Mac Admins Podcast

One of the tools we don’t talk about that much on the podcast but have all used is Carbon Copy Cloner. Before CCC, we wrote scripts to clone drives, figured out rsync, build manual imaging workflows with firewire drives, and in general just had this barrier of entry to do what should have been simple tasks that we really didn’t need. After CCC, there was a simple GUI with some fairly complicated logic underneath. Then it went far beyond the basic cloning technology to do much more and do it faster. We should have had Mike Bombich, the creator of CCC, on far earlier, but are stoked to finally nab an interview with him! Hosts: Marcus Ransom - @marcusransom Charles Edge - @cedge318 Guests: Mike Bombich - @mbombich Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: https://bombich.com/ Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more

This week Tom sits down with three speakers from the Objective but the Sea v5.0 Conference held in sunny Spain. Hosts: Tom Bridge - @tbridge777 Guests: Patrick Wardle - @patrickwardle Sharvil Shah - @sharvil Cat Self - @coolestcatiknow Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: #OBTS v5 - Talks Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg, & Hamlin Krewson

One of our favorite things about interviewing security researchers is that those who can talk about what they do at places like DEF CON and Black Hat are the good guys. They exploit vulnerabilities and report their findings to vendors so that humanity can stay safer on our devices. If it weren’t for them, the vulnerabilities would likely be uncovered and sold on the black market or used by nation states. So a huge thanks to our guest Thijs Alkemade for his hard work and talk at DEF CON and Black Hat on process injection for Mac apps! Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Guests: Thijs Alkemade - @xnyhps Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: Process injection CVE-2021-30873 How Signing and Privacy Xcode Options For Developers Translate to MacAdmins - krypted Process injection: breaking all macOS security layers with a single vulnerability · Sector 7 Thijs Alkemade (@xnyhps) / Twitter Sponsors: Kandji Blac

Today we're welcoming Weldon Dodd from Kandji back to the podcast to discuss how things have been going this year, and today's announcement around bringing IT and InfoSec together. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom Charles Edge - @cedge318 Emily Kausalik-Whittle - @emilyooo Guests: Weldon Dodd - @weldon Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: CVE NVD Common Vulnerability Scoring System SIG GitHub - krypted/maccvecheck: Checks the CVE database for any macOS Vulnerabilities #security-alerts channel on Slack Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad S

The good developers at Apple throw us new and exciting curve balls with every new release. This means books can’t just sit on a shelf for five years like in some previous eras but have to be refreshed routinely. The 1st edition of the Apple Device Management book was over 500 pages. Charles and Rich wanted to keep the page count about the same, but there’s so much new crap to shoehorn in there. That means stuff’s gotta’ go. That’s the perfect time to step back, take stock, and look at how the broader device management landscape is shifting and what admins need to know for the future. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom Charles Edge - @cedge318 Guests: Rich Trouton - @rtrouton Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: Apple Device Management’ IsImagingDead.com Create a Package in Apple Business Essentials Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Ad

Software Updates might be the trickiest part of being a Mac Admin right now, there’s lots of different approaches, and a whole bunch of edge and corner cases. Hosts: Tom Bridge - @tbridge777 Emily Kausalik-Whittle - @emilyooo Guests: Kevin M. White - Macjutsu Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: S.U.P.E.R.M.A.N. S.U.P.E.R.M.A.N. Wiki Erase-Install IBM Notifier #super channel on Mac Admins Slack Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley M

Robin Laurén joins the pod this week to talk about Human Centered Security. We’ll pick up where he left off in his MacADUK talk, discuss any reactions, and get into a little of the practical applications. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom James Smith - @smithjw Guests: Robin Laurén - @RobinLauren Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: MacAdUK   2022   Robin Lauren - Security for Humans  Dr. Robert Cialdini's Seven Principles of Persuasion | IAW  Otto Scharmer's 4 Levels of Listening: Be a Better Listener - The World of Work Project  xkcd: tar Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dod

Some of the larger early Apple deployments were in education and many of the more complicated of those were in higher education. This has given higher education deployments a front-row seat to some of the larger challenges in how technology, and specifically the Apple technology, that we manage evolves. We’re stoked to have Jennifer Nieland on the pod this week to help us navigate the hallowed halls of the collegiate technology stack. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom Guests: Jennifer Nieland - nielandj@iastate.edu Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: Greenlee School Radmind Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named p

We cover a lot of different types of workflows on this podcast. They’re all equally as complicated, and some are very specifically designed for a given industry. In today’s episode we’ll have Charles Mangin from N-Able on to talk about how the Managed Service Provider (MSP) treats Apple devices and how the latest innovations from Apple have helped to shape how MSPs can be more productive. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom Guests: Charles Mangin - @mac_mgmt_nerd Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: https://twitter.com/mac_mgmt_nerd Automation Cookbook Charles Mangin’s Blog Frotz Text Adventure Emulator Doom on John Deere Tractors Pitch Dark Eaten by a Grue Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're

Tim Perfitt is back again to continue last week's episode about his latest macOS app; XCreds! If you’ve ever dealt with labs, this episode is for you. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom Joel Rennich - @mactroll Guests: Tim Perfitt, Two Canoes - @tperfitt Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: Security. Cryptography. Whatever (Podcast) Filemaker 19 from Claris Azure AD SSO Plugin (Preview) Top 5 ways to Improve your Apple end user experience in M365/AAAD (PSU Mac Admins Talk with Michael Epping and Mark Morowczynski) XCreds Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, J

Tim Perfitt rejoins the Pod to talk about a new project for macOS devices: XCreds! If you’ve ever dealt with labs, this episode is for you. Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Joel Rennich - @mactroll Guests: Tim Perfitt, Two Canoes - @tperfitt Transcript: Transcription of this episode brought to you by Meter.com Click here to read the transcript Links: XCreds OIDC Lite ROPG Sneakers Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg,

Asset Management isn't sexy, in fact it's super boring. Matt Currie is here to tell us how his team combined Kandji, Airtable, Slack and Tray.io into an automated asset management system that his team could use seamlessly. Hosts: Tom Bridge - @tbridge777 Marcus Ransom - @marcusransom Guests: Matt Currie - @mattcurrie - LinkedIn Sponsors: Kandji Black Glove Mosyle Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg, & Hamlin Krewson

APIs are an integral aspect of how we can programmatically work with any product. The original Jamf Classic API won’t be allowing basic authentication any longer, which means any workflows that hook into the old URI-based REST endpoints will be going away. So there are big changes coming to the Jamf API and Graham Pugh will be joining us to talk through what that means for some of the projects he maintains. Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Marcus Ransom - @marcusransom Guests: Graham Pugh - @GrahamRPugh Links: Jamf Pro Classic API Authentication Changes Blog Post (Feb 2022): How do changes to the Jamf Pro API authentication affect JamfUploader and JSSImporter? Python-jamf by Uni of Utah Marriott Library Ruby-jss by Pixar Animation Studios https://github.com/jamf/Classic-API-Postman-Collection Prune by Leslie Helou - Remove unused items from your Jamf server KMART by Nindi Gill Git2jss by Geoff Lee Detect Thoughts REST app by Charles Edge Scriptorium by Tony Williams JamfUplo

Many a Mac deployment includes computers that need some piece software that just isn’t available on the Mac. This goes back to the early days of Mac OS X. We once called this the “app gap” and while it happens less and less in the modern macOS era, it’s still a thing - especially for financial software packages. We’ve used Terminal Services, Citrix, wine (which drove many of us to drink copious amounts of wine) and other tools to address that gap. Today’s episode with Viktor Glemme explores the good and bad of one of the newer ways to address that gap: Windows 365. Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Guests: Viktor Glemme - @Glemme Sponsors: Kandji Halp VMware Workspace One Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month i

Munki was released in 2009. The past decade-plus has seen MDM first introduced, then become almost a requirement to manage fleets of devices, changes in how we build daemons, develop tools, secure computers, and sign/compile binaries. That last piece could be a little tricky for the future of any custom software. It’s fitting that Ventura Blvd isn’t far from where Greg works, ‘cause in this episode we’ll look at the changes in Ventura and what they mean for Munki - as well as what they could mean for the future of the Munki project. Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Marcus Ransom - @marcusransom Guests: Greg Neagle - @gregneagle Links: Munki and Venture Notes  Strange World Teaser IPA Sign Sponsors: Kandji Halp VMware Workspace One Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast

The term hyperautomation was a good buzzword for a bit, but we can get a lot of use out of what it actually means. In this episode we’re gonna’ look at some of the automation options available to help us manage all these devices, with varying degrees of scripting requirements, and how we can find that magical place of lucid systems administration with Gabe Sterritt. Hosts: James Smith - @smithjw Charles Edge - @cedge318 Guests: Gabe Sterritt - @gabester Links: https://xkcd.com/1205/  https://xkcd.com/1445/ https://xkcd.com/1319/  https://xkcd.com/974/  Forum Post - Why does apple hate us? Gabe on LinkedIn Gabe on GitHub Sponsors: Kandji Halp VMware Workspace One Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barr

Multi Factor Authentication is a topic we’ve covered here and there in the past. Yubikey is one of those companies that many of us have worked with. But planning for larger scale deployments is different than getting a key to work with our own password manager or in isolated cases. Further, webauthn and other standards are being embraced by Apple in the upcoming releases of the Apple operating systems. So in this episode we’ll talk about what a Yubikey is, how to use them, and some of those things that we wish we’d’ve known before we got started! Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Guests: John Mahlman - @EdTechJohnM Links: Yubikey 5 Yubikey FIPS WebAuthn Azure AD and Yubikey Yubikey on Google Accounts Use Yubikey with JumpCloud Setting up a Google Workspace Account with a hardware key sc_auth man page PIV Certificate Key Slots Yubikey SDK CMMC 2.0 FIPS 140-2 Acronyms: CAC = Common Access Cards PIV = Personal Identity Verification SCIF = Sensitive Compartmented Information

What are the latest options to deploy Adobe products onto Apple devices? It’s one of the oldest skills those of us who work on the platform need. In this episode we’ll dig into what the latest techniques are, some gotchas, and how to deliver the best experience possible to our users. We’re joined by Dom, who has been a support engineer in Adobe’s enterprise team for over 11 years to talk through all the different options now available - and how best to think about them! Hosts: Tom Bridge - @tbridge777 Charles Edge - @cedge318 Guests: Dom from Adobe Links: Packaging: https://helpx.adobe.com/enterprise/using/preparing-deploy.html https://helpx.adobe.com/enterprise/using/enterprise-deployment-overview.html https://helpx.adobe.com/enterprise/using/deploy-packages.html  https://www.adobe.com/howtobuy/buying-programs/compare.html https://helpx.adobe.com/enterprise/using/create-sdl-packages.html  https://helpx.adobe.com/enterprise/using/customize-creative-cloud-app.html Identity Integration: https://help