- Signal UEM
Signal UEM automatically applies conditional access policies to devices when security threats are detected, allowing your organization to automatically remediate vulnerabilities by enforcing security policies across supported UEM platforms. When a vulnerable OS or app is detected on a device, the Signal UEM feature sends a signal to any integrated UEM/MDM solution. Administrators can use this to update vulnerable operating systems.
For more information, see Configuring Signal UEM Using Jamf Security Cloud and UEM Signaling.
- Out-of-date OS notifications
Security vulnerabilities are continuously discovered and fixed in newly released operating system (OS) versions. You can enable alerts for out-of-date operating systems to ensure your devices are always using the most secure OS version. When active, Jamf Trust can send a push notification to users and administrators when their devices require an OS update.
For more information, see Setting Notifications for an Out-of-Date OS.
- Vulnerable device restriction
You can enable the Access requires device risk validation setting to enforce risk-based access control in your ZTNA access policies. This prevents devices with a specified risk level (or higher) from accessing certain applications.
For more information, see Adding a New Predefined Appplication and Adding a New Custom Application in the Jamf Connect Documentation.
After identifying vulnerabilities in your environment using the vulnerability management report, you can use the tools and workflows Jamf Security Cloud provides remediate security risks. These tools include the following: