NoMAD Pro 1.2

We’re excited to announce the biggest update to NoMAD Pro since it was released!

NoMAD Pro 1.2 is primarily new features and a few bug fixes. If you’re currently running version 1.1, there is no immediate need to update.

New Features

  • Ability to set a logo for the Sign In window.
  • Change Password menu item that will either change the password via Kerberos, if configured, take the user to their Okta dashboard page, or change it via another method of your choosing. When changing via Kerberos the user’s AD password complexity requirements will be pulled live from AD.
  • Support for Yubikey OTP as an MFA type.
  • LastSignIn time written out to the preferences noting the last successful Okta sign in.
  • Actions menu to allow you to extend the menu to any and all actions you want.
  • New URI action – nomadpro://gettickets will have NoMAD Pro silently go through the Kerberos ticket retrieval process.

Bug Fixes

  • Better handing of Kerberos tickets.
  • Reworked the certificate retrieval process to be more dependable.


You can get the last licensed version here. And the latest trial version here.

New look, same address

We’ve now added the full NoMAD family to the webpage and made it much easier to understand the differences between the products. All of the help pages and all of the links you may have been using should still all go to the same paces, although we will be moving the entire help section in the future as we create separate landing pages for each product.

NoMAD 1.1.4 Released!

NoMAD 1.1.4


Overall, a mix of small tweaks, some bug fixes in particular to automatic cert generation and keychain item handling. If you’re using NoMAD to pull certs, this would be a good update to do, otherwise most of the other changes are more minor.


Most of the changes are non-UI based. The biggest impact to the users may be the icon change when clicking on the icon as we use the dark icon to invert when clicked on. If you’re using custom icons, make sure you’ve set a the dark ones as well to allow for this inversion.

We hope to address our longest running issue, the lack of a Kerberos domain being set, when attempting to change a password for the first time. With 1.1.4 we will now write out a preference file to ~/Library/ with your AD domain as soon as NoMAD is launched for the first time.

An additional long-running issue is also addressed in that using the TitleSignIn key will work more consistently.

As mentioned above, if you’re using NoMAD to automatically pull certs, this would be a good update to install as a number of issues have been fixed.

Change Log

– fix for Sign In window not fully displaying
– About menu now in menu
– icon now alternates when clicking on the NoMAD icon in the menu bar
– icon alternates correctly when in dark mode
– Kerberos preferences written out on first launch to further prevent the “Domain not found” error when changing passwords
– Certificate expiration computed better, and won’t crash on an already expired cert
– Automatically getting certs won’t cause a massive amount of certs to be generated
– Certificate cleaning will only happen if asked
– User password in the keychain will be looked for in many ways to ensure that the user name case isn’t an issue
– better defaults printing in the logs with -prefs
– fix for Sign In Window title not showing correctly when forced
– better handling of when all DCs in a site go down
– action menu fixes to correct actionTrue and to allow for cutom titles and red/yellow/green icons
– ability to get custom list of attributes from AD
– better handling of shares in the Shares Menu when switching users
nomad://getuser will put entire AD user record into the logs
– AppleScript Support
– Option to always make the current local user the primary Kerberos ticket
– Minor update to German localization
– Option to auto-mount shares via the Finder
– Write out current domain controller to NoMAD preferences

Register Here for Our New NoMAD Login Webinar

Join Head of Engineering Josh Wisenbaker as he walks you through our new open source product NoMAD Login.  You’ll learn how to use NoMAD Login to create customized workflows including just-in-time user creation, mobile account de-mobilization, FileVault enablement at first login with APFS file systems and more.

Click on the links below to register for your preferred time.

Monday, February 26 at 3 p.m. CT

Tuesday, February 27 at 7 a.m. CT 


Meet @Mactroll

Joel Rennich, Founder, NoMAD

This is Joel Rennich, founder of NoMAD.

You may know him as the boisterous blonde guy at Mac conferences who worked at Apple for 11 years and started decades ago.

At Orchard & Grove, we know him as the brain (and the boss), who generates huge, brilliant thoughts about Macs in the enterprise — but has trouble finding his sunglasses.

Like Carrie, the NoMAD caribou mascot, Joel is fairly nomadic. He’s lived in Switzerland, Illinois, D.C., California, and Texas (so far). His work keeps him traveling a lot. In fact, he just earned the 2 million lifetime miles swag from American Airlines. He’s spent most of his adult life on the road talking to companies and organizations about how they can make Mac products work best in their environments. He’s extremely passionate about his work, and NoMAD is his second baby (but don’t tell his son that).

Leaving Apple wasn’t an easy choice, but in his new career he’s never far from the “AppleVerse.”

“I enjoy the freedom to explore the projects I really want to do — and the significant decrease in conference calls,” he says. “But what I didn’t realize when I started Orchard & Grove is that the engineering is the easy part of the job. The amount of overhead and paperwork that is required in order to run a small company is annoyingly difficult.”

Which is why he has hired a small team of experts who have his back. We’ll highlight a team member each month, so you can get to know us better. Because to know us is to love us, right?