Higher Ed: Best Practice for Managed Desktops
I'm looking for feedback from other colleges/universities regarding managed desktops and whether or not you grant exceptions to the managed desktop paradigm (e.g., allow University purchased systems to be not managed) . If so, on what basis and with what caveats? Do those individuals responsible for the systems have to agree to certain conditions for maintaining their own systems? Any feedback would be appreciated
0 Comments
[ + ] Show comments
Answers (4)
Please log in to answer
Posted by:
joncutler
13 years ago
Marshall University has recently installed a K1000 and K2000 system. We have used another systems management product in the past (Microsoft SMS and SCCM). I too am interested in hearing from other higher-ed clients particularly in the area of delegation of administrative rights in the KACE environment. We are reviewing how we can delegate admin rights using the 'organizations' in the K1000. Bu we would also like the ability to have central asset (hardware and software) reporting to assist with unified campus license agreements. Feel free to contact me off-line if you would prefer a one-on-one conversation.
Jon Cutler, MS, CISSP
Chief Information Security Officer
MU Office of Information Technology
jon-dot-cutler-at-marshall-dot-edu
(304) 696-3270
Jon Cutler, MS, CISSP
Chief Information Security Officer
MU Office of Information Technology
jon-dot-cutler-at-marshall-dot-edu
(304) 696-3270
Posted by:
joncutler
13 years ago
Is there anyone else out here in the AppDeploy forums that has a similar issue? Perhaps we are used to life in a Windows/Active Directory environment where in a Single Forest/Single Domain we can delegate client admin rights to clients in OU's. Am I missing any similar feature/functionality in K1000 to be able to have KACE clients in a single/default organization and be able to delegate permissions to manage these clients? I have tested creating additional organizations, but it's my understanding that this means we have to duplicate resources (managed distributions, scripts, software asset and license metering, etc.). If that is the only solution, we will have to make some hard or possibly unpopular choices in who can manage what with KACE.
Posted by:
ms01ak
13 years ago
I work for University that bought Kace 1200 about 3 months ago. We've got central It folks and facility IT support for specific departments. We looked at having separate organizations but it wasn't worth the pain of setup for each other IT department. What we did in the end was give key people in the departments admin access to Kace (We hide vulnerable kace settings for the actual server). For other users, we created specific roles such as helpdesk which can only view inventory data, asset managers which can input asset information and view reports only. It's seems to have worked so far for us without to many people stepping on each other. We also make sure that everyone was aware that we are monitoring the logs for any misuse.
I'd be interested in forming some sort of email group specific to higher education and the kace appliances.
I'd be interested in forming some sort of email group specific to higher education and the kace appliances.
Posted by:
grayematter
13 years ago
I also work at a University that is implementing both the K1000 and K2000. Our primary drivers are to replace our spread sheets with real inventory management and to replace Ghost for imaging. We have started putting the Agent on public machines (labs and classrooms). Since we had no automated inventory tool, we are also working to approve policies regarding the KACE Agent to stem any "spy platform" arguments from our faculty and staff. We are hoping to NOT allow any exceptions.
We are small enough to have a single IT organization. Our IT Support Services is charged with inventory and administration of workstations. Our implementation will NOT be touching server installations as those are maintained separately by another arm of our IT organization. I am working on configuring permissions for our different functional usages: desktop support, help desk, asset management, etc. So any experiences, good or otherwise, would be beneficial!
Because of timing, we are just starting to look at imaging and scripted installations. We would also like to hear about how other Institutions are using KACE. I have submitted my request to attend the KACE Konference and I hope to see some sessions geared to Higher Education.
We are small enough to have a single IT organization. Our IT Support Services is charged with inventory and administration of workstations. Our implementation will NOT be touching server installations as those are maintained separately by another arm of our IT organization. I am working on configuring permissions for our different functional usages: desktop support, help desk, asset management, etc. So any experiences, good or otherwise, would be beneficial!
Because of timing, we are just starting to look at imaging and scripted installations. We would also like to hear about how other Institutions are using KACE. I have submitted my request to attend the KACE Konference and I hope to see some sessions geared to Higher Education.
Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.
so that the conversation will remain readable.