Greetings all,
We have recently migrated our Jamf Pro instance from on-prem to the cloud product. We are now looking for best practices information and suggestions from others who have made this move and changed the way that they had implemented things locally. We made a fair sized jump (from late v10 to current v11, for various reasons) and some things definitely changed in that gap. For instance, the way that LAPS handles the password rotation and loses the cryptographic linked capabilities. One of the things we are particularly interested in is how to keep a secure environment (e.g. no "one account and password to rule them all" situation) but still have the token information needed for doing things like OS updates.
But, frankly, any suggestions are welcome. We have a bit of a grace period for organizational changes here during the migration project, and we want to take full advantage of it. We are working with consultants (Rocketman Tech) through this project, but we also wanted to hear from peer organizations that might have some valuable background to share.
Thank you very much!
Bruce Carter, University of Notre Dame