Use your Pocket PC 2002 device as a mobile administrative workstation
In "Pocket PC 2002," http://www.winnetmag.com, InstantDoc ID 23685, I introduced you to Pocket PC 2002 devices. This month, let's drill down to a capability that network administrators and IT folks will find particularly interesting—using a Pocket PC 2002 (or Handheld PC—H/PC—2000) device as a mobile administrator's workstation. You can use Pocket PC 2002 devices to perform administrative tasks (e.g., changing user passwords, troubleshooting Ethernet problems, taking down a server) from any location that your corporate LAN reaches.
I've been testing three Pocket PC 2002 devices. One is an upgraded Compaq iPAQ H3670, and the other two are new—Toshiba's GENIO (the Japanese version of a device that will sell in the United States under the name e570) and Hewlett-Packard's HP Jornada 565. The network features that I discuss in this column are available on all three devices (although you must separately install the terminal services client on the iPAQ because it has a smaller flash ROM than the newer devices have).
Setting up Pocket PC 2002 devices is straightforward: All the necessary software is integrated on one CD-ROM, which replaces the separate Microsoft and OEM CD-ROMs common to earlier Windows CEbased devices. If you're setting up a brand-new device on a PC that you've never attached a Windows CE device to, you'll want to install the software before you connect the USB-based sync cradle. (Otherwise, Windows will generate an error message as it attempts to detect the cradle.) The quick setup procedure is simply a matter of inserting the CD-ROM and following the onscreen instructions.
Built-in Networking
Pocket PC 2002 devices offer impressive network support. On NE2000-compatible Ethernet cards and 802.11 wireless Ethernet cards, the necessary drivers are built in. Just insert the card, and a pop-up display offers to configure the network driver. You can use a server-assigned IP address (the simplest option), or you can manually enter IP, subnet mask, gateway, and name server addresses. You need to complete this process only once for each network card.
After you install a network card, you immediately have access to the corporate intranet (or the Internet). Both Pocket PC 2002 and H/PC 2000 devices include a version of Microsoft Internet Explorer (IE), so you can, for example, use Windows 2000 Server's Web-based administration features. When you try to access a secured page, the device prompts you to enter the necessary credentials, as Figure 1 shows.
Pocket PC 2002 lets you browse network shares by using File Explorer, which is in the Start menu's Programs folder. After you provide credentials, you'll see a view of files and folders, as Figure 2, page 76, shows, that's similar to what you see on a typical Windows desktop. You can't open a network file directly, but you can create a local copy and use built-in applications such as Microsoft Pocket Word and Microsoft Pocket Excel to edit the file. (Tap and hold the stylus on a filename in File Explorer, and select Copy from the resulting pop-up menu; then, change to a local folder and select Edit, Paste.)
Pocket PC 2002 also offers—at last!—built-in PPTP-based VPN support. Tap Start, Settings and select the Connections tab. Tap the Connections icon to bring up a Connection Settings dialog box. To inform the device about your NIC connection, select The Internet in the My network card connects to field. Now, tap Modify (beneath Work Settings) and select the VPN tab. Tap New to create a new VPN connection—you need only to specify a name for the connection and a host name or IP address for the VPN server. You can now use File Browser or Pocket IE to browse shared network resources. The device automatically establishes a VPN connection, if necessary—at that point, a pop-up message requests your security credentials.
Pocket PC 2002's VPN has one limitation: It's available only when you're using public IP addresses to dial through an Internet connection. The VPN doesn't work if you're trying to tunnel through a private address range. (I use such a VPN to secure my home network's private wireless LAN—WLAN.) Microsoft's approach will work for sites in which the wireless Access Point (AP) resides outside a corporate firewall—a scenario that highlights PPTP's original intent. Microsoft will probably receive criticism for providing only PPTP-based VPN support. Keep in mind that third-party IP Security (IPSec) solutions are available. (For information about these solutions, see "Use a VPN to Secure Your Wireless Network," September 15, 2001, InstantDoc ID 22006.)
Previous
Register
