join us live for JumpCloud’s H1’24 Platform Vision, Roadmap, and Review. Our roadmap is driven by what matters to our customers and the problems that they face. The panel discussed what was delivered in Q1 and how to use these features to simplify IT operations for you or your clients. It revealed upcoming enhancements to identity, access, and device management such as mobile device trust and dynamic groups.
We also unveiled a new public roadmap that will give customers greater confidence in what’s to come. JumpCloud has solutions underway to address these problems and more. There are also the added benefits of platform consolidation and BYOD that respects privacy. This article covers upcoming features and how customers can leverage them.
Mobile Device Trust
Mobile device trust is a foundational platform technology that will make BYOD happen, securely.
Secure tokens make it possible to trust mobile devices while expressing some control without compromising users’ privacy. It empowers secure access to single sign-on (SSO) resources with the assurance of device posture that’s backed by mobile device management (MDM) and MFA from JumpCloud Protect. Devices are registered through JumpCloud Go™’s phishing-resistant framework for secure SSO into your apps and resources. Devices can be enrolled with a full partition for BYOD or access to managed work apps in the case of Apple VPP deployments.
Admins will be able to differentiate between desktop and mobile devices in access policies with optional conditional access policies that are best suited for each device type. You’ll be able to curate policies per SSO app using device assignments, and it will be as simple as checking device trust in the JumpCloud Admin portal to get you started. Managing all devices brings you closer toward a Zero Trust strategy for security that always verifies before access is granted.
Greater Mobile Device Depth
Upcoming features include:
- Policies for SSO extension and single app mode, as outlined above
- Lost Mode provides parity for Android and iOS
- Security commands can perform operations on supervised devices, e.g, clearing users PINs or passwords
Windows MDM
JumpCloud delivered MDM for Windows last year as an easy and temper-proof method to load agents and enroll devices for management. We’re building on Windows MDM to provide Configuration Service Provider (CSP) policies as a best-of-breed alternative to GPO-based policies. We’re not deprecating the GPO policies, we’re making setup even easier. The first focus will be on Wi-Fi with many more to come like Simple Certificate Enrollment Protocol (SCEP) to make certificate issuance for large organizations much easier for IT teams.
Active Directory (AD) Delegation
JumpCloud updated its Active Directory Integration (ADI) last year with features like member server installations for more seamless migrations and co-management of devices. We’re continuing to streamline integration with existing, complex AD environments. It will be possible to sync users to JumpCloud to access non-Windows resources and cross-OS device management — without syncing password changes back and forth with AD. Authentication is passed back to AD, and it remains the source of truth for authentication decisions.
Automatic VPP App Updates
JumpCloud’s App Repo will soon have parity between Microsoft Store app and Apple VPP apps for a patch-forward approach. Keeping apps up to date is the best way to avoid vulnerabilities. This keeps JumpCloud in line with the app lifecycle journey introduced by the App Repo in Q1. Additionally, an end user access request and approval process is coming a bit later. There will be a catalog of what apps can be requested and a flow for approvals. Users will get access to what they need at the right time in which they need it. We’ll share more when it’s ready.
Password Manager Desktop Experience
Expect an improved experience in the desktop app soon. You asked, and we listened.
Here’s what’s coming:
- There will be a clearer delineation between personal and shared folders
- It will be easier to manage the folder lifecycle and to share folders
- It will be easier to find your credentials
- A revamped security dashboard will display password health scores and other important details so that it’s more easily noticed
A Predictable Product Roadmap
Last, a new public roadmap is coming via JumpCloud University. It will offer detail into what’s been released, what’s under development, or what will be in the future. You’ll have full insight into what JumpCloud is doing at all times. Previous features that were underway and added in Q1 of 2024 are summarized in this blog recap.
Please contact us about early access programs.