Jason Roszak

The Path to Modern Windows Software Distribution: Q&A with Adaptiva Founder & CTO Deepak Kumar

This blog was updated on May 22,2017, with the latest information about the Device Enrollment Program from Apple. Join the conversation on Twitter using #iOSinBusiness.

What is the Device Enrollment Program from Apple?

The Device Enrollment Program provides a fast, streamlined way to deploy your corporate-owned Mac, iOS or tvOS devices. With a mobile device management (MDM) and unified endpoint management solution like VMware AirWatch, IT can:

  • Customize device settings;
  • Activate and supervise devices over the air; and
  • Enable users to setup their own devices out of the box.

[Related: 27 Questions Answered about AirWatch & the Device Enrollment Program from Apple]

What IT challenges does the Device Enrollment Program help address?

The Device Enrollment Program solves several critical requirements for corporate-owned devices. First, organizations save time and money by eliminating high-touch processes for IT. DEP takes configuration time to zero. Deployment of corporate-owned devices with DEP means zero-touch configuration for IT, eliminates staging and automates device configuration.

Second, onboarding iOS or macOS devices is streamlined for users. Based on the settings IT configured, users are prompted through Setup Assistant (skipping through any unnecessary screens). Users only need to authenticate and don&#rsquo;t need to be tech savvy to get the content, apps and email they need on their smartphones.

Finally, supervising iOS devices over the air is possible with the DEP. With supervision, administrators have more control over the device and can disable features like AirDrop, the App Store and account modification. They can also enable features like password protection. Also, the MDM profile cannot be removed, which eliminates the possibility of un-enrollment to protect data and investments in devices and provides the best user experience possible.

What role does AirWatch play in Apple&#rsquo;s Device Enrollment Program?

To utilize the Device Enrollment Program, MDM capabilities like those part of VMware AirWatch are required. AirWatch integrates with the Device Enrollment Program, enabling organizations to automatically import devices in the console based on order history. Then, administrators can easily configure settings, apply profiles, assign applications and set restrictions that will apply automatically when users unbox devices.

[Related: iOS 10.3, tvOS 10.2 & macOS 10.12.4 Are Live! VMware AirWatch Has Your Mobile Business Covered]

How can I join the Device Enrollment Program from Apple?

First, enroll with Apple and register your organization&#rsquo;s information to create an account and designate your administrators. Next, configure your device settings and Setup Assistant steps in the AirWatch console. You then can ship devices directly to your users.

For more information, check out Apple&#rsquo;s Device Enrollment Program Guide.

What are the device requirements for the Apple Device Enrollment Program?

The devices must be corporate-owned and purchased directly from Apple or through participating Apple Authorized Resellers.*

*The Device Enrollment Program may not be supported by all Apple Authorized Resellers and carriers.

Where is the Device Enrollment Program available?

The Device Enrollment Program is available in 34 countries: Australia,Austria,Belgium,Brazil,Canada,Czech Republic,Denmark,Finland,France,Germany, Greece,Hong Kong,Hungary,India,Ireland,Italy,Japan,Luxembourg,Mexico,Netherlands, NewZealand,Norway,Poland,Portugal,Singapore,South Africa,Spain,Sweden,Switzerland, Taiwan,Turkey,United Arab Emirates,United Kingdom andUnitedStates.

What’s available for education with the Device Enrollment Program from Apple?

Both Apple and AirWatch give special consideration to unique education use cases. With Apple School Manager (ASM), Apple has delivered a central place for account creation, role definitions and content purchases. To support ASM, AirWatch designed a console section for education to setup mobile deployments and streamline management of teachers, students, classes, apps and more—whether you have a 1:1 or shared device deployment. After importing data from Apple School Manager, use AirWatch to:

  • Match devices with students or classes;
  • Assign applications (to users or devices); and
  • Configure the new Classroom application, allowing teachers to guide learning on iPads.

Students quickly choose the device with their photo displayed once their teacher has started the class.

Visit apple.com/business/dep/ and apple.com/education/it/ to learn more about the Device Enrollment Program.


Read more..

[Video] Windows 10 Enrollment Made Simple | The Redmond Series

Last year, I upgraded to a new Apple iPhone. The transition from my previous model was seamless. I took the phone out of the box, entered my Apple iCloud credentials and all my previous contacts, apps and data synced in minutes. Every time I upgrade my personal smartphone, I think about how painful this process […]]> Last year, I upgraded to a new Apple iPhone. The transition from my previous model was seamless. I took the phone out of the box, entered my Apple iCloud credentials and all my previous contacts, apps and data synced in minutes. Every time I upgrade my personal smartphone, I think about how painful this process is for company-issued devices. With Windows 10, however, Microsoft changed the game for enterprise IT.

Now, organizations can deliver that same consumer-like experience in the enterprise across Windows 10 laptops, desktops, tablets and other devices. In the second video in our Redmond Series, we explore newly available Windows 10 deployment options and the impact of a modern approach on IT:

  • Challenges with Traditional Tools
  • Opportunities with a Modern Management Approach
  • Rethinking Deployment Options in the Enterprise
  • Post Deployment Configuration Considerations
  • Test Out the Modern Enrollment Options Today

Watch our new Windows 10 enrollment video below to dive in:

Miss the first video in VMware&#rsquo;s new Redmond Series? Click here to watch Episode 1: Exploring How Windows 10 Affects Your Business.

Challenges with Traditional Tools

When PC lifecycle management was in its prime 10 years ago, the management of corporate desktops centered on the company network. IT delivered a standard operating environment with limited hardware and software options. Back then:

  • You came into a physical corporate office.
  • You sat at an assigned desk.
  • You worked on a PC tethered to the corporate network.

As we shift from the client server to the mobile-cloud era, we realize that traditional PC management is complex. IT must:

  • Build a golden image for each device type and use case;
  • Deal with a complicated OS and application deployment and patching process; and
  • Maintain a massive management and distribution point infrastructure.

All these complexities correlate to cost. According to industry analysts, the average cost to deploy a new operating system (OS) can cost nearly $2,000 per machine. Likely, a company with 10,000 employees spends more than $200,000 a year to maintain existing servers, storage and network infrastructure. IT builds deployment costs around a server-client relationship. By taking a modern approach to Windows 10, organizations deliver a consumer-like experience. Users take a device out of the box, power it on for the first time and automatically transform the machine to a company device. They do all this without the need to either re-image or IT touching the device, regardless of whether the user is on the corporate network, working from home or working out of a Starbucks on the road.

[Related Study: Total Impact of Modern Windows 10 & Content Management with VMware]

Opportunity with a Modern Management Approach

Enterprise mobility management (EMM) for iOS and Android devices changed the management paradigm for endpoints. By taking a cloud-first approach, organizations no longer need a vast server infrastructure. IT now gets:

  • Real-time visibility and policy distribution;
  • Automated compliance and monitoring; and
  • Simplified management.

Now, organizations can extend the same framework to devices running Windows 10.

When we talk to customers leveraging EMM for their mobile device fleet, it is not uncommon for them to dedicate one admin for every 10,000 devices. When you compare that to traditional PCLM tools, we typically see one admin for every 250 devices. By extending EMM capabilities to Windows 10, organizations have an opportunity to realize dramatic cost avoidances.

Even with some of the additional complexities with Windows 10, such as application file sizes and app contingencies/dependences, I believe a highly conservative estimate of one admin for every 1,000 desktops is easily achievable. The reduced overhead and infrastructure costs free admins and IT to drive business value within their organization—instead of being a cost center.

Rethinking Deployment Options in the Enterprise

As customers begin migrating to Windows 10, enrollment best practices cause confusion in the market, based on:

  • Whether the devices are domain or non-domain joined;
  • The required management depth (e.g. GPOs vs. MDM);
  • The type of a device; and
  • The specific use case.

With unified endpoint management (UEM), organizations support all use cases within a single pane of glass. From there, they implement enrollment options that best meet their deployment requirements, whether that is an out of box experience, physical provisioning by IT or virtual desktop delivery to either corporate-owned or employee-owned devices.

[Related Whitepaper: Unified Endpoint Management—You&#rsquo;re Already Behind]

Out of Box Experience

We previously discussed how IT could now drop ship a device, and a user can be up and running in minutes. Here is a demo video of the experience from an end user&#rsquo;s perspective:

Watch this quick demo of the out-of-box experience:

With this approach, we make enrollment incredibly simple and consumer-like for the user with no direct support from IT:

1. User receives a new device shipped to them at work, home or on the road.

2. They take it out of the box and follow a few simple steps to set-up the device.

3. On entering their corporate credentials, the device automatically joins to Azure Active Directory, and EMM enrollment happens automatically.

4. Once enrolled, device management continues the onboarding process to fully secure and configure the device for work.

5. The user starts working in minutes on a fully transformed corporate device.

Provisioning Experience

While the out-of-box experience is fantastic for end users and IT, many organizations still prefer to provision devices themselves or through a third party. Historically, IT managed dedicated images across every piece of OEM hardware, OS versions and use cases. This limited the number of device types IT issued to users.

With Windows 10 and VMware AirWatch UEM, provisioning is dramatically faster and easier to perform. The new provisioning process replaces traditional imaging and creates device choice and freedom. IT can now:

  • Generate a provisioning package (PPKG) with the Windows Imaging and Configuration Designer tool (WICD).
  • Distribute the PPKG file to any device over-the-air with a thumb drive or even as an email attachment.
  • Execute the PPKG to complete the automated onboarding based on the device type and a user&#rsquo;s role in the organization.

Virtual Desktop and Application Delivery

As organizations migrate to Windows 10, virtual desktop and application delivery addresses several use cases. Existing hardware might not support Windows 10 migration. Some mission-critical applications might be too graphics intensive or incompatible with Windows 10. Some users may have personal devices on a different OS. All of these scenarios may be better suited for virtual desktops and applications.

VMware Horizon extends virtual desktops and applications on premises or from the cloud wherever a user has an internet connection. Users easily access their virtual desktop or applications from the VMware Workspace ONE app catalog from any device with single sign-on.

[Related: The Digital Workspace Journey: VMware Workspace ONE]

Post Deployment Configuration Considerations

Regardless of the deployment option you choose, you also benefit from the ability to configure the device consistently from the same AirWatch console and across any use case. Now, you can easily configure or change Wi-Fi, VPN, certificates, email, passcodes, compliance and restriction settings, encryption, firewall and antivirus. You can even modify the OS license as needed instantly and over the air.

For example, by configuring per-app VPN on a device, users do not have to manually launch a VPN client and enter their corporate credentials when off the domain. AirWatch recognizes that an approved application on a managed device is off the company network and automatically establish a per-app VPN connection without user interaction.

While these new configuration policies in the AirWatch console are robust and easy to use, we recognize that many admins have advanced requirements. Some admins may have leftover scripts from their legacy PCLM tool that they need to apply within a modern management framework. With AirWatch UEM, you simply take those scripts and create advanced task automation sequences to apply policies, settings and apps to end users on or off the domain.

Test Out the Modern Enrollment Options Today

Compared with traditional imaging approaches, modern Windows 10 management tools enable IT with new options for enrolling users at a fraction of the time and cost. Windows 10 and AirWatch UEM gives you an opportunity to re-imagine how you do deployment today.

I encourage you to experience these enrollment options yourself, so you can see how simple the process can be for your organization. We created a sandboxed environment we call Test Drive, where you can try out the enrollment and other Windows 10 management capabilities.

Click here sign up and test drive Windows 10 enrollment and more.

Are you currently in the midst of mapping out your Windows 10 enrollment options?

Leave us a question or comment below. Our experts will respond directly and maybe even cover your question in upcoming episodes.

Read more..

New Video Series! Exploring How Windows 10 Affects Your Business

I started at VMware nearly 4 years ago. Back then, getting a company laptop was an all-day adventure. IT took several hours to image my laptop and several more to configure all the settings and applications for my role. In fact, some admins on our IT team used to spend 3-out-of-5 days a week just […]]> I started at VMware nearly 4 years ago. Back then, getting a company laptop was an all-day adventure. IT took several hours to image my laptop and several more to configure all the settings and applications for my role. In fact, some admins on our IT team used to spend 3-out-of-5 days a week just setting up devices for new hires—a fulltime job for three people. Now, only a few years later, everything is much simpler and faster. New VMware employees:

  • Receive a new Windows 10 device;
  • Enter their corporate credentials; and
  • Are up and running in minutes.

Like our IT team and users here at VMware, our customers are clearly excited about what Windows 10 offers. We hear questions and feedback from thousands of companies in early stages of implementing or planning their journey to Microsoft&#rsquo;s &#rsquo;last operating system.&#rdquo;

As more customers make the move to Windows 10, we realized there was a need to provide a collective learning resource for you and others exploring Windows 10. We also want to provide visibility into how we directly incorporate your feedback into our products.

Introducing the Redmond Video Series: Episode 1

By taking a modern management approach, you have the exciting opportunity to change the way your organization deploys and manages Windows 10. In the first episode of our new video series, we help you learn exactly what this new management approach means to you and your team:

  • What Makes Windows 10 Different
  • Challenges with Legacy Management Tools
  • Opportunities with a New Management Model
  • How Organizations Move from POC to Production
  • How to Handle Legacy Applications
  • Biggest Takeaway for Organizations Migrating to Windows 10

Watch the video below to dive in:

Over the next few months, we&#rsquo;ll dive deeper into the top issues customers like you have about the modern Windows 10 journey. From enrollment to software distribution and patch management, our experts will share tips and tricks to help make deployments more successful.

Getting Started with Windows 10

The opportunity with the new management framework in Windows 10 is enormous. Unlike previous versions, Windows 10 represents a new way to:

1. Improve the experience for users.
2. Modernize the management workflow for IT.
3. Reduce costs for businesses overall.

Windows 10 is a major change in the way we manage endpoints, such as mobile device management (MDM) APIs, Windows Update as a Service, Universal apps and more. Because of this paradigm shift, the traditional management model starts to fall apart as users work more and more off company networks.

To accommodate these changes, organizations typically take one of two approaches to get to Windows 10: a full migration or a hardware refresh. To determine the right path, we recommend customers start with this free assessment of their existing desktop deployments. The tool helps customers understand the best model to deploy Windows 10 based on hardware capability, cost, security and end-user behavior. For example, some devices or use cases might be better suited for:

  • A full hardware refresh;
  • In-place migration and management using a unified endpoint management solution; or
  • A virtual environment.

Click here to access the free Windows 10 assessment tool.

Answering the Biggest Questions Facing Our Customers

Customers often ask me how to move from POC to production. They see the vision for how a modern management approach can impact their business across all enterprise scenarios. After taking the assessment, I like to encourage them to start small.

Free Download: Definitive Guide to Windows 10 Management

With all the changes and opportunities with Windows 10, customers should identity a use case that does not work well with their existing PCLM tool, such as traveling sales teams or executives. IT then has the proof points needed for management and business partners. Once they see the benefits, they expand to other use cases, such as branch offices, where the value really opens up.

The other major question I get is around Win32 apps. While the management framework in Windows 10 is similar to iOS and Android, one of the biggest differences is Win32 apps. These apps are typically much larger than mobile apps, which creates network strain. They also often have additional complexities, such as .net dependencies and libraries, which can prevent apps from successfully installing if not configured correctly.

With VMware, customers can deploy Win32 apps—including EXE and MSIs with or without MSTs and MSPs. Customers can also virtualize applications incompatible with Windows 10, require unique dependencies or need additional graphic power unsupported by current end-user devices.

Are you currently in the midst of a Windows 10 deployment and tackling two of the questions above? Leave us a comment with your biggest questions or insights on Windows 10. Our experts will respond directly and even cover your question in upcoming episodes.

To learn more about how VMware can help with your Windows 10 deployment, watch this demo:

Because you liked this blog:

  • Windows 10 Security Features Built for the Digital Workspace
  • Deploy & Secure Office 365 with AirWatch
  • Conquer Windows App Management: Modern Apps & Windows Store for Business

Read more..

Go Que Newsroom Categories

Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 46 bytes)
in /home/content/36/8658336/html/goquecom/wp-includes/wp-db.php on line 2022

Query Monitor