deploying and managing mobile devices in the enterprise
TRANSCRIPT
Deploying and Managing Mobile Devices in the
Enterprise
Introduction
Name
Company affiliation
Title / function
Job responsibility
Mobile solutions experience
Expectations for the course
Course Materials
Name card
Student workbook
Student Materials compact disc
Course evaluation
Prerequisites
Microsoft® Exchange Server messaging systems
Microsoft Office applications such as Microsoft Office Excel® and Microsoft Office Word
Microsoft Office Outlook® e-mail functionality
A general understanding of messaging issues
Course Outline
Module 1: Microsoft Enterprise Mobility Framework
Module 2: Windows Mobile 5 Platform
Module 3: Microsoft Mobility Solutions
Demonstration: Using Virtual PC
Virtual PC computers can communicate with each other and with the host, but not with other computers outside of the virtual environment
In this demonstration, you will learn how to:
Virtual PC computers can communicate with each other and with the host, but not with other computers outside of the virtual environment
In this demonstration, you will learn how to:
Open Virtual PC
Start Virtual PC
Log on to Virtual PC
Switch between full-screen and window mode
Recognize the difference between the virtual computers used in the practices for this course
Close Virtual PC
Open Virtual PC
Start Virtual PC
Log on to Virtual PC
Switch between full-screen and window mode
Recognize the difference between the virtual computers used in the practices for this course
Close Virtual PC
Lab Virtual PC Environment
nwtraders.msft
EXBE01Exchange Server
2003 SP2
Mailbox Store
EXFE01Exchange Server
2003 SP2
Pocket PC Phone Emulator
Additional Resources
Microsoft Windows Mobile home page at http://www.microsoft.com/windowsmobile/default.mspx Microsoft Windows Mobile home page at http://www.microsoft.com/windowsmobile/default.mspx
Windows Mobile 5.0 Messaging & Security Feature Pack at http://www.microsoft.com/windowsmobile/business/5/default.mspx Windows Mobile 5.0 Messaging & Security Feature Pack at http://www.microsoft.com/windowsmobile/business/5/default.mspx
Microsoft Exchange Server Web site at http://www.microsoft.com/exchange Microsoft Exchange Server Web site at http://www.microsoft.com/exchange
Microsoft Office for Windows Mobile home page at http://www.microsoft.com/windowsmobile/5/InstalledFeatures/mobileOffice.mspx
Microsoft Office for Windows Mobile home page at http://www.microsoft.com/windowsmobile/5/InstalledFeatures/mobileOffice.mspx
Microsoft Mobile Developer Center at http://msdn.microsoft.com/mobility/Microsoft Mobile Developer Center at http://msdn.microsoft.com/mobility/
Module 1: Microsoft Enterprise Mobility
Framework
Overview
Introducing the Microsoft Enterprise Mobility Framework
Lesson: Introducing the Microsoft Mobility Framework
The Microsoft Mobility Framework
Microsoft Windows Mobile 5
Microsoft Office Mobile
Microsoft Exchange Server 2003 Mobility Features
Outlook 2003 and Outlook Web Access Mobility Features
Microsoft SQL Server 2005 Mobile Edition
Other Microsoft Mobility Solutions
The Microsoft Mobility Framework
MSFP
Windows Mobile 5.0
Exchange Server 2003 SP 2
Windows 2003Active Directory
Messaging and Security Feature Pack
• Direct Push ActiveSync• Data Compression• Task synchronization• Security Policies• Local wipe• Remote wipe• Cert Auth• GAL Lookup• S/MIME
Windows Mobile 5.0• More Developer opportunities• More Mobile Operator
opportunities• More OEM opportunities• Applications bundled with
platform
Exchange Server 2003 SP2• Direct Push ActiveSync• Data Compression• Task synchronization• Security Policies• Remote wipe• GAL Lookup• S/MIME• Certificate Authorization
Microsoft Windows Mobile 5.0
Windows Mobile 5.0
Send and receive e-mail and browse the Internet from any location
Work with mobile versions of popular Microsoft Office applications
Use hundreds of third-party applications designed for interoperability with Windows Mobile
Messaging and Security Feature Pack (MSFP)
Microsoft Office Mobile
Microsoft Excel® Mobile
Microsoft PowerPoint® Mobile
Microsoft Word Mobile
Microsoft Office Communicator 2005 and Communicator Mobile
Outlook 2003 and Outlook Web Access Mobility Features
Outlook 2003 mobility features
Network traffic optimization
Data compression
Cached Exchange Mode
Outlook Web Access mobility improvements
Bandwidth reduction
User interface redesign
Improved user performance
Gzip compression
Microsoft Exchange Server 2003 Mobility Features
Optimization for low-bandwidth and offline situations
Unified access to corporate personal information manager (PIM) data from the Internet and intranet on a broad range of devices
Built-in support for Windows Mobile–based devices, browser-equipped mobile phones, and ActiveSync-enabled devices
Microsoft SQL Server 2005 Mobile Edition
Familiar database platform for rapid development
Compact yet capable relational database
Flexible data access
Other Microsoft Mobility Solutions
Microsoft Dynamics CRM 3.0
Microsoft MSN Mobile
Microsoft MapPoint Location Server and Web Service
Microsoft .NET Compact Framework
Review
Introducing the Microsoft Enterprise Mobility Framework
Module 2: Windows Mobile 5 Platform
Overview
Microsoft Windows Mobile 5.0 Overview
Messaging and Security Feature Pack
Lesson: Windows Mobile 5.0 Overview
Windows Mobile 5.0: Improved Productivity
Windows Mobile 5.0: Integrated Multimedia Experience
Windows Mobile 5.0: Ease of Development
Windows Mobile 5.0: Security
Windows Mobile 5.0: Deployment
Windows Mobile 5.0: Troubleshooting
Windows Mobile 5.0: Improved Productivity
Faster access to e-mail, desktop, and server information
A richer e-mail experience with updated Microsoft Office Mobile software
Innovative deployment capabilities and security technologies that facilitate management of Windows Mobile–powered devices
Windows Mobile 5.0: Integrated Multimedia Experience
Windows Media Player 10
Support for a wide range of business models
Support for multiple DRM platforms
More pluggable codec technologies
Video display improvements
Windows Mobile 5.0: Ease of Development
Powerful platform capabilities
Reduced development time and costs
Increased market opportunities
Access to comprehensive developer resources and support
Windows Mobile 5.0: Security
Windows Mobile-based Pocket PCs and Smartphones, offer a wide range of security options to protect both sensitive data and networks
The Windows Mobile platform itself also offers stronger security protections
A wide range of third-party security software and peripheral products are also available
Lab 2A: Windows Mobile 5.0 Guided Tour
Exercise 1: Navigating Windows Mobile 5.0
Exercise 2: Using a Windows Mobile 5.0 Device to Take Notes
Exercise 3: Configuring a Windows Mobile 5.0 Device to Communicate Using TCP/IP
Windows Mobile 5.0: Deployment
Deploying Windows Mobile 5 in an enterprise involves the following high-level steps:
1. Understand the Windows Mobile device security model
2. Package and deploy applications
3. Deliver applications to end users
4. Sign applications
5. Troubleshoot application installation and execution
Windows Mobile 5.0: Troubleshooting
Troubleshooting application execution Sign required binary files Ensure correct security policy setting Ensure that binary files are not on revocation list Add a matching root certificate
Troubleshooting application installation Sign required .cab files Ensure correct security policy setting Ensure that .cab files are not on revocation list Add a matching root certificate
Lesson: Messaging and Security Feature Pack
Enhanced Outlook Mobile Experience
Scalable, Cost-Effective Mobile Solutions
Support for S/MIME Messaging
Securing Devices Using Policies
Securing Devices Using Certificate-Based Authentication
Using the Local Wipe Feature
Using the Remote Wipe Feature
Enhanced Outlook Mobile Experience
Using Outlook 2003 with RPC/HTTP
Exchange Back-End
Server
RPC/
HTTP
Microsoft Exchange 2003
Using Outlook Web Access
HTTPExchange Front-End
ServerExchange Back-End
Server
Microsoft Exchange 2003
Scalable, Cost-Effective Mobile Solutions
Windows Mobile 5.0 and MSFP offer scalability through:
Ability to utilize existing Exchange 2003 investments
Outlook Mobile data compression
Broad device choice
Support for S/MIME Messaging
Is a standard for secure e-mail messages that uses a Public Key Infrastructure to share keys
Offers sender authentication using digital signatures and can be encrypted to protect privacy
Interoperates well with any standard-compliant e-mail client
Securing Devices Using Policies
Remotely manage and enforce corporate IT policies
Enforce PIN password standards
Lock device automatically after certain period of inactivity
Wipe memory of device after a specified number of failed logon attempts
Send provision request for policy settings to devices
Options for enforcing the security policies
Only devices that have policies can synchronize
Older devices or devices that do not fully support policies can synchronize
Implement exemption list for specific users
Using the Local Wipe Feature
Local wipe
Device automatically resets local memory to clean state after X number of unsuccessful PIN or password entries
Can be coupled with other security policies and features to mitigate the risk of data misuse on lost or stolen devices
Using the Remote Wipe Feature
1. Administrator sends a remote erase order to specific device2. Server sends an erase order the next time the device
connects to Exchange3. Device acknowledges that the command was received4. Device wipes data the next time it receives the command
Securing Devices Using Certificate-Based Authentication
Active Directory
Exchange
`Certificate Authority
Admin uploads XML to Active Directory that sets CA Name and other client enroll configurations
11
Upon cradling, Desktop ActiveSync connects to Active Directory, fetches the XML and pushes it down to the device
12Device attemptssync but does not
have a certificate
Sync calls enroll API to get certificate
Device syncs with new certificate
13
14
15
Lab 2B: Using Windows Mobile 5.0 Messaging Features
Exercise 1: Configuring a Windows Mobile 5.0 Device for ActiveSync
Exercise 2: Using the Messaging Features of Windows Mobile 5.0 and Messaging and Security Feature Pack
Exercise 3: Assigning a Picture to a Contact on the Mobile Device
Exercise 4: Using GAL Lookup to Locate People in the Global Address List
Review
Microsoft Windows Mobile 5 Overview
Messaging and Security Feature Pack