There is one last major bit once you have RMM and EDR in place - centralized identify. Until Okta, Ping, Azure, and Google all have a pam module that allows for remote identity management without depending on LDAP, enterprise endpoints are restricted to desktop/server machines (or orgs where you can get a waiver and only have local login).
Two thing to add. First slightly older eggs peel better (aka what you get from the supermarket). Second: use the ball of your fingers not the nail to avoid ripping up the white.
If you install Ubuntu already your fine.
Personally I don’t want to spend time working on my computer (that’s work me), so I use mint. Just about any flavor of Linux can have a basic development env configuration done.
Ohh that’s super exciting. I haven’t realized Microsoft made one.
Okta’s offering was garbage last I attempted to poke it. And 3rd party IAM tooling can be completely hit or miss (and let’s not even start about LDAP over the web…)