Every organization has Apple Devices, including macOS. For some, its a handful of machines used by artist and creatives. For others, its larger deployments used by developers, information security members or key executives. These users have access to sensitive information or wide swath of permissions and need to have their accounts protected the most. Historically these users are often excluded from security policies due to the poor end user experience as well as using non-modern user accounts. For the last 3 years we've been helping organizations improve their macOS end user experience and their security posture by modernizing their Apple device identity strategy. In this session we'll highlight some best practices so you too can modernize your Apple identity management at your organization.