Is Microsoft the New Apple?
-
@scottalanmiller said:
It's a new trend, but AD is rapidly dissolving as a needed service. It used to be the core of single sign on but today, as almost nothing easily connects to AD but easily connect to each other, the need for AD is fading away very rapidly. It has gone from a central connector to often being little more than a handy desktop password management system.
It's to bad federated services didn't take off more - I'd love to have a nearly global identity that isn't from google or facebook.
-
If MS wanted to make serious cash, they'd update AD and make it relevant to other OS's somehow. When managing a fleet of hardware it's a serious PITA to have non-compliant stuff around. I've got AD for MS, and then it dissolves into a morass of generic accounts, specific accounts, user accounts and all sorts of other junk to cover iPads, OSX, linux.... what a mess & headache.
-
@MattSpeller said:
If MS wanted to make serious cash, they'd update AD and make it relevant to other OS's somehow. When managing a fleet of hardware it's a serious PITA to have non-compliant stuff around. I've got AD for MS, and then it dissolves into a morass of generic accounts, specific accounts, user accounts and all sorts of other junk to cover iPads, OSX, linux.... what a mess & headache.
This lends into the constant discussion of controlling mobile devices. I realize that a mobile device like a iPhone/iPad/Android tablet, etc all generally a single user device, but when this device is used for a business, I should haven't have to purchase additional tools to mange them. The same tools I use to manage PCs should manage these mobile devices as well.
-
@Dashrender said:
This lends into the constant discussion of controlling mobile devices. I realize that a mobile device like a iPhone/iPad/Android tablet, etc all generally a single user device, but when this device is used for a business, I should haven't have to purchase additional tools to mange them. The same tools I use to manage PCs should manage these mobile devices as well.
Why? They are completely different types of things. And most desktop management is paid for twice, once with the device and one with the CAL.
-
OK fine make me buy a CAL for the mobile device - and why do you view it as a different type of thing. It's a computer - it reads email, it has apps. The primary difference between a phone a laptop/desktop is the size of the screen/the OS it's running and probably the ownership.
Shops that are moving to DVI, what do they do? I'm guessing they are looking to primarily only provide web based services or VDI. These prevent most virus infections and allow content control while using your own device. In those cases you don't worry about do they have up to date AV, patches, etc because you're business is protected by the mechanism you provide access to the users through.
Which brings me back to why am I worrying about mobile devices at all. I'm worried about them being stolen primarily. If they are loaded up with PHI then I need to ensure that the device is encrypted and password protected and also the ability to remotely wipe them. If I can remove these concerns by removing the data from the device and only accessing when I'm online and it's never stored on the device then I would say we don't need to worry about it.
Of course, these devices aren't windows devices (unless you have a windows phone), but come on does that really matter today? As you mentioned, buy a CAL, I'm happy to do that. MS gets paid to support the standard mobile platforms that are out there through my purchase of a CAL for that device.
-
@Dashrender said:
OK fine make me buy a CAL for the mobile device - and why do you view it as a different type of thing. It's a computer - it reads email, it has apps. The primary difference between a phone a laptop/desktop is the size of the screen/the OS it's running and probably the ownership.
One is a general purpose, multi-user, user centric application platform. The other is a specific purpose, single user, device centric platform.
-
@Dashrender said:
Shops that are moving to DVI, what do they do? I'm guessing they are looking to primarily only provide web based services or VDI.
DVI? -
The biggest difference between a Windows desktop and a phone is that you pay for one twice, in the OS license and the CAL. You don't do this for a phone. Remember that AD won't work with free and consumer version of the Windows desktop OS either.
-
@Dashrender said:
Which brings me back to why am I worrying about mobile devices at all. I'm worried about them being stolen primarily. If they are loaded up with PHI then I need to ensure that the device is encrypted and password protected and also the ability to remotely wipe them. If I can remove these concerns by removing the data from the device and only accessing when I'm online and it's never stored on the device then I would say we don't need to worry about it.
That's the same magic that moving away from file servers gets you. Pretty rarely does any new business need to store things on a desktop or laptop anymore. I haven't had a real need to do that in a decade. I realize that I tend to be ahead of the curve, but that is a LOT ahead of the curve. The need to store files on the laptop for normal people is pretty minor. Unless you do something semi-unique like video editing.
-
@Dashrender said:
Of course, these devices aren't windows devices (unless you have a windows phone), but come on does that really matter today? As you mentioned, buy a CAL, I'm happy to do that. MS gets paid to support the standard mobile platforms that are out there through my purchase of a CAL for that device.
That pays for only part of it. Normally they make $100 for the OEM sticker and then the CAL is additional to that plus the server license. The CAL is nowhere near the entire price and just one part of the cost picture. This is to make the cost model more sensible for many different potential use cases, but the tradeoff is that it is confusing and can appear that buying a CAL pays for the cost of management, but it does not.
Would you be happy to pay $100 per phone each time a phone was added to management AND buy a CAL for each user who might use any of the phones? If not, you aren't really happy with the current pricing model for that stuff.
-
@scottalanmiller said:
@Dashrender said:
OK fine make me buy a CAL for the mobile device - and why do you view it as a different type of thing. It's a computer - it reads email, it has apps. The primary difference between a phone a laptop/desktop is the size of the screen/the OS it's running and probably the ownership.
One is a general purpose, multi-user, user centric application platform. The other is a specific purpose, single user, device centric platform.
While that is true, it's clearly not the considered norm, at least by the new tech companies - your example of Pertino is proof of that.
-
@Dashrender said:
@scottalanmiller said:
@Dashrender said:
OK fine make me buy a CAL for the mobile device - and why do you view it as a different type of thing. It's a computer - it reads email, it has apps. The primary difference between a phone a laptop/desktop is the size of the screen/the OS it's running and probably the ownership.
One is a general purpose, multi-user, user centric application platform. The other is a specific purpose, single user, device centric platform.
While that is true, it's clearly not the considered norm, at least by the new tech companies - your example of Pertino is proof of that.
That may be true, but I doubt that it is yet the norm. I was talking about modern west coast companies, remember. Also, remember, that AD doesn't apply in those scenarios at all. So where AD applies, that model does not. AD is designed around the other model, multiple users. That's its primary function. -
@scottalanmiller said:
@Dashrender said:
@scottalanmiller said:
@Dashrender said:
OK fine make me buy a CAL for the mobile device - and why do you view it as a different type of thing. It's a computer - it reads email, it has apps. The primary difference between a phone a laptop/desktop is the size of the screen/the OS it's running and probably the ownership.
One is a general purpose, multi-user, user centric application platform. The other is a specific purpose, single user, device centric platform.
While that is true, it's clearly not the considered norm, at least by the new tech companies - your example of Pertino is proof of that.
That may be true, but I doubt that it is yet the norm. I was talking about modern west coast companies, remember. Also, remember, that AD doesn't apply in those scenarios at all. So where AD applies, that model does not. AD is designed around the other model, multiple users. That's its primary function.
I agree it's not the norm today, and for some companies it never will be, short of going VDI or assigning laptops to everyone in my office I don't think we can get away from the shared desktop scenario. The number of missing staff we have daily, it seems that almost no one who has a desktop sits in the same spot two days in a row, people are often moving to completely different areas where they need different default printers (I don't know how to solve that one when they are on the same IP subnet).
Although, considering things like O365 and Rackspace and Gmail, AD is definitely seeing an end of life - and IT will look to other tools to manage desktops/laptops, many of which already exist, but now the company will have to pay reoccurring fees to use them.
-
@Dashrender said:
Although, considering things like O365 and Rackspace and Gmail, AD is definitely seeing an end of life - and IT will look to other tools to manage desktops/laptops, many of which already exist, but now the company will have to pay reoccurring fees to use them.
But they pay recurring fees for AD today. Isn't moving away from AD also potentially moving away from recurring fees? I'm confused, I thought that AD was the recurring fee that you wanted to get away from.
-
@scottalanmiller said:
@Dashrender said:
Although, considering things like O365 and Rackspace and Gmail, AD is definitely seeing an end of life - and IT will look to other tools to manage desktops/laptops, many of which already exist, but now the company will have to pay reoccurring fees to use them.
But they pay recurring fees for AD today. Isn't moving away from AD also potentially moving away from recurring fees? I'm confused, I thought that AD was the recurring fee that you wanted to get away from.
They are? CALs aren't nearly as expensive as most MDMs and other management software
-
@Dashrender said:
They are? CALs aren't nearly as expensive as most MDMs and other management software
Who uses MDM for desktops or laptops? Most MDM that I've used is very cheap, Meraki is free.
-
@Dashrender said:
But they pay recurring fees for AD today.
They are? CALs aren't nearly as expensive .....
Well, you have to pay for regular (even if only occasionally) server OS upgrades. That's normally expensive. Then you have to upgrade the CALs. And you need to upgrade the OS. That's three different recurring costs with AD just for the basics.
-
You can pay for AD ad hoc, which often costs more as companies do reckless things trying to "keep costs down." Or you can use a combination of InTunes + desktop license subscriptions and Software Assurance to turn the unpredictable AD upgrade costs into a very predictable cost. When you do this it really exposes the recurring nature of it. The recurring nature is always there, you just choose for it to be predictable and granular or unpredictable and somewhat controlled as to granularity.
MDM costs normally includes hosting and support rolled into the price too. AD does not.
-
What kind of businesses are these west coast firms? I'm guessing they're generally startups with relatively few employees. I can understand why AD doesn't fit well in these types of organisations. The larger the firm, the better AD works.
Compliance issues is also a good reason for AD, as mentioned above. We're a small firm but work on a lot of government contracts, and I'm sure AD helps us pass their audits, though there are always ways around these things.
As an aside, I'm fascinated by Californian startups. We're a 100+ year old British manufacturer - very traditional. One of my pet projects is how to make us more like a Californian startup. I'm having a little trouble getting my colleagues on board with my vision. I keep telling them there is no reason we can't be the next Nest.
-
@Carnival-Boy said:
What kind of businesses are these west coast firms? I'm guessing they're generally startups with relatively few employees.
Two of the biggest companies in the world would be in that list. Actually three, including the very largest. And while I've not been inside, I know that Oracle is like that too. And those are just the insanely enormous players. Size really isn't that big of a factor, culture really is.