Twingate MDM Connector
Problem
Organizations need to automatically trust devices in Twingate based on whether those devices are enrolled and compliant in their MDM/EDR systems, but there's no built-in integration for many popular providers. Without automation, IT teams have to manually mark devices as trusted - a process that doesn't scale.
Approach
Built a stateless Docker container that runs on a configurable schedule. Each sync cycle queries all enabled MDM/EDR providers in parallel for their device inventory, builds in-memory indexes by serial number, fetches untrusted devices from Twingate, matches by normalized serial number, and marks compliant devices as trusted via the Twingate API. Supports 10 providers (NinjaOne, Sophos Central, ManageEngine, Automox, JumpCloud, FleetDM, Mosyle, Datto RMM, Rippling). Never untrusts a device. Includes dry-run mode, webhook notifications (Slack, Teams, Discord, PagerDuty, OpsGenie), and SMTP email alerts.
Outcome
Automates device trust for Twingate across the most common MDM/EDR platforms. Supports two trust modes (any provider or all providers), configurable staleness thresholds, and full notification pipelines. No database required - all state is held in memory during each sync cycle. Published under the Twingate-Solutions organization.