Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

11/29/2011
01:11 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Centrify Centralizes Management Of Mac User Populations In The Enterprise

Centrify DirectControl for Mac OS X includes support for automated digital certificate enrollment

SUNNYVALE, Calif. — Nov. 29, 2011 — Centrify Corporation, the leading provider of security and compliance solutions that centrally control, secure and audit access to cross-platform systems and applications using Active Directory, today announced the availability of a major new release of Centrify DirectControl for Mac OS X. Centrify DirectControl for Mac OS X is Centrify’s leading solution for Active Directory-based authentication, single sign-on, smartcard and group policy support for the Apple Mac platform. It offers the most advanced set of capabilities for integrating and managing Mac systems with existing enterprise infrastructure to reduce costs and improve security.

Already available for other platforms such as UNIX, DirectControl is an integrated component of Centrify Suite 2012, the latest release of Centrify’s security and compliance solution for controlling, securing and auditing access to cross-platform systems and applications using Active Directory. Newly added features in DirectControl for Mac OS X include support for automated digital certificate enrollment, additional smart card support specific to the U.S. Federal government market, enhanced Apple FileVault Full Disk encryption support, advanced printer management, and additional desktop lockdown capabilities.

“By choice or by employee demand, organizations today are increasingly being required to support the Mac platform as yet another desktop or laptop within their IT environment,” said Frank Cabri, Centrify VP of Marketing. “Centrify was the first vendor to deliver Group Policy support for the Mac, and now with this major update to our DirectControl for Mac OS X solution organizations will find it even easier to leverage Active Directory for centralized administration and management of their growing Mac populations.”

New capabilities of DirectControl for Mac OS X include:

Support for automated digital certificate enrollment to facilitate wireless and network access in enterprise environments. DirectControl now automatically determines if Windows Group Policy requires a machine certificate to be present. If so, the Mac automatically requests, downloads and installs a machine certificate, making it available for services such as 802.1x and VPN. When the certificates expire, DirectControl automatically renews and updates the certificate.

Enhanced smart card support for Apple Mac OS X versions 10.7 and 10.6 for the CAC, CACNG, and PIV smart cards, including the Oberthur ID One 128 v 5.5 Dual Smart Card. This enables government agencies to support smart card authentication on their Mac systems that use Apple’s 10.7 “Lion” operating system.

Enhanced OCSP (Online Certificate Status Protocol) support. Customers now have a simpler OCSP GUI interface that enables custom configuration of the certificate validation process.

Compatibility with Apple’s FileVault 2 Full Disk Encryption. FileVault 2 Full Disk Encryption allows customers to secure their Macs in the event of loss or theft by making the disk unreadable to anyone without proper credentials. Now Active Directory credentials can be used to unlock an encrypted disk.

Improved printer management support on the Mac. Customers now have the ability to assign users to printer groups on the local Mac. This allows users to stop and restart the print queue and create their own printer definition files if required.

Support for restricting user logon access. Using Centrify’s patented Zones technology, Macs can be configured to allow only certain users or groups to log on. This can be used to define certain Macs as “Executive Access,” where only a single employee can log on. It is also ideal for implementing departmental level Mac solutions where only members of a given department can log in.

Availability and Pricing

DirectControl for Mac OS X, part of the Centrify Suite solution, is available today from Centrify and authorized partners worldwide. Pricing for DirectControl for Mac OS X starts at $65 per workstation.

About the Centrify Suite

The Centrify Suite lets organizations centrally control, secure and audit access to cross-platform systems and applications by leveraging an infrastructure they already own — Microsoft Active Directory. Built on an integrated architecture, the Centrify Suite strengthens security, enhances regulatory compliance initiatives, and reduces IT expense and complexity. The Centrify Suite — consisting of DirectControl, DirectAuthorize, DirectAudit, DirectSecure and DirectManage — delivers secure authentication and single sign-on, role-based access control, privileged identity management, user-level auditing, server isolation, and encryption of data-in-motion for the industry’s broadest set of heterogeneous systems and applications.

About Centrify Centrify delivers integrated software solutions that centrally control, secure and audit access to cross-platform systems and applications by leveraging the infrastructure organizations already own — Microsoft Active Directory. From the data center and into the cloud, more than 3,500 organizations, including 40 percent of the Fortune 50, rely on Centrify’s identity consolidation and privilege management solutions to reduce IT expenses, strengthen security and meet compliance requirements. For more information about Centrify and its solutions, call +1 (408) 542-7500 or visit http://www.centrify.com/.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
US Capitol Attack a Wake-up Call for the Integration of Physical & IT Security
Seth Rosenblatt, Contributing Writer,  1/11/2021
More SolarWinds Attack Details Emerge
Kelly Jackson Higgins, Executive Editor at Dark Reading,  1/12/2021
Vulnerability Management Has a Data Problem
Tal Morgenstern, Co-Founder & Chief Product Officer, Vulcan Cyber,  1/14/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-7343
PUBLISHED: 2021-01-18
Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.
CVE-2020-28476
PUBLISHED: 2021-01-18
All versions of package tornado are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configura...
CVE-2020-28473
PUBLISHED: 2021-01-18
The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with defa...
CVE-2021-25173
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows attackers to cause a crash, potentially enabling denial of service (crash, exit, or restart).
CVE-2021-25174
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart).