+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 16
Windows Thread, Allowing school laptops to be used outside the network? in Technical; I have seen topics with mention of this on here and very mixed views but with a new batch of ...
  1. #1
    bondbill2k2's Avatar
    Join Date
    Jan 2011
    Location
    West Midlands
    Posts
    1,015
    Thank Post
    81
    Thanked 66 Times in 51 Posts
    Blog Entries
    2
    Rep Power
    42

    Allowing school laptops to be used outside the network?

    I have seen topics with mention of this on here and very mixed views but with a new batch of CLT laptops coming very soon and the increasing requests for them to be able to use them both in school and on their networks at home I was wondering what the best method is. We currently operate a policy of a device used in school on the network remains on the network, if a staff member wants to use it on their home network then it shall be removed from ours permantly or until we have checked it over before allowing it back on.

    We also currently use Sophos and although im yet to read much into it would Sophos NAC be able to assist this task? I'm also yet to look into offline documents but its something which would be really useful to staff, if anyone has any advice or genral things to look out for then please let me know as this would be great!

    Thanks,

  2. #2
    Gibson335's Avatar
    Join Date
    May 2008
    Posts
    982
    Thank Post
    271
    Thanked 142 Times in 113 Posts
    Rep Power
    82
    Regards Sophos, you can configure it so that if the device is not attached to the network it will seek out a secondary - in this case on-line - location from which to obtain its updates.

  3. #3

    Little-Miss's Avatar
    Join Date
    Oct 2007
    Location
    London
    Posts
    5,555
    Thank Post
    2,414
    Thanked 798 Times in 481 Posts
    Blog Entries
    2
    Rep Power
    552
    The majority of mine are off the network. When i have tried to set them up like that ive not had much luck (my fault probably!). Sophos seems to do its job, but then i think a lot of our staff use them more at home then in school anyway as they have PCs in there rooms.

    Do your staff move around a lot?

  4. #4

    bossman's Avatar
    Join Date
    Nov 2005
    Location
    England
    Posts
    4,035
    Thank Post
    1,262
    Thanked 1,107 Times in 785 Posts
    Rep Power
    338
    We have always kept ours off the network as most teachers want to do their own thing with them, they can always get to their work via remote access either in the school or out of the school.

    I do find that laptops are a good way of pushing the latest applications out to the teachers first before introducing them on the network as this gives the staff time to adjust to the differences from the older apps.

    It has worked for us for the past 8 years and continues to work very well, not much to do with them except image beforehand and then when they come back after the installation of everything off the net we just rebuild from image, update and then re-image ready for the next time. Build is Windows 7, Office 2010 with Microsoft Essentials as the AV and malware manager. Any other packages which they use in the line of their duty is installed and that's it.

    It works just fine for them and they appreciate the fast turnaround.

    Unfortunately as from last year the school policy is "No more laptops for Teachers or other Staff" in future they have to purchase their own.

  5. Thanks to bossman from:

    ste1988 (10th January 2012)

  6. #5
    tommej's Avatar
    Join Date
    Oct 2009
    Location
    Lincolnshire
    Posts
    746
    Thank Post
    39
    Thanked 152 Times in 110 Posts
    Rep Power
    81
    Ours are on the domain and staff are free to take them home. We have McAfee which will happily sit working away with a virus installed anyway 8(. We have recently re-imaged every laptop with windows 7 enterprise with the intention of making use of encryption school wide.

  7. #6

    bladedanny's Avatar
    Join Date
    May 2009
    Location
    Sheffield
    Posts
    1,314
    Thank Post
    191
    Thanked 313 Times in 234 Posts
    Rep Power
    171
    For our domain laptops that leave school we use Sophos with a secondary online server (no proxy) so it can update at home. We also have them set up with offline files so staff can work at home on their work which then syncs with the servers when coming back to school, and we have TrueCrypt installed for encyrption of any machine that leaves school.

    So far we've not had many problems virus wise, and offline files works well (as long as you don't sync your network shares).

  8. #7
    bondbill2k2's Avatar
    Join Date
    Jan 2011
    Location
    West Midlands
    Posts
    1,015
    Thank Post
    81
    Thanked 66 Times in 51 Posts
    Blog Entries
    2
    Rep Power
    42
    They arn't moved around alot no but staff have shown they would like to have more freedom and asked us if possible. They currently have access to their documents via the LG and sharepoint anyway so its not too bad

  9. #8
    Gibson335's Avatar
    Join Date
    May 2008
    Posts
    982
    Thank Post
    271
    Thanked 142 Times in 113 Posts
    Rep Power
    82
    Quote Originally Posted by bossman View Post
    We have always kept ours off the network as most teachers want to do their own thing with them, they can always get to their work via remote access either in the school or out of the school.

    I do find that laptops are a good way of pushing the latest applications out to the teachers first before introducing them on the network as this gives the staff time to adjust to the differences from the older apps.

    It has worked for us for the past 8 years and continues to work very well, not much to do with them except image beforehand and then when they come back after the installation of everything off the net we just rebuild from image, update and then re-image ready for the next time. Build is Windows 7, Office 2010 with Microsoft Essentials as the AV and malware manager. Any other packages which they use in the line of their duty is installed and that's it.

    It works just fine for them and they appreciate the fast turnaround.

    Unfortunately as from last year the school policy is "No more laptops for Teachers or other Staff" in future they have to purchase their own.
    The big problem for us is getting them in - SLT won't 'insist' and on a voluntary basis the most we've had for a summer rebuild is about 30%!!

  10. #9

    Little-Miss's Avatar
    Join Date
    Oct 2007
    Location
    London
    Posts
    5,555
    Thank Post
    2,414
    Thanked 798 Times in 481 Posts
    Blog Entries
    2
    Rep Power
    552
    Quote Originally Posted by bossman View Post
    Unfortunately as from last year the school policy is "No more laptops for Teachers or other Staff" in future they have to purchase their own.
    What! Eugh, i could only wish for such a thing! Ive been told by a member of staff today that she is putting in a letter of complaint because she doesnt have a laptop. She does have one, sat with me, but its a complete brick! Unfortunately my wand ran out of fairy dust so cant make it work better. PLUS this is the woman who complained her laptop wouldnt work and it was because the battery was completely flat and she hadnt plugged it in...

    Sorry, rant over! lol Back to the thread....

  11. #10
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    4,002
    Thank Post
    983
    Thanked 476 Times in 398 Posts
    Blog Entries
    12
    Rep Power
    98
    Ours are also on the domain and they are free to take them home.

    We give them a separate local admin user to do whatever they want with it.

  12. #11
    Abaddon's Avatar
    Join Date
    Mar 2006
    Location
    Middlesex
    Posts
    623
    Thank Post
    74
    Thanked 70 Times in 65 Posts
    Rep Power
    61
    We're about to start looking at client hypervisors, so that they have a fully supported school network build for in-school with full connectivity (offline files etc, but if taken out of the school will not connect to a network), and a seperate "home" installation which they can do whatever they want with (except connect to the schools network).. if they break that, the work one will still be fine. Lots of settings etc to check through, but would certainly solve some of the problems we see. The carrot of the home version should work.

  13. #12

    Join Date
    Jan 2007
    Location
    The Console
    Posts
    236
    Thank Post
    22
    Thanked 29 Times in 23 Posts
    Rep Power
    23
    Our staff log in to their laptop, we then set their user account to be a local admin so they can add home printers. They have a proxy .pac file to they can access the internet at home. Offline files is set up so they can work on files at home.

    Our staff wouldn't be able to cope with two accounts. Nor would they understand the difference!

  14. #13

    Join Date
    Apr 2011
    Posts
    67
    Thank Post
    14
    Thanked 7 Times in 7 Posts
    Rep Power
    9
    Our staff have a seperate local user account that they use at home. We don't have offline files set up but I think if you have offline files and add their account to be a local admin on the laptop for when they are at home that would be the best option.

    McAfee AV seems to keep the viruses etc out for us

  15. #14

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,342
    Thank Post
    242
    Thanked 1,602 Times in 1,278 Posts
    Rep Power
    346
    In Birmingham schools, there should be a Primary Sophos instance for updates within the school network and a Secondary instance hosted at the LA for laptops used at home.

    Once all policies are setup properly, everything just works. I join laptops to the school domain so it means staff receive Sophos, Microsoft Updates and newly deployed MSIs.

    Staff use two separate accounts - jbloggs for domain logon and .\jbloggs for local logon to their own laptop only.

    Optionally staff use VPN to access their files remotely.

  16. #15
    mrbios's Avatar
    Join Date
    Jun 2007
    Location
    Stroud, Gloucestershire
    Posts
    2,656
    Thank Post
    383
    Thanked 273 Times in 225 Posts
    Rep Power
    103
    Quote Originally Posted by zag View Post
    We give them a separate local admin user to do whatever they want with it.
    We used to do that, have since switched to an offline files method of doing things so they logon with the same username + pw on and offline, with their home folders synced.

    Most staff are then setup as standard users so they can't break it, with the odd few who really can't do without admin rights being given local admin to the same account to install stuff.



SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Replies: 5
    Last Post: 30th March 2011, 07:02 PM
  2. Getting Outlook to connect to Exchange from outside the network
    By richard_s in forum How do you do....it?
    Replies: 8
    Last Post: 6th March 2009, 02:36 PM
  3. Converting video files to be used on the web site
    By tosca925 in forum How do you do....it?
    Replies: 5
    Last Post: 28th April 2007, 08:31 AM
  4. Replies: 23
    Last Post: 6th February 2006, 04:05 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •