Endpoints areÌýphysical devices that connect to a network systemÌýsuch as mobile devices, desktop computers, virtual machines, embedded devices, and servers (Microsoft.com).
In FY23, the Enterprise Technology & Services (ET&S) Desktop Services team commenced a project to modernize all employee endpoints across all ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û (×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û) campuses, significantly improving the system's overall effectiveness, security posture, and user experience. These endpoint modernization initiatives within the ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û system have strengthened the campuses' operational efficiency and security posture and empowered students, faculty, and staff with advanced tools and capabilities. With these ongoing modernization efforts, ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û Desktop Management aims to ensure compliance and efficient device fleet management while streamlining processes, boosting security, and simplifying device administration.
This multi-faceted project involved the following aspects:
Local Administrator Password Solution (LAPS) implementation
ET&S’ adoption of LAPS password management this year enhances the security of endpoint devices by automatically randomizing and managing local administrator passwords on University endpoints. LAPS helps to mitigate the risk of unauthorized access, strengthening the overall security posture of the University System.
Ìý
JAMF Mobile Device Management
Jamf is a comprehensive Apple macOS and iOS device management platform. Desktop Support implemented its JAMF mobile device management (MDM) solution to allow ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û to automate patching processes for the operating system and applications, streamlining the deployment of critical updates and ensuring Apple devices are up-to-date and protected.
FileVault/Bitlocker
FileVault (macOS) and Bitlocker Windows) are data encryption services. Desktop Security strengthened the safety of sensitive data on devices by establishing protocols to employ these tools across more than 5,000 faculty/staff endpoints, ensuring compliance with data security standards and boosting the trust and confidence of our computing community.
Ìý
Asset Management
Desktop Services improved hardware asset visibility and management utilizing TeamDynamix, consolidating multiple asset information sources into a unified single-pane enterprise-wide endpoint assets inventory database linked to the TeamDynamix ticketing system. This enables standardized processes to track assets throughout their entire institutional lifecycle as well as unified forecasting, budgeting, and reporting.
Ìý
Safe Electronic Equipment Disposal (SEED)
The SEED Project ensures ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û devices are properly disposed of, including wiping hard data drives. Desktop Services evaluated, streamlined, and standardized the ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û Safe Electronic Equipment Disposal (SEED) program across ×î¿ì¿ª½±Ö±²¥½ÁÖé½á¹û institutions, employing a new vendor. This undertaking improved the tracking and auditing of discarded equipment and eliminated the expenditures associated with recycling out-of-date technology assets.
