Open Directory Platform<\/h2>\n\n\n\n
JumpCloud\u2019s open directory is not locked down to a single technology stack or vendor. You can mix and match identity sources, authentication targets, and access management environments. Q1 enhancements will simplify the flow for single sign-on (SSO) and identity management integrations, improve application integrations, and begin to automate group memberships. For example, JumpCloud will take action<\/a> when a change is made in a human resources system.<\/p>\n\n\n\n New capabilities slated for Q1 include:<\/p>\n\n\n\n IT admins will make granular decisions about how to authenticate users into the platform by using different technologies for different sources. For example, TOTP and SAML could be used for some services while certificates are required to access others.<\/p>\n\n\n\n This change will first be noticeable in the Admin Portal where we\u2019ll be introducing more multi-factor authentication (MFA)<\/a> capabilities and the option for more sophisticated password policies. These features will then be mirrored in the User Portal. <\/p>\n\n\n\n Over time, SSO device logins will be leveraged to access other resources. More passwordless options and simpler user flows for third-party authentications will be added later in 2023. In summary, JumpCloud\u2019s new authentication features will include:<\/p>\n\n\n\n JumpCloud is uniquely positioned to leverage its dual presence in device and identity management to introduce robust conditional access policies. Password Manager and MFA enhancements reduce friction for end users while improving your security posture.<\/p>\n\n\n\n MFA fatigue attacks are increasing and have been implicated in several high-profile breaches<\/a>. JumpCloud is responding to that risk by introducing several additional protections. Geolocation information was added to notifications in late 2022; and the next steps will be to limit push attempts on the backend, add challenge codes in JumpCloud Protect\u2122<\/a>, and introduce deny reasons. Deny reasons allow a user to flag a malicious request to notify administrators of a potential attack. Admins will then be able to take action by locking the account and revoking any exposed credentials before the attacker can gain access.<\/p>\n\n\n\n JumpCloud is combining device management and IAM capabilities to strengthen conditional access rules. Existing rules focus on the user context. New rules will examine device posture prior to making access decisions. For example, confidence is higher when a device is up to date with patches and has antivirus software (EDR) installed. The initial round of device conditions will include:<\/p>\n\n\n\n Future rule releases will incorporate more sophisticated context scenarios that leverage risk-based evaluations, i.e., detecting and evaluating anomalous user behaviors.<\/p>\n\n\n\n JumpCloud\u2019s Password Manager has a decentralized architecture<\/a> that eliminates master passwords. Master passwords are usually considered a weak point of many cloud-based password management solutions. Consequently, there\u2019s been significant growth in user adoption and many feature requests from our customers. Deliverables for Q1 include:<\/p>\n\n\n\n JumpCloud has extended support for Windows by blending its agent-based endpoint management approach with Microsoft\u2019s mobile device management (MDM) protocols. Patch Management is broadening its release to browsers and popular third-party applications. We\u2019re also close to an Android enterprise mobility management (EMM) release, broadening our Apple and Linux device policies, and introducing an autonomous device onboarding framework.<\/p>\n\n\n\n JumpCloud\u2019s EMM for Android will be certified for Google\u2019s Android Enterprise to set up, secure, and manage Android devices. This release will have parity with our existing iOS\/iPadOS offerings. The initial launch will feature the ability to:<\/p>\n\n\n\n Live Assist: <\/strong>JumpCloud\u2019s free Remote Assist product was released in 2022. Its workflow originated with support tickets, leading to issuing session tokens with explicit user opt-in. We\u2019re adding the option for support technicians to prompt the user to start a session and the capacity to copy and paste. Significantly, IT admins can now control group or global opt in\/out from the Admin console. This provides granular control over application components for compliance. <\/p>\n\n\n\n Silent Assist: <\/strong>IT admins will soon be able to access corporate-owned devices without end users present. This makes it easier for teams to manage IT infrastructure and help behind the lockscreen. JumpCloud\u2019s objective is to deliver full remote monitoring and management (RMM) by the end of the year. Note that sessions have default time limits and don’t persist.<\/p>\n\n\n\n A global content delivery network (CDN) will ensure faster agent installs for global customers. Additional servers are presently being introduced.<\/p>\n\n\n\n Browser support: <\/strong>JumpCloud is extending OS Patch Management<\/a> by delivering simple (but powerful) Chrome management. Features planned for Q1 and beyond are:<\/p>\n\n\n\n Enforce third-party apps: <\/strong>Patch Management is moving down the stack to include top enterprise apps. JumpCloud will ensure that your most valuable line of business apps are kept up to date in a very seamless way. Patching helps to make employee workstations more safe and secure.<\/p>\n\n\n\n JumpCloud delivered complete policy controls for encryption on all fixed local disks in 2022 and improved platform behaviors around Trusted Platform Module (TPM) enabled machines. <\/p>\n\n\n\n Customers who have already deployed policies can seamlessly switch on the new options.<\/p>\n<\/blockquote>\n\n\n\n\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/hris-identity-wheel.png\")
<\/figure>\n\n\n\nModern Authentication<\/h3>\n\n\n\n
\n
Identity and Access Management (IAM)<\/h2>\n\n\n\n
Protecting Against Push Bombs<\/h3>\n\n\n\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/06\/JumpCloud-Protect.png\")
<\/figure>\n\n\n\nConditional Access Device Posture<\/h3>\n\n\n\n
\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/conditional-access-toggle.png\")
<\/figure>\n\n\n\nPassword Manager<\/h3>\n\n\n\n
\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/jumpcloud-password-manager-main.png\")
<\/figure>\n\n\n\nDevices<\/h2>\n\n\n\n
Windows Self-Service Onboarding<\/h3>\n\n\n\n
\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/Screenshot-2023-01-13-at-12.08.22-PM-1024x208.png\")
<\/figure>\n\n\n\nAndroid Enterprise Mobility Management<\/h3>\n\n\n\n
\n
Remote Assist <\/h3>\n\n\n\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/jumpcloud-remote-assist-overview-screen.jpg\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/23.png\")
<\/figure>\n\n\n\nGlobal CDN for Agent Deployment<\/h3>\n\n\n\n
Patch Management<\/h3>\n\n\n\n
\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/patch-management-browser.png\")
<\/figure>\n\n\n\nPolicy: Windows Bitlocker Policy Roadmap<\/h3>\n\n\n\n
\n
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/commands-screen-jpg.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/08\/jumpcloud-dashboard-report-1-1024x535.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/01\/dashboard-reports.png\")
<\/figure>\n\n\n\n