Platform SSO for macOS on Hexnode MDM with Google WorkspaceSolved

Participant
Ideation
3 months ago

Hello Hexnode Team,

It’s been a pleasure to be Hexnode customer and I’m currently using Hexnode on a daily basis to manage our MacOS devices in our environment.

I have been noticed that Microsoft has released a preview of platform SSO on MacOS for Intune & EntraID.

I was wondering if Hexnode is having a development plan the same for Hexnode to integrate with Google Workspace as well?

As there will be a lot of open doors for passwordless authentication on MacOS when it comes to leverage Secure Enclave Key.

https://www.intuneirl.com/implementing-platform-sso-for-macos-a-deep-dive-into-configuration-troubleshooting/

Regards,

James.

Replies (3)

Marked SolutionPending Review
Hexnode Expert
3 months ago
Marked SolutionPending Review

Hey @james-hoang-nguyen , Great query man!

Hexnode has successfully implemented its Google Workspace Integration which is currently being used for the Single Sign-On (SSO) feature known as Hexnode Access. Additionally, we are in the process of integrating Google Workspace password synchronization through LDAP certificate authentication within Hexnode Access. We will keep you updated regarding the public release of this enhanced feature.

As for the implementation of Secure Enclave, we plan to explore it in the future.

I hope this information is helpful. Please feel free to reach out if you have any further questions.

Cheers
Ben Clarke
Hexnode UEM

Marked SolutionPending Review
3 months ago
Marked SolutionPending Review

Hi Ben,

Thanks for your response. The SSO implementation that you mentioned above only works for Gsuite account that users login to the portal for enrollment. The above implementation is a different one below, please check out the below URL.

https://support.apple.com/en-vn/guide/deployment/dep7bbb05313/web

 

With this implementation, the platform SSO for macOS will not use such secured LDAP, instead they will use the SSO token directly to authenticate to the IdP to login to the MacOS. Is there any specific roadmap / ETA for this implementation?

Regards,

James.

Marked SolutionPending Review
Hexnode Expert
3 months ago
Marked SolutionPending Review

Hello @james-hoang-nguyen , Thank you for your reply!  

The integration with Google Workspace isn’t limited to just enrollment authentication; we’re also using it within Hexnode Access. By configuring your Google Workspace domain in the Hexnode UEM portal, you can easily select this pre-configured domain when setting up the Hexnode Access policy. This makes the login process on your Macs smoother and more convenient for users. Also, in the upcoming updates for Hexnode Access, we’ll be introducing LDAP certificate authentication, which should enhance the experience further.

As for the platform SSO token being used directly for IdP authentication on Macs, it is indeed part of our roadmap, but we have not yet reached a stage where we can commit to a specific timeline.

I hope this clears things up. Let me know if you have any more questions!

Best regards,
Ben Clarke
Hexnode UEM

Save