Identity Management Software Resources

Articles, Glossary Terms, and Discussions to expand your knowledge on Identity Management Software

Resource pages are designed to give you a cross-section of information we have on specific categories. You'll find articles from our experts, feature definitions, and discussions from users like you.

Contents

Identity Management Software Articles

Reducing Risks of Storing Sensitive Customer Data With Decentralized Identity

Is sensitive customer data an asset or a liability? When we think about the most successful companies in recent years that have leveraged customer data to build competitive advantages—such as the FAANG companies (Facebook, Amazon, Apple, Netflix, and Google)—we think of customer data as an asset.

MMC

by Merry Marwig, CIPP/US

The Case for Using Self-Sovereign Identity (SSI) for Immunity Passports

Companies across the globe are grappling with reopening their physical places of business in the coronavirus era. Businesses and governments have taken to location tracking, thermal recognition, and temperature checks to identify individuals potentially sickened with the coronavirus.

MMC

by Merry Marwig, CIPP/US

How Small Business Employees are Adjusting to Remote Work

G2 is constantly following the evolving B2B tech industry, especially during this uncertain time. As part of a series of articles based on a recent survey we conducted, G2 analysts have highlighted some key issues and statistics about what small business employees are facing while working from home, along with possible tools and courses of action everyone can take away.

by Nathan Calabrese

Identity Management Software Glossary Terms

Identity Management

Identity management helps prevent unauthorized access to company systems and data. Understand the benefits, challenges, and best practices.

by Alyssa Towns

Digital Certificates

A digital certificate is a form of a digital password that authorizes a device, server, or user. Learn more about its types, features, and use cases.

by Sagar Joshi

Decentralized Identity

What is decentralized identity and why is it important as a software feature? Our G2 guide can help you understand decentralized identity, how it’s used by industry professionals, and the benefits of decentralized identity.

by Michael Pigott

Identity Management Software Discussions

What specific conditions can be used to build conditional access policies?

Conditional access policies are becoming a must-have for organizations looking to tighten security without making things harder for users. With platforms like JumpCloud, there are often a variety of conditions you can set—like user group, device trust status, location, network, time of day, or even how sensitive an application is.

A big question is just how granular these rules can get. In some setups, multiple conditions can be combined to create very specific access requirements. For example, a policy might allow access only for members of a certain group, on trusted devices, from a certain location, and only during work hours.

Helpful features often include:

Conditions based on user role or group
Checks for device trust or compliance
Location or network-based restrictions
Sensitivity level of the application
Options to layer multiple conditions for more precise control
How flexible are JumpCloud’s conditional access policies in real-world use? Any examples or best practices for combining conditions to get the right balance of security and convenience?

Show Less

Combining user group and device trust makes it easier to block risky sign-ins.

Show Less

Answered: Brittany Guntang on July 16, 2025

JumpCloud's conditional access policies offer flexibility to build highly granular access rules. These include user group membership, allowing you to tailor policies to different departmental or role-based needs. Device trust is another powerful condition. You can verify if a device is managed by JumpCloud, if it possesses a valid device trust certificate, or if essential security features like disk encryption are active. This helps distinguish between trusted corporate devices and potentially unmanaged personal devices.

Beyond user and device attributes, contextual conditions are also available. These include location, which can be defined by specific IP address ranges (e.g., your office network) or by geographic regions. Network conditions allow you to differentiate between trusted internal networks and untrusted external networks, like public Wi-Fi. Policies can also be time-based, restricting access to certain times of the day.

Show Less

Answered: Evan Sherbert on August 4, 2025

See more answers (1)

Your answer

How does JumpCloud manage a mixed environment of macOS, Windows, Linux, iOS, and Android devices from a single console?

We’re considering JumpCloud as our device management platform since our team uses macOS, Windows, Linux desktops, plus iOS and Android smartphones. According to JumpCloud’s docs and my initial tests, the platform can enforce policies like:

Password requirements
Multi-factor authentication (MFA)
Device screen lock and inactivity timeout.
These can be applied to all supported operating systems from the same admin console.
However, some settings still need to be configured by OS. For example, mobile device management (MDM) for iOS has some unique controls compared to Android, and disk encryption is handled differently on Mac (FileVault) vs. Windows (BitLocker).

Has anyone else found other policies that are truly cross-platform in JumpCloud? Or have you run into limitations with certain device types?

Show Less

Some organizations mention challenges with enforcing updates or security baselines uniformly across all device types. Are there common pitfalls when trying to apply a single policy to both desktops and mobile devices in JumpCloud? Let me know what you think.

Show Less

Answered: Brittany Guntang on July 15, 2025

Unified Cloud Directory as the Foundation:

Single Source of Truth: At its core, JumpCloud provides a cloud-based directory that acts as the single source of truth for all user identities, regardless of the device they use or the OS it runs. This eliminates identity silos.
Cross-OS User Management: Users are managed once in JumpCloud, and their identities then extend to all enrolled devices, whether it's a Mac, Windows PC, Linux workstation, or mobile phone.

Native OS Agents and MDM for Deep Control:

macOS, Windows, Linux Agents: JumpCloud deploys lightweight agents on macOS, Windows, and Linux devices. These agents enable deep, native-level management capabilities, allowing for policy enforcement, software deployment, patch management, and system insights that go beyond what basic MDM alone can offer.
iOS/iPadOS/Android MDM: For mobile devices, JumpCloud leverages native MDM protocols (Apple's MDM for iOS/iPadOS, Android Enterprise for Android) to provide comprehensive mobile device management features.
Unified Policy Engine: Policies can be defined once and applied across different OS types, with JumpCloud translating them into the appropriate native commands or configurations for each OS. This ensures consistency.

Simplified Device Enrollment:

Zero-Touch Enrollment: Supports Apple Business Manager (ABM), Android Zero-Touch Enrollment, and Windows Autopilot for automated, out-of-the-box enrollment of new corporate devices.
User Self-Enrollment: Users can easily enroll their own devices (BYOD or corporate-owned) through a user portal, reducing IT overhead.

Integrated Identity and Access:

Single Sign-On (SSO): Users log in once with their JumpCloud identity and gain secure access to all applications (SaaS, on-prem, cloud servers) regardless of the device's OS.
Multi-Factor Authentication (MFA): MFA can be enforced for device login (macOS, Windows, Linux) and application access, providing consistent strong authentication across the entire mixed fleet.
Conditional Access: Policies can evaluate the "trust" state of any managed device (Windows, Mac, Linux, mobile) and combine it with user identity and network context to grant or deny access to resources. This applies security consistently across the diverse environment.

Centralized Management Console:

All management tasks – user creation, device enrollment, policy deployment, application distribution, patching, remote assist, and reporting – are performed from a single, cloud-based JumpCloud Admin Portal. This eliminates the need for IT to jump between multiple, disparate tools for different OS types.

Remote Management and Support:

Remote Assist: Provides native remote assistance capabilities for Windows, macOS, and Linux devices, allowing IT to troubleshoot and support users from anywhere.
System Insights: Collects telemetry from all managed devices, offering a unified view of their health and status.

JumpCloud allows IT to apply consistent policies, enhance security, and streamline operations across the entire diverse device fleet.

Show Less

Answered: Hayata Nakamura on August 4, 2025

See more answers (1)

Your answer

Identity Management Software Resources

Articles, Glossary Terms, and Discussions to expand your knowledge on Identity Management Software

Identity Management Software Articles

Reducing Risks of Storing Sensitive Customer Data With Decentralized Identity

The Case for Using Self-Sovereign Identity (SSI) for Immunity Passports

How Small Business Employees are Adjusting to Remote Work

How to Authenticate Remote Workers in a Zero Trust Security Model

The Ultimate Guide to Passwordless Authentication

Identity Management Software Glossary Terms

Identity Management Software Discussions