OWSUG.ca

Welcome to Ottawa's Windows Server User Group Community!
Welcome to OWSUG.ca Sign in | Join | Help
in Search
Home User Groups Blogs Forums Privacy Policy About OWSUG

Canadian IT Pro Blog

July 2008 - Posts

  • Speaking with managers.

    Early in my career as an IT professional, I realized some things...

    WOW...  management speaks a language that I do not understand and, as much I thought I controlled the IT environment for my enterprise...  Management really controlled the IT environment.

    So, I set out to figure out a way to address those things.

    Management controls the money.  Money is generated by the business units. And, business units usually see IT as a necessary evil. Hence the language I did not understand.

    I was (and still am) excited about the latest and greatest. I wanted to roll out new technologies because I thought it would help the business and also maybe because I thought it would be fun. But getting management to give me the budget and the cycles to accomplish that was excruciatingly painful. Why?? We were not speaking the same language “The business makes money, not IT” language.

    As an example, I remember getting excited about a technology to train users about the new version of Office through self-learning online module. I decided to pitch it to my management. So, I get ready, make a slide deck, write a document with the description of the technology, how we can implement it the tracking module, etc....

    Friday comes I manage to get 20 minutes on the agenda of the CIO's monthly meeting. I walk in, and start the pitch. The following is what my management heard:

    "Hello, I wanted to present a project to you regarding deploying an online training technology that uses blah blah blah blah blah blah blah blah  ......"

    The CIO stops me....  and asks

    "How much will it cost?"

    "$65,000.00 for a complete site license" I replied.

    He paused, and ended the confirmation with "get out!”

    The realization that we're not speaking the same language, in fact addresses both issues I mentioned above. Let me explain… If I could figure out a way to speak the same language as the management, I could then drive my points and agendas, therefore exercising more influence over the IT management decisions and increase my “control”. Simple, right?

    Well, not simple, but achievable. Think of it this way. Don’t lead in the conversation with the technology. Start by talking to management and the business units to identify the pain point, define the problem and the impact. And make sure to tie-in the money impact. Then through collaboration with management and the business units identify what the solution would look like. YOU”RE STILL NOT TALKING ABOUT TECHNOLOGY…. You’re setting the vision of what the solution would look like, what the end state would be and how it would benefit the business units by either saving money, or avoid losing money.

    Once management and the BU have agreed that the end state is desirable and beneficial to the bottom line, and then you can bring up a product that will fill the need, meet the requirements. And in my experience, the budgeting and resource allocation discussions become much much simpler.

    Let me go back to the previous example, this is the way it should have played out.

    "Hello, I realized that a quarter of our 800 users are going out to training facilities to get training once a year.  The average cost of those classes is around $1,500. Not counting the productivity loss by having someone out of the office for a week. That really means that we are spending approximately $365 per user for training

    What if we could lower that cost below $100 and keep the employees in the office where they can be reached.  Would you agree that this is a desirable?"

    To that he would have said "YES!"

    "Great! it so happens that I have been researching this and I found a solution that will meet our requirements to lower the training budget, and allow us to train not a quarter, but all our employees for approximately 80$"

    He would have certainly replied

    "Where do I sign?"

    Not only it's a completely different conversation.... it's also a completely different mindset.

    Don’t get me wrong, this is not an easy thing to achieve. It’s a mindset shift that needs to occur and it takes time to train your brain to think in those terms. There are a few articles and books that you should read to gain a greater understanding of how management thinks about IT. I suggest you get your hands on at least 2 of them that I have found to be a great way to clarify that kind of thinking.

    The first is an article that I believe we should all, as IT Pros, be aware of and understand. It really put things into perspective. “IT doesn’t matter” by Nicholas G. Carr published in the Harvard Business Review in June 2003.

    The second is “In Search of Business Value: Ensuring a Return on Your Technology Investment” by Robert L. McDowell, William L. Simon, and Jeff Raikes (Jan 2005).

    So, hopefully this can help you speak the management language and empower you to be an influencer and a trusted business contributor in your own enterprise.  This is the tip of the iceberg...  I'm still learning and striving to find strategies to talk to different audiences. It never ends, people change and the way you connect with will change as well. All we can do is to adapt.

    If you have thoughts or comment on this post, please let me know. We can only learn and grow by keeping an opened mind.

    Cheers!

    Posted Saturday, July 26, 2008 12:49 PM from Canadian IT Professionals | 0 Comments

  • Is Your DNS Patched?

    In case you have been living under a rock for the past month you have most likely heard about the DNS cache exploit recently discovered by Dan Kaminsky.  This might be one of the most severe flaws discovered as it was cross platform affecting everything from Windows to Linux, UNIX, Cisco IOS etc....  It was so big in fact that all the major vendors worked together to get the patch issued on the same day.  The flaw would allow an attacker to insert a malicious DNS record into the cache.  As an end user you type in www.technet.com and rather than get the proper IP address the cache delivers the malicious IP address sending you to ????  You can find out more on the details of the flaw at Dan's blog.

    You should also make sure that you are patched.  Make sure that your upstream ISP DNS servers are patched by calling them or using Dan's DNS Checker at the top of his website.

    So why all of a sudden a rush to ensure you are patched?  Well the patches issued by the vendors have been reverse engineered and exploit code has been published!  Dan has said many times that this is an extremely easy to launch exploit that could be implemented in seconds.

    MS08-037 - Vulnerabilities in DNS Could Allow Spoofing (953230)

    KB953230 - Vulnerabilities in DNS could allow spoofing

    Go. Read. Patch. Now.

    And when you are done, copy and paste this blog post to your blog, email it to your IT Pro buddies, get the word out!

    If you have links to the patches from other vendors, please leave a comment with the URL!

    Posted Friday, July 25, 2008 10:23 AM from Canadian IT Professionals | 0 Comments
    Filed under:

  • Time Fer Sum Learnin

    It is that time of the year, time again for myself, Rick, Damir and now Pierre to head down to the mothership to upgrade our skills.  Keeping your skills up to date is one of the bigger challenges an IT Pro faces.  Over the next week and a half we'll be attending sessions, taking in some hands-on labs and even writing a few certification exams.  One my agenda I have a few different tracks I am taking and exams I am writing and I am inviting you along.

    Well I can't fly you down and sneak you in the door you can learn some of the same things I am with the TechNet Virtual Labs.  So what is on my agenda...

    Well I need to update my certifications.  I received my MCSE in Windows 2000 and upgraded it to 2003 when those exams came available.  There are two options for me to upgrade to 2008....

    Server Administrator, which focuses on the day to day operations and management, requires a 2003 MCSE to pass 70-649 and 70-646

    Enterprise Administrator, which adds skills focused on design, requires a 2003 MCSE to pass 70-649 as well as 70-647 and one of either 70-620 or 70-624.

    I chose the Enterprise Administrator path and have scheduled 70-620 and 70-649 and have been reading up on the requirements and focusing on certain areas.  I've used the following materials to get ready and think I am.

    Exam 70-620 is all about configuring Windows Vista.  Having used Vista for the past two years it should be a no-brainer but I downloaded the Windows Vista 30 Day Trial VHD so I could experiment without blowing up my day to day machine.  There are quite a few Vista Virtual Labs available and I got down and dirty with a few of them, namely

    Windows Vista System Image Manager

    Managing Windows Vista Using the New Management Technologies

    Customizing Microsoft Windows PE for Vista Deployments

    That combined with my experience using the OS has me confident I will pass the exam.

    Exam 70-649 is an upgrade exam that combines to core skills required to implement and manage a 2008 server.  It covers AD, Network and Application configuration.  I've spent a little more time on this as it is a new release and most of my experience was with betas and I wanted to ensure I was doing things the RTM way :)  Again I downloaded the trial of Server 2008 and started plugging away. I did find some Server 2008 Virtual Labs as well.  Now some of these I have built my own versions of and you saw during the Heroes Happen Here events like

    Remotely Managing Server Core

    Securing Branch Office User Accounts

    But others like...

    Network Access Protection with IPSec Environment

    Deploying SSTP Remote Access

    Managing Active Directory - Directory Services

    all taught me a few things I thought I knew!  Will I pass them both?  I think so and I will be sure to let you know when I return.  While we are gone things are going to be awfuly quiet here on the Canitpro blog but hopefully I've given you enough to keep you busy for the next 10 days!  If I didn't there is a whole lot more covering SQL to ForeFront to System Center over at the TechNet Virtual Labs portal!

    Posted Tuesday, July 22, 2008 10:32 AM from Canadian IT Professionals | 0 Comments

  • Another .LOCAL post - SBS 2008, EBS 2008

    Just to be clear - this is an unsolicited blog post on this .local discussion. For those of you who do not know me - I come from an Enterprise background and not from a small business background.  I opened my mouth on the .local discussion a while back and it's now the inside joke that I'm the anti-".local" guy (quiet Calvin!). I have in no way expressed an opinion on going one way or the other. :-)

    SBS 2008 and EBS 2008 launch timeframes were announced at the Worldwide Partner Conference earlier this month. A number of you have already been involved in trying them out with our public previews or private Beta Programs over the last while. You can still get the bits now and try them out yourself from www.multiplyyourpower.com.

    Mitch Garvis has been working in the SBS space and has been involved in both the EBS 2008 and SBS 2008 beta process. He sent me this post on .local and I thought it would be a nice thing to share with the broader community.

    Do you think going .local vs. a sub domain makes a difference? My thoughts - do what's right for you and your clients. Mitch raises some interesting points in this post - well worth a discussion over pints sometime.

    Rick 
    Team Blog | Twitter | Facebook | LinkedIn

    P.S. feel like letting your writing side show a little? Drop the team a note with the EMAIL contact button (top left) to let us know - we're ALWAYS looking for Canadian IT Professionals who want to connect and share their stories here on the blog.

    --------------------------------------------------------------

     

    Mitch Garvis (Toronto)

    I get it, and I do not get it… but mostly I just don’t get it.

    A little over two years ago Rick Claus (IT Pro Advisor at Microsoft Canada) and I had a discussion about .local domain naming in Small Business Server. Until that point I had used this default naming for all of my client’s domains (companyname.local) but Rick’s arguments convinced me that it was not a best practice, and since then I have recommended a different practice – such as local.companyname.com. It does not have the same limitations with regard to future growth. It was one of my early steps along the transition path from SBSer to IT Professional.

    A few months ago when I installed an early beta of SBS 2008 (codenamed Cougar) I was pleased to see that although the .local option was still there, it was no longer ‘strongly recommended’ with pop-up warnings and such.

    I have since installed later betas and had not given it much thought until a few days ago I was working on a test box and realized that my domain name was swmi.local. I know I had not opted for that, and decided to create a new virtual SBS box to see what that was about. Lo and behold the product team has decided to go the other way, and not even give you the option of choosing your own Internet routable domain name.

    I get it: Windows Small Business Server is meant to be easy. Installation and management are supposed to be easy enough so that a non-IT Pro can do it. When I was first introduced to SBS in 2003 the example was of a dentist setting up his server for his small practice, and though dentists are generally intelligent, they are not IT Professionals.

    Of course SBS (moreso SBS 2003 than 2008) is a more complicated environment than many would like to believe, and the focus seemed to shift quickly to the Small Business IT Consultant who (usually) know and understand the inner workings of SBS and who could be trusted to take care of the servers and networks of their clients.

    Of course the argument has been made that because these Small Business IT Consultants were not (generally) MCSEs and MCSAs with an in-depth understanding of DNS, it should be made as simple for them as possible… and because of security concerns many (SBSers) have argued with me that the non-routable DNS naming was an advantage, and that most of their clients never ran into that issue; most had never installed a Transition Pack.

    By removing the option, DNS naming in SBS is easier than ever to understand for the average Small Biz IT Guy.

    …and I don’t get it: As a big proponent for Small Business Server I have also been an outspoken advocate of letting SBSers use SBS as a way to learn the enterprise technology and then they have the option of being a better informed IT Professional in the SBS space, but also should they choose to dabble in the enterprise space they have the basis on which to grow. Forcing the .local domain names is just one more way that the product group is molly-coddling the low-end guy and making it comfortable for him to coast where he is rather than possibly grow.

    Microsoft makes a big deal of touting that the components in Small Business server are full and un-crippled versions of the enterprise products, allowing SMBs to afford the same technologies as their larger competitors and if not leveling the playing field then at least making it a fairer fight.

    To be fair: It should be noted that the OOBE tool in SBS allows you to create an answer file, which can then be modified to get around this limitation. However that is just a long way around and an assurance that in three years the next SBSer who comes to look at your network will have one more thing he will not understand. ‘dot com? Nobody said anything about dot com! Where is my comfortable dot local?’

    Ok, I exaggerate on that one but let’s be honest… who does it hurt to give us the option of using a TLD (Top Level Domain) if we choose to?

    <Mitch lowers and shakes his head as he turns to step down off his soap box>

    Posted Tuesday, July 22, 2008 10:10 AM from Canadian IT Professionals | 0 Comments

  • Tim Rains (Microsoft) in Calgary and Edmonton Next Week!

    On Tuesday, July 22nd, Tim Rains (Group Product Manager, Microsoft Trustworthy Computing) will be in Edmonton for an open talk on security and the changes in the threat landscape.

    What? Open Discussion on Security and Threat Landscape

    Who? Tim Rains (Group Product Manager, Microsoft Trustworthy Computing)

    When? Tuesday, July 22, 2008 – 6 PM to 9 PM

    Where? Brewsters Oliver Square (11620 104th Avenue, Edmonton, AB)

    The space available for this event is extremely limited so please make sure to navigate to the following address and register ASAP!

    https://www.clicktoattend.com/invitation.aspx?code=130051

     

    On Thursday, July 24th, Tim Rains (Group Product Manager, Microsoft Trustworthy Computing) will be in Calgary to deliver two security-focused presentations that will help your mitigate the threats posed against your critical infrastructure.

    What? Microsoft Security Intelligence Report & Security Strategy Briefing

    Who? Tim Rains (Group Product Manager, Microsoft Trustworthy Computing)

    When? Thursday, July 24, 2008 – 9 AM to 12 PM

    Where? Calgary Chamber of Commerce (100 6th Avenue SW, Calgary, AB)

    The space available for this event is extremely limited so please make sure to navigate to the following address and register ASAP!

    https://www.clicktoattend.com/invitation.aspx?code=130020

     

    About the Presentations

    Microsoft Security Intelligence Report (http://www.microsoft.com/sir/)

    The Microsoft Security Intelligence Report (SIR) provides an in-depth perspective on the changing threat landscape including software vulnerability disclosures and exploits, malicious software (malware), and potentially unwanted software. Each individual report focuses on data and trends observed in either the first or second half of each calendar year and uses historical data to provide context. The purpose of the SIR is to keep Microsoft’s customers informed of the major trends in the threat landscape and to provide valuable insights and security guidance designed to help customers improve their security posture in the face of these threats.

    Security Strategy Briefing

    Security is a large concern of most Enterprises. This session will outline Microsoft’s security strategy, including our assessment of today’s threat environment, and where we are investing going forward. Discussion will include Microsoft’s proactive and reactive strategies, and the relationship of security investments to Microsoft’s Trustworthy Computing initiatives. The session will also lead an interactive discussion around Microsoft security strengths, weaknesses, opportunities and threats from the customer perspective.

    Recommended Audiences: Technology Executives, IT Managers, IT Professionals, Business Executives, CIO, IT Directors, Microsoft Partners, Business Decision Maker

    About Tim Rains

    clip_image002

    Tim Rains is a Group Product Manager in Microsoft’s Trustworthy Computing group. Tim and his team of product managers support the Microsoft Security Response Center (MSRC), the Microsoft Malware Protection Center (MMPC) and many product teams across Microsoft. Among other things, Tim’s team manages production of the Microsoft Security Intelligence Report (SIR). Tim has worked in several roles at Microsoft including the Senior Public Relations Manager of Security Response at Microsoft, Senior Product Manager of the Microsoft Malware Protection Center, Program Manager of the Windows Network Diagnostics team, Technical Lead on the Product Support Services (PSS) Security team and Technical Lead on the Windows Server Networking team.

    Tim earned a Masters degree in Business Administration (MBA) at Seattle University and a Bachelor of Arts (BA) degree at the University of Alberta. Tim also holds several technical certifications including CISSP, MCSE, MCSA, including a Computer Systems Technology diploma from the Northern Alberta Institute of Technology.

    Posted Friday, July 18, 2008 11:46 AM from Canadian IT Professionals | 0 Comments
    Filed under: ,

  • Joining the Dream Team!...

    Hello folks,

    I wanted to take a few minutes and introduce myself.  My name Pierre Roman and I'm joining the IT Pro Advisor team.

    For the past three years I have been a Senior Technical Account Manager for Microsoft Enterprise Services. As such, my role was to become a trusted business advisor to the Microsoft Premier Support customers and the single point of contact for all operational issues.  “One throat to choke” if you will….

    I strived to provide valuable guidance around operations and optimization of their IT infrastructure. I gained an understanding of my customers’ IT organizations' impact on overall business, their IT goals, and their pain points.  That knowledge was used to suggest changes and adjustments to ensure their operational success.

    Now, my focus shifts. It’s now all about you. Your experiences, your stories, and especially your successes.  So, let's talk....

    On a personal note, I am extremely happy, excited and even a little scared to be joining a team of such dedicated professionals.

    In my spare time I enjoy spending time my 10 and 12 year old girls (Sydney and Kelsey) and my wife Andrea. I also love the game of hockey… Our national past time.  I play at least twice a week and I coach both my daughter’s hockey teams.  I’m so thankful that they are both more disciplined on the ice then their old man.

    for those I have not met yet, here's what I look like. so if we run into each other... stop me and we can chat.

    I look forward to connect with you soon.

    Cheers!

    Signature

    Posted Friday, July 18, 2008 12:31 AM from Canadian IT Professionals | 0 Comments

  • MVP Profile - Marco Shaw

    MarcoShaw Marco is currently an IT system analyst for one of Canada's leading telecommunications companies.  He has been working in the IT industry for over 10 years.  He recently received a Microsoft Most Valuable Professional award for his contributions to the Windows PowerShell community.  His personal blog is at http://marcoshaw.blogspot.com, where he covers all kinds of PowerShell related topics.  He is also the Assistant Community Director of the new PowerShell Community site at http://www.powershellcommunity.org.


    1.    What does being an MVP mean to you?
    Being recognized by others as having a solid background of knowledge and experience with a particular Microsoft product.


    2.    If you could ask Steve Ballmer one question about Microsoft, what would it be?
    When Microsoft employees provide an exceptional level of support to the community, what’s the best way to make sure their manager is aware, and have the feedback documented?


    3.    What do you think the best software ever written was?
    I’m particularly fond of PowerShell for obvious reasons.  PowerShell is relatively new and being integrated more and more into Microsoft’s server product line.  Now, PowerShell is part of Microsoft’s Common Engineering Criteria 2009 which provides guidelines for all of Microsoft’s server product line, so we should be seeing more and more PowerShell.

    4.    If you were the manager of Admin Frameworks, what would you change?
    Set a standard for how Windows PowerShell should be supported or integrated into the Microsoft server product line.

    5.    What are the best features/improvements of Admin Frameworks?
    I think the openness of the APIs for this category is great for developers.  Developers can easily extend Windows PowerShell, and also Microsoft Management Console 3.0.

    6.    What was the last book you read?
    Cover to cover?  That would be “Windows PowerShell for Absolute Beginners”.  Although basic, I like to try to read everything out there related to PowerShell to be able to provide my opinion on good books especially for beginners.

    7.    What music CD do you recommend?
    Justin Timberlake’s latest from 2007.

    8.    What makes you a great MVP?
    Demonstrating to others, that I will try to go the extra mile to help them answer a question or solve a problem.  In some cases, I’ll even try to load another software program or setup a new virtual machine to try to help others.

    9.    What is in your computer bag?
    My laptop, a TechNet magazine, and my notebook to write down any MVP related things I might be up to.

    10.    What is the best thing that has happened since you have become an MVP?
    Opportunities to write for MS Press and TechNet magazine.

    11.    What is your motto?
    One should never feel stupid when asking a question.  Unless it was just answered, and one wasn’t paying attention.

    12.    Who is your hero?
    My kids who don’t seem to be afraid of anything and are more than willing to leap over tall buildings, not considering how the landing might be…

    13.    What does success mean to you?
    Helping others, like they’ve helped me, to do things better, more efficiently.

    Posted Monday, July 14, 2008 9:51 AM from Canadian IT Professionals | 0 Comments

This Blog

Syndication

Recent Posts

Tags

Archives
Copyright OWSUG.ca, 2008. All rights reserved.
Powered by Community Server, by Telligent Systems