TechNet Home > Common IT Scenarios > Small and Medium Business > Medium IT Solution Series

Medium Business Solution for Client Configuration

Plan

Published: January 21, 2005

This section provides guidance on choosing the right types of client devices for different users and choosing the hardware and software configurations for these client devices. It is not possible to study the requirements of each user in the IT environment; therefore, the Medium Business Solution for Client Configuration recommends creating broad categories of client devices that are required in the environment. This solution provides guidance on assessing the user requirements and creating different categories of client devices. It also provides considerations and recommendations for choosing the client hardware and software for each category of client devices.

The following figure represents the medium IT infrastructure and highlights the client devices.

Figure 1. Medium IT Infrastructure

Figure 1. Medium IT Infrastructure
See full-sized image

On This Page
Identifying the Types of Client Devices RequiredIdentifying the Types of Client Devices Required
Standardizing Client DevicesStandardizing Client Devices
Operating System RecommendationsOperating System Recommendations
Hardware RecommendationsHardware Recommendations
Product ActivationProduct Activation
Desktop Computer ConfigurationDesktop Computer Configuration
Portable Computer ConfigurationPortable Computer Configuration
Home Computer ConfigurationHome Computer Configuration
Windows Mobile Devices ConfigurationWindows Mobile Devices Configuration

Identifying the Types of Client Devices Required

The first step in planning for deployment of client devices is identifying the different types of client devices that will be required in the environment. The Medium Business Solution for Client Configuration provides guidance on deploying the following types of client devices in the medium IT environment.

Desktop computers: Fixed workstations connected to the internal LAN. These are the most common and easy-to-manage client devices because organizations have control over them.

Portable computers: Include laptops and Tablet PCs, the difference between them being that Tablet PCs have a pressure-sensitive screen on which you can write notes using a stylus. Portable computers are widely used in sales, research, manufacturing, and management departments, where they are preferred because of their portability and lack of dependence on a keyboard.

Windows Mobile devices: Windows Mobile software extends the familiar Windows experience to mobile devices. These devices include:

Pocket PC: A handheld device that enables you to store and retrieve e-mail, contacts, and appointments, play multimedia files and games, exchange text messages with MSN Messenger, browse the Web, and more. You can also exchange, or synchronize, information with a desktop computer.

Pocket PC Phone: It combines all the standard functionality of a Windows Mobile-based Pocket PC with that of a feature-rich mobile phone. It enables you to dial from contacts, send SMS messages, identify incoming callers, or easily take call notes. Using a wireless service through a mobile operator, you can access the Internet and your corporate network and send and receive e-mail while on the move.

Smartphone: It integrates PDA-type (personal digital assistant) functionality into a voice-centric handset comparable in size to mobile phones that are currently available in market. Designed for one-handed operation with keypad access to both voice and data features, Smartphones are optimized for voice and text communication and allow wireless access to Microsoft® Office Outlook® information, encrypted browsing to corporate network, and other information and services on the Internet.

Home computers: These are computers used by users who work from home. In most cases, the organization does not have control over the hardware and software configuration of home computers and it is difficult to apply the organizational security policy on these computers.

Public computers (kiosk): An increasing number of public places, such as airports, hotels, coffee shops, and university campuses, have computer kiosks. Kiosk computers can be used to remotely access office desktops or extranet and e-mail sites.

The following table provides the advantages and disadvantages of using these different types of client devices.

ChoiceAdvantagesDisadvantages

Desktop computers

Less expensive: Powerful and feature rich desktop computers are less expensive than other client devices.

Most secure: Desktop computers are always present in the office and therefore, can take advantage of all the security features in the office, such as the firewall.

Easy to manage: New software updates and policy changes are applied immediately because desktop computers are always present in the office.

Easy to upgrade: The hardware of desktop computers is easy to upgrade.

Lack of mobility: Users cannot move around the office and work or work on their computers while they are traveling.

Portable computers

Mobility: Users can work from anywhere in the office or from home or while they are traveling.

Security risks: These risks include:

Laptops and Tablet PCs are easy to walk away with. Sensitive data can be stolen.

When portable computers connect to the Internet from outside the internal network, there is no firewall protection available to these computers.

Security policy changes and software updates may not be applied for long periods, if the user is away from office and does not connect through VPN for a long time.

Windows Mobile devices

Convenient: Mobile devices are fast, lightweight, and stylish devices.

Wireless support: Pocket PC can connect to wireless LANs. Pocket PC Phone can also connect to wireless Internet provided by the mobile operator. Smartphones can only connect to wireless Internet.

Expensive: Mobile devices are more expensive than other client devices.

Low battery life: The battery life is low. Therefore, mobile devices require daily recharging.

Inconvenient: Entering data can be tiresome.

Home computers

Convenient: Provides employees the convenience to work from home even if they do not have a portable computer.

Lack of control: The organization has little or no control and may not be able to implement the security policy on home computers.

Public computers

Convenience: It is convenient when the user is attending seminars and conferences or while traveling.

Secure access: User connects to SSL (Secure Sockets Layer) secured company sites, such as e-mail, SharePoint sites, and terminal server.

Security risks: These risks include:

Users might forget to log off a Web session or disconnect VPN.

Temporary files, such as e-mail attachments, that are left behind may have sensitive information.

Worms and viruses on the public computer may enter the company network through a VPN tunnel.

Table 1. Client Device Choices

The types of client devices users may require depends on the kind of work they do. Some users may require multiple devices to enable them to work efficiently.

The following table presents a simple matrix that IT generalists can use to decide and recommend different devices for different users performing different roles in the organization. A lot of these decisions and recommendations also depend on the IT budget of the organization.

RolesDesktop ComputerLaptopTablet PCPocket PCSmart-phonePocket PC PhoneHome Computer Public Computer

Information worker

       

Management

   

Sales

     

IT support

     

Marketing

     

Accounting

      

Engineering

      

Manufacturing and inventory

       

Table 2. Client Device Requirement Matrix

The following table lists the user roles identified for Lucerne Publishing, a brief description of how they operate, and the client devices recommended for them.

RoleDescriptionRecommended Client Device

Typesetters and publishers

Have a 9 to 5 work schedule and cannot take work home because they need to use specialized software.

Desktop computer

Editors

Have a flexible time schedule and can work from home.

Portable computer (laptop)

Graphic designers and animators

Although they have a flexible time schedule, they cannot work from home because they need to use specialized software.

Desktop computer

Project consultants

Specialists in specific area.

Hired on a temporary basis for different projects.

Home computer

Directors and managers

At office, they need to be very mobile because they have to attend meetings in different rooms and at times visit different companies. At the meeting, they need to take notes and usually they are not fast typists.

Portable computer (Tablet PC or laptop)

Sales and marketing

They are always on the move, traveling from city to city looking for new business prospects.

They need alternative access to the main office because the Internet may not be available everywhere. They need to connect to the main office and review the availability of resources, order status, and production runs.

Portable computer (laptop) and Windows Mobile device (Pocket PC Phone)

Engineering

Often work beyond a 9 to 5 work schedule. They design the products the company sells and configure the production machinery to automate the job runs. They spend a lot of their time on their computers. They occasionally are required to attend meetings but normally stay in their department.

Desktop computer

Manufacturing

Have a three-shift workday. Computers are generally used to monitor orders and for e-mail.

Desktop computer

Accounting and finance

Have a 9 to 5 work schedule and work on an accounting package that is not resource-intensive.

Desktop computer

Stock room and mailroom

Have a longer than 9 to 5 work day. Computers are used mostly for e-mail for mailroom and for database access for the stock room.

Desktop computer

IT operations manager and IT administrators

They need to be available 24 hours. In addition, they need 24-hour access to a computer that has tools to help them diagnose problems in the IT infrastructure.

Portable computer (laptop) and Windows Mobile device (Smartphone).

Table 3. User Roles and Client Devices Recommended for Users in Lucerne Publishing

Standardizing Client Devices

Standardizing the client devices, typically, involves standardizing the desktop computers and portable computers (laptops, and Tablet PCs). Standardizing home computers may be very difficult or not possible at all in most cases. Standardizing the configurations of mobile devices and public computers is also not possible, although you should consider standardizing the handheld device hardware.

Client devices can be grouped into categories based on the performance requirements of the users. In the medium IT environment, the devices can be grouped into the following three categories:

Low performance: Used by data processor users. The client device hardware required by these users to perform their job does not include large processors or large memory.

Average performance: Required by users who need a faster client computer, which has more processing power and more memory (fast memory). These users also need more storage space, which means larger hard disk capacity. An example of such users is Web developers.

High performance: Required by users who need very powerful computers. The client computer hardware requirements for this group may include dual processors with extra memory, sophisticated graphics cards with large memory, and robust storage solutions such as redundant array of independent disks (RAID).

Standardized configuration settings, software, hardware, and preferences should be designed for each of these groups of devices. In addition, it should be ensured that all client devices existing in the environment meet the defined criteria.

It is easy to standardize desktop configurations of client devices because Windows XP Professional is recommended for all client devices in the medium IT environment. Standardization makes it easier to install, update, manage, support, and replace these client devices. Standardization also makes it easier to deploy the operating system, upgrade applications, and make changes to the configuration that can be guaranteed to work on all computers.

Standard desktop configurations also make it easier for support personnel to identify and resolve problems encountered by users. Problems can occur when users install operating system upgrades, hardware devices, applications, and device drivers and when users configure new or change existing settings and preferences that have not been approved for use in the organization. Creating standards helps to eliminate these potential problems. If a computer fails, having a standard configuration minimizes downtime by ensuring that users have the same settings, applications, drivers, and preferences that they had before the problem occurred.

Some organizations might require multiple, standardized desktop images depending on the business of the organization and job-related functions. For example, an accounting desktop will have a different configuration from a design and engineering desktop. In such scenarios, the first step in creating images is to properly plan and create a standard image that can be used as the base image across the organization.

The following table presents the categories assigned by Lucerne Publishing to all client computers that were identified in the previous section.

RoleDevice Type CategoryReasoning

Typesetters and publishers

Desktop computer

Average performance

Typesetting and publishing applications that are not very resource intensive will be run.

Editors

Portable computer (laptop)

Average performance

Applications, such as Microsoft Office, will be run by editors.

Graphic designers and animators

Desktop computer

High performance

Graphic design and animation software are very resource intensive.

Project consultants

Home computer

N/A

This is not categorized because the organization has no control over it.

Directors and managers

Portable computer (Tablet PC)

Average performance

Recourse intensive applications will not be run on these computers.

Sales and marketing

Portable computer (laptop)

High performance

Presentations that may require a lot of power for graphic rendering will be run on these computers.

Engineering

Desktop computer

High performance

AutoCAD and 3D Modeling software and line-of-business (LOB) applications for controlling production runs (Wavemaster) are all processor and memory intensive.

Accounting and finance

Desktop computer

Low performance

A light accounting software will be run on these computers.

IT operations manager and IT administrator

Portable computer (laptop)

Average performance

Primarily these computers will be used to run light management tools, such as remote desktop.

Table 4. Categories of Desktop and Portable Client Computers at Lucerne Publishing

The table reveals that Lucerne Publishing requires the following categories of client computer hardware:

Low-performance desktop computers.

Average-performance desktop computers.

High-performance desktop computers.

Average-performance laptops.

High-performance laptops.

Average-performance Tablet PCs.

Operating System Recommendations

The Microsoft® Windows® family has an operating system for each type of client device considered in the Medium Business Solution for Client Configuration. This solution recommends using the latest version of the appropriate Windows operating systems for each type of client devices. The following table lists the recommended Windows operating system for each type of client devices.

Client Device Recommended Operating System Description

Desktop computer

Windows XP Professional with SP2

It is designed for business users.

Portable computer (laptop)

Windows XP Professional with SP2

Introduces many new mobility and security features for laptops and Tablet PCs, and enhances the performance, communication, and reliability of the device.

Portable computer (Tablet PC)

Windows XP Tablet PC Edition with Service Pack 2 (SP2)

Supports substituting of the keyboard and mouse with a stylus and enables taking of hand written notes using stylus.

Windows Mobile devices

Windows Mobile

Especially designed for mobile devices.

Home computer

Windows XP Home Edition with Service Pack 2 (SP2)

Reduced capabilities and meant only for home use.

Public computer

Windows XP Professional with SP2 or Windows XP Home Edition with SP2

-

Table 5. Recommended Windows Operating System for Different Client Devices

Note that the organization has no control over the operating system used on the public computer, and in most cases, it has no control over the operating system used on the home computers either.

Hardware Recommendations

The following sections present the considerations and the Medium Business Solution for Client Configuration recommendations for client device hardware. The following table presents the minimum hardware recommended for the Windows XP operating system.

ItemMinimum Requirements

Processor

Intel® Pentium® (or compatible) 233-megahertz (MHz) or higher processor.

Memory

64-megabytes (MB) random access memory (RAM).

Storage

2-gigabyte (GB) hard disk with 650 MB of free disk space.

Graphics

Video graphics adapter (VGA) or higher display adapter.

Human interface devices

Keyboard, mouse, or other pointing device.

Removable storage

Compact disc read-only memory (CD-ROM) or digital video disc read-only memory (DVD-ROM) drive.

Communication device

Network adapter (required for network installation).

Table 6. Minimum Hardware Requirements for the Windows XP Operating System

Considerations

The business requirements and the role of the client computer determine the hardware configuration. The following sections detail some of the elements that need to be considered while choosing the hardware for client devices.

Hardware Compatibility

Before buying hardware, check the compatibility of the operating system with the hardware. Microsoft provides catalogs of products, both hardware and software, that are compatible with different versions of Windows XP and the Microsoft® Windows Server™ 2003 family. Windows Catalogs are replacing the Hardware Compatibility List (HCL), which used to provide lists of compatible hardware devices for Windows® 2000 Server and earlier operating systems.

Microsoft provides the following catalogs:

Windows Catalog: For products built for Windows XP. The catalog is available at the following URL:

http://www.microsoft.com/windows/catalog/

Windows Server Catalog: For products built for the Windows Server 2003 family. The catalog is available at the following URL:

http://www.microsoft.com/windows/catalog/server/

Note: For a list of all catalogs and HCLs provided by Microsoft, refer to the "Products Designed for Microsoft Windows – Windows Catalog and HCL" page available at the following URL:

http://www.microsoft.com/whdc/hcl/default.mspx

Ensure that the computer hardware is compatible with Windows XP, and that the computer on which the operating system is being installed supports the minimum system requirements for installation.

For a list of hardware devices that have successfully passed the hardware compatibility tests for Windows XP, perform the following steps:

1.

Browse to the Windows Catalog site, available at the following URL:

http://www.microsoft.com/windows/catalog/

2.

Click the Hardware tab.

3.

On the left pane under Hardware, click Personal Computers->Business Desktop Systems.

Hardware compatibility is not an issue with Pocket PCs and Smartphones because they use software developed by original equipment manufacturers (OEMs).

Processor and Memory (RAM)

Applications may be:

Processor-intensive

Memory-intensive

Processor- and memory-intensive

Therefore, the applications that the users in each of the standardized groups will be running need to be evaluated before deciding the processor and memory requirements.

Lucerne Publishing used the following standard:

Low performance: 500 MHz to 1 GHz processor with 128 MB of RAM

Average performance: 1 GHz to 2 GHz with 256 MB of RAM

High performance: 2 GHz and higher with 512 MB or more of RAM

Storage

The disk space should be enough to store the working files of the users. There should be provisions for larger disks for users who work with large files, such as computer-aided design (CAD) and animation files. It should be kept in mind that if folder redirection is being used to redirect user data to a network share, the actual files will not be stored on the local disks. Therefore, storage may be required only to accommodate system files and temporary files.

When considering storage for mobile devices, look for the size of Flash ROMs. In addition, consider CompactFlash (CF) or Secure Digital (SD) storage cards that can store up to 1 GB, or support up to 30 GB with a Personal Computer Memory Card International Association (PCMCIA) storage cards.

Removable Storage

Most computers come with floppies and CD-ROM drives. CD or DVD writers may also be considered for some users.

Another type of removable device is the USB (Universal Serial Bus) mass storage device. USB mass storage devices include:

Pen drives: These come in storage capacities ranging from 16 MB to 1 GB.

USB hard disks: These are hard disks that can be plugged into the USB port and operate as a normal data drive.

A serious consideration with removable drives is data security. Removable storage devices are a convenient means of stealing valuable information. High-capacity pen drives can be plugged into any computer with a USB port and large volumes of data can be stolen. Therefore, it is important that the users do not leave computers with critical or confidential data unlocked. In addition, organizations may need to enforce policies such as restricting the use of removable storage to certain trusted users only or to users who need to use these devices to perform their job.

Communications

Each computer requires a means to communicate with the network. Communication devices include wired and wireless network adapters, modems, and in case of mobile devices, Bluetooth and infrared.

This solution recommends standard 10/100 Mbps network adapters on all client computers. In addition, portable computers should have modems and either built-in or add-on wireless network cards. It is recommended that the wireless adaptors should support both the 802.1b and 802.1g standards.

For Pocket PC-based devices, getting an integrated wireless capability with the device will allow the device to access resources on the network. Pocket PC Phone Edition and Smartphones both come with built-in communications capability.

Sound and Graphics

Better graphics cards, with additional RAM on the graphics card, may be required for users who work with graphics and animations. Sound cards are standard in most client computers. Better and more advanced cards may be needed for some specialized users.

Lucerne Publishing used the following standard:

Low performance: 4-MB SVGA (Super VGA) display adapter and no sound card.

Average performance: 64-MB SVGA display adapter and integrated sound cards.

High performance: 128-MB SVGA Video adapter and separate sound card.

Display

Monitors are an important peripheral for users, especially for users who have to work continuously or for long durations. 17-inch color monitors are a popular choice for most environments. One may choose wider screens and higher resolution monitors to improve the comfort of users. Consider the following options while choosing a monitor:

Screen type

Screen size

Screen color and resolution

Display technology

Colored screens in mobile devices might be useful for viewing charts, pictures, presentations, slides, and videos. A high-resolution screen is useful for viewing multimedia content.

A specialized set of rugged Pocket PCs that can be dropped and can work in rainy or dusty industrial environments are available from vendors like Casio, Compaq, Intermec, and Symbol.

Lucerne Publishing used the following standard:

Low performance: 800 by 600 pixels support.

Average performance: 1024 by 768 pixels support.

High performance: 1280 by 1024 or higher pixels support.

Human Interface Devices

Similar to monitors, a good keyboard and mouse can help increase the long-term productivity of users. Care must be taken when buying these devices and importance should be given to user comfort. Typically, optical mouse devices are a good choice because:

No mechanical balls are used.

Screen pointer movement is more even.

The device lasts longer.

Consider using mouse devices with scroll wheels because they increase user productivity, especially for users who require browsing through documents and Web pages.

Battery Usage

This is a special consideration for portable computers and mobile devices. Consider employing both the main and the backup battery. Smartphones usually do not come with a backup battery.

The rechargeable batteries in Pocket PCs support longer usage times. Typically, during constant use, these batteries will operate in the six to eight hour range, similar to a cell phone. Some devices have a lithium polymer plate battery that is rated for up to 16 hours on a single charge. Other manufacturers offer extended batteries that operate for up to 24 hours on a single charge (with the backlight switched off).

When mission-critical data (for example, a sales order, medical prescription, test result, or stock trade) is placed on the client devices, it is important to protect data from accidental loss. The accidental loss can happen if there is not enough space to store all the data or if the battery were to run out of power.

Design

Device design is a special consideration for all portable and mobile devices, including laptops, Tablet PCs, Pocket PCs, and Smartphones. Consider the following when evaluating the device design:

Robustness

Weight

Add-ons and software provided

Security

Some models offer fingerprint readers to access the device, others allow for password protection.

Accessibility

In addition, for Tablet PCs, you need to consider the form factor. Tablet PCs come in two forms—the convertible form that has a built-in keyboard and the slate form (the approximate size of an actual paper notebook) that has no keyboard.

Peripherals

When buying client devices, look for peripherals that accompany these devices. This especially applies to mobile devices. To meet the mobile computing needs for special operating capabilities, look for the following hardware features on a Pocket PC:

CF slot

PCMCIA slot

SD and MMC (multimedia card) slots

Multi-expansion slots per device

Infrared communication mechanism

Many peripherals for data capture, storage, and connectivity are available because of the inclusion of SD, MMC, CF, and PCMCIA industry standard slots in handheld devices. Some Pocket PCs support two slots enabling storage and connectivity cards to be used at the same time.

With industry-standard Infrared (IrDA) supported on a Pocket PC, the devices can exchange data over wireless connections and synchronize with desktop computers.

Data-ready cellular phones can be used as modems for handheld devices. Socket and Xircom offer CF cards with different connectors that plug into these digital cellular phones.

Bluetooth-enabled products for personal area networks are available for handheld devices through CF and PCMCIA cards as well as slide-on jackets. Bluetooth provides the capability for wireless connections with computers, other PDAs, cell phones, printers, cameras, and bridges to Ethernet networks over time.

Hardware Vendor

Many hardware vendors offer comparable hardware solutions for desktops. When choosing the hardware vendors, consider the following factors:

Customer support

Quality of the product (based on historical data)

Warranty

Cost

Performance

Security (asset tracking)

Compatibility (integration with current and upcoming peripherals)

Standardization

Desktop manageability

Recommendations

Based on considerations presented in the previous section, Lucerne Publishing developed the following standard configurations for the identified client device categories. The following categories were required by Lucerne Publishing:

Low-performance desktop computers

Average-performance desktop computers

High-performance desktop computers

Average-performance laptops

High-performance laptops

Average-performance Tablet PCs

The standard configurations developed for these client computers are presented in the following sections.

Desktops

The following table lists the standard configurations for different categories of desktop computers required by Lucerne Publishing.

ItemsLow PerformanceAverage PerformanceHigh Performance

Processor

Intel® Celeron®

Intel® Pentium® 4 (or compatible) 1.5 GHz or higher processor

One or two Intel® Pentium® 4 (or compatible) 2.0-GHz or higher processor

Memory

256-MB RAM.

256-MB RAM.

1-GB RAM.

Storage

8-GB hard disk or more.

20-60-GB hard disk.

60-GB or higher hard disk.

Graphics

SVGA display adapter and plug and play monitor.

SVGA display adapter and plug and play monitor.

128-MB SVGA video adapter.

Human interface devices

Keyboard, mouse, or other pointing device.

Keyboard, mouse, or other pointing device.

Keyboard, mouse, or other pointing device.

Removable storage

CD-ROM or DVD-ROM drive (12x or faster).

CD-ROM or DVD-ROM drive (12x or faster).

CD-ROM or DVD-ROM drive (12x or faster).

Communication devices

Wired or wireless network adapter.

Wired or wireless network adapter.

Wired or wireless network adapter.

Table 7. Standard Hardware for the Desktop Computer Categories Required by Lucerne Publishing

Portable Computers

As with desktop computers, it is very important to standardize the configuration of portable computers. The business needs of an organization determine the type and configuration of laptop or Tablet PC. The following table presents the configurations for different categories of portable computers required by Lucerne Publishing.

ItemsAverage-Performance LaptopsHigh-Performance LaptopsAverage-Performance Tablet PCs

Processor

Intel® Centrino™ 1.5 GHz processor

Intel® Pentium® M 2.0 GHz processor

Intel® Centrino® 1.5 GHz processor

Memory

Integrated 10/100 Ethernet adapter.

Integrated 100/1000 Ethernet adapter.

1-GB RAM.

Storage

40-GB hard disk.

80-GB hard disk.

40-GB hard disk.

Graphics

32-MB video adapter.

128-MB video adapter.

32-MB video adapter.

Monitor

12’’ monitor.

15’’ monitor.

12’’ monitor.

Human interface devices

512-MB RAM.

1-GB RAM.

512-MB RAM.

Communication devices

Integrated 801.11 b wireless adapter.

Integrated 802.11 g wireless adapter.

Integrated 802.11 g wireless adapter.

Table 8. Standard Hardware for the Portable Computer Categories Required by Lucerne Publishing

Laptop vendors have dedicated sites that can help you make appropriate decision.

Home Computers

In most cases, organizations have no control on the hardware purchased by employees for their home computers. However, organization can make deals with hardware vendors to provide discounts to employees for certain configurations. This encourages the employee to buy a computer that meets your configuration standards and helps employees save money on the purchase.

The hardware recommendations for home computers are similar to the desktop computer with the addition of multimedia hardware such as speakers, microphones, and sound card. The minimum configuration that the users should use is 1-GHz processor-based computers with 256 MB of RAM.

Mobile Devices

Some of the vendors manufacturing Pocket PCs are Casio, Compaq, Fujitsu, Hewlett-Packard, Intermec, Mitsubishi, NEC, Sagem, Siemens, Symbol Technologies, and UR There. These manufactures provide detailed lists of peripherals and components that can be added to Pocket PC devices. For more information, refer to the Web site of the specific manufacturer.

The following table presents the minimum hardware requirements and the Medium Business Solution for Client Configuration hardware recommended for Pocket PCs.

ComponentMinimum RequirementsRecommended Requirements

RAM

64 MB

64 MB

ROM

32 MB

64 MB

Processor

400 MHz XScale

400 MHz XScale

Screen

R 64 K Colors

T 64 K Colors

Expansion

SD

SD, CF

Connectivity

Bluetooth

Bluetooth, Wi-Fi (Wireless-Fidelity)

Battery

RLi

RLi

Table 9. Minimum Hardware Requirements and Medium Business Solution for Client Configuration Recommendations for Pocket PCs

Product Activation

Microsoft Product Activation is an anti-piracy technology that is designed to reduce a type of piracy known as "casual copying" or "softlifting" of Microsoft software. Typically, the computer is activated trough the telephone or the Internet activation methods; however, the following cases are exceptions:

OEM computers: OEMs may implement a version of Windows Product Activation that is locked to the firmware (BIOS) of the computer. This bypasses the activation process by effectively pre-activating the computer.

Volume licensing: Software obtained through a Microsoft volume-licensing program (Enterprise, Select, Campus, School, and Open) does not require Windows Product Activation. Volume-licensing customers get media that does not require activation, often referred to as select media. Ensure that installation images are built using Volume- licensing media; otherwise, there may be complications with product activation.

For additional information on automating the activation process using scripts, refer to the “Deploying Windows XP Using Windows Product Activation” TechNet article available at the following URL:

http://www.microsoft.com/technet/prodtechnol/winxppro/deploy/wpadepl.mspx

Desktop Computer Configuration

This section provides information on automating the deployment of Microsoft Windows XP Professional, managing computers with Group Policy, securing client computers, and configuring printers.

Automated Deployment

Deploying Windows XP Professional becomes much simpler and can be automated more easily if standardized desktop configurations are used.

Automated installations run with minimal or no user interaction. This provides for a faster, more consistent, and trouble-free installation. The automated installation tools use the following two basic methods to accomplish an automated installation:

Image-based installation: This is a method of copying or cloning preconfigured operating system and software applications to a destination client or server computer. For example, installations performed using Sysprep.

Answer file-based installation: This method uses a text file that contains setup instructions. These instructions include:

Answers to the questions that need to be provided during installation.

Instructions for configuring the settings of an operating system.

Instructions for installing application software.

For example, installations performed using the Unattended and Remote Installation Services setup (Risetup.exe) installation tools.

Windows XP supports the automation of custom installations. An automated installation of Windows XP can be customized by:

Modifying an answer file to provide the setup program with specific answers and instructions.

Adding custom files, applications, and programs to the distribution folder.

Modifying the configuration of the master computer.

Choices

The following table lists some of the methods of installation.

ChoicesUpgrade or Clean InstallRequirementsServer RequiredUser Interaction Changes Required

Bootable CD-ROM

Both

CD-ROM drives on each computer.

No server required.

Minimal for upgrades; more for clean installation.

No changes can be made.

Unattended Setup

Both

A network boot disk, if using a remote distribution share.

No server required.

Minimal.

Updating Unattend.txt.

Sysprep

Clean install only

All desktop computers need similar hardware configurations.

No server required.

Minimal, if using Sysprep.inf.

Updating and re-imaging the master installation.

Remote Installation Services (RIS)

Clean install only

Computers with support for PXE or with network cards supported by Remote Boot Floppy (to gain access to shared installation files from DOS).

Windows 2000 Server or later for RIS install. Access to Domain Controller for additional component integration.

Minimal.

Modifying the answer file.

Table 10. Automated Deployment Options

Based on their suitability to the medium IT environment, the following deployment methods were considered in the Medium Business Solution for Client Configuration:

Unattended Setup

Sysprep

Remote Installation Services (RIS)

The following table lists the advantages and disadvantages of each of these methods.

ChoiceAdvantagesDisadvantages

Unattended Setup

Simple: It is a simple method for operating system deployment.

Simple deployment: Both Windows XP Professional and Windows XP Tablet PC Edition can be deployed from the same distribution share by simply changing the product key in the answer file.

Adjustable: The answer file can be easily adjusted for multiple configurations of the operating system.

Copying ability: It has the ability to copy the Windows XP Tablet PC Edition files to a CD-ROM. The users can run the setup from a local CD-ROM drive, if a network connection is not available.

Long file copy: It has a long file copy phase (from network share to local hard disk).

Accessibility: Clients must have access to the network and should be able to boot to an environment that allows connectivity, such as a DOS boot disk or WINPE (if copying files to a CD-ROM is not an option).

Installation: Applications and other post-setup customizations have to be installed manually or custom scripts have to be created to perform these actions.

Sysprep

Duration: Setup duration is short.

Specific deployment: The image can only be used to deploy a specific operating system.

Re-creating images: Changes to the image can only be done after re-creating it.

Imaging program: It requires a non-Microsoft disk-imaging program.

Remote Installation Services

Flexible: It provides flexibility similar to Unattended Setup. It allows the user to deploy Windows XP Professional and Windows XP Tablet PC Edition from the same CD-based image by creating an answer file template with specific product keys.

Easy deployment: It has the ability to deploy Unattended Setup (CD-based) and Sysprep-like images (Riprep.exe) from the same service.

Wizard facility: A wizard is provided to log on and automatically join the computer to the domain (can be modified to join a workgroup).

Imaging tool: Does not require non-Microsoft disk imaging tools.

Connectivity: Requires connectivity to the network. 

Slow links: Not recommended across slow links (such as WAN and dial-up).

Deployment: Riprep image can only be used to deploy a single operating system. For deployment of Windows XP Tablet PC Edition and Windows XP Professional, two separate images need to be created

Table 11. Advantages and Disadvantages of Various Deployment Methods

Recommendations

The deployment method depends greatly on the location of the client computers and the network structure.

For medium businesses with small or limited IT support, the best way to deploy Windows XP is to have the manufacturer or value added provider (VAP) pre-build desktops with the required configuration. Some hardware vendors will provide custom images for a fee. If this is not possible, use Sysprep or RIS installation methods. For detailed instructions on these two methods, refer to the following URL:

http://www.microsoft.com/technet/prodtechnol/winxppro/
deploy/depovg/depxpii.mspx#XSLTsection123121120120

Group Policy

Active Directory® Group Policy objects (GPOs) should be used to configure the client computers. Some of the configurations that should be made include:

Roaming user profiles: This feature copies data and settings in the profile of a user to a network share when the user logs off. The user can now logon to any computer on the network and the profile of the user will be available. It also provides a transparent way to back up the user profile to a network server, protecting it in case the computer of the user fails. This is especially useful for users who access multiple computers on the network or log on remotely.

Folder redirection: Certain folders, such as My Documents, can be redirected from the client computer to a network share. This feature can be used to provide improved data protection by regularly backing up the network share and using highly reliable storage on the server hosting the network share. Network shares can also provide Shadow Copies of Shared Folders.

Offline files and folders: Administrators can make files that reside on a network share available to a local computer when it is disconnected from the server. This allows users without constant network access, such as remote and mobile users, to continue working on their files even when they are not connected to the network. Users can also have their files synchronized with the version on the network share when they reconnect.

Software installation and maintenance: Software can be assigned or published to users based on their job requirements. Microsoft® Windows Installer allows administrators to centrally manage software installation and repair installations.

Group Policy and administrative templates: Administrators can configure settings to govern the behavior of services, applications, and operating system components.

Group Policy-based scripts: Scripts, with the scripts extensions, can be assigned to run when the desktop computer starts or shuts down, or when users log on or log off the desktop computers.

Internet Explorer maintenance: Administrators use this feature to manage and customize Internet Explorer on Windows XP-based desktop computers. With Internet Explorer Administration Kit (IEAK), administrators can:

Standardize versioning across the organization.

Centrally distribute and manage browser installations.

Configure automatic connection profiles for user computers.

Customize virtually any aspect of Internet Explorer, including features, security, communications settings, and other important elements.

Security settings: GPOs can be used to define the security configuration. A security configuration consists of settings applied to one or more security areas supported on Windows XP. Security in Group Policy complements existing system security tools, such as the Security tab on the Properties page of an object, file, or folder, and Local Users and Groups in Computer Management. Existing tools can continue to be used to change specific settings whenever necessary.

Security

At the minimum, the following features or applications should be configured on the desktop and portable computers to maintain security:

Windows Firewall

Microsoft Windows Update

Antivirus software

Windows Firewall

The Windows Firewall is a feature included in Windows XP with SP2 to help protect the computers from threats on the Internet. Group Policy should be used to enable the Windows Firewall on all computers in the environment.

Microsoft Windows Update

Client computers should automatically be updated with critical software updates. Critical updates can be obtained and installed on Windows XP computers by the following means:

Windows Update: Windows Update is an online service that scans the computer for updates available for the operating system, software, and hardware.

Automatic Updates: Clients running Windows XP operating system include the Automatic Updates feature, which can automatically download the latest Microsoft security updates while the computer is switched on and connected to the Internet. To get the most out of Automatic Updates, a Windows Update scan should first be run on the computer.

If the Medium Business Solution for Patch Management has been implemented in the environment, the software updates will be configured automatically. For more information on patch management, refer to the Medium Business Solution for Patch Management.

Antivirus Software

An antivirus software program protects the computer against viruses, worms, Trojan horses, and other malicious code. Antivirus software continually scans the computer for viruses and helps detect and remove viruses. Keeping the antivirus signature files up-to-date is critical to maintaining a secure desktop or portable computer.

User education regarding safe e-mail practices is critical in preventing virus attacks. Users should not open an e-mail or take action on an e-mail attachment unless they are expecting the file. All e-mail attachments should be scanned with the antivirus software prior to execution.

For information on the types of malicious programs and the risks and for guidance on planning an effective antivirus strategy for your organization and responding quickly and effectively to infections or incidents when they occur, refer to “The Antivirus Defense-in-Depth” at the following URL:

http://www.microsoft.com/technet/security/guidance/serversecurity/avdind_0.mspx

For guidance on choosing the right antivirus for the medium IT environment, refer to the Medium Business Guide for Antivirus.

Printing

In scenarios where a user needs to print confidential information frequently (for example, HR staff), a direct-attached printer needs to be connected and configured on the client computer for the following reasons:

Data is not transmitted over the network.

Physical access to the printer can be restricted to the user. In case of network printers, users other than the owner can access the printed confidential information.

Unless there is a specific requirement to have a standalone printer attached to a particular client computer, all remaining printers should be shared and published in the Active Directory® directory service with the appropriate drivers to support the various client computers on the network.

For detailed information and recommendations on print services, refer to the Medium Business Solution for Print Services.

Portable Computer Configuration

The process of deploying and configuring a portable computer (laptop or Tablet PC) is similar to the process of deploying and configuring a desktop computer. You should ensure you have the same standardized deployment method for desktops, laptops, and Tablet PCs.

Note: For detailed instructions on how to deploy a Tablet PC, refer to the following URL:

http://www.microsoft.com/technet/prodtechnol/winxppro/deploy/tpcdploy.mspx

Basic functionality for laptops and Tablet PCs running Windows XP do not differ from the desktop computer. In addition to the considerations and recommendations provided for desktop computers, consider the following mobility and security considerations for portable computers:

Offline file synchronization.

Wireless network configuration and security.

Data security with NTFS file system (NTFS) and Encrypting File System (EFS).

The following sections detail these features and considerations.

Offline File Synchronization

The offline files feature is designed primarily for mobile users who use a laptop or a Tablet PC to connect to the network periodically. These users can mark shared folders on the company network or Web page to be made available offline. The contents of these shared folders or pages are copied to a temporary folder on the hard disk of their local computer. After disconnecting from the network, the files can be opened and edited. The files are synchronized with the originals when the user reconnects to the network and logs on to or logs off from the domain.

Wireless Network Configuration

For medium businesses, the Wi-Fi Protected Access (WPA) standard is recommended for wireless authentication and data encryption. 802.1x authentication with PEAP (Protected Extensible Authentication Protocol) should be deployed, if there are a large number of mobile devices.

The basic requirements for WPA security are:

Access point with WPA support.

Wireless network card with WPA support.

Windows XP with SP2 or Windows XP with SP1a and the WPA update.

To find the latest list of access points and wireless network cards that support WPA specifications, refer to the Wi-Fi Alliance organization page, available at the following URL:

http://www.wifialliance.org/

Encrypting File System

Portable computers and other mobile devices have a higher risk of being stolen than a non-portable device such as desktop computer. Often portable computers and mobile devices hold important company data. If these were to be stolen, all the security features such as NTFS permissions and strong password would fail. This is because all that a person with physical access to a computer needs to do, to extract data, is take out the hard disk from the stolen computer and attach it to a computer on which he or she has administrative rights and reset the NTFS permissions.

Encrypting File System (EFS) protects you from such data theft. EFS encrypts the data on the hard disk and decrypts the data only when the credentials that were used while encrypting it are provided.

Individual files and folders (or subfolders) on NTFS volumes can be set with the encryption attribute. Although it is common to refer to folders with the encryption attribute set as encrypted, the folder itself is not encrypted. No public-private key pair is required to set the encryption attribute for a folder. When encryption is set for a folder, EFS automatically encrypts the following:

All new files created in the folder.

All plain text files copied or moved into the folder.

Optionally, most existing files and subfolders, with the noted exceptions of Windows system files and user profiles.

EFS is available by default and any user that has the permission to modify the files can encrypt files. EFS relies on a public key to encrypt files. Therefore, a public-private key pair and a public key certificate are needed for encryption.

To use EFS, users must have EFS certificates for which the following two options are available:

Public Key Infrastructure (PKI): A Public Key Infrastructure (PKI) can be deployed.

Self-signed certificates: Self-signed certificates are automatically generated by the operating system.

Note: Windows Server 2003 certification authority and PKI infrastructure are already deployed in the medium IT environment as part of the core infrastructure.

The following table lists the advantages and disadvantages of these choices.

ChoiceAdvantagesDisadvantages

Self-signed certificates

Simple: It is simple to use and deploy.

Sharing files: It is not possible to share encrypted files.

Risk: It involves more risk than that posed by loss of key in case of PKI implementation.

PKI

Sharing files: It is possible to share encrypted files.

Complicated: It is complicated to deploy PKI and manage certificates.

Table 12. Advantages and Disadvantages of PKI and Self-signed Certificates

Windows XP automatically generates EFS certificates. Users obtain a certificate by encrypting a file. Each user who logs on to the computer can encrypt files. EFS generates a unique certificate and key pair for each user. Unless a user shares the encrypted files with other, no user can access the files owned by another user.

Backed-up Recovery Key

Not having a backed-up recovery key can result in irrevocable loss of encrypted data. Backing up a recovery key helps ensure that encrypted data can be recovered in the event that the user holding the EFS encryption certificate is not able to decrypt the data.

The recovery key back up operation must be performed using the recovery agent account that has the file recovery certificate and private key in its private store. The domain administrator is the default recovery agent.

To allow an account to read or recover data encrypted by using EFS, make the account a recovery agent. In a domain environment, it is advisable to use domain accounts for that purpose. Recovery agent can be created for any site, domain, or organizational unit (OU) in an Active Directory service forest. By default, the built-in administrator account for a domain is a recovery agent; in that case, you do not need to create a recovery agent.

Accessing E-mail Remotely

Remote users can access e-mail remotely from the OWA Web site using an SSL capable Web browser, such as Microsoft Internet Explorer.

In the Medium Business Solution for Client Configuration, the URL to OWA is https://mail.businessname.com.

In addition, Exchange 2003 combined with Microsoft Office Outlook® 2003 on a Windows XP client can support Outlook over HTTP.

Accessing Data Remotely

Remote users can access data remotely by visiting the company extranet site.

Home Computer Configuration

This section provides best practices for home computer configuration, such as software, security, and access to business network. Standardizing the home computer configuration is not possible in most cases. This is because the computers do not belong to the organization and the organization has no control over them.

Access to information on the internal network can be provided using technologies such as Web sites, VPN, or dial-in access. Some of the basic tasks that should be performed before allowing home users access to the internal network are:

Secure the home computer: Ensure that the following are implemented on all home computers:

Automatic software updates are configured.

Antivirus software is installed and kept up-to-date.

Windows Firewall is installed and enabled.

Identify information and applications that can be accessed from home: It is difficult to control security requirements of the home computer due to the inability to use Group Policy. Therefore, the number and types of applications to which the users have access from their home computers should be limited.

Define the mechanism to access the applications from home: Identify a mechanism that the home users will use to access the identified information and applications. Users can access business applications through:

Thin clients, for example a Web browser, like Internet Explorer for accessing OWA, extranet, and TSWeb.

Remote connection to the main office, through VPN or dial-in connection.

In the Medium Business Solution for Client Configuration, the following applications can be accessed through thin clients:

E-mail and calendar through OWA.

Collaboration services through SharePoint sites.

Client computer desktop through TSWeb and Remote Desktop Connection.

Using thin clients provides better security and improved performance than the security and performance provided by a remote connection to the main office. Remote connection should only be allowed for uses that need it. When providing VPN access to home users, use the following best practices:

Use predefined clients created with the Connection Manager Administration Kit (CMAK).

Ensure that Windows Firewall is enabled.

Enable quarantine and ensure that antivirus definitions and software are up-to-date.

For more information, refer to “Network Access Quarantine Control in Windows Server 2003” at the following URL:

http://www.microsoft.com/windowsserver2003/techinfo/overview/quarantine.mspx

Windows Mobile Devices Configuration

This section provides guidance and best practices on how to configure mobile devices in the medium IT environment. It provides considerations that need to be kept in mind to ensure that these devices do not become a threat to the security of confidential data in the organization.

Synchronization

ActiveSync® technology keeps data consistent between a mobile device and a client computer. ActiveSync starts automatically when the client computer is connected to the Pocket PC and can continuously update changes until the device is disconnected. Connections can be serial, infrared, USB, Ethernet, or dial-up. Data from the Office Outlook messaging and collaboration client, such as appointments, contacts, tasks, notes, and e-mail with attachments, can be synchronized along with many other types of data including pictures, music or audible files, Web pages, PowerPoint® slides, Word documents, and Excel spreadsheets.

The Pocket PC device can also directly synchronize with a Microsoft Exchange or Lotus Notes server without having to go through a client computer. E-mail, calendar, and contacts can now flow directly between the Internet-connected Pocket PC devices and Microsoft Exchange Server.

ActiveSync can be remotely installed from a centralized location by the IT generalists, making it easier for the users to configure device.

Security

Organizations using mobile devices should establish security practices at an appropriate level based on their needs. Most organizations are subject to legal and other external obligations to protect certain kinds of data, for example, to protect the personal information of the employees. There are many ways in which unauthorized users can get access to sensitive information, such as:

Mobile device: The small size of mobile devices makes them susceptible to being lost or stolen. Therefore, devices need to be configured to verify that the person attempting to access the data is a legitimate user.

Stored data: With storage cards, mobile devices can store anything from a few hundred megabytes to up to five gigabytes or more of data. Though this data storage capacity is a key enabler for data-intensive enterprise applications, it also heightens the concern about the storage device and the data falling into the wrong hands.

Wireless networks: Wireless connectivity through the mobile devices can provide access to sensitive information stored on the network.

A comprehensive plan needs to be prepared to ensure that mobile devices do not become a security threat. The security plan must cover the following:

1.

Perform a risk analysis.

2.

Establish a mobile device security policy for the following:

1.

Authentication

2.

Antivirus software

3.

Secure connectivity

4.

Data security (encryption)

3.

Enforce and automate mobile device security policy.

Risk Analysis

Risk analysis helps identify the appropriate levels of security required for each potential risk area. For example, if the mobile device has connectivity to the business network and access to data on the network, greater protection measures must be taken.

There are many risk assessment methodologies that can help you analyze risk associated with any computing devices including mobile devices. You might want to consider using Security Risk Management Discipline (SRMD) risk assessment methodology. For more information on this methodology, refer to the following URL:

http://www.microsoft.com/technet/Security/prodtech/win2000/secwin2k/03secrsk.mspx

Mobile Devices Security Policy

Organizations that are concerned about the security of their data should set the following mobile device security policies:

Authentication: The first step in securing information on a handheld device is to create a policy to protect the device against unauthorized access. Various mechanisms are available to identify and authenticate users. To achieve a high level of security, the Medium Business Solution for Client Configuration recommends checking for at least two out of the following three items (this approach is often referred to as two-factor authentication):

Something that the user knows (for example, a password).

Something that the user has (for example, a security certificate in a smartcard or a SecureID card).

Something that is part of the user (for example, a fingerprint).

Power-on password: All mobile devices should have power-on passwords enabled. This is similar to the password standards of an organization for laptop computers. Systems management products can automate the password check, block function, and help enforce other corporate security policies. Pocket PC 2003 and Smartphone 2002 support 4-digit power-on passwords for protecting access to the device. Pocket PC 2003 also supports strong alphanumeric power-on passwords that require at least seven characters, including a combination of uppercase and lowercase letters, numerals, and punctuation.

Antivirus software: Mobile devices should have antivirus software installed to prevent viruses from being vectored into the corporation network, either as e-mail attachments or through file transfers.

The following table lists the Independent Software Vendors (ISVs) who have antivirus solutions for Windows Mobile devices.

CompanyProductURL

Computer Associates

eTrust Antivirus protection for Pocket PCs (formerly called InoculateIT) provides virus pass-through protection.

http://www3.ca.com/Solutions
/Product.asp?ID=156

F-Secure

Antivirus for Pocket PC provides on-device background virus checking with automatic virus database updates, both in corporate environments and over wireless connections.

http://www.f-secure.com/enterprises/solutions/mobile_security.html

Handango, Inc.

Handango Security Suite for Pocket PC provides file and data encryption along with virus protection.

http://www.handango.com/
PlatformProductDetail.jsp?
amp;sectionId=0&catalog=0&
jid=AE5EXDE28XEB253CA
5BAD1CE7C31EA39&platformId=
2&productId=14394&productType=
2&siteId=1&zsortParams=true

McAfee

VirusScan Wireless provides virus security for mobile devices.

http://www.networkassociates.com/
us/products/mcafee/antivirus
/remote_user/vs_wireless.htm

SOFTWIN

BitDefender for Windows CE is an antivirus solution designed to run on Pocket PCs.

http://www.bitdefender.com/bd/site
/solutions.php?menu_id=7

Symantec

Symantec Antivirus™ for Handhelds provides real-time defense against viruses on a Pocket PC.

http://www.symantecstore.com/dr/
sat/ec_MAIN.Entry17c?CID=48782
&SID=27674&SP=10007&PN=5&PID=
584410&DSP=&CUR=840&PGRP=
0&CACHE_ID=48782

Table13. List of ISVs Providing Antivirus Software for Windows Mobile Devices

Secure connection: Evaluate the options for a secure connection for protecting data on the wired or wireless network including direct connection to the network of the organization or a VPN connection made over a wireless link through the Internet. Note that the static WEP (Wired Equivalent Privacy) key is not an effective form of encryption for users connecting over a wireless LAN because it can be easily circumvented. It is recommended to use a more rigorous wireless LAN authentication and encryption technology, such as 802.1x. The following table lists the connectivity options for Pocket PC and Smartphone.

FeaturePocket PC/ Pocket PC PhoneSmartphone

PPTP (Point-to-Point Tunneling Protocol) VPN protocol support enables Windows Mobile-based devices to connect to private networks through the Internet.

40-bit SSL (HTTPS) and PCT (Private Communications Technology) encryption is built into the Pocket Internet Explorer Web browser.

128-bit SSL encryption is available through the CryptoAPI.

SSL support is built into the Inbox on Windows Mobile-based devices, encrypting communications to IMAP (Internet Message Access Protocol), POP3 (Post Office Protocol 3), and SMTP (Simple Mail Transfer Protocol) servers.

802.1 x technologies for wireless LANs support Extensible Application Protocol-Transport Layer Security (EAP-TLS) and Protected Extensible Authentication Protocol (PEAP) authentication algorithms.

 

IPSec/L2TP (Internet Protocol security/Layer 2 Tunneling Protocol) VPN support enables Windows Mobile 2003-based devices to connect to private networks through the Internet.

 

WTLS class 2 support enables Pocket Internet Explorer to view wireless access point sites that use this technology.

Table 14. Wireless Connectivity Options for Pocket PC and Smartphone

Data security: Risk assessment process drives the level of data protection needed for data on the Pocket PC or Smartphone device. There may be a need to encrypt the data on the devices themselves and storage cards. There are many methods to accomplish this. For more information, refer to the “Build” section in this solution.

Enforce and Automate Mobile Devices Security Policy

In addition to establishing security policies, it is also necessary to automate enforcement of the policies. Systems management solutions that can enforce policies are available from numerous companies. These solutions enable IT organizations to maintain a centralized asset inventory of the devices that connect to the corporate network and to automatically fix configuration settings and distribute software updates as these devices become available. For a sample list of systems management solutions for Windows Mobile-based devices, refer to the Microsoft Mobile resources Web site available at the following URL:

http://www.microsoft.com/windowsmobile/business/solutions/default.mspx.

Note: When you visit this URL, you will be prompted with the option to search. Search for System Management under Software Solutions.

Backup and Restore

Backup and restore solutions that are available for Pocket PCs and Smartphones are listed in the following table.

FeaturePocket PC/Pocket PC PhoneSmartphone

ActiveSync on a computer can back up and restore all the information on a device.

 

Non-Microsoft backup solution

Table 15. Backup and Restore Solutions for Pocket PCs and Smartphones

For more information on non-Microsoft backup solutions, refer to the "Windows Mobile – Solutions Providers Home" page, available at the following URL:

http://www.microsoft.com/windowsmobile/business/solutions/default.mspx

Note: When you visit this URL, you will be prompted with the option to search. Search for “Backup” under Software Solutions.


**
In This Article
Introduction
Envision
Plan
Build and Deploy
Operate
Summary
References
**

Download

Get the Medium Business Solution for Client Configuration

Solution Accelerator Notifications

Sign up to stay informed

Feedback

Send us your comments or suggestions