SecureW2 today announced product enhancements that strengthen how identity, device, and risk signals govern certificate issuance and access decisions. New integrations with leading security and MDM platforms give organizations greater control through real-time, condition-aware policies.
The update introduces support for SentinelOne telemetry, joining a growing ecosystem of real-time intelligence sources, including CrowdStrike, Palo Alto Networks, and Microsoft Defender. These integrations power SecureW2’s policy engine, enabling enforcement based on verified identity, device posture, and risk context.
Key Enhancements Include:
- SentinelOne: SecureW2 now ingests risk signals from SentinelOne’s device telemetry. The platform supports 76 attributes, with 10 used by default to calculate device risk scores categorized as low, medium, high, or critical. Indicators like malware, privilege escalation, and zero-day activity adjust a device’s trust profile in real time, allowing SecureW2 to block, delay, or issue certificates based on policy.
- Jamf School: Jamf School integration advances from generic SCEP to a full API-based model. Real-time lookups validate device supervision, management, and group membership using attributes like isManaged and isSupervised. Devices are matched by serial number, enabling granular control over certificate issuance in Apple-first environments.
- Microsoft Entra ID: User risk scores from Microsoft Entra ID can now drive enrollment and authentication policies. These scores reflect behavior anomalies, phishing exposure, and compliance gaps. Organizations can respond to elevated user risk with certificate-level controls, enabling earlier, automated enforcement.
SecureW2’s JoinNow Platform applies these inputs across three strategic layers: pre-certificate issuance validation, live enforcement through Adaptive Defense, and post-issuance integrity. This defense-in-depth framework ensures trust is verified before access is granted, then continuously evaluated and enforced throughout the life of the certificate. If conditions change or anomalies are detected, the system responds automatically based on defined policy.
The release also includes enhanced ACME protocol support with a dual-verification requirement that combines organizational identity with domain control. This added rigor ensures certificates are issued only when both conditions are validated. The process is powered by a real-time intelligence engine that analyzes security signals before issuance and continuously monitors trust throughout the certificate lifecycle. Read more about this release at SecureW2’s blog.
More info here: https://www.securew2.com/blog/adaptive-defense-identity-device-risk-signals
Related
This entry was posted on October 29, 2025 at 8:10 am and is filed under Commentary with tags SecureW2. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
SecureW2 Advances Continuous Trust Enforcement with New Security Integrations
SecureW2 today announced product enhancements that strengthen how identity, device, and risk signals govern certificate issuance and access decisions. New integrations with leading security and MDM platforms give organizations greater control through real-time, condition-aware policies.
The update introduces support for SentinelOne telemetry, joining a growing ecosystem of real-time intelligence sources, including CrowdStrike, Palo Alto Networks, and Microsoft Defender. These integrations power SecureW2’s policy engine, enabling enforcement based on verified identity, device posture, and risk context.
Key Enhancements Include:
SecureW2’s JoinNow Platform applies these inputs across three strategic layers: pre-certificate issuance validation, live enforcement through Adaptive Defense, and post-issuance integrity. This defense-in-depth framework ensures trust is verified before access is granted, then continuously evaluated and enforced throughout the life of the certificate. If conditions change or anomalies are detected, the system responds automatically based on defined policy.
The release also includes enhanced ACME protocol support with a dual-verification requirement that combines organizational identity with domain control. This added rigor ensures certificates are issued only when both conditions are validated. The process is powered by a real-time intelligence engine that analyzes security signals before issuance and continuously monitors trust throughout the certificate lifecycle. Read more about this release at SecureW2’s blog.
More info here: https://www.securew2.com/blog/adaptive-defense-identity-device-risk-signals
Share this:
Like this:
Related
This entry was posted on October 29, 2025 at 8:10 am and is filed under Commentary with tags SecureW2. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.