Splunk is a security information and event management (SIEM) solution that allows organizations to collect, index, report, and present data from multiple sources. Zentral is centralized service that gathers event data from multiple sources and deploy configurations to multiple services. It allows for orchestration and event management with certain macOS…

Last week on Friday, Taylor Boyko, Founder and CEO at SimpleMDM, announced they will launch Munki powered by SimpleMDM short after the MacDevOps:YVR conference . Today we begin the technology preview for an exciting addition: Munki powered by SimpleMDM. Using Munki has traditionally required additional administrative effort to configure and…

Mid of last week National Institute of Standards and Technology has a released an exiting open-source Framework on GitHub: macos_security. macos_security — a macOS Security Compliance Project The project helps to setup and organize security baselines, and technical security controls in a structured and formulated fashion. The intention is to…

This is a short Step-By-Step instruction how to start a Zentral-all-in-one deployment on Amazon AWS. To make it even easier for you to follow along, we’ve recorded a screencast (4:25) to complement this blogpost. For…

In this post we’ll look how to enable the SingleSignOn (SSO) authentication for Zentral based on AzureAD/O365. So in case you happen to already use Azure as your SAML 2.0 provider we’ll show how quickly enable the Azure based sign-in for a Zentral instance. Preparations in Azure Before we start to activate SSO…

We continuously update the Zentral codebase, recently we’ve merged our latest dev branch into master. Why worth mention with a full blogpost ? — Well we’ve build-in some nice new updates into Zentral and so you’ll probably want to check these out in more detail. …

Welcome the fourth episode to get up and running Zentral-all-in-one on Google Cloud Platform. In this chapter we are enabling a SSO setup by using Okta as our SAML provider. A similar setup will also work with Google G Suite, many other SAML 2.0 …

Intoduction — Welcome back to our third tutorial in a series on Zentral. In this chapter we peek into internal settings, run few linux systemd commands and go inspect server side processes and workers on command line as well as in the Prometheus 2.0 interface. When I call Extra-Links->Kibana, I just get…

Welcome back to a tutorial series to run and explore Zentral in more detail. In this chapter we launch our “Zentral-all-in-one” instance. We setup our Let’s encrypt TLS certificate, create a admin user to login to Zentral web-interface, and prepare Kibana to show events from the zentral-events index. The previous…