Device IT Hardware Procurement/Governance/Lifecycle Management
-
Device Procurement
- The Procurement Office provides reference material from the National Desktops and Notebook Agreement (NDNA) partners on IT hardware that meets the current specifications.
- Hardware procurements are to be executed via the University's Procurement Office service (E5 /Science Warehouse system).
- As part of the NDNA procurement process, Laptops and Apple devices are to be enrolled at the point of procurement in the University’s Windows MDM (Intune) and Apple School manager (ASM) service
-
Governance - Device Registration
Corporately owned Windows and Apple macOS/iOS devices must be fully incorporated into the management platforms (Active Directory, Intune (MDM), Apple School Manager and Jamf Cloud) operated by the University to meet cybersecurity and governance needs.
- Windows desktops (on-premise) – require an Active Directory device registration and the use of SCCM technologies to deploy an appropriate “core image” to the device. Device management is executed by Active Directory group policies and SCCM based processes.
- Windows laptops – require Intune (Autopilot) device registration, group tag assignment, the implementation of a device configuration profile, remote application deployment from Intune and further software deployments via the Company Portal.
- Apple macOS devices – require Apple School Manager device registration, Jamf Cloud device enrolment and application deployment from/via the Jamf Cloud Portal.
- Apple iOS devices (iPads) – require Apple School Manager device registration, Intune MDM device enrolment and application deployment from/via the Company Portal.
-
Governance: IT Access/User Authentication
Corporate IT services, networks and devices can only be accessed /operated via registered University user accounts that are established in the Microsoft Azure environment with an Ulster University identity. Local user device accounts are not permitted or supported. Administrative functions are supported by assignment of Azure /Active Directory group membership /group tags.
-
Device Lifecycle Management
- For desktop, laptop and Apple devices that do not meet the hardware /OS baseline requirements, the device must be considered as unsupported and at end-of-life. Details are provided in the relevant section of the “Device Hardware Baseline Specification” pages for Desktops, Laptops and macOS devices.
- Hardware refresh of unsupported devices should be arranged by the owning stakeholders.
- Device disposal processes are to follow University guidelines (device initialisation /data erasure, management platform (AD, SCCM, Intune, ASM, Jamf) offboarding, WEEE certified disposal and Asset Record update).