12 May 2015

The Story of a Locked iPad


One of my clients recently had an employee pass away unexpectedly. This unfortunate experience led to many challenges for them. One of those challenges was a company-owned iPad that was locked. It was purchased as a trial to determine the best way mobile devices could be utilized by the company. It was then given to the employee with the understanding that they would use it on a daily basis to determine if iPad's would be useful for the rest of the staff.

Although it was owned by the company, the iPad was treated like a personal device. Other than purchase records the company had no information about the iPad available to them; including the passcode. The "owner" had set a Simple Passcode, but failed to let anyone in administration know what it was. Fortunately, another staff member was able to guess (!) the passcode and unlock the device. Having a passcode that simple will be a topic for another day.

The first I learned of this device was when a colleague and I were called in to assist with connecting it to the Apple TV the client had just recently purchased (which was news to me as well). I was able to install updates to the iPad, configure the WiFi settings properly, and connect it to the Apple TV. However, that's when we (the client and I) found out that the data they wished to present was in iCloud. And, of course, the Apple ID was under the recently deceased employee's personal email account.

One of the blessings of this whole experience is that the iPad was purchased with AppleCare+. I called Apple Support and began the process of resetting the password and security questions for the Apple ID. The client was able to provide all of the purchasing information (including credit card) and the support representative was able to send a verification code to the iPad. Once the code was verified an email was generated that was supposed to allow us to reset the password. The reset email is not delivered for 24 hours; so, we waited. When it arrived, it provided a link to a password-reset website. Unfortunately, when I attempted to reset the password, the website stated that it could not verify the link.

So began another call to Apple Support. After another lengthy discussion about our issue, I learned that the original representative was not supposed to have honored our request for a password reset; which may be why the link could not be verified. The case was escalated and I eventually spoke with a support manager. He was very helpful and we were able to work through the process. I was able to change the primary and recovery email addresses for the Apple ID so that it was associated with the client. And after another 24 hours I received a password reset email that provided a link that actually worked. Success!

The client did have to open an additional case with Apple Support in order to reset the security questions; but that process was very smooth. I would like to give a shout out to the Apple Support team for giving us all of the service and support that they did, and for following up several times just to be sure that all of the issues were resolved. Thank you.

There are several valuable lessons to be learned from this experience:
  • Communication is a two-way street. As a consultant who is not always present at a company I need to stay in contact with them on a regular basis and discuss current and future projects. But because I am not always on-site, the client should know that they need to keep me abreast of new developments in their technology plan. One of the challenges I have is helping my clients understand that anything that connects to the network needs to be brought to my attention.
  • It is vital that proper Documentation be completed. Since this is a company-owned device, they need to know all of the account and security information that accompanies it. There is a lot of data that needs to be recorded such as serial numbers, Operating System versions, apps purchased and installed, WiFi connections, data plans (if it has cellular capabilities), and much more.
  • In order to assist with all of the above, a Mobile Device Management solution is a must. As mobile devices are being brought into the business world, we need to balance securing company data with productivity. Ideally an MDM solution would allow for centralized management of applications, data flow, configuration profiles, and update settings. Granted we were only dealing with one device here, but obviously the company was planning to deploy more devices to staff members. 
  • Mobile devices are far more susceptible to damage than the traditional desktop computer. As such, I highly recommend purchasing a protection plan such as AppleCare. Most warranties last a short time and are very limited. Extended warranty plans; however, usually cover accidental damage and software support. I am very glad that company had the foresight to include this with the purchase of their iPad.

05 May 2015

Holistic Consulting

To paraphrase Miyamoto Musashi, "Rhythm is something that exists in everything, but the rhythm of computer networks in particular are difficult to master without practice."
Universities classify IT and MIS as sciences; but, the practice of network and system administration is certainly an art. There is planning, design, implementation, security, management, maintenance, and, of course, users . They all need to be balanced for the outcome to be successful. Once in place a network definitely has a heartbeat, a rhythm if you will. This living, breathing thing needs to be monitored and cared for; and to do that takes knowledge and practice.

I have been working with an outsource IT company for over 15 years. We service small businesses and non-profits that do not have (or cannot afford) an on-premise system administrator. That means we take care of their entire IT infrastructure; from the Internet to printing. Yes, I work with a team of people; but, each client has a lead consultant. I am the system administrator, network engineer, security architect, cable installer, and help desk technician for several companies all at the same time. In the performance of my duties I have found that I must be a Master of Many Things.

It is not an easy task to handle end-to-end management by a single person or entity. We liaison with the ISP, manage edge security, design/plan/implement upgrades and changes, deploy servers/clients/mobile devices, and perform help desk duties for users. Backups need to be monitored and tested, email needs to be filtered and archived, user accounts and access are always changing.

In order to be successful one needs to have a wide array of skills; there are no specialists in holistic consulting. The consultant needs to know how to accomplish a lot of different tasks, and requires hands-on experience. Nothing replaces real world exposure to the trials and tribulations of a production network. That said, there are a number of basic techniques that need to be mastered:
  • Organization: Staying organized is a necessity. Maintaining to-do lists and calendars go a long way to ensure client follow-through. Dropped requests and missed appointments are very frustrating to clients. A consultant needs to develop a reputation for excellent response.
  • Time Management: This is extremely difficult because our jobs are interrupt-driven. We respond to people's requests. Remember that the clients do not see our hard work; they only see what we have accomplished. Successful consultants focus on results achieved not on effort expended.
  • Communication: Issues with communication are usually at the heart of all problems. Learning how to communicate is crucial to being a successful consultant. Not only is it necessary to be able to communicate technical issues, but also be able to translate that to non-technical people. 
  • Constant Professional Development: It is absolutely necessary to receive the training required to improve and maintain your skills. The computer world is changing all the time and it is difficult to keep up with those changes. Some of the ways to keep current are reading, workshops, and organizations. Read books, trade journals, blogs, and magazines. Workshops and seminars tend to focus on a particular technology or skill; while conferences provide an opportunity to consider the big picture. Finally, membership in an IT association allows us to volunteer in the community, write articles for newsletters, and speak at meetings which can go a long way toward developing our reputation and careers.
Overall it is a very rewarding experience. Happiness means different things to different people, but for me it is looking forward to work each day and having a good relationship with clients and coworkers. It's feeling like I am sufficiently in control of my work life and have a good social and family life. At the end of the day I feel like I have accomplished something and derive a lot of satisfaction from my job.