Setting Your Company Up for Success

MDMs are essential, and keep ‘chaos’ out of your business

Richard Kohberger is known as YouTube’s Blue Collar Nerd.

His experience in the trades feeds two obsessions. One is making technology work for the trade industries to increase efficiency and profit. The other is ServiceTitan, which his company, Comfort Control, Inc., in Buford, Ga., has used since 2015. 

That tech nerdiness makes Kohberger perfect to help those in the trades understand and solve the tech problems they face. 

And a big thing to manage, Kohberger said, is mobile devices. He suggests shielding company phones and tablets through the use of mobile device management (MDM) software. And he said the best way is through MDM software such as Jamf, SimpleMDM or a similar program. 

Here are 15 important things Kohberger says about using mobile device management technology to better safeguard your company’s mobile phones and tablets:  

• MDM is worth the effort: Setting up an MDM is not easy, but it is worth the trouble. There are different methods depending on whether the device is new or existing, and whether it is an Apple device or an Android. Here’s a cheat sheet with details. 

• Device retention: Devices walking away with technicians who leave the company can be a problem. Businesses lose money to employee theft every year, but MDMs keep technicians from “owning” the company’s device because its usefulness stays in the control of the business. Without an MDM, “it’s as if the technician owns the device in all practical ways,” Kohberger said. 

• Control your data usage: MDM software gives companies control over data usage that isn’t business related. With an MDM, you can limit access to just about anything. Great things to limit are things like Netflix and the ability to launch a personal hotspot.  “A lot of technicians like, in their downtime, to chill in the gas station parking lot and get some Netflix going,” Kohberger says. “That can eat away at your data plan if you don’t have an unlimited plan. It’s best to just limit that stuff.”

• Control from the start: New devices bought through a company Apple Store account can be completely controlled through the MDM right out of the box. Previously purchased devices require a different process and won’t provide all the protections. (A tech-savvy employee can turn off an MDM program not set up when the device is new, but you’ll get a notification.)

• Don’t share iCloud: You can't solve device management problems with a shared iCloud account. In fact, you’re just asking for trouble if you try because iCloud accounts are for individuals to share photos, account logins and other data across devices. That can be bad in a work setting. MDMs are for groups. Using a shared iCloud account instead of an MDM is “the chaos method,” Kohberger said. 

• What MDMs don’t do: MDMs don’t allow you to see private emails, text messages or browsing history. And that’s a good thing. “Let’s say you let somebody go, and they claim you let them go because you saw a confidential medical email and you were worried about downtime and strain on the insurance plan,” Kohberger said. “That’s not going to happen because you have no access to that sort of stuff.”

• Lost device help: The program canlocate the lost device, but only if the device is turned on. If the device can’t be located, MDM software allows the device to be put into “lost mode” remotely, protecting sensitive customer data and locking out those who shouldn’t have access to the device. You can even set the lock screen to display an “if found” question with your company address or phone number. 

• Consistent design: The look of the device, from home screen picture to placement of apps, is consistent. That controls what your technicians and salespeople show customers. “You’re making sure everything is presented the way you want your company to be represented,” Kohberger said. 

• Passcode control: Can’t remember passcodes for the lockscreen on all your Apple devices? An MDM allows you to use one passcode across all devices. That eliminates the need for your company to keep up with passcodes. 

• Calendar clarity: Eliminate “stupid” scheduling questions and on-call confusion forever. By linking the on-call calendar into the default calendar app on the device through the MDM, you get rid of ambiguity. 

• Install issues: Uninstall and reinstall can be done remotely through the MDM. That’s helpful if a tech has a problem with an app in the field. 

• WiFi password retention: Office WiFi passwords can be built into the device. That allows automatic sign in at the office but keeps personal devices off the company WiFi (if that’s what you want to do). 

• Affordable solution: The cost of an MDM program is not exorbitant. At an approximate range of $2 to $4 per year per device, the benefit outweighs the cost.

• MBM for Android: The process for Android devices is different. But MDMs are available for Androids too.