Stop Managing Thousands of Endpoints: The Case for Cloud-Based End-User Computing
The recent widespread outage caused by a CrowdStrike update highlighted an issue that has been around for a long time. Managing hundreds or even thousands of endpoints is a huge headache for IT teams, even when they aren’t dealing with a crisis. In a crisis, this architecture can cause catastrophic outages that cost billions of dollars. By moving to a cloud-based model, organizations can significantly reduce the complexity of their end-user computing infrastructure, and make managing updates and patches a straightforward process.
The Problem: A Perfect Storm of Complexity
Traditional end-user computing (EUC) environments are created with a mix of operating systems, security agents, legacy applications, VPNs, managed devices and BYOD. Each new software and hardware introduction creates a complex web of interactions, increasing the likelihood of conflicts and vulnerabilities.
This complexity was on full display during the CrowdStrike outage. A faulty update pushed to an agent on the device destabilized endpoints due to unforeseen interactions with the Windows OS. The widespread impact resulted from the agent's presence on millions of devices, demonstrating the ripple effect a single update can have. To rectify the issue, many organizations had to manually update each device - a painstaking process that has widespread effects across the organization.
Updates, like the one CrowdStrike pushed to users are necessary - users need access to the latest features, software reaches end-of-life, bug-fixes need to be deployed and new software needs to be added to meet the needs of the business. The issue arises when these updates need to be done in such complex environments, with an extensive number of endpoints. Testing and updating in such complex environments requires a huge lift for IT teams - so much so, that many organizations choose to stay on outdated versions of software that limits the productivity of their organizations. This too was highlighted by the CrowdStrike outage - organizations that weren’t affected were still using older versions of Windows. While using outdated versions might be great for avoiding a crisis, they limit what workers are able to do on a day-to-day basis.
If there is an issue with an update, organizations can roll-back to a previous version, but even this is not always a straightforward solution. Depending on the size of the organization and the location of the endpoints, you still may be required to update many machines individually.
The Power of Cloud-Based Desktops
There is an alternative - adopting a cloud-based solution for end-user computing. Using a cloud-based solution, organizations can centralize the entire computing environment. By creating an architecture where you have a centralized golden image that applications run on, you can enable admins to do an update once instead of across all endpoints. Using this architecture, IT teams can significantly reduce having to do updates on hundreds or thousands of devices - mitigating issues that might arise from update issues that we saw with CrowdStrike, but also reduce everyday update and maintenance requirements.
Go Further with a Browser-Based Solution
Cloud-based solutions offer many advantages, but organizations can take this one-step further with a cloud-solution that is also browser-based. With a browser-based solution, users can access the apps they need to do their job from any browser, meaning they can use lightweight devices (eg. chromebooks). If certain devices are down, users can easily move to alternative devices as they can still securely access all apps and virtual desktops through any commercial browser. This can help significantly with business continuity when issues arise.
The benefits of a cloud-based solution:
- Reduced Complexity: By significantly reducing the need for local software installations, cloud-based EUC solutions simplify the endpoint landscape. Security, applications, and configurations are managed centrally, reducing the risk of conflicts and vulnerabilities.
- Streamlined Patching: Patching becomes a centralized activity. Updates are applied to the golden VM, eliminating the need to touch individual devices. This ensures consistency and reduces the risk of errors related to manual updates.
- Simplified Rollbacks: Cloud-based solutions can employ snapshots or version control. If an update creates issues, the system can be easily rolled back to a known-good state, minimizing downtime and impact. The roll-back is again done centrally, without the need to do updates on individual devices.
- Future-proofing: By enabling streamlined, centralized updates that take minimal time to complete you can ensure your organization is always able to stay up-to-date with technology changes. When OS systems and software versions change, you can easily incorporate these changes into your EUC environment.
- Reduced Reliance on Endpoint Security: By centralizing security within the cloud environment, the reliance on endpoint security software can be reduced. This lowers the attack surface and simplifies endpoint management.
- Reduced Hardware Costs: The ability to use less-expensive desktops and laptops can significantly reduce hardware costs. Additionally, hardware refresh cycles become less frequent.
- Improved Productivity: Cloud-based desktops can be accessed from any device with an internet connection, offering greater flexibility and mobility for users.
- Environmental Benefits: Reduced reliance on powerful desktop hardware translates to lower energy consumption and a smaller environmental footprint.
Avoiding Concerns about Centralization
Centralizing and standardizing on one system always leads to valid concerns about handing too much control over to one provider, and not having the ability to select the right set of apps, hardware and OS systems for your organization.
By using a cloud-based solution, you do have the ability to select the right EUC setup for your organization. If you need CrowdStrike, you can add it. If you need to give some users access to on-prem desktops, you can do it. Workloads can be run in the cloud provider that is most efficient for your organization's specific use case. You can try other types of compute and change when needed. Cloud-based solutions offer the best of both worlds - you can centralize the compute, storage and network resources, while enabling users to access all the apps they need to do their work.
Using a SaaS solution that includes compute (like Sonet.io) allows you to leverage the resources and expertise of the SaaS provider. Resources can be shared and their expertise can help solve problems faster
The Future of End-User Computing: A Move Towards Simplicity and Security
The CrowdStrike outage serves as a stark reminder of the challenges associated with complex endpoint environments. Cloud-based desktops, particularly those that leverage a browser-based solution offer a compelling alternative, simplifying IT management, enhancing security, and paving the way for a more efficient and user-friendly computing experience. This model is in many ways similar to mainframes, where centralized computing is combined with lightweight access devices. This centralized approach, facilitated by cloud technology, offers greater security, manageability, and efficiency.