1 / 27

Enabling Enterprise Mobility

2013. Enabling Enterprise Mobility. Kieran Jacobsen HP Enterprise Services @ kjacobsen Aperturescience.su. What is enterprise mobility?. What is enterprise mobility?. Enterprise mobility != BYOD. Enterprise mobility is not BYOD, but can be a stepping stone.

halil
Download Presentation

Enabling Enterprise Mobility

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. 2013 Enabling Enterprise Mobility Kieran Jacobsen HP Enterprise Services @kjacobsen Aperturescience.su

  2. What is enterprise mobility?

  3. What is enterprise mobility?

  4. Enterprise mobility != BYOD Enterprise mobility is not BYOD, but can be a stepping stone. Company still owns end user devices. Enterprise mobility is not just hardware and software, but policy and procedures.

  5. Core solution concepts Connectivity, Data, Security, Self service, Policy.

  6. Connectivity Requirements Confirm you have enough bandwidth. Confirm usage billing. Confirm network device capacity and licencing.

  7. Virtual Private Networks VPN required for: Legacy applications, Windows file sharing. User experience: Demand dial, Automatically triggered connections, Always on connections.

  8. Automatically triggered connections Windows 8.1 introduces: Automatically connect to a VPN connection. Trigger based upon DNS names or applications. Support for PPTP, L2TP and 3rd Party VPN (F5, CheckPoint, SonicWall). Requirements: Split tunnel VPN. User can forcibly disable automatic triggering. Not supported on domain joined devices

  9. Demo Triggering VPN based up DNS names

  10. DirectAccess Seamless corporate connectivity. No changes from 8 to 8.1. Significant improvements from 7 to 8: More deployment options, No IPv6 requirements, Plenty of authentication options. Must be Enterprise Edition on clients.

  11. Demo DirectAccess

  12. VPN: Summary Enterprise licence – DirectAccess Non domain joined – VPN Triggering Rest?

  13. De-centralization of user data Mainframe era: Processing and storage is centralised on mainframes. User devices were “dumb” thin clients. Personal PC era: Processing moved to user devices. Storage still centralised – Central SMB clusters, NAS, SharePoint. Mobile device era: Processing and storage moved to user devices.

  14. Storage technologies Previously: User home drives. Network shares. Roaming profiles. Now: File and folder synchronization, Public or private cloud, Cloud – SkyDrive, SkyDrive Pro, DropBox, Box, Google Drive, Host your own – Work Folders, SharePoint, OwnCloud.

  15. Evaluating storage technologies Integration: Web UI, Microsoft Office Suite, Client applications. Sharing capabilities: Between different users Between 3rd Parties Data retention. Trust!

  16. Work Folders Brand new in Windows 8.1 Generation 1 technology File synchronization, No web interface, One folder structure per user, Integrates well with existing user home drives.

  17. OwnCloud Cloud storage like user experience. Designed, deployed and managed by YOU! Free!!!!! Features: File, folder, contact, calendar and bookmark synchronization, Multiple operating systems, Lots of out-of-box features, Rich plugin landscape offering even more features.

  18. Demo Deploying OwnCloud with Windows Azure, VM Depot and BitNami

  19. Antivirus We need to know: Clients a protected, Definitions are being updated, When threats occur. Consider cloud based solutions: Windows Intune, Symantec, Sophos, McAfee.

  20. Client Backups Traditionally: Backup central data stores/shares/servers. Enterprise World: Decentralised data requires decentralised backups. Consider: Storage costs, Data transfer costs, Backup frequencies, User self service restoration.

  21. Demo Revisiting OwnCloud

  22. Encryption Protect data at transport: VPN, HTTPS/SSL. Protect data at rest: File Encryption, Full Disk Encryption (FDE) – BitLocker, TrueCrypt, GPGDisk FDE recovery key management: USB keys and file shares, Active Directory, MBAM.

  23. MBAM Microsoft BitLocker Administration and Monitoring. Part of Microsoft Desktop Optimisation Pack. Simplification of BitLocker management: Secure storage of recovery information, User self service portal, Helpdesk focused recovery portal, Reporting of encryption compliance, Auditing of access to recovery key information. Improves security by resetting recovery key upon access

  24. Demo Self service recovery in MBAM

  25. Device Loss Corporate policy: Do you have a policy defining an employees responsibility when a device containing corporate data is lost? What is the IT process for these incidents? Credentials: When devices are lost, consider disabling computer accounts, resetting user’s passwords, revoking certificates. Device recovery products: Track devices using geolocation services, Allow for devices to be recovered by LAW ENFORCEMENT, Some can be highly persistent even after Windows reinstallation. Recommended – Prey, CompuTrace

  26. Things I wish I could mention… Email Instant Messaging Audio/Video conferencing Remote Desktop Group Policy Help Desk ticketing Authentication Disaster Recovery Admin rights Windows To Go BitLocker To Go BranchCache Web filtering Client firewalls …

  27. 2013 Sponsors

More Related