We have pretty much eliminated all of the Mac's here. We didn't have 3rd party products to manage them so they always required so much manual interaction. Any global change we made we could easily automate with PC's thanks to group policy etc but it was always a manual change for the Mac's.
They really aren't a corporate product imo. You only have to look to Apple for a corporate grade management solution to realise that it doesn't exist. They do indeed need patching (http://support.apple.com/kb/HT1222) and there is AV products for them. Symantec has one for example. Personally I think the day is coming when someone will write a decent bit of malware/virus for them and 99% plus will get caught out by it. There is a very misguided opinion amongst the Apple community that they are safe. Apple's false advertising only strengthens this. The facts are that Mac's are more vulnerable than the PC world http://www.crn.com/security/226200083 More importantly, what is the need for the Mac's in the first place? For us they were only sued for Adobe CS, which runs just fine on PC's. In fact these days Adobe is more behind the PC world than the Mac. For example, 64bit Photoshop was first on PC, had to wait for CS5 for Mac to get it. That's without going into the Flash debate :) From: David Lum [mailto:[email protected]] Sent: Saturday, 4 September 2010 6:07 AM To: NT System Admin Issues Subject: Mac and Windows mix I would like to hear from those of you who have a mixed Windows/Mac environments: How do you handle management of the diverse environment? Presumably with Mac's there is no patching or AV. Can you use GPO's on them in any fashion (wondering if there's some add-in to allow equivalency). David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
