SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
New Zealand
Guides
#
cloud security
#
cybersecurity
#
endpoint protection
#
firewall
#
ransomware
Search
Story image
#
Apple
#
Technology Gifts
#
Centrify
Centrify targets local admin access on Macs through latest identity management update
Mon, 19th Jun 2017
FYI, this story is more than a year old
Author image
By Sara Barker, Copywriter and Senior News Editor
Follow us

Macs in the enterprise are prone to careless administrative account maintenance and passwords are being shared further than they should be, according to Centrify.

According to the company, it is common for organisations to put administrative passwords on Macs and use the same password across all of them. For users who need to install apps, suddenly that password is shared and anyone can gain access.

According to the company, providing local administration rights means that anyone - whether current users, ex-employees, or attackers - have privileged status on Macs.

"This increases your attack surface and makes endpoints an effective target for malware and rogue applications," the company says in a statement.

As a result, the company has tightened up its admin security in the latest update to its Centrify Identity Platform.

The company is targeting administrators who wish to manage local password management for Macs, as well as application management and software distribution. To do this, the company has utilised turnkey integration using the Munki open source solution.

According Centrify's senior director of APAC sales, the latest updates control shared account password management from servers, network devices, Windows and Linux endpoints to Mac.

"At the same time, they simplify Mac application management with Munki support that enables users to install applications without knowing the admin password,” he adds.

Centrify says the local administrator password management works by generating a unique administrator password for each Mac, whether remote machines or those on the corporate network. The admin password is able to be subject to rotation.

Related stories
Swann announces AI-driven voice assistant for home security
Malwarebytes launches free Digital Footprint Portal to protect personal data
Record rise in zero-day vulnerabilities exposed in Google-Mandiant report
Legit Security launches AI solution to manage app security exposure
APJ manufacturers face mounting API cyber threat, says Akamai
Top stories
i-PRO to support Genetec SaaS with new AI-enabled camera models
Illumio unveils AI enhancements for faster Zero Trust Segmentation adoption
RiverSafe teams up with Cribl to boost IT & data security services
Business leaders anxious over data security – report
Half of online traffic in 2024 generated by bots, report finds