Presentation is loading. Please wait.

Presentation is loading. Please wait.

BYOD Technical workshop Simon Bright - E2BN Philip Pearce – E2BN.

Published byMorgan Malone Modified over 8 years ago

Similar presentations

Presentation on theme: "BYOD Technical workshop Simon Bright - E2BN Philip Pearce – E2BN."— Presentation transcript:

1 BYOD Technical workshop Simon Bright - E2BN Philip Pearce – E2BN

2 Topics Bring Your Own vs School Managed Devices Policy considerations Network access and security Web filtering Mobile Device Management Why apps might not work - filtering and firewalls Q&A Copyright 2013 E2BN

3 What is BYOD ? The use of personal mobile devices in the: – Workplace – School, college or University – Public Library Wi-fi connection provided by the organisation Copyright 2013 E2BN

4 What is BYOD ? True BYOD – Owned by the user – Managed by the user – Not know to the school network – Untrusted Copyright 2013 E2BN

5 SMMD – School Managed School Managed Mobile Devices - SMMD Sourced by the school Owned or loaned by the school Managed by the school Copyright 2013 E2BN

6 Considerations Preparation for BYOD & SMMD What is the purpose ? Understand and manage expectations Are compliance and Acceptable Use rules required ? What range of devices can be supported ? Copyright 2013 E2BN

7 BYOD & SMMD Network Access First point of control is the Wi-fi network How do devices join ? Anonymous vs personal authentication DHCP controls Wireless controller systems e.g. – Ruckus – Aerohive Copyright 2013 E2BN

8 Network Segregation Controlling access to the managed/trusted network Flat networks – broadcast domains Subnets, Vlans and routing/firewall – points of control Copyright 2013 E2BN

9 Device Management - wish list Providing settings e.g. Wireless and Proxy Compliance Restrictions Application installation Monitoring Remote wipe Copyright 2013 E2BN

10 Device Management – BYOD True BYOD – Hands off approach ? – Minimum is filtering settings ? – Many devices support Web Proxy Auto Detection ( WPAD ) – Transparent filtering options Copyright 2013 E2BN

11 Proxy Auto Configuration Device support for WPAD – Web Proxy Auto Detection. Hosting a wpad.dat file - web server Setting up DHCP and DNS Copyright 2013 E2BN

12 DHCP method Copyright 2013 E2BN

13 DNS Method Copyright 2013 E2BN

14 Wpad.dat - PAC File Example function FindProxyForURL(url, host) { if (isInNet(host,"192.168.4.0","255.255.255.0")) return "DIRECT"; return "PROXY 192.168.4.253:8084"; } Copyright 2013 E2BN

15 Device Management - platforms Apple iOS – Apple Configurator Android – Samsung Smart Schools Chromebook – Google Apps dashboard Multi OS, “over the air” MDM systems Copyright 2013 E2BN

16 Apple Configurator Free of charge but you do need.. Apple MAC, including MAC-mini Devices connect via USB ( hub, cart) Bulk deployment of common profile(s) Deploy apps, restrictions, web clips, settings Deploy IOS updates Copyright 2013 E2BN

17 Apple Configurator Copyright 2013 E2BN

18 Over-the-Air MDM Typically : – Web based administration – Device enrollment via web / app – Configure and deploy apps, settings, restrictions, web clips etc – Inventory tracking, GPS tracking Meraki – free Airwatch Lightspeed systems MDM Copyright 2013 E2BN

19 Over The Air MDM Copyright 2013 E2BN

20 Why Apps might not work 1.Filtering App is possibly sending request via web filters but site is being blocked in the background. Try the least restrictive profile e.g. E2BN Staff Copyright 2013 E2BN

21 Why Apps might not work 2. Firewalling App is sending request(s) direct to the internet but is being blocked by school / LA firewall. Copyright 2013 E2BN

22 Firewalls Home vs School comparison Some history and traditional LA approach – Walled garden, local content, proxy services – Device and network security Copyright 2013 E2BN

23 Firewalls – accommodating apps Tcp port 80 and 443 – raw web access Other ports – Single port – Multiple ports Cloud, distributed services, multiple remote IP addresses Copyright 2013 E2BN

24 Firewalls – accommodating apps Next Generation firewalls Application aware Device aware User aware Copyright 2013 E2BN

25 Thank You Useful Document – http://www.nen.gov.uk/files/NEN_Guidance_Note_5_BYOD.pdf http://www.nen.gov.uk/files/NEN_Guidance_Note_5_BYOD.pdf Workshop Evaluation - conference brochure Assistance with tech for E2BN Schools & LAs – support@e2bn.org support@e2bn.org Copyright 2013 E2BN

Download ppt "BYOD Technical workshop Simon Bright - E2BN Philip Pearce – E2BN."

Similar presentations

Mobile Device Protocol Sunil Vallamkonda 11/19/2012.

Mobile Device Protocol Sunil Vallamkonda 11/19/2012.
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential. Mobile Content Strategies and Deployment Best Practices.

Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential. Mobile Content Strategies and Deployment Best Practices.
Technology Requirements for Online Testing Online Training Module for the Smarter Balanced Assessment.

Technology Requirements for Online Testing Online Training Module for the Smarter Balanced Assessment.
Avaya – Proprietary. Use pursuant to the terms of your signed agreement or Company policy. idEngines® Avaya Identity Engines And Mobile Device Management.

Avaya – Proprietary. Use pursuant to the terms of your signed agreement or Company policy. idEngines® Avaya Identity Engines And Mobile Device Management.
IPads Everywhere! Management Considerations for the Enterprise Bill Morrison Director of Technology, Rapides Parish School District

IPads Everywhere! Management Considerations for the Enterprise Bill Morrison Director of Technology, Rapides Parish School District
Sophos Mobile Control. Tablets on the rise 2 Trends 3 75% of 157 polled companies encourage employee owned smart phones and tablets to access corporate.

Sophos Mobile Control. Tablets on the rise 2 Trends 3 75% of 157 polled companies encourage employee owned smart phones and tablets to access corporate.
Meraki Mobile Device Management

Meraki Mobile Device Management
Enterprise Mobility Platform Microsoft Differentiation Managed Mobile Productivity Layered Protection Hybrid Solutions Office 365DynamicsWorkday.

Enterprise Mobility Platform Microsoft Differentiation Managed Mobile Productivity Layered Protection Hybrid Solutions Office 365DynamicsWorkday.
Implementing Mobile Learning – Technical process Pete Stockley, 2012.

Implementing Mobile Learning – Technical process Pete Stockley, 2012.
IT’s Gone Mobile: How to do your Job Anywhere Jason Hand IT Specialist, Central NM Electric Cooperative Jason Hand Cell: 505-803-4944

IT’s Gone Mobile: How to do your Job Anywhere Jason Hand IT Specialist, Central NM Electric Cooperative Jason Hand Cell:
Protect your data Enable your users Unify Your Environment DevicesAppsData Help organizations enable their users to be productive on the devices they.

Protect your data Enable your users Unify Your Environment DevicesAppsData Help organizations enable their users to be productive on the devices they.
Flexible Network Access Overview. Flexible Access an Integral part of Universal Access Policy Universal Access to Campus IT Resources Managed LAN portsFlexible.

Flexible Network Access Overview. Flexible Access an Integral part of Universal Access Policy Universal Access to Campus IT Resources Managed LAN portsFlexible.
Managing BYOD Legal IT’s Next Great Challenge. Agenda  The BYOD Trend – benefits and risks  Best practices for managing mobile device usage  Overview.

Managing BYOD Legal IT’s Next Great Challenge. Agenda  The BYOD Trend – benefits and risks  Best practices for managing mobile device usage  Overview.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.
Barracuda Networks Steve Scheidegger Commercial Account Manager 734-887-2422

Barracuda Networks Steve Scheidegger Commercial Account Manager
Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.

Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.
Networking Components

Networking Components
Your storage on the ground; Your files in the cloud.

Your storage on the ground; Your files in the cloud.
CECS 5460 – Assignment 3 Stacey VanderHeiden Güney.

CECS 5460 – Assignment 3 Stacey VanderHeiden Güney.
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.

1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.

Similar presentations

Ads by Google