Welcome!

Microsoft Cloud Authors: Kevin Benedict, Pat Romanski, Liz McMillan, Lori MacVittie, Elizabeth White

Related Topics: @CloudExpo, Microsoft Cloud, Cloud Security

@CloudExpo: Article

Reducing IT Operation Costs | @CloudExpo #API #Cloud #Azure

Incident management is key for organizations to ensure that their service operations are running without impacting the business

Reducing IT Operation Costs with Windows 10 Hello for Business

The newer Windows 10 devices with the Hello extensions are definitely going to have a cost implication, but in today's context in our own consumer world where every individual has access to Smartphones with advanced biometric features, why should the enterprise user continue to use the old PCs that are managed by traditional passwords? I think the cost of transformation to these devices will be worth the efficiencies in the ITIL operations as well as improved security to enterprise data. It would be useful to collect data about OEMs who have Windows 10 PCs with Biometric Hello features and the same list can be utilized by enterprises. I will write a separate article on Windows 10 devices for enterprises.

Incident Management and Passwords
Incident management, which is one of the process area of ITIL, is key for organizations to ensure that their service operations are running without impacting the business. Within the incident management there are two major triggers, known as Incidents (unplanned disruption to the service operations) and Service Requests (formal requests from end users for IT Services). Also in the ITIL/ITSM world the term Ticket is used for the method of initiation of a request from the user community to the IT department.

Without getting much into the classic definitions of ITIL, from the definitions above, it is easy to think that as an IT department, our goal is to minimize the effort spent on incident management be it Incidents or Service Requests, so that IT department spends a lower cost on operations while also concentrating more on the innovation.

Over the years, organizations have tried multiple options to reduce the incidents and service requests, one method they adopt is "Automation" and most times they also resort to "Self Service". Automation basically prevents manual effort on incidents and solves it with machines and self-service is more about letting the end users to solve the "Service Request" by themselves.

However, if you really think of the above two approaches, they don't prevent the issue at the source rather provide an efficient way to solve them. More and more organizations would like to prevent the issue at the source, so that they don't occur in the first place.

From the analysis of the Incident database from several organizations, it is found that the nearly 40% of Incidents/Service Requests are password related and most times IT departments take a minimum of 30 minutes and more to solve that issue. So if we really look this from a lost productivity angle of both IT department and end users this problem is not small as it looks.

While the traditional methods of self-service password management will continue to have value, the next generation end user management should go towards password less operations. Let us get into some directions from Windows 10 enabled features in this direction.

Windows 10 Features for Password Elimination
Windows 10 which recently had an anniversary update, has come up with some new features which needed some introduction.

Windows 10 Hello
In Windows 10, Hello replaces passwords. Individuals can create a PIN or biometric gesture on their personal devices for convenient sign-in. This use of Hello provides a layer of protection by being unique to the device on which it is set up. The biometric data used to support Windows Hello is stored on the local device only. It doesn't roam and is never sent to external devices or servers.

Windows Hello for Business (Formerly Known as Microsoft Passport for Work)
Windows Hello for Business, which is configured by Group Policy or MDM policy, uses key-based or certificate-based authentication. In Windows 10, the Windows Hello for Business (formerly known as Microsoft Passport for Work) feature can replace passwords with strong two-factor authentication that combines an enrolled device with a PIN or biometric (fingerprint or facial recognition) user input to sign in.

TPM (Hardware Chip)
Trusted Platform Module (TPM) technology is designed to provide hardware-based, security-related functions. A TPM chip is a secure crypto-processor that is designed to carry out cryptographic operations. Microsoft Hello For Business takes the PIN or biometric information from Windows Hello , and uses this information to have the TPM-chip generate a set of public-private keys.

Azure Active Directory & AD Join for Windows 10
Azure Active Directory (Azure AD) is Microsoft's multi-tenant cloud based directory and identity management service. Azure Active Directory Join (Azure AD Join) is the functionality that registers a company-owned device in Azure Active Directory to enable centralized management of the device. I have covered in detail about Azure AD Join for Windows 10 in my earlier article.

Azure AD SSO (Application Access)
Azure AD enables easy integration to many of today's popular SaaS applications; it provides identity and access management, and enables users to single sign-on to applications directly, or discover and launch them from a portal such as Office 365 or the Azure AD access panel.

The above are just brief explanation of the mentioned technologies, detailed explanation of them are available on the Microsoft website.

Blueprint of a Password Less Enterprise
Powered by Windows 10 features (Hello for Business) & Azure Active Directory (AD Join, SSO), an enterprise can transform into a password less enterprise, which is not only secure but the associated IT Operations will also be lean and efficient.

The below diagram gives a blueprint of the same.

Summary
The newer Windows 10 devices with the Hello extensions will definitely going to have a cost implication, but in today's context in our own Consumer world every individual has got access to Smartphones with advanced biometric features, why should the enterprise user continue to use the old PCs which are managed by traditional passwords ? I think the cost of transformation to these devices will worth the efficiencies in the ITIL operations as well as improved security to enterprise data. It would be useful to collect data about OEMs who have windows10 PCs with Biometric Hello features and the same list can be utilized by enterprises. I will write a separate article on Windows 10 devices for enterprises.

More Stories By Srinivasan Sundara Rajan

Highly passionate about utilizing Digital Technologies to enable next generation enterprise. Believes in enterprise transformation through the Natives (Cloud Native & Mobile Native).

IoT & Smart Cities Stories
"Space Monkey by Vivent Smart Home is a product that is a distributed cloud-based edge storage network. Vivent Smart Home, our parent company, is a smart home provider that places a lot of hard drives across homes in North America," explained JT Olds, Director of Engineering, and Brandon Crowfeather, Product Manager, at Vivint Smart Home, in this SYS-CON.tv interview at @ThingsExpo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
DXWordEXPO New York 2018, colocated with CloudEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
The current age of digital transformation means that IT organizations must adapt their toolset to cover all digital experiences, beyond just the end users’. Today’s businesses can no longer focus solely on the digital interactions they manage with employees or customers; they must now contend with non-traditional factors. Whether it's the power of brand to make or break a company, the need to monitor across all locations 24/7, or the ability to proactively resolve issues, companies must adapt to...
DXWorldEXPO LLC announced today that ICC-USA, a computer systems integrator and server manufacturing company focused on developing products and product appliances, will exhibit at the 22nd International CloudEXPO | DXWorldEXPO. DXWordEXPO New York 2018, colocated with CloudEXPO New York 2018 will be held November 11-13, 2018, in New York City. ICC is a computer systems integrator and server manufacturing company focused on developing products and product appliances to meet a wide range of ...
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a m...
@DevOpsSummit at Cloud Expo, taking place November 12-13 in New York City, NY, is co-located with 22nd international CloudEXPO | first international DXWorldEXPO and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time t...
Founded in 2000, Chetu Inc. is a global provider of customized software development solutions and IT staff augmentation services for software technology providers. By providing clients with unparalleled niche technology expertise and industry experience, Chetu has become the premiere long-term, back-end software development partner for start-ups, SMBs, and Fortune 500 companies. Chetu is headquartered in Plantation, Florida, with thirteen offices throughout the U.S. and abroad.
DXWorldEXPO | CloudEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.
CloudEXPO New York 2018, colocated with DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
Disruption, Innovation, Artificial Intelligence and Machine Learning, Leadership and Management hear these words all day every day... lofty goals but how do we make it real? Add to that, that simply put, people don't like change. But what if we could implement and utilize these enterprise tools in a fast and "Non-Disruptive" way, enabling us to glean insights about our business, identify and reduce exposure, risk and liability, and secure business continuity?