Support

While NoMAD and NoMAD Pro can do some similar functions, the choice between the two primarily comes down to using Okta for authentication with NoMAD Pro or using AD for authentication with NoMAD.

For organziations deploying Macs to single users that are often off of the AD domain, NoMAD Pro offers a number of features that allow for a smoother workflow.

  1. Users never need to actually connect to the AD domain. All authentication is done via Okta’s publicly available endpoints.
  2. NoMAD Pro supports multifactor authentication requirements. NoMAD has no support currently, or planned, for multifactor authentication.
  3. NoMAD Pro can get Kerberos tickets, but NoMAD can’t get Okta tokens.

NoMAD Pro is designed to work with local-only accounts when keeping the password synchronized. If you still are using mobile accounts on your AD-bound Macs and have Okta synchronizing with AD please talk to us about the best workflow for that situation.

Running both applications together

It’s perfectly feasible to run both NoMAD and NoMAD Pro in an organziation. While running them at the same time on the same Mac might be a bit strange, both applications would run independently and not interfere with the other. Both applications have different preference domains as well, so the configurations do not cross.

NoMAD Pro Downloads – Current Version 1.2

  • NoMAD Pro Trial – includes package installer, Admin Guide, Chrome Plugin and Launch Agent
  • NoMAD Pro Licensed Version – includes package installer, Admin Guide, Chrome Plugin and Launch Agent, note requires a license file to run

NoMAD Pro Beta Download

  • No beta at this time

Other Information

While NoMAD and NoMAD Pro can do some similar functions, the choice between the two primarily comes down to using Okta for authentication with NoMAD Pro or using AD for authentication with NoMAD.

For organziations deploying Macs to single users that are often off of the AD domain, NoMAD Pro offers a number of features that allow for a smoother workflow.

  1. Users never need to actually connect to the AD domain. All authentication is done via Okta’s publicly available endpoints.
  2. NoMAD Pro supports multifactor authentication requirements. NoMAD has no support currently, or planned, for multifactor authentication.
  3. NoMAD Pro can get Kerberos tickets, but NoMAD can’t get Okta tokens.

NoMAD Pro is designed to work with local-only accounts when keeping the password synchronized. If you still are using mobile accounts on your AD-bound Macs and have Okta synchronizing with AD please talk to us about the best workflow for that situation.

Running both applications together

It’s perfectly feasible to run both NoMAD and NoMAD Pro in an organziation. While running them at the same time on the same Mac might be a bit strange, both applications would run independently and not interfere with the other. Both applications have different preference domains as well, so the configurations do not cross.

NoMAD Login AD Downloads – Current Version 1.1

Other Information

Similar to NoMAD and NoMAD Pro, NoMAD Login authenticates users to Active Directory whereas NoMAD Login+Okta authenticates directly to your Okta tennent.

The two products share a number of common features like FileVault enablement, just in time user creation, user account de-mobilzation and other features.

NoMAD Login+Okta Downloads – Current Version 1.1

NoMAD Login+Okta Beta

Other Information

Similar to NoMAD and NoMAD Pro, NoMAD Login authenticates users to Active Directory whereas NoMAD Login+Okta authenticates directly to your Okta tennent.

The two products share a number of common features like FileVault enablement, just in time user creation, user account de-mobilzation and other features.

NoMAD PKINIT Downloads – Current Version 2.0.1

Other Information

NoMAD PKINIT is specifically for organizations using smart cards for authentication to Active Directory and other Kerberos KDCs. NoMAD PKINIT can support multiple tickets, multiple identities and multiple Kerberos realms all at the same time. In addition NoMAD PKINIT provides a command line utility to get Kerberos tickets from the command line from both soft certificates and tokens.

NoMAD PKINIT supports both CryptoTokenKit and tokend-based smart cards, runs entirely in the user context and does not require any drivers or extensions to work.