Smallstep

We've created a lightweight Okta® SSO integration for device identity, that offers the strongest possible guarantee that your Okta apps are only available on trusted devices. Now you can lock down your most sensitive resources with next-gen device authentication🔒 But how does it work? 🤔 Our cross-platform desktop application issues every authorized device a cryptographic ID that’s bound to a device’s silicon. Unlike a security token or a key file, it cannot be brought to another device. This feature strongly constrains any attack surface area involving sensitive resources. 👉 Check out the demo from Carl Tashian on the Smallstep blog: https://hubs.ly/Q02Mbl4t0 If you'd like to speak with someone on our team to learn more about how this solution ups your game from the standard Okta Device Identity, reach out to us! https://lnkd.in/gXA6RekK

It's the last day of #CyberSecurityAwareness month! We asked Smallsteppers to share some actionable tips on what users can do to stay safe online and protect themselves from phishing. 🎣 Here are 3 you can start RIGHT NOW: 1. Enable 2FA everywhere you can! 2. Use a password manager. (No one has time to remember all those unique, strong strings of characters anyway!) 3. Update your software. (We know, we know. Waiting for that reboot is not our idea of fun either.) Don't even get us started on number 5! 👀 Head on over to the blog to read if you are guilty... https://hubs.ly/Q02Wx2xv0

Here's another reminder: With Apple rolling out MAC Address Rotation on iOS 18, iPadOS 18, and macOS Sequoia, it's a clear nudge for businesses to ditch MAC address allowlisting—an outdated practice that never really provided true security. The way forward is 802.1x EAP-TLS (certificate-based authentication). 🔐 At Smallstep, our Wi-Fi solution provides a Certificate Authority, geo-distributed RADIUS server, and MDM integrations for the seamless deployment of certificates and network profiles to your clients, so you can have the highest possible assurance that only select devices can access your Wi-Fi network. Learn more about securing your network with certificate-based Wi-Fi here: [https://hubs.ly/Q02V9dFh0] Watch the full video on MAC Address Rotation in the comments. 📽️ #Cybersecurity #8021x #EnterpriseWiFi #MACAddressRotation #RADIUS #MDM #Smallstep

In case you missed it, macOS Sequoia 15, released last month, introduced MAC address rotation. By default, macOS devices will now periodically rotate random MAC addresses when connected to a Wi-Fi network, adding extra protection against tracking. If your organisation still uses static MAC address filtering, it’s time for a reconsideration. While you can configure your MDM to use the hardware MAC address on managed Wi-Fi networks, our latest article explains why it’s not worth the trouble—and what you should focus on instead for better security. If you’re interested in network security or just want to clear up some common misconceptions, give it a read! 🔗 Check it out here: https://hubs.ly/Q02R1mQf0 Would love to hear your thoughts in the comments! #cybersecurity #WiFiSecurity #NetworkSecurity #TechMyths #Smallstep #MACAddressFiltering #SSID

It’s happy hour at Booth 21 at #Oktane2024! Come visit us at Okta’s Identity event of the year. We are Raising the Bar on Device Trust 🚀😉 #deviceidentity #devicetrust #cybersecurity

Smallstep is headed to #Oktane24! Chat one-on-one with product experts, and see how you can Raise the Bar on Device Trust. Get a demo of Smallstep + Okta in action and snag yourself some exclusive swag 🙌 With Smallstep + Okta you can get the strongest possible guarantee that your Okta apps are only available on trusted devices. Smallstep's cross-platform desktop application issues every authorized device a cryptographic ID that’s bound to the device’s silicon. Unlike a security token or a key file, it cannot be brought to another device. This feature strongly constrains any attack surface area involving sensitive resources. See for yourself by clicking here: https://hubs.ly/Q02R6r_P0 ⏰ Set a reminder to join us for the Device Trust Bar at Booth #21 on Wednesday, October 16th at 3:00pm. Happy hour is on us!

macOS Sequoia 15, which was publicly released last week, introduces a feature that’s both a blessing and a curse: MAC address rotation. On one hand, users get more privacy—devices can’t be easily tracked since their MAC address changes periodically, even after connecting to a network. This goes beyond regular MAC address randomisation, which only changed MAC addresses during the probing phase. On the other hand, it’s poses a challenge for organisations that rely on static MAC addresses to identify devices on their network and control which ones can connect. In our latest article, We dive into why pseudo-security measures like MAC address filtering and hiding SSIDs won’t be effective anymore—and what you should focus on instead for better security. 🔗 Check it out here: https://hubs.ly/Q02R1hr70 Would love to hear your thoughts in the comments! #cybersecurity #WiFiSecurity #NetworkSecurity #TechMyths #Smallstep #MACAddressFiltering #SSID

We agree Linda Ikechukwu - passwords have GOT TO GO 🔑👏🏻

Thanks for the shout out Nadia T. 🎉 We are excited to share our newest integration with Jamf, now available on the marketplace 👏🏻

Find Cass, Michael Malone , Ted Malone or Brandon Batten to meet up at Black Hat today or tomorrow in Vegas! 🎰