{"id":48156,"date":"2022-11-10T11:41:40","date_gmt":"2022-11-10T16:41:40","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=48156"},"modified":"2024-01-26T14:55:17","modified_gmt":"2024-01-26T19:55:17","slug":"open-source-mdm","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/open-source-mdm","title":{"rendered":"What\u2019s the Deal with Open Source MDM?"},"content":{"rendered":"\n

The recent shift toward remote and hybrid work is pushing admins across industries to restrategize their mobile device management (MDM)<\/a> efforts. <\/p>\n\n\n\n

In the face of increasing security threats<\/a>, having quick access to remote wipe\/lock, patch management<\/a>, and multi-factor authentication (MFA) controls has never been more crucial. As reported by the FBI<\/a>, cybercrime has increased more than 300% since the beginning of 2020. <\/p>\n\n\n\n

\"Confident<\/figure>\n\n\n\n

Hackers know more employees than ever are using personal devices to access private information on corporate networks. And they are increasingly using techniques like phishing, banking trojans, and malware droppers to gain access to data they will gladly return for millions of dollars. <\/p>\n\n\n\n

Are you looking for MDM technology on a budget? Open source and free MDMs <\/a>are viable options for some<\/em> lean organizations; this article will cover everything from the full range of platform capabilities to how the technology has evolved. We\u2019ll also discuss the pros and cons of deploying an open source MDM solution versus a paid solution. <\/p>\n\n\n\n

Open Source MDM: More Than Managing Mobile Devices<\/h2>\n\n\n\n

Before we dive into open source MDMs, let\u2019s get clear on what the platforms can actually do. While most admins understand their basic functionality, those who haven\u2019t interacted with them up close may not realize the immense power at their fingertips. <\/p>\n\n\n\n

Of course, those who oversee Apple dominant environments were forced to prioritize MDM with the introduction of macOS Big Sur a couple years ago. With that said, the majority of corporate IT environments still run on Windows<\/a>. <\/p>\n\n\n\n

The fact is modern MDM capabilities extend far beyond simple \u201cmobile\u201d device management. Solutions like the JumpCloud Directory Platform<\/a> provide a complete set of device management tools that allows admins to streamline onboarding, offboarding, and cross-OS device management within a Zero Trust security<\/a> framework that enforces the most common security compliance standards. <\/p>\n\n\n\n

How Does MDM Technology Work?<\/h2>\n\n\n\n

Once admins install an agent on organizational devices, they can identify them based on serial number, associated user, or device name (depending on the MDM and the organization\u2019s needs). Once the agent is installed, admins can remotely deploy configuration settings and execute commands.<\/p>\n\n\n\n

\"screenshot
JumpCloud MDM Set up Portal<\/em><\/figcaption><\/figure>\n\n\n\n

Some MDMs are fairly basic and provide only the most necessary security features, while others can assist with many tasks, including:<\/p>\n\n\n\n

Cross-Platform Support<\/h3>\n\n\n\n

Many MDM solutions are only compatible with a single platform, while others work across multiple operating systems and device types. The vast majority of fleets are composed of a mixture of device types, so cross-platform support should be a priority.<\/p>\n\n\n\n

Security Functions<\/h3>\n\n\n\n

For compliance reasons and overall security, IT teams must have control over all aspects of the machine with features such as remote wipe, lock, restart, shutdown, minimum password strength, and more. <\/p>\n\n\n\n

With so many employees working remotely, having physical access to a device is no longer a given. If your organization determines that a new security policy needs to be in place, how easy is it to deploy and activate on your fleet of devices that are spread out around your city, the country, or even the world?<\/p>\n\n\n\n

Remote Configuration<\/h3>\n\n\n\n

An MDM solution is a crucial aspect of managing your fleet when employees are working remotely. Devices must be able to check in to the MDM solution regardless of their location. <\/p>\n\n\n\n

Consider how easy it is to make changes to security policies and configurations without requiring a VPN or other clunky connectivity methods. As new features for operating systems are released, management systems are likely to see updates to correspond. Being able to roll out these changes quickly is crucial to remain secure.<\/p>\n\n\n\n

Software Deployment <\/h3>\n\n\n\n

Application deployment is a vital part of an IT strategy, and keeping apps patched is critical. MDM solutions are built for device management, but application deployment is an essential function that allows IT organizations or MSPs (managed service providers) to operate efficiently. Staying in compliance with software vendors for licensing is also made easier by an MDM as reports can be run at any time to determine who has what installed.<\/p>\n\n\n\n

Patch Management<\/h3>\n\n\n\n

With software being connected to the internet at all times, it\u2019s critical to deploy patches quickly. As with software deployment, an MDM allows auditing to show what versions of what software is installed, and then patches can be deployed.<\/p>\n\n\n\n

Zero-Touch Deployment<\/h3>\n\n\n\n

Zero-touch deployment is a dramatic change from the previous strategy of device imaging. With imaging, every machine would need to be opened, set up, and then configured with a monolithic image before<\/em> sending it to the new employee for use. As remote work grew, this meant IT admins had to turn their homes into small electronics warehouses, with regular trips to their local post office to get employees the equipment they needed.<\/p>\n\n\n\n

Alternatively, with zero-touch deployment, a configuration is built into the MDM platform that facilitates the steps an admin once took on their own. Once purchased, devices are shipped directly to employees from the manufacturer, and as they connect to the internet they enroll in the MDM and begin downloading configuration profiles and company applications automatically. Zero-touch deployment turns a tedious process into a turn-key one.<\/p>\n\n\n\n

User Management<\/h3>\n\n\n\n

Once considered a \u201cfringe\u201d feature, user management is becoming a central part of many organizations\u2019 technology strategies. <\/p>\n\n\n\n

With a continued rise in SaaS applications, it\u2019s becoming critical to security that users don\u2019t have to keep track of dozens of logins. Many MDMs are building user management into their solution as a one-stop shop for IT departments to manage devices and people.<\/p>\n\n\n\n

Are you ready to deploy your first mobile device management solution? You can set up a JumpCloud Free account<\/a> for up to 10 users and 10 systems with no system management experience needed.<\/p>\n\n\n\n

\n
\n \"JumpCloud\"\n <\/div>\n
\n

\n JumpCloud MDM <\/p>\n

\n Manage All Devices in One Platform <\/p>\n <\/div>\n

\n Learn More<\/a>\n <\/div>\n<\/div>\n\n\n\n\n

MDM: Then vs. Now<\/h2>\n\n\n\n

Historically, admins had a number of options to manage Apple Mac systems as well as devices at large. System management tools such as Microsoft\u2019s Endpoint Configuration Manager (formerly SCCM) led the way as an option for system management within an on-premises Windows-based network and provided some basic Apple and Linux management capabilities. <\/p>\n\n\n\n

Mac-centric management solutions started to appear as well once Macs became more common in the workplace. Open source configuration management tools have often been used to manage Linux fleets. Of course, manual management is always an option for IT admins, although as the fleet size increases, this can be less enticing.<\/p>\n\n\n\n

Now however, a new generation of device management tools have emerged. When MDM solutions first arrived, they focused on mobile phones and tablets. But as user behavior changed and organizational needs grew, IT organizations required MDM tools that could also cover desktop, laptop, and server systems across Windows, macOS, and Linux operating systems. <\/p>\n\n\n\n

\"a<\/figure>\n\n\n\n

Early MDM solutions couldn\u2019t accomplish this, because they were restricted to on-premises systems, specific operating systems, or other limitations. In today\u2019s world, the enterprise software category of system management is evolving to include cloud-delivered MDM solutions as part of the system management category. Some might even say that the MDM category is becoming the overarching label for the system management and device management categories.<\/p>\n\n\n\n

For those managing Apple-dominant environments, prioritizing MDM became a priority after the release of Big Sur 11 in 2020. Apple now requires IT organizations and MSPs to manage devices running the latest version of macOS with an MDM. <\/p>\n\n\n\n

Open Source MDM: Pros vs. Cons<\/h2>\n\n\n\n

There are a variety of tools and approaches that can work for your IT organization, but is open source MDM the best course of action?<\/p>\n\n\n\n

Pros:<\/strong><\/p>\n\n\n\n