{"id":7951,"date":"2019-12-04T17:00:00","date_gmt":"2019-12-04T17:00:00","guid":{"rendered":"https:\/\/www.jumpcloud.com\/blog\/?p=7786"},"modified":"2020-03-30T09:32:04","modified_gmt":"2020-03-30T15:32:04","slug":"cloud-gpos-group-policy-objects","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects","title":{"rendered":"Cloud GPOs (Group Policy Objects ) X-Platform – JumpCloud"},"content":{"rendered":"\n

Cloud GPOs (Group Policy Objects) are an intriguing concept. A critical function of the on-prem, Microsoft Active Directory\u00ae<\/a> (AD) platform, traditional GPOs enable IT admins to execute tasks across fleets of domain-bound Windows\u00ae systems. <\/p>\n\n\n\n

Traditional GPOs are used to configure Windows system policies like screen lock timeout, BitLocker encryption, and USB port functionality to name a few examples. AD offers IT admins the ability to deploy a library of GPOs remotely across Windows system groups.<\/p>\n\n\n\n

Yet, as the IT landscape shifts to the cloud and expands to include macOS\u00ae and Linux\u00ae systems, traditional GPOs start to feel limited. Admins need a GPO-like alternative<\/a> that supports the diverse system environments of the modern era. <\/p>\n\n\n\n

Do Cloud GPOs Exist in AD?<\/h2>\n\n\n\n

Traditional GPOs are a Microsoft construct inherent to the AD platform. A strictly on-prem directory services solution, the concept of cloud GPOs doesn\u2019t exist within the native AD domain.  <\/p>\n\n\n\n

While it is possible to host a traditional AD domain in the cloud via Infrastructure-as-a-Service (IaaS) providers, IT admins will still suffer the pitfalls of the legacy directory services solution. Primarily, the lack of group policy management for macOS and Linux<\/a> remains. <\/p>\n\n\n\n

Fortunately, there are third-party directory extension technologies that offer GPO-like functionality for macOS and Linux. These solutions often layer on top of AD on-prem. However, this approach seems counterintuitive for cloud-forward IT admins as it further entrenches organizations with legacy identity management infrastructure. <\/p>\n\n\n\n

Does Azure AD Have Group Policy?<\/h2>\n\n\n\n

Another thought is that IT organizations can leverage Azure\u00ae Active Directory (AAD) to provide cloud GPOs. Azure AD is Microsoft\u2019s cloud identity management solution for Azure infrastructure, and many thought it would be the cloud replacement for AD. <\/p>\n\n\n\n

Unfortunately, AAD is not a replacement<\/a> for on-prem AD. Azure AD is realistically designed to be another add-on to AD, providing user management for Azure infrastructure and single sign-on (SSO) capabilities for web applications. Not only does Azure lack GPOs for macOS and Linux, but Windows systems as well.<\/p>\n\n\n\n

Consequently, IT admins will still need a traditional AD implementation to have GPOs for Windows and to fully sync users with on-prem and cloud systems. That\u2019s in addition to directory extensions of macOS and Linux as well. <\/p>\n\n\n\n

Clearly, Azure AD will not suffice if the goal is to provide cloud GPOs for Windows, macOS, and Linux. <\/p>\n\n\n\n

Do I Need Cloud GPOs?<\/h2>\n\n\n\n

The modern IT landscape is no longer the Microsoft-exclusive environment that it used to be. Now, it\u2019s a mixture of Windows machines and a great deal of macOS and Linux systems, both on-prem and in the cloud. <\/p>\n\n\n\n

Presently, it\u2019s essential to control and manage devices with a cross-platform approach. Active Directory doesn\u2019t have the functionality of cross-platform GPOs<\/a>, nor cloud GPOs via Azure AD, and it\u2019s forcing IT admins to find other ways to manage their macOS and Linux systems remotely.<\/p>\n\n\n\n

As the IT landscape evolves into a diverse ecosystem of systems and servers, the need for cloud GPOs cannot be denied. Adapting to the changing environment is simply the logical approach. <\/p>\n\n\n\n

Cloud GPO Alternative to AD<\/h2>\n\n\n\n

Fortunately, the concept of cloud GPOs isn\u2019t a Microsoft construct. A new generation of cloud identity management platform called Directory-as-a-Service\u00ae<\/a> reimagines Active Directory and LDAP, in this case by providing a cross-platform, cloud GPO-like solution. <\/p>\n\n\n\n

Called Policies<\/a>, these command templates execute standard tasks in cross-platform system environments. They also grant the ability to execute customized commands and scripts on Windows, macOS, and Linux devices. <\/p>\n\n\n\n

With these commands and scripts, admins ensure that their systems are properly secured and that they meet compliance, regardless of the location or vendor. Directory-as-a-Service delivers next generation system and identity management capabilities from the cloud.<\/p>\n\n\n\n

Alternatively, admins can leverage the JumpCloud AD Integration<\/a> utility to extend AD user identities to unbound domain resources. In this respect, it is possible to leverage cross-platform cloud GPOs while retaining AD as the authoritative IdP. <\/p>\n\n\n\n

More on Cloud GPO-like Functionality<\/h2>\n\n\n\n

Video link: https:\/\/jumpcloud-1.wistia.com\/medias\/upz1bgkdb1<\/a>
<\/p>\n\n\n\n

Contact us to learn more about the Directory-as-a-Service platform and how it can provide a cloud GPO solution<\/a> for cross-platform system environments. Sign up for a free account<\/a> and check it out for yourself. Your first 10 users are free forever.
<\/p>\n","protected":false},"excerpt":{"rendered":"

GPOs have always been a vital part of Microsoft AD’s platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.<\/p>\n","protected":false},"author":54,"featured_media":43265,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[23],"tags":[],"collection":[2778],"platform":[],"funnel_stage":[3016],"coauthors":[],"acf":[],"yoast_head":"\nCloud GPOs (Group Policy Objects ) X-Platform - JumpCloud - JumpCloud<\/title>\n<meta name=\"description\" content=\"GPOs have always been a vital part of Microsoft AD's platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cloud GPOs (Group Policy Objects ) X-Platform - JumpCloud\" \/>\n<meta property=\"og:description\" content=\"GPOs have always been a vital part of Microsoft AD's platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2019-12-04T17:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-03-30T15:32:04+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Vince Lujan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Vince Lujan\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\"},\"author\":{\"name\":\"Vince Lujan\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/db33a779f0d636e64faad9f6f235fdd1\"},\"headline\":\"Cloud GPOs (Group Policy Objects ) X-Platform – JumpCloud\",\"datePublished\":\"2019-12-04T17:00:00+00:00\",\"dateModified\":\"2020-03-30T15:32:04+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\"},\"wordCount\":724,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png\",\"articleSection\":[\"Best Practices\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\",\"url\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\",\"name\":\"Cloud GPOs (Group Policy Objects ) X-Platform - JumpCloud - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png\",\"datePublished\":\"2019-12-04T17:00:00+00:00\",\"dateModified\":\"2020-03-30T15:32:04+00:00\",\"description\":\"GPOs have always been a vital part of Microsoft AD's platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png\",\"width\":1024,\"height\":512},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cloud GPOs (Group Policy Objects ) X-Platform – JumpCloud\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/db33a779f0d636e64faad9f6f235fdd1\",\"name\":\"Vince Lujan\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/9d24efaf3db8eff19674a277a7a8bc9b\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/8ffade1b28311ae85ed5985390e66790?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/8ffade1b28311ae85ed5985390e66790?s=96&d=mm&r=g\",\"caption\":\"Vince Lujan\"},\"description\":\"Vince is a writer and video specialist at JumpCloud. Originally from the horse capital of New Mexico, Corrales, he has lived in Boulder, Colorado for three years. When Vince is not developing content for JumpCloud, he can usually be found at the Boulder Creek.\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Cloud GPOs (Group Policy Objects ) X-Platform - JumpCloud - JumpCloud","description":"GPOs have always been a vital part of Microsoft AD's platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects","og_locale":"en_US","og_type":"article","og_title":"Cloud GPOs (Group Policy Objects ) X-Platform - JumpCloud","og_description":"GPOs have always been a vital part of Microsoft AD's platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.","og_url":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects","og_site_name":"JumpCloud","article_published_time":"2019-12-04T17:00:00+00:00","article_modified_time":"2020-03-30T15:32:04+00:00","og_image":[{"width":1024,"height":512,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png","type":"image\/png"}],"author":"Vince Lujan","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Vince Lujan","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects"},"author":{"name":"Vince Lujan","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/db33a779f0d636e64faad9f6f235fdd1"},"headline":"Cloud GPOs (Group Policy Objects ) X-Platform – JumpCloud","datePublished":"2019-12-04T17:00:00+00:00","dateModified":"2020-03-30T15:32:04+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects"},"wordCount":724,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png","articleSection":["Best Practices"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects","url":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects","name":"Cloud GPOs (Group Policy Objects ) X-Platform - JumpCloud - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png","datePublished":"2019-12-04T17:00:00+00:00","dateModified":"2020-03-30T15:32:04+00:00","description":"GPOs have always been a vital part of Microsoft AD's platform. Now that IT is moving to the cloud though, many admins are wondering if cloud GPOs exist.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2019\/12\/cloud-gpos.png","width":1024,"height":512},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/cloud-gpos-group-policy-objects#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Cloud GPOs (Group Policy Objects ) X-Platform – JumpCloud"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/db33a779f0d636e64faad9f6f235fdd1","name":"Vince Lujan","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/9d24efaf3db8eff19674a277a7a8bc9b","url":"https:\/\/secure.gravatar.com\/avatar\/8ffade1b28311ae85ed5985390e66790?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8ffade1b28311ae85ed5985390e66790?s=96&d=mm&r=g","caption":"Vince Lujan"},"description":"Vince is a writer and video specialist at JumpCloud. Originally from the horse capital of New Mexico, Corrales, he has lived in Boulder, Colorado for three years. When Vince is not developing content for JumpCloud, he can usually be found at the Boulder Creek."}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/7951"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/54"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=7951"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/7951\/revisions"}],"predecessor-version":[{"id":45288,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/7951\/revisions\/45288"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/43265"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=7951"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=7951"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=7951"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=7951"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=7951"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=7951"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=7951"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}