#mdm security | Explore Tumblr posts and blogs

the-delta-42 · 6 months ago

Text

Wealth & Influence

Wealth and Influence

Marinette nervously bounced her leg, she felt out of place at the fancy party Adrien had invited her to. She could hear the laughs and jeers the other guests were sending in her direction. With a sigh, Marinette stood up, carefully adjusting the white dress Adrien asked her to wear, and had a bowl of liquid poured over her head.

The resounding laughter nearly deafened her.

“Perhaps, Ms. Dupain-Cheng requires a towel.” Drawled Gabriel Agreste, smirking down at the girl, “Or maybe she shouldn’t impose herself on her betters.”

Adrien started to storm towards the culprit, only to have someone grab his arm in a vice-like grip. Marinette took deep breaths, trying to keep herself calm.

“Have security remove her.” Ordered Gabriel, turning to Mdm. Tsurugi.

“Lay a finger on her and your family will be arranging your funeral.” Came a cold, imposing voice.

Everyone immediately stopped laughing, an elderly Chinese woman strode forwards, with a man with black-hair, grey eyes and a black beard.

“Mdm. Cheng,” Greeted Gabriel, “I’m just making sure we no longer had an unwanted guest making a mess of herself.”

“Insult my granddaughter one more time and you won’t have enough money to afford clothes.” Snapped Mdm. Cheng, “Qiang, take Xuiying and find her some clean clothes.”

The dark-haired man nodded, removing his trench coat and draping in over Marinette’s shoulders, “C’mon, Little one.”

He guided Marinette in complete silence, while Mdm. Cheng glared at Gabriel.

“Lin-”

“You may refer to me as Ma’am or Mdm. Cheng.” She snapped, “You have the gall to insult my granddaughter, my family, and think you can address me by my name? Remember who made you, boy!”

Gabriel paled, “M-maybe I was acting rashly.”

“Your pathetic attempts at grovelling aren’t doing you any favours.”

“Perhaps we could come to an agreement?”

“Unless that agreement starts with you cleaning your house with your tongue, I’m not interested.”

Adrien watched his father and Marinette’s grandmother, he didn’t know why his father was so scared of her, but it was a bit refreshing. Shaking his head, Adrien managed to pull his arm from the security guard’s hand. Quickly slinking out of the room, as a man with white-streaked brown hair drew level with Mdm. Cheng.

Adrien ignored them and poked his head into rooms as he passed them while looking for Marinette, until he reached one door, poked his head into the room and was greeted by a scream. Adrien’s face went red, “Sorry!”

He heard a rustling sound, before Marinette called out to him, “Okay, you can come in now.”

Adrien slowly entered the room, “So, um, w-why were you… you know…”

“In my underwear?”

Adrien nodded.

“My dress was stained.”

“R-ight!” Adrien’s voice broke.

“Adrien, are you okay?”

“Yep, totally, definitely not thinking about your-”

“Adrien, stop.”

“Okay.”

W&I

“Did you not understand who that girl was?” Asked Giovanni, glaring at Gabriel.

“Mdm. Cheng’s granddaughter.” Coughed Gabriel, getting a harsher glare from Giovanni.

“That girl is also my great niece.” Growled Giovanni, “And even if she wasn’t, the Dupain family has more wealth than you have in every way possible.”

“I understand-”

“No, you don’t.” Stated Mdm. Cheng, getting Gabriel’s attention, “As of now, I am withdrawing all the investments I have placed in your company.”

“As am I.” Said Giovanni, “I expect to see the reimbursed investment, and the included interest, in the morning. I’d hate to involve my legal team.”

Gabriel swallowed thickly, before nodding. Giovanni threw one last glare, before spinning on his heel, let out a short, sharp whistle and left.

“Don’t make a fool of yourself, boy.” Sneered Mdm. Cheng, before snapping her fingers and leaving.

Audrey looked at Gabriel, who looked like a ghost, threw back her martini and walked out of the door.

W&I

Marinette pulled her shirt on over her head, Michael had taken Adrien outside so she could have some privacy while she dressed. Personally, she thought Adrien looked a little cute when he blushed, but she didn’t to be that intimate with Adrien just yet. Maybe in a few years, after they were done with school. She felt the back of her neck and winced at the sticky feeling of the drying punch.

“Is it safe to come in?” Called Michael, making Marinette jump.

“Almost.” Replied Marinette, quickly grabbing her jeans and hurriedly pull them on, “Okay, you can come in now.”

Michael walked in, with Adrien shuffling in behind him. He kept looking at the floor and wouldn’t look at Marinette.

Marinette opened her mouth, when Adrien looked up, blushed and looked back at the floor. Michael noticed Adrien examining the floor and rolled his eyes.

“Uncle Gio and Zumu are waiting for us outside,” Said Michael, “Maman said to bring the wimp.”

“He’s not a wimp.” Protested Marinette, moving over to stand with Adrien.

“Yeah, he is.” Grinned Michael, “He’s a big ol’ scaredy cat.”

Marinette glared at Michael, before kicking his shin. Adrien watched the two interact, confused why they were hitting each other.

W&I

Sabine quietly scribbled out the bakery’s expenses, frowning at a few of the numbers, before grabbing her phone and opening an app.

“Everything alright?” Asked Tom, putting a basket of laundry down.

“One of the American branches is operating at a loss.” Said Sabine, “I’m trying to contact Javier, but he’s been unusually quiet for the past few weeks.”

“Maybe he’s been sick.” Suggested Tom, “Seattle’s going through a bug, right?”

Sabine hummed, before dialling a number and placing her phone to her ear. She frowned again, before hanging up, “The number’s saying it’s invalid.”

Tom hummed, before freezing, “What?”

“The phone said it’s invalid.” Repeated Sabine, “I’m going to try and contact the branch itself.”

Tom nodded and hummed, before going back to the laundry, “Oh, Michael’s bringing Marinette and Adrien here with my mother.”

Tom looked at Sabine, “I thought it was Skye travelling with your mother.”

“She’s dealing with a case.”

W&I

“No, no, Signore Ricca,” Nathalie rubbed her forehead, “I’m sure we can reach an agreement.”

Gabriel silently watched her pace around his office, trying to convince at least one of their investors to stay.

“I understand what Monsieur Agreste did was unforgivable, however,” Nathalie froze, “Signore? Hello? Hello?”

Putting the phone down, Nathalie paced around, while Audrey and Tomoe sat across from Gabriel.

“They’ll be back,” Dismissed Gabriel, unbothered, “once they see the trash that child-”

Nathalie slammed a document and a book in front of Gabriel, before stalking out. Almost dismissively, Gabriel picked up the paper and almost dropped it in shock, “She’s handed in her notice.”

“Then she’s not worth your time.” Dismissed Tomoe, oblivious to Nathalie going into Gabriel’s lair, collecting the rings, Kwami and tome and leaving through a concealed exit.

“Nathalie knows too much.” Stated Gabriel, getting to his feet and advancing towards the door, only to run into Amelie, “What do you want?”

“How the hell did you destroy my sister’s company?” Demanded Amelie, seething at Gabriel.

“They’re no big loss.” Dismissed Gabriel, only to get a full-on punch to the face. Amelie grabbed his arm before he hit the floor and buried her knee into his gut.

Amelie discreetly slipped the Adrien’s amok ring into her pocket, while her other hand gripped the back of Gabriel’s head and slammed his face into the wall. Breathing heavily, Amelie glared at Gabriel and slid onto the floor.

“This house is in my families name.” Growled Amelie, “You have a day to leave.”

Turning, Amelie stalked away, heading for the front door, intent on finding Adrien. When she reached her car, she looked at Felix and his new friend, Kagami, “Where does Adrien’s girlfriend live?”

W&I

Lin looked around Qilin’s living room, Qiang and Suyin were arguing about the course of action, while Xuiying was curled up next to her boyfriend.

“Gabriel’s stock price has tanked,” Said Michael, as their mother placed a tray to tea on the table, “we should wait until it’s lower before going forward with the suit.”

“The longer we wait, the greater the chance of Agreste getting off.” Argued Skye, “He’ll have time to concoct a version of event that paints him in a positive light. He could then use that to sue both Zumu and Zio for damages against his brand.”

“I’m with Skye on this one.” Called Toby from the kitchen, talking around the sandwich in his mouth.

“Toby, swallow your food before you speak.” Reprimanded Sabine, sitting next to Tom, “I agree with Skye, the longer this carries on, he’ll believe he’s gotten away with it.”

“Ya’ know,” Toby swallowed, “I thought you’d know this, since you’re a cop and all.”

Michael threw him a glare, before glancing at Adrien, “Did you know?”

Adrien violently shook his head, “No.”

Michael frowned, before sighing, “Alright. Why were you moving so quickly?”

“Mike, Mari had someone dump a bowl of punch all over her, and she was wearing white.” Sighed Skye, rubbing her brow.

“I saw them drop something in Marinette’s drink.” Said Adrien, making them freeze, “It looked like a large clump of salt.”

“But, you don’t think it was salt.”

“It could’ve been anything, thallium, potassium cyanide, various pest poisons.” Adrien nervously looked around, “There aren’t any bugs, are there?”

Michael frowned, glancing around, “I’d hope not, most insects don’t make it past Marinette’s fly traps.”

“That’s not what he meant.” Said Marinette, speaking for the first time, “He means surveillance devices.”

“Why would there be surveillance devices here?” Asked Skye, frowning.

“Father has them put everywhere I go, but he mostly keeps me inside,” Said Adrien, “He’s tried pulling me out of school and banning me from leaving the house.”

Skye leaned back, before grabbing her phone and dialling a number, “Hi, Malcolm, I think we might need to get the police to search the Agreste home.”

W&I

Roger frowned as numerous guests were spoken to, while Detective Jonas examined a broken glass with what looked like salt in the bottom. Roger could hear Gabriel Agreste yelling at the two officers questioning him.

“Bag this.” Said Jonas, pointing at the glass.

“Ma’am?” Said Roger, frowning.

“I want everything to be gone over with a fine-toothed-comb.” Said Jonas, glancing at Roger, “Where’s the culprit?”

“He ran off,” Answered Roger, “As soon as he saw us. Jared’s chasing him down now.”

“Who the hell runs from Police after a prank?” Jonas frowned, “Especially since we didn’t know who it was.”

Roger shrugged, as his radio went off.

“This is Officer Bordeaux,” Came the voice of one of Roger’s colleague, “be advised, the culprit has been apprehended. He also mentioned something about potassium cyanide.”

Roger and Jonas stared at each other, before Roger grabbed his radio, “I’m sorry, could you copy that? I thought I just heard you saw he’d admitted to attempted murder.”

“He mentioned the Potassium Cyanide after we cautioned him.” Said Bordeaux, over the radio, “He said his boss told him to poison someone.”

Roger and Jonas stared at the radio, just as they heard Gabriel Agreste’s shouting get louder, before they heard a loud thud. A minute later, a screaming Gabriel Agreste was being escorted out of the hall.

Glancing around, Jonas sighed and walked after the fashion mogul, leaving her colleagues to direct the rest of the scene.

W&I

Detective Jonas did her best not to yawn, she’d gone to the intended victim’s home in an attempt to break the news, that someone made an attempt on her life, as gently as possible. She hadn’t expected to see a former colleague, a lawyer, the suspect’s son and a minor celebrity eating cheese puffs with chopsticks.

She also didn’t expect the suspect’s son to yell, “I knew it!”

“You’re,” Jonas paused, “taking this better than I expected.”

“W-well,” the Intended victim, Marinette, said, “Hawkmoth’s still out there.”

Jonas nodded, “Normally, we’d ask if you’d want to press charges, but, given it’s likely to be considered attempted murder, we’re going to be pressing charges anyway.”

“W-why did he change his mind?” Asked Marinette, looking confused.

“He didn’t,” Said Jonas, “his… ‘fall guy’ had a change of heart after spiking your drink and chose to prevent you from drinking it in a fashion that wouldn’t cost him his job.”

Marinette gave a shaky nod, making Jonas stand up, “I’ll have a colleague come over in the morning to collect a statement.”

Marinette glanced at her parents, before giving a shaky nod.

W&I

Lin glared at Amelie Graham de Vanily, the woman had arrived asking to see Adrien.

“Whatever defence you have for Gabriel can wait.” Snapped Lin, shortly.

“I’m not here to defend him.” Stated Amelie, wincing, “I know we haven’t had an official meeting, but I have more contempt for him than you’d believe.”

“Doubtful.”

“I had to watch him destroy my parent’s life work, drive my sister in an early grave and-” Amelie’s voice cracked, “and emotionally abuse my son because he was too incompetent to produce a child of him own!”

Lin levelled Amelie with a stoic look, “The British branch still exists, does it not?”

“It does.” Amelie replied, stiffly.

“Then re-expand to France.” Lin turned and stalked back into her daughter’s bakery, as a tired looking police officer left, “Suyin,” the woman jumped, “I need you to contact all my investees, if any of them support or agree with Gabriel Agreste in any way, they will have all of the funds we have supplied rescinded.”

Suyin nodded, pulling her computer out and started typing up an initial email. Lin frowned as Tao moved on from cheese puffs to mustard covered bread sticks.

“You okay, Toby?” Asked Qiang, frowning at his brother.

“Yeah,” Grumbled Tao, “apparently Jack’s not allowed to adopt, something about a stipulation in his modelling contract. So, after a fuck-”

“Language.” Scolded Qilin, frowning at him.

“-ton arguments, discussions and yelling, I’ve agreed to temporarily stop my treatments so we can try for a kid.”

“…Okay?” Said Qiang, frowning.

“And, thanks to the stop in the treatment, I’ve gotten this really shitty cravings.”

His family looked at him, “Tell me, before these started, did you throw up really easily?” Asked Suyin.

“Skye, how do you know that?” Asked Tao, through a mouthful of food.

“I think you should get yourself checked.” Suggested Qiang, before looking around the room, “Where’s Marinette gone?”

“She went up stairs with her boyfriend.” Said Suyin, not looking up from her laptop.

W&I

Marinette gently stroked Adrien’s head, he’d overheard his aunt, mother, speaking with her grandmother. His panicked breaths had started to even out, he’d tried to move, only to slump against her.

“I’m sorry.” Adrien’s voice was small.

“You haven’t done anything to apologise for.” Soothed Marinette, “You’ve just had your world destroyed. Twice.”

“…I love you.” Marinette sighed, wrapping her arms around Adrien.

“I love you too, Chaton.”

W&I

Jonas quietly tapped her arm, waiting for Ladybug to arrive. The duty sergeant had noticed Gabriel Agreste’s broach had changed when he touched it and alerted her to it. The sound of someone landing on the roof, skidding, hitting something and cursing told her that Ladybug had arrived.

“Do you kiss your mother with that mouth?” Asked Jonas, frowning at the teenager.

“Sorry.” Apologised Ladybug, straightening up, “You said you had a lead on Hawkmoth.”

Jonas held up an evidence bag and showed Ladybug the broach.

Ladybug let out a small gasp, “Holy shit.”

W&I

“It’s been quite the turn of events, hasn’t it?” Said a Talk show host. They had the tv on as back ground noise as they redecorated Adrien’s room, “Gabriel Agreste had been confined to prison for the rest of his life, for being Hawkmoth, kidnapping his nephew, attempting to solicit the murder of said nephew’s girlfriend. And, to cap it all off for the deplorable human being, his company has gone bankrupt.”

“That’s not all, Tom.” Said the co-host, “Emilie Agreste has been laid to rest, his house has been offered to Ladybug as a base for her and her team, should they accept it, and sixteen of his previous employees had come forward alleging that he harassed them.”

“Ooh, the tea keeps getting sweeter-” Amelie turned the tv off, “Those idiots are going my head in.”

“I quite liked it.” Sniffed Felix, as Adrien tried to unscrew a bolt on the bed, “You need to turn it the other way.”

#miraculous ladybug #marinette dupain cheng #adrien agreste #delta writes #gabriel agreste #tomoe tsurugi #audrey bourgeois #sabine cheng #tom dupain #nathalie sancoeur #amelie graham de vanily #felix fathom #kagami tsurugi #roger raincomprix #original characters

13 notes · View notes

govindhtech · 2 months ago

Text

Entra ID Lateral Movement And Expanding Permission Usage

Abusing Intimate Permissions for Lateral Movement and Privilege Escalation in Entra ID Native Environments: (In)tune to Takeovers

Recently, a client received assistance from the Mandiant Red Team in visualizing the potential consequences of an advanced threat actor breach. In order to compromise the tenant’s installed Entra ID service principals, Mandiant migrated laterally from the customer’s on-premises environment to their Microsoft Entra ID tenant during the evaluation.

Using a popular security architecture that involves Intune-managed Privileged Access Workstations (PAWs), we will discuss in this blog post a new method by which adversaries can move laterally and elevate privileges within Microsoft Entra ID by abusing Intune permissions (DeviceManagementConfiguration.ReadWrite.All) granted to Entra ID service principals. We also offer suggestions and corrective actions to stop and identify this kind of attack.

A pretext

The client had a well-developed security architecture that adhered to the Enterprise Access model suggested by Microsoft, which included:

An Active Directory-based on-premises setting that adheres to the Tiered Model.

A Microsoft Entra Connect Sync-synchronized Entra ID environment that synchronizes on-premises identities and groups with Entra ID. PAWs, which were completely cloud-native and controlled by Intune Mobile Device Management (MDM), were used to administrate this environment. They were not connected to the on-premises Active Directory system. To access these systems, IT managers used a specific, cloud-native (non-synced) administrative account. These cloud-native administrative accounts were the only ones allocated Entra ID roles (Global Administrator, Privileged Role Administrator, etc.).

A robust security barrier was created by separating administrative accounts, devices, and privileges between the Entra ID environment and the on-premises environment:

Because Entra ID privileged roles are associated with unique, cloud-native identities, a compromise of the on-premises Active Directory cannot be utilized to compromise the Entra ID environment. This is an excellent practice for Microsoft.

An “air gap” between the administration planes of the two environments is successfully created by using distinct physical workstations for administrative access to cloud and on-premises resources. Attackers find it very challenging to get through air gaps.

Strong Conditional Access regulations imposed by Privileged Identity Management assigned roles to the administrative accounts in Entra ID, necessitating multi-factor authentication and a managed, compliant device. Additionally, Microsoft recommends these best practices.

Attack Path

One of the objectives of the evaluation was to assign the Mandiant Red Team the task of obtaining Global Administrator access to the Entra ID tenant. Mandiant was able to add credentials to Entra ID service principals (microsoft.directory/servicePrincipals/credentials/update) by using a variety of methods that are outside the purview of this blog post. This gave the Red Team the ability to compromise any preloaded service principal.

There are a number well-known methods for abusing service principal rights to get higher permissions, most notably through the usage of RoleManagement.See AppRoleAssignment and ReadWrite.Directory.Application and ReadWrite.All.ReadWrite.All rights for Microsoft Graph.

However, the Mandiant Red Team had to reconsider their approach because none of these rights were being used in the customer’s environment.

Mandiant found a service principle that was given the DeviceManagementConfiguration after using the superb ROADTools framework to learn more about the customer’s Entra ID system.Go ahead and write.Permission is granted.Image credit to Google Cloud

The service principal is able to “read and write Microsoft Intune device configuration and policies” with this authorization.

Clients running Windows 10 and later can execute the unique PowerShell scripts used by Intune for device management. Administrators have an alternative to configuring devices with settings not accessible through the configuration policies or the apps section of Intune by using the ability to run scripts on local devices. When the device boots up, management scripts with administrator rights (NT AUTHORITY\SYSTEM) are run.

The configuration of Device Management.Go ahead and write.To list, read, create, and update management scripts via the Microsoft Graph API, all permissions are required.

The Microsoft Graph API makes it simple to write or edit the management script. An example HTTP request to alter an existing script is displayed in the accompanying figure.PATCH https://graph.microsoft.com/beta/deviceManagement/ deviceManagementScripts/<script id> { "@odata.type": "#microsoft.graph.deviceManagementScript", "displayName": "<display name>", "description": "<description>", "scriptContent": "<PowerShell script in base64 encoding>", "runAsAccount": "system", "enforceSignatureCheck": false, "fileName": "<filename>", "roleScopeTagIds": [ "<existing role scope tags>" ], "runAs32Bit": false }

The caller can provide a display name, file name, and description in addition to the Base64-encoded value of the PowerShell script content using the Graph API. Depending on which principle the script should be run as, the runAsAccount parameter can be set to either user or system. RoleScopeTagIds references Intune’s Scope Tags, which associate people and devices. The DeviceManagementConfiguration can likewise be used to construct and manage them.Go ahead and write. Permission is granted.

The configuration of Device Management.Go ahead and write.By changing an existing device management script to run a PowerShell script under Mandiant’s control, Mandiant was able to go laterally to the PAWs used for Entra ID administration with full authorization. The malicious script is run by the Intune management script when the device reboots as part of the user’s regular workday.

By implanting a command-and-control device, Mandiant could give the PAWs any instructions. The Red Team obtained privileged access to Entra ID by waiting for the victim to activate their privileged role through Azure Privileged Identity Management and then impersonating the privileged account (for example, by stealing cookies or tokens). By taking these actions, Mandiant was able to fulfill the assessment’s goal and gain Global Administrator rights in Entra ID.

Remediation and Recommendations

To avoid the attack scenario, Mandiant suggests the following hardening measures:

Review your organization’s security principals for the DeviceManagementConfiguration.ReadWrite.All permission: DeviceManagementConfiguration should be handled by organizations that use Microsoft Intune for device management.Go ahead and write.Since it grants the trustee authority over the Intune-managed devices and, consequently, any identities connected to the devices, all permissions are considered sensitive.

Mandiant advises businesses to routinely check the authorizations given to Azure service principals, with a focus on the DeviceManagementConfiguration.Along with other sensitive permissions (like RoleManagement), there is the ReadWrite.All permission.See AppRoleAssignment and ReadWrite.Directory.Application and ReadWrite.All.ReadWrite.All.

Businesses that manage PAWs with Intune should exercise extra caution when assigning Intune privileges (either via DeviceManagementConfiguration).Use Entra roles like Intune Role Administrator or ReadWrite.All.

Enable Intune’s multiple admin approval: Intune allows you to use Access Policies to demand a second administrator’s approval before applying any changes. By doing this, an attacker would be unable to use a single compromised account to create or alter management scripts.

Think about turning on activity logs for the Microsoft Graph API: Graph API Activity logs, which provide comprehensive details about Graph API HTTP requests made to Microsoft Graph resources, can be enabled to aid in detection and response efforts.

Make use of the features that Workload ID Premium licenses offer: With a Workload-ID Premium license, Mandiant suggests using these features to:

Limit the use of privileged service principals to known, reliable places only. By guaranteeing that only trustworthy places are used, this reduces the possibility of unwanted access and improves security.

Enable risk detections in Microsoft Identity Protection to improve service principal security. When risk factors or questionable activity are found, this can proactively prohibit access.

Keep an eye on service principal sign-ins proactively: Monitoring service principal sign-ins proactively can aid in identifying irregularities and possible dangers. Incorporate this information into security procedures to set off notifications and facilitate quick action in the event of unwanted access attempts.

Mandiant has a thorough grasp of the various ways attackers may compromise their target’s cloud estate with some hostile emulation engagements, Red Team Assessments, and Purple Team Assessments.

Read more on Govindhtech.com

#EntraID #EntraIDLateral #Lateral #Mandiant #MicrosoftEntraID #RedTeam #Windows10 #News #Technews #Technology #Technologynews #Technologytrends #govindhtech

3 notes · View notes

prolificsinsights · 7 months ago

Text

Harnessing the Power of Data and AI for Digital Transformation

In the rapidly evolving landscape of technology, the synergy of data and artificial intelligence (AI) is revolutionizing businesses across various industries. Digital transformation with Data AI is not just a buzzword; it's a strategic imperative for organizations aiming to stay competitive and innovative.

The Journey of Digital Transformation

Digital transformation begins with a robust data strategy. Companies like Prolifics emphasize the importance of managing, analyzing, and uncovering value from enterprise data. A well-defined data strategy ensures that data is not just collected but also effectively utilized to drive business outcomes. For instance, a banking client of Prolifics realized continuous value by leveraging advanced analytics to enhance their decision-making processes.

Unleashing the Potential of Data Analytics and AI

Data analytics and AI play a pivotal role in transforming raw data into actionable insights. Prolifics' expertise in data validation, modeling, and visualization enables businesses to predict future trends, optimize operations, and uncover transformative patterns. Consider the case of an insurance provider that strengthened its data analytics capabilities, leading to improved claims processing and customer satisfaction.

AI for Data Analytics

Artificial intelligence for business is a game-changer, especially when integrated with data analytics. AI algorithms can process vast amounts of data at unprecedented speeds, providing deeper insights and more accurate predictions. This capability is crucial for businesses looking to innovate and stay ahead of the curve. For example, a gaming company reduced its reporting time from days to minutes by adopting AI-driven data analytics solutions.

Ensuring Seamless Database Migration

Database migration is a critical component of digital transformation. Migrating to modern data platforms allows businesses to take advantage of advanced analytics and AI capabilities. Prolifics offers comprehensive data and AI services that ensure smooth transitions, minimizing disruptions and maximizing data integrity. This process involves meticulous planning and execution, ensuring that the migrated data is secure, consistent, and readily accessible.

The Comprehensive Approach: Data and AI Services

Prolifics' data and AI services encompass a wide range of solutions, including data governance, data privacy, master data management (MDM), and data hubs. These services are designed to ensure that data is accurate, secure, and readily available to drive business insights and innovation. Effective data governance, for instance, not only improves data quality but also enhances decision-making and operational efficiency.

Stories of Success

The true impact of data and AI is best illustrated through success stories. A notable example is a gaming company that leveraged Prolifics' data and AI services to drastically reduce its reporting time. By implementing advanced analytics and AI solutions, the company was able to streamline its operations and make faster, data-driven decisions.

In conclusion, digital transformation with Data AI is a powerful enabler for businesses seeking to thrive in the digital age. By harnessing the potential of data analytics and AI, organizations can unlock new opportunities, enhance their operations, and stay ahead of the competition. Prolifics' expertise in data and AI services offers a roadmap for businesses to navigate this transformative journey successfully.

For more information on how data and AI can transform your business, visit Prolifics.

#digitaltransformation #digitalengineering #data & analytics #data analytics #data analysis #datascience #data

2 notes · View notes

clothyume · 9 months ago

Text

Colourful Good Job Episode 1

Episode 1

Season: Summer

Characters: Sora, Tsumugi

Tsumugi: …Yes. I’ve received it securely. Once I’ve put a stamp on I’ll take care of it.

No, I’m grateful that you’ve helped me get this far, despite all the work I’m doing.

Rather, really I should be the one apologising for increasing the work of all the staff!

Ah. After this you have a recording to attend? I’m sorry for holding you back.

If there’s anything I can do, please get in touch immediately.

…Ye~ah. The staff really bear a heavy burden. What other jobs can I be involved with.

Sora: ………

Tsumugi: Oh, Sora-Kun. What are you doing peeking through the doorway? Aren’t you going to come in?

Sora: …! HaHa~. Good morning, Senpai!

Tsumugi: Yes. Good morning~ ♪

That’s right. We got a box of cakes from the suppliers. They’re really delicious, would you like one, Sora-kun?

Sora: Yay, Sora’ll have one, since Sora was just getting hungry♪

Tsumugi: Go right ahead. Anyway, are you here on an errand?

Sora: Nope. I have a little time before my next job, so I came to see senpai!

HiHi~. Senpai seems busy, so should Sora give you some energy~?

Tsumugi: Fufu. Thank you very much~ ♪ Thanks to Sora I can give it my all until the afternoon.

Sora: Is Senpai busy again today? Do you want to play with Sora when you’re next off work~?

Tsumugi: That’s all the more reason I have to work hard so I can be done with quickly.

Please don’t worry. My workload has been increasing recently, but I should be able to relax a little in no time.

Sora: Sora will worry no matter what. Not just Senpai, but isn’t Master busy too~?

Even though “MDM” is over, why is everyone still busy?

Tsumugi: Ah, I see. To Sora-kun it looks like ES has regained their composure as a whole…

Sora: Yeah. Before, everyone at ES was tense… The ‘colour’ of suffering and weariness was everywhere. Sora was suffocating~…?

Now that “MDM” is over that painful ‘colour’ is going away little by little.

But, like Senpai said, does it just look like it’s regained its composure?

Tsumugi: In reality, it seems as though an increasing amount of staff are taking leave at other offices.

Unlike other places, we don’t have a lot of funds.

Operations that could normally be made more efficient if we had the money to do so, we have no choice but to steadily handle with the people we currently have.

Sora: But, isn’t it bad to push yourself too much?

Tsumugi: That’s right. A lot of staff are burdened with the current situation.

In reality, it’s apparent that everyone here seems exhausted. I’m also getting myself involved in all the work I can…

Sora: HuHu~. If you do that, won’t Senpai just get really tired~?

Tsumugi: Fufu. Sora-kun is a good kid. But, I still have some flexibility, so I’m fine.

But, I’d like to relax soon. As the deputy director, if I work hard, then everyone else can take a break, right?

I wish I could use this opportunity to hold a staff appreciation party.

Sora: A staff appreciation party?

Tsumugi: Yeah. It would be difficult regarding the schedule to suddenly increase the number of days off…

I was wondering about holding a party to thank everyone for their hard work thus far.

Sora: HeHe~! Sora agrees! Sora thinks it would be good to reward everyone for their hard work~?

Tsumugi: Fufu. I’m not sure if it will be a reward though. But, if we hold a staff appreciation party, we’ll need manpower and funds.

We would need to reserve a venue and prepare meals.

But, if we allocate too much staff for that, it’s possible that people will think they should be diverted to work.

Sora: ………? People will get angry even though you want them to relax at the staff appreciation party?

Tsumugi: I’m not necessarily saying that anyone at New Di thinks that way. I think they would be happy that we even held a party at all.

I’m just saying it might be a possibility. When it comes to balancing plans… I can’t do everything the way I want so it’s difficult to make arrangements.

That’s why I’m thinking I could plan to avoid any thorns… But considering the work I have, it might be difficult for a while.

Ah, I’m sorry. I didn’t plan on telling Sora-kun such a heavy story…

Sora: No, Sora doesn’t mind~!

In fact, Sora is happy to know that Senpai is thinking of everyone♪

Sora will work hard so that Senpai can take it easy~!

Tsumugi: Ahaha. Sora-kun has already helped me a lot. So please don’t worry about it.

Sora: Well, Sora had better head off, see you later Senpai~♪

Tsumugi: Yes. Take care, Sora-kun.

#suntan SUMMER #ensemble stars #enstars #sora harukawa #tsumugi aoba #english translation

5 notes · View notes

indizombie · 2 years ago

Quote

The National Programme of Nutritional Support to Primary Education (MDM Scheme), launched in August 1995 emphasises on the provision of cooked meals with a minimum of 450 – 700 calories and 8-12 grams of proteins and was further converted by the National Food Security Act (NFSA) 2013 into a legal right upto Class 8. Over 94% of the children in government and government aided schools come from Scheduled Caste, Scheduled Tribe, Other Backward Classes and minority communities. For a majority of children in government schools who are from marginalised communities and malnourished, garlic, onion and eggs form an important part of their diets, limited only by the factor of affordability. Eggs have been denied to children as part of the mid-day meals in schools for several years. Described as the ‘menstrual discharge’ of the hen, eggs are labelled as ‘sinful’, ‘violent’, and agitating the senses, with egg eaters deserving to be ‘destroyed’. If, instead of this unscientific propaganda, the nutritional value of eggs had been the primary deciding factor, children would have been given eggs as part of the mid-day meal scheme on 5 days of the week.

Dr Sylvia Karpagam, ‘A critical look at Indian healthcare‘, Aura

#Aura #Sylvia Karpagam #India #National Programme of Nutritional Support to Primary Education #National Food Security Act #Scheduled Castes #Scheduled Tribes #Other Backward Classes #minority communities #children in government schools #garlic #onion #eggs #affordability #unscientific propaganda #nutritional value #mid-day meal scheme

17 notes · View notes

daydreamersana · 2 years ago

Text

𝐖𝐡𝐚𝐭 𝐢𝐬 𝐄𝐌𝐌 & 𝐇𝐨𝐰 𝐃𝐨𝐞𝐬 𝐢𝐭 𝐃𝐢𝐟𝐟𝐞𝐫 𝐟𝐫𝐨𝐦 𝐌𝐃𝐌?

Businesses that have a large mobile fleet workforce often find it challenging to manage and control their mobile devices. It is imperative that a company has an efficient system to monitor and operate their mobile devices, confined within their corporate policies, in order to have productive growth.

There are various tools that companies use to manage their mobile devices, like 𝐞𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐦𝐨𝐛𝐢𝐥𝐢𝐭𝐲 𝐦𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 (𝐄𝐌𝐌), unified endpoint management (UEM), and mobile device management (MDM). These tools have varying features, although their basic operations revolve around the security and privacy of mobile data, and strive to increase employee productivity.

Often people mistake 𝐄𝐌𝐌 𝐬𝐨𝐥𝐮𝐭𝐢𝐨𝐧𝐬 and MDM software as one and the same thing. Let’s take a look at each and see how they differ from each other.

𝐖𝐡𝐚𝐭 𝐢𝐬 𝐌𝐃𝐌?

MDM is the remote management of mobile devices, enabling users to engage in preset tasks on their mobile devices. MDM software carried a few useful features like security measures, location tracking, and enrolment.

Moreover, if a device under the MDM software went missing, the IT department is able to wipe the data remotely. This ensures the data is not stolen or misused.

MDM is a good way of keeping mobile devices under an enterprise managed efficiently. When employees started carrying two different devices, BYOD came into being, and employees could shift between personal and work data seamlessly.

This transitional management gave rise to mobile application management. MAM focused on specific applications on the devices, rather than targeting the whole device.

When it started, MDM didn’t have the ability to manage content and apps. But since, it has evolved and grown with more features like installing apps, configuring different profiles for BYOD, wiping data, and enforcing passwords. Additionally, it could manage and secure mobile devices running on different platforms through one console.

𝐖𝐡𝐚𝐭 𝐢𝐬 𝐄𝐌𝐌 𝐒𝐨𝐥𝐮𝐭𝐢𝐨𝐧𝐬?

𝐄𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐦𝐨𝐛𝐢𝐥𝐞 𝐝𝐞𝐯𝐢𝐜𝐞 𝐦𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 is software that enables the user to control and monitor their employee’s mobile device behaviour securely. This is especially true of those businesses that house BYOD ecosystems.

EMM has its roots in MDM. MDM could only focus on the control of mobile devices and their security. EMM is a combination of different security solutions like MDM, MAM, MCM, and IAM. While these four started out as individual products, they are now part of the 𝐞𝐧𝐭𝐞��𝐩𝐫𝐢𝐬𝐞 𝐦𝐨𝐛𝐢𝐥𝐢𝐭𝐲 𝐦𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 suite.

The 𝐛𝐞𝐬𝐭 𝐞𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐦𝐨𝐛𝐢𝐥𝐢𝐭𝐲 𝐦𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 𝐬𝐨𝐥𝐮𝐭𝐢𝐨𝐧𝐬 are those that work as a unified endpoint management system. This allows the company to manage various devices from one central server.

𝐇𝐨𝐰 𝐓𝐨 𝐂𝐡𝐨𝐨𝐬𝐞 𝐁𝐞𝐭𝐰𝐞𝐞𝐧 𝐄𝐌𝐌 & 𝐌𝐃𝐌?

When you are out looking to secure and manage your mobile workforce, the most confusing question would be which to choose – EMM or MDM. There’s one way to deal with that question, and that’s checking how the answer to the following questions fulfils the requirements of your company.

· How difficult or easy is it to manage the privacy and security of your employees?

· How many endpoints are there for you to manage, and which of them need to be managed?

· Are you looking for a cloud-based deployment or an on-premise deployment? Which one would suit you best?

· Are you looking for protection against online security issues and data breaches?

· Do you need to add new applications or technologies for management?

· How big is your organization?

· Does your business host BYOD or are there corporate devices?

· Which management features do you need for your employees?

· Would you require tech support to deploy endpoints?

· Does your company need to scale the 𝐞𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐦𝐨𝐛𝐢𝐥𝐞 𝐝𝐞𝐯𝐢𝐜𝐞 𝐦𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 system to accommodate the requirements of businesses?

As you can see, 𝐄𝐌𝐌 𝐬𝐨𝐥𝐮𝐭𝐢𝐨𝐧𝐬 and MDM solutions are all different levels of mobility management that are designed and deployed to take care of any security or privacy concerns. The primary difference between the two is the level of management these systems require.

While MDM is focused on the management of smartphones, 𝐞𝐧𝐭𝐞𝐫𝐩𝐫𝐢𝐬𝐞 𝐦𝐨𝐛𝐢𝐥𝐢𝐭𝐲 𝐦𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 is an expansive system that comprises MAM, MDM, MSM, MCM, MEM, and identity and access management. Additionally, EMM software can act as a unified endpoint management system that enables the management of various endpoints and mobile devices in one place.

Once you understand what these two management tools comprise and the fine line of differences between them, you will be better equipped to select the right one for you.

Email Us

For More Information Click here

3 notes · View notes

educational-training-courses · 18 hours ago

Text

What is Microsoft Intune & Why Use It With Azure?

Microsoft Intune is a cloud-based service offered as part of the Microsoft Endpoint Manager suite. It focuses on mobile device management (MDM) and mobile application management (MAM). Intune enables organizations to control how devices (such as smartphones, tablets, and laptops) are used and ensures compliance with organizational security policies.

#IntuneCertification #MicrosoftIntuneTraining

0 notes

hanasatoblogs · 1 day ago

Text

Future of Master Data Management: Trends in Entity Resolution and Beyond

As organizations increasingly depend on data to drive decisions, operations, and strategies, Master Data Management (MDM) has evolved from being a backend IT tool to a strategic business enabler. Central to this transformation is the advancement of entity resolution, a critical process within MDM that identifies, reconciles, and consolidates data to create a unified view of entities such as customers, products, and suppliers.

The future of Master Data Management is shaped not only by innovations in entity resolution but also by broader trends that enhance data governance, quality, and usability. This article explores these trends and offers insights into how businesses can prepare for the future of MDM.

The Role of Entity Resolution in MDM

Entity resolution is the backbone of effective MDM, enabling businesses to identify and merge duplicate or fragmented records into a single source of truth. Traditionally reliant on deterministic rules and manual interventions, entity resolution has undergone significant advancements with the advent of intelligent technologies.

Current Trends in Entity Resolution

AI-Driven Algorithms Artificial intelligence and machine learning are redefining entity resolution by automating the matching process. These algorithms can:

Detect subtle similarities across data records.

Continuously improve by learning from new patterns and user feedback.

Reduce false positives and negatives in matching.

Fuzzy Matching Techniques Modern entity resolution systems use fuzzy matching to identify records with slight variations (e.g., “Jon Smith” vs. “John Smyth”). This is particularly valuable for businesses managing multilingual or international datasets.

Real-Time Resolution With the growing need for instant insights, real-time entity resolution has become a priority. Organizations can now process and unify data as it is generated, enabling faster decision-making.

Graph-Based Resolution Graph databases are increasingly used for entity resolution, as they allow businesses to map relationships between entities effectively. For example, a graph-based approach can link customer profiles to their social networks, transaction histories, and support interactions.

Beyond Entity Resolution: Emerging Trends in MDM

While entity resolution remains critical, the future of MDM extends far beyond it. Businesses are leveraging new technologies and approaches to address the evolving complexities of data management.

1. Cloud-Native MDM

Cloud adoption is transforming MDM by offering:

Scalability: Easily handle growing data volumes.

Cost Efficiency: Shift from capital expenditures to a pay-as-you-go model.

Global Accessibility: Enable teams across geographies to access and manage master data seamlessly.

Example: A global retailer migrated its MDM system to the cloud, achieving 40% faster processing speeds and enabling real-time updates for its international teams.

2. Decentralized MDM with Blockchain

Blockchain technology is emerging as a promising solution for decentralized MDM, particularly in industries like supply chain and healthcare. Benefits include:

Enhanced data integrity and immutability.

Improved transparency and traceability.

Secure sharing of master data across trusted parties.

3. AI and ML Integration

Artificial intelligence and machine learning are enhancing MDM in areas beyond entity resolution:

Predictive Analytics: MDM systems can forecast trends by analyzing historical data.

Data Enrichment: AI-driven tools automatically fill gaps in master data using external sources.

Anomaly Detection: Machine learning models identify and flag inconsistent or suspicious data.

Read - A Step-by-Step Guide to MDM Implementation and Modernization

4. Data as a Service (DaaS)

MDM is evolving into a service-oriented model, allowing organizations to consume and manage master data on demand. This trend aligns with the broader shift towards service-based architectures in IT.

5. Focus on Data Privacy and Compliance

As data privacy regulations like GDPR and CCPA become more stringent, MDM systems are incorporating features to ensure compliance:

Automated consent management.

Data masking and encryption.

Detailed audit trails for data lineage.

6. Multi-Domain MDM

Traditionally, MDM focused on a single domain, such as customer or product data. However, businesses now require multi-domain MDM solutions to manage interconnected data across domains seamlessly.

Example: A financial institution implemented multi-domain MDM to link customer data with transaction histories and compliance records, improving fraud detection and reporting efficiency.

Real-World Impact of Future MDM Trends

Retail Sector Advanced MDM capabilities allow retailers to create 360-degree customer views, enabling personalized marketing, inventory optimization, and seamless omnichannel experiences.

Healthcare With accurate patient records unified across systems, MDM helps improve treatment plans, reduce medical errors, and ensure compliance with data regulations.

Financial Services MDM enables banks and insurance companies to manage risk effectively, streamline compliance reporting, and enhance customer onboarding processes.

Challenges and How to Overcome Them

Data Complexity Managing unstructured and semi-structured data remains a challenge. Organizations can overcome this by investing in AI-driven tools that process diverse data types.

Integration Issues Integrating legacy systems with modern MDM architectures requires careful planning and expertise. A phased migration approach and the use of APIs can simplify the process.

Cultural Resistance Adopting new MDM technologies often faces resistance from employees accustomed to legacy systems. Comprehensive training and clear communication about benefits can address this issue.

Preparing for the Future of MDM

To stay ahead, businesses should:

Adopt Intelligent MDM Tools: Leverage AI and machine learning to automate and enhance entity resolution.

Invest in Cloud-Based Solutions: Embrace the flexibility and scalability of cloud-native MDM platforms.

Prioritize Data Governance: Establish strong governance frameworks to maintain data quality and compliance.

Focus on Interoperability: Ensure MDM systems integrate seamlessly with other enterprise applications.

Conclusion

The future of Master Data Management lies in its ability to adapt to evolving data challenges and leverage cutting-edge technologies. While entity resolution will remain a core function, advancements in AI, cloud computing, blockchain, and multi-domain capabilities are poised to redefine how organizations manage and utilize master data.

By staying ahead of these trends, businesses can unlock the full potential of their data assets, driving innovation, efficiency, and competitive advantage. In a world increasingly powered by data, the future of MDM promises exciting opportunities for those willing to embrace change.

#Master Data Management #technology #mdm #tech #ai

0 notes

shujaatkhan · 11 days ago

Text

Bypass Remote Management MDM For iPhone & iPad (NEW)

Download Link: https://www.gsmtoolkitblog.xyz/2024/12/bypass-remote-management-mdm-for-iphone.html

Remote Management, or Mobile Device Management (MDM), is a feature used by companies, schools, or organizations to control and manage iPhones and iPads. It allows administrators to apply restrictions, manage apps, and secure data on devices. While it’s useful for organizations, users sometimes face challenges when they buy second-hand devices locked with MDM. If you’re in such a situation, this guide explains how to bypass MDM restrictions safely and effectively.

0 notes

willsm12 · 12 days ago

Text

Transforming IT Operations with AIOps: The Power of IntuneMax in Streamlining IT Efficiency

In the fast-paced digital world, IT teams are overwhelmed by repetitive tasks – from managing devices to ensuring security and handling software updates. As organizations scale, manual IT operations become not only time-consuming but also risky and inefficient. The solution? Revolutionizing IT Operations with AIOps, short for Artificial Intelligence for IT Operations, is paving the way for smarter, automated IT management. Enter IntuneMax – a transformative AIOps solution designed to revamp and streamline IT operations.

The IT Struggle: Old-School Management in a Digital-First World

Imagine your IT team spending hours manually rolling out software patches, configuring security settings, and ensuring every device complies with company policies. This manual approach often results in:

Wasted resources and time

Increased chances of human errors

Limited capacity for strategic planning and innovation

As businesses evolve digitally, relying on traditional IT management tools is no longer feasible. The need for smart, automated solutions to handle the increasing workload is more critical than ever. This is where IntuneMax steps in.

Introducing IntuneMax: The Future of IT Operations Automation

IntuneMax is a cutting-edge SaaS solution built on the Microsoft Intune platform and powered by Power Automate Cloud Flow. This combination unleashes the potential of AIOps, bringing automation and intelligence to IT operations like never before. Here's how IntuneMax works:

1. Microsoft Intune: The Core of IT Management IntuneMax leverages the robust capabilities of Microsoft Intune:

Mobile Device Management (MDM) and Mobile Application Management (MAM)

Centralized device enrollment and configuration

Compliance policy enforcement and conditional access control

2. Power Automate: The Engine for Automation IntuneMax enhances Intune with Power Automate Cloud Flow, providing:

Automated handling of routine IT tasks

Intelligent workflows between different platforms and services

Pre-built templates for common tasks like software updates and device configurations

3. AI-Driven Decision Making: Smarter IT Management IntuneMax integrates AI to drive decision-making, including:

Real-time data processing for automated decisions

Predictive analytics to anticipate IT challenges

Machine learning to continuously optimize IT operations

Streamlining IT Operations with IntuneMax

IntuneMax is designed to make IT management more efficient, secure, and proactive. Here's how:

1. Effortless Device and Network Management IntuneMax automates the entire device lifecycle, from enrollment to policy enforcement. Devices automatically configure themselves with the necessary settings, reducing manual intervention and freeing up your IT team for more critical tasks.

2. Enhanced IT Security With AIOps, IntuneMax significantly strengthens security by:

Automating enforcement of security policies

Detecting and responding to threats in real-time

Intelligent patch management and anomaly detection

3. Proactive Monitoring and Predictive Maintenance Using predictive analytics, IntuneMax anticipates potential issues before they impact operations. It schedules automatic maintenance and optimizes overall system performance, reducing downtime and improving user experience.

4. Cost Reduction and Operational Efficiency By automating routine IT tasks, IntuneMax helps reduce operational costs and inefficiencies. IT teams can focus on innovation and strategic initiatives rather than being bogged down by day-to-day maintenance.

The Power of AIOps: Revolutionizing IT Management

IntuneMax’s AIOps capabilities go beyond automation:

Smart Data Analytics: Advanced algorithms analyze IT infrastructure data, offering actionable insights to improve decision-making.

Automated Troubleshooting: IntuneMax can identify and resolve many issues on its own, reducing manual intervention and improving response times.

Continuous Improvement: Machine learning enables IntuneMax to adapt and refine its processes, improving efficiency over time.

Comprehensive Network Visibility: Gain a holistic view of your network, helping with resource allocation and future planning.

Enhanced Service Management: Predict and prevent disruptions to maintain high service levels.

Real-World Impact: How IntuneMax Transforms IT Operations

Sarah, the CIO of a fast-growing tech startup, shares her experience with IntuneMax: "Before IntuneMax, our IT team was constantly firefighting. We were reactive, not proactive. With IntuneMax automating routine tasks, we’ve saved 70% of time spent on device management and reduced security incidents by 50%. The improvements in network reliability and operational efficiency have been remarkable. It’s been a game-changer."

Start Your IT Transformation Journey with IntuneMax

Are you ready to revolutionize your IT operations with AIOps? Here’s how to begin:

Book a Demo: See IntuneMax in action and discover how it can solve your IT challenges.

Customize Your Solution: Our experts will tailor IntuneMax to meet your organization’s unique needs.

Implement and Optimize: Watch as IntuneMax transforms your IT operations with smarter, more efficient workflows.

By embracing IntuneMax, you’re not just automating tasks – you’re reshaping your IT operations for the future. With AI-powered insights, automation, and proactive management, IntuneMax helps your IT team unlock new levels of efficiency, security, and innovation. Ready to drive the future of IT management? Contact Tryvium today and discover how we can help you leverage IntuneMax to its full potential.

#cloud contact center #contact center ai #customer experience #artificial intelligence

0 notes

medicalcollegeadmission · 15 days ago

Text

Admission in MDMS Father Muller | Direct Admission in Father Muller

Secure your MDMS admission at Father Muller Medical College. Explore options for direct admission and join one of the most prestigious institutions for advanced medical education.

#admissioninmdmsfathermuller #directadmissioninfathermulller

0 notes

theenterprisemac · 15 days ago

Text

All Things to All People - Curse

A trend that seems to becoming ever more common is the vendor decision to try to make their product cover as many possible use cases as possible. Just add that next feature that further expands what the product can do. There is this implicit vision of the one stop shop for something that can do everything. I want to look at this from the Mac management side.

A couple examples to highlight this: Jamf, Kandji and JumpCloud. Each of these products over the years has become increasingly broad. Jamf and Kandji used to be general Device Management tools. JumpCloud used to be an identity management solution–specifically a cloud-based directory service.

Now consider these products:

Jamf*

Device Management - Jamf Pro and Jamf NOW

Identity Management - Jamf Connect

Endpoint Compliance/Security - Jamf Protect

C-level security - Jamf Executive Threat Protection

School internet filtering - Jamf Safe Internet

Device Management for Schools - Jamf School

Kandji*

Device Management - Kandji

Added into Kandji: Compliance, Prism, Kai, Passport

Endpoint Security - Endpoint Detection & Response

JumpCloud*

Cloud Directory - JumpCloud

Added Features: Mobile Device Management, Onboarding Management, Zero Trust, Patch Management, Compliance

*not exhaustive lists just for demonstration

You can find other products that have followed the same path. I just want to focus on these because they are powerful and easy examples to point to.

The Curse

It is easy to understand why a for profit company and even more so a publicly traded company would do this. However, I will submit that this is actually a curse and a blight on their products. Yes, adding the features makes them more powerful, and yes having more of those features under the single umbrella makes them more useful in some cases–but there is a reason the age old saying

"jack of all trades master of none"

rings so true.

In the headlong pursuit of more features and covering more territory these products have become worse overall. I will cite an example: why is Munki so highly regarded as a package deployment tool? It is because that is all it does. It tries to be nothing else, and because of this it is exceptional at what it does.

Think about the above products what are they exceptional at? I would suggest that JumpCloud used to be exceptional as a cloud-based directory service, but has now become a bit muddled in its purpose and scope. You can certainly argue that JumpCloud is a bit less all over the map than Jamf, and if it wasn't for the MDM and patch management the features would be bit more targeted around identity management.

Jamf and Kandji have always been broad and not especially good MDMs (consider that for example Jamf doesn't give you access to the full range of MDM commands) or package managers, but as they have grown in feature sets the rest of the product to a certain extent languishes.

In the case of Jamf I would argue that they have routinely sacrificed quality for the sake of quantity in the feature department. Consider the features they add many are bought up companies at various states of integration. Jamf Connect used to be Nomad. Jamf picked up Wandera which has become the basis for a variety of things primarily Jamf Trust. Jamf Protect hails from Digita Security. The history of Jamf is littered with acquisitions many of which are only loosely integrated and sometimes take years, or have yet, to be fully integrated.

This approach is a good way to make money, but a bad way to build a product. By trying to be all things to all people these products guarantee that they will never be superlative examples of any of their feature sets and run the risk of better products replacing them–especially as open standards and integrations are developed.

The reality is that the more functions you add to your product and the more complex you make it the more the overall product tends to become confused. You end up okay implementations of various features and the timeline for improvements is dragged out due to competing priorities.

I leave you with this thought: beware of the vendor peddling the solves all solution, because it rarely does and to the extent that it does it is always at the expense of quality in some area–just a fact of life.

#mac management #apple #osx #mac #macos #kandji #mdm #jamf #jump cloud #flawed thinking

0 notes