Join Head of Engineering Josh Wisenbaker as he walks you through our new open source product NoMAD Login. You’ll learn how to use NoMAD Login to create customized workflows including just-in-time user creation, mobile account de-mobilization, FileVault enablement at first login with APFS file systems and more.
Click on the links below to register for your preferred time.
Monday, February 26 at 3 p.m. CT
Tuesday, February 27 at 7 a.m. CT
Joel Rennich, Founder, NoMAD
This is Joel Rennich, founder of NoMAD.
You may know him as the boisterous blonde guy at Mac conferences who worked at Apple for 11 years and started AFP548.com decades ago.
At Orchard & Grove, we know him as the brain (and the boss), who generates huge, brilliant thoughts about Macs in the enterprise — but has trouble finding his sunglasses.
Like Carrie, the NoMAD caribou mascot, Joel is fairly nomadic. He’s lived in Switzerland, Illinois, D.C., California, and Texas (so far). His work keeps him traveling a lot. In fact, he just earned the 2 million lifetime miles swag from American Airlines. He’s spent most of his adult life on the road talking to companies and organizations about how they can make Mac products work best in their environments. He’s extremely passionate about his work, and NoMAD is his second baby (but don’t tell his son that).
Leaving Apple wasn’t an easy choice, but in his new career he’s never far from the “AppleVerse.”
“I enjoy the freedom to explore the projects I really want to do — and the significant decrease in conference calls,” he says. “But what I didn’t realize when I started Orchard & Grove is that the engineering is the easy part of the job. The amount of overhead and paperwork that is required in order to run a small company is annoyingly difficult.”
Which is why he has hired a small team of experts who have his back. We’ll highlight a team member each month, so you can get to know us better. Because to know us is to love us, right?
by Josh Wisenbaker, Head of Engineering
As we have been pushing to the initial 1.0 release of NoMAD Login AD a surprising topic has come up quite a bit. Many admins are asking what the differences are between the different types of user accounts on macOS. By account type, we aren’t talking about the difference between an admin and user, but between local, network, or mobile. All of these account types have existed on macOS for a long time, but there are still many nuances that can trip you up at first.
The NoMAD product line knows how to deal with these account types in order to keep things moving along in your deployment. In light of some of the confusion that is out there about what makes each account type unique, we’ve prepared a quick primer on them. Each of these sections describes the different sort of user accounts that you can have on macOS and features that are unique to each of them.
This started off as a smaller update, then got bigger…
Some cool new features, a few bug fixes, and then a big new feature that we know will evolve some over time. In addition, NoMAD is now all in Swift 4 and all the warnings in Xcode are gone. You can thank Josh for that work.
- Fewer password prompts when updating keychain items. In fact… you should have no password prompts.
- We dug deep into Kerberos and should have squashed the annoying “Domain not set” issue when attempting to change your password through NoMAD for the first time.
- Recursive group search works with “,” in user names.
- Allow for both and expired AD password and a non-matching local password at the same time.
- Better handling of the current date when looking for UPC alerts. This should minimize erroneous UPC Alerts.
- Better handling of when your SSL Cert template doesn’t actually exist on the Windows CA.
- Match any keychain item account for updates with
- When using UPCAlerts and a URL for the password change type, NoMAD will check for new passwords every 30 seconds for 15 minutes to catch the new password change even faster.
- The Sign In window is now unable to be closed if
SignInAlert is set and the user has not signed in at least once.
- The current AD site being used is written out to the preference file.
- Known bad domain controllers can be blocked by listing them as an array of FQDNs in
- A new pref key,
DontShowWelcomeDefaultOff will pre-tick the “Don’t show again” box on the welcome screen so users won’t have to do it themselves when it first appears.
UseKeychainPrompt will now show the Sign In window whenever the user does not have a password in the keychain, even if the user has signed in before.
- Certs pulled via NoMAD can have
eapolclient added to them with the use of the
We thought this would take us a bit longer… but NoMAD now includes a full actions menu which can hold as many “actions” as you’d like. Each action is a customized menu item that can have scripts and other built in actions behind it. Each item can have multiple actions chained together plus the ability to show or hide the item and even put red/yellow/green dots next to the items.
This is a fairly robust way of putting as many custom menu items as you’d like into a submenu in NoMAD.
You can read all about it here