March 18, 2009

6 Ways to Cut IT Costs …

Posted by Elliot Lawrence under 6 Ways to Cut IT Costs, Remote Working | Tags: , , , , , , , , , , , , , , , , , , , , , , , , , |
[3] Comments 

Part 4 – Remote Working

Everyone knows that allowing your employees to work from somewhere else other than your office has many benefits.

From a business point of view first and foremost you can save on office space – perhaps reconfiguring your office to a place where people can come in to collaborate flexibly rather than sitting in cubes. The saving here is pretty easy to calculate in terms of square footage not being rented, moreover you need less furniture, less maintenance staff, less electricity, which all means less expenditure.

From an employee viewpoint, you don’t have a commute so you could save several hours per day, you can start work earlier, finish later and still be home earlier than ever!

Also as I understand, people are more productive working from home. I am not an expert in this area so I will take it that it is probably true – just the fact you cant be in relentless meetings all day is a bonus.

What Are The Basics To Getting This Running?

A lot of what you need depends on what you want your users to be able to do when they work away. In a simple scenario they may require access to documents, they will want to run some specific applications (other than standard office apps which would be installed locally) and they will require email access. Here is how you might choose to deliver this:

Documents – the two most common ways are either to provide VPN access to your corporate network which will require at least at VPN server at the office end and a client on the user side . Once the VPN is connected files can be accessed using the same drives that you use when in the office. The downside is when file structures are large or you need to move lots of files around, it can be very slow over DSL connections. The second option is to use an intranet document management store such as SharePoint which can either be exposed on the internet (so no VPN required) or kept internal (VPN required). A web system will work well when users need to upload / download documents, work on them for a while and then move on to the next. Normally version control and document management features such as check in / check out are included to save multiple users editing the same documents at the same time.

Applications – if the application is traditional client / server type and doesn’t require very much bandwidth then you might get away with running the client over a VPN so it can connect to the server. If it has heavy duty network requirements then delivering the client component via terminal services will probably be your best bet. Here you have several choices as you could connect via VPN, then connect to the server via a remote desktop, or you could put the server directly on the internet and connect to the service without using the VPN to establish a remote desktop or you could finally host the Remote Desktop client on a web site that connects into the corporate network. If the application is web based or hosted (see my next blog Part 5 for more details) then the key applications may not even be on your corporate network which makes life even easier as all the users need is most likely a web browser.

Email – Microsoft Exchange provides many ways to get at your email, but if a user is going to work heavily on email , then the best choice by far is using a full Outlook client configured with RPC over HTTPS. By using this technique you don’t need a VPN up all the time and it feels like you are sitting in the office. Alternatively you can still run it over a VPN connection if it happens to be up for other reasons. Outlook Web Access also provides a great solution, but I find that it is better for brief email spells or a quick check. It’s a great solution but I still prefer the full client. The extra benefit of using RPC over HTTPS is that once you are set up server side it is just a few seconds of effort to have your Windows Mobile or Apple iPhone connected to your corporate email too. No middleware or Enterprise servers required, it works straight out of the box, mobile data plans not withstanding.

Coming Soon. Direct Access

Now here is a really exciting development, that builds on the discussion – Direct Access technology in Windows 7.

For any one who uses Outlook with RPC over HTTPS you will now how liberating and flexible it is – wherever you are in the world as long as you have an internet connection Outlook behaves as if it is on the corporate network without you knowing any different, all over an encrypted connection and no VPN needed. With Direct Access you get the same advantages but now for the whole remote experience not just email. You can work on company systems, files, intranets, email, everything as if you are connected directly and without a need for a VPN. No clunky VPN clients, connection processes or VPN devices at the business end. Direct Access will therefore save money on network hardware.

The best bit is from a management point of view the laptop appears as if it is on the corporate network and you can apply group policies, deploy software, patches or anything else just as if the computer was in the office.

The only small downside is you need Windows Server 2008 R2 in place at the back end and of course, Windows 7 as the client. Once these two platforms are more common, you will be getting all the solutions above solved with the purchase of software you would have bought anyway.

For more information on Remote Working, please visit www.squeezetech.com or contact the author.

 

March 17, 2009

6 Ways to Cut IT Costs – Automated Desktop Infrastructure

Posted by Elliot Lawrence under 6 Ways to Cut IT Costs, Automated Deployment | Tags: , , , , , , , , , , , , , , , , , |
Leave a Comment 

6 Ways to Cut IT Costs …

Part 3 - Automated Desktop and Applications

A disproportionate amount of time is spent by technical staff, end users and management in making sure that applications are installed on PCs where a user is going to work, in additional to providing a stable operating system for those applications to reside on.

Implementing an infrastructure with automated desktop builds and applications that install wherever the user goes will dramatically cut the amount of time spent by all parties, but especially IT staff, in keeping the show going. End user productivity can be measurably enhanced when you take away the frustration of getting the tools they need and fighting with the system.

Most businesses don’t realize that Microsoft ships all the tools you need to “hands free” install Windows and any application. Sure you can buy Systems Center Configuration Manager or a third party product too, but all you need, especially in a small and medium business (10 to 1000 seats) environment is included.

What’s the Deal?

A scenario: a new user joins your organization (yes this must be a public sector example!), you un-box their PC that meets the corporate standard, plug it into the network, power on and hit a few keys. Shortly afterward you have a pristine operating system installed with all the base configuration, core applications and security settings deployed and applied. The new user sits in front of the PC, signs in for the first time and immediately the 3 specific applications they require are installed in a few minutes. Finally, the system is automatically patched for the latest security holes.

If the user then has to use a PC over the other side of the building for a week, they can sign in at that PC and once again the users applications will install instantly for them and their environment will be exactly as they expect.

Finally, if the user encounters a problem with the system, you can simply pick up the old system, swap in a pre-built one, and have the user log in.

What Do I Need?

So how do you achieve all this.

Well firstly it has been possible since the NT4 days – give or take a few items. Some of the components and tools have been renamed (some many times),some have been improved, expanded and gained sophistication, they have even given you a multitude of ways to do the same thing, but bottom line you can have a fully automated (that reacts to new hardware and devices), centrally controlled, standardized desktop infrastructure out of the box. No extra costs, no extra software and this is just the tip of the iceberg of whats available FOC.

Here’s what you need:

  1. Windows Server (2008 preferably)
  2. Windows XP (or Vista or Windows 7)
  3. Active Directory (included with Windows Server)
  4. Group Policy (included with Active Directory)

That’s it. Now, you can add to this, embellish, but this solution will scale to many sites and many thousands of users, desktops and applications.

At this point people will stop me and say, yes but we use Ghost and it only cost $70 to do the whole company. My usual answer to this is twofold, Yes, Ghost is great the first few times for automating a build. It is very fast and when you only have one to two types of PC it is easy to manage, however once you have multiple hardware types, multiple configuration standards then Ghost loses it’s appeal quickly. More importantly though, Ghost rightly has to be licensed per system managed and one retail copy supporting 500 users is actually breaking the law.

Anyway, you will already have all the items on my list , even if you are a Small Business Server operation.

Remind Me of The Benefits?

Ok, so by doing this kind of infrastructure you can ensure that users have the applications they need wherever they go, always installed in the prescribed way with no deltas. You can ensure that, all PCs are built and maintained to corporate standards for usage, approved applications, system lock downs, security policies and all this without ever having to get out of your seat.

The savings flow through also in greatly reduced support calls and desk side visits. This means you can re-deploy helpdesk staff and minimize the waste of your user’s time – which over a year adds up to significant numbers.

We have seen 40% drops in overall logged calls when this is applied and it is viable for any size business – though once you scale, you will definitely want to consider further tools or systems that address particular enterprise requirements.

The Same Only Different

Over the years I have seen organizations avoid dealing with a proper managed desktop infrastructure by going down solution routes that have been totally inappropriate and horrendously expensive and eventually deemed a failure, when they had the tools and proven methodologies to make this work. In the past, Terminal Server / Citrix was the solution du jour for avoiding the problem of delivering a managed desktop, all it did was move the issues to the data center but you still had the desktops out there essentially un-managed, and I see the Virtual Desktop Infrastructure is trying to become the new flavor. Beware! See a future blog on this topic.

For more information on this, please see my web site for the expanded version of this topic (www.squeezetech.com).

 

Follow

Get every new post delivered to your Inbox.