Many IT professionals have been asking how Ivanti Cloud can help them make the transition to a larger remote workforce. Our experts will demonstrate how our solutions can help you maintain productivity with remote troubleshooting and how to inventory devices on and off-network.
1. Joe Hirth - Ivanti Sales Engineering
David Shepherd – Ivanti Sales Engineering
Ivanti Remote Worker Program
Ivanti
2. Enabling Your Remote Worker
Business Problems:
1. Increase in Remote Users
2. Saturated VPN connections
3. Business Continuity
IT Problems:
1. Keep Them Secure
2. Keep Them Productive
3. Deliver IT Services Remotely
21. Privilege Management
Does One Size Fit All?
Locking down ALL users WILL cause problems
“I need admin rights!”
“I have an app that requires Admin privileges to run”
“I need to control system settings, local printers, network settings”
“I have a job that demands it”
“Without access, I can not work effectively!”
23. Trusted Ownership
Assume on any system there are certain accounts that are trusted to
introduce new software
The system account
Local admin
Trusted installer
The admin group
SCCM
App V
This a fundamental security model for Windows operating systems.
Application Control uses NTFS security to determine which files are
‘trusted’, based on who owns the file.
If the file is not owned by a “trusted” owner, it will not be allowed
to run, Simple.
27. Remote Worker Ivanti Offering
Please contact your local sales
representative for your free of charge use
of Ivanti Cloud until October 31, 2020, to
help you get through your transition.
How to manage an increasingly large remote workforce?
No ability to access device
Users are on their own
Helpdesk can’t push updates
These are categorised into two areas
<CLICK>
Productivity, which includes RC and delivery of applications
<CLICK>
And security, which includes: seeing those endpoints, patching them, controlling which apps can run as well as administrative privileges
OK, so let’s say you’re forced to implement WFH, are you and your users ready for the change?
Do you have the capability to allow remote workers to be productive??
We can connect to many different data feeds so that we hold the single source of truth for all your endpoints
Seeing where endpoints are can be crucial for security and asset tracking
This is our corporate map of all employees at Ivanti, this map is interactive and can be drilled down to see more specific details on each machine
That same view, zoomed in a little.
This is what our current working from home looks like for our Ivanti
All machines can be viewed in a list view
Here we have drilled down to see low level information on a specific machine.
General information such as Serial number, make and model
As well as information such as CPU and Memory usage reporting back in REAL TIME.
OK, so let’s say you’re forced to implement WFH, are you and your users ready for the change?
Do you have the capability to allow remote workers to be productive??
As you can see there is some high level information on a specific machine as well as remote control capability from this screen
As you can see we can Remote Control users sessions from a console, note that this does not need to be on the corporate network
Patch vulnerability dashboard
Detailed patch analysis
<CLICK>
Create rules to allow certain applications to run as admin
<CLICK>
You can also allow built in Windows items to be elevated or de-elevated, such as network and printers
<CLICK>
Then we have self elevation option which will allow a user to right click and self elevate certain apps, this will be audited but allows productivity
<CLICK>
Finally system controls such as Services and ability to clear Event Viewer Logs
TO concept
Let’s have a look at an example
TO is our catch all primary rule but we can then configure further exceptions and deny rules for flexibility, for example:
Create rules to allow or deny specific applications.
<CLICK>
We can also set file, folder or drive access too.