ACME Solutions
Ensure only trusted, managed devices are allowed access to critical resources by using the ACME Protocol with JoinNow Connector PKI.
Elevate Security with Device Trust
ACME improves upon the legacy SCEP RA process by allowing PKI providers to validate identities with high assurance before issuing certificates. Traditional SCEP implementations only require a pre-shared key for certificate issuance. With ACME, organizations can ensure that only trusted, managed devices obtain and maintain certificates that are used to access critical resources.
- Authenticate device’s through your MDM and Apple Servers before issuing certificates
- Monitor IDPs and MDMs via APIs to revoke access based on inactivity or compliance
- Improve your Defense-in-Depth by streaming device and security events to SIEM Servers and Security Appliances
Leveraging Apple Managed Device Attestation (MDA)
SecureW2’s ACME service can cryptographically prove a device is a genuine Apple Product, and confirm its Serial Number using Apple Managed Device Attestation (MDA). MDA is what allows JoinNow Connector PKI to validate a device’s identity and cross-reference it with your MDM to ensure only trusted devices can enroll for certificates.
Manage the Entire Certificate Lifecycle
Best-in-class enrollment solutions for BYOD and managed devices allows certificate-hardened security on all devices. Auto-enroll or revoke certificates based on real-time User Status. Combined with device monitoring and troubleshooting logs, customers often see a 10-50% drop in Wi-Fi configuration related support tickets after implementing SecureW2.
When users leave an organization, SecureW2 automatically flags their certificate so it can no longer be used to access the network. Powerful certificate management features allow admins to track and search for devices they want to revoke, and easily add it to the built-in Certificate Revocation List.
Custom policy generation delivers certificates to varying user roles. Create certificate templates to customize expiration, user access and much more. Automated notifications can be sent at intervals to remind users of upcoming certificate expirations.
Managed Device Auto-Enrollment
NIST has called PKIs integral to Zero Trust Network Access (ZTNA). One of the many reasons why a PKI is a foundational piece of ZTNA is because Certificates can verify a device’s identity. The ability to tie network authentication to a trusted device allows for sophisticated Zero Trust network segmentation, something passwords were never able to do.
That’s why we’ve worked closely over the years with partners like Microsoft and Jamf to design the JoinNow Connector PKI as an integral extension of your Device Management software. Using Industry-Exclusive APIs, Connector can automatically enroll, revoke, and renew certificates to any Intune-Managed devices, all without any IT or User interaction required. JoinNow Connector works with all major MDM vendors (Workspace One, Soti, MobileIron and more) and even your legacy Active Directory infrastructure so you can rest easy knowing your devices are secured.
Schedule a Demo
Sign up for a quick demonstration and see how SecureW2 can make your organization simpler, faster, and more secure.
Schedule NowPricing Information
Our solutions scale to fit you. We have affordable options for organizations of any size. Click here to see our pricing.
Check Pricing