Using UEM Automation to Prepare Computers for ITAD

IT Asset lifecycle management, especially at end-of-life, can be complex and costly without the right tools. Unified Endpoint Management (UEM) systems can be invaluable in this process, helping organizations simplify asset preparation for secure IT recycling for end-of-life assets while providing valuable help with maintaining data security and optimizing environmental and operational goals throughout the asset’s life. 

As IT asset disposition (ITAD) professionals, we have learned that clients who employ UEM systems are more prepared for efficient and cost-effective disposition processes.  This blog discusses how UEM ITAD integration can simplify the journey from active use to the responsible retirement of end-of-life IT assets. 

What is Unified Endpoint Management (UEM)?

UEM is a comprehensive platform that allows IT teams to centrally manage and secure all endpoint devices—laptops, desktops, mobile devices, IoT devices, and more. It goes beyond Mobile Device Management (MDM) by incorporating advanced features like device performance tracking, compliance management, and integration with security tools. UEM tools are typically integrated with security tools such as Managed Detection and Response (MDR) and Endpoint Detection and Response (EDR).

Common UEM tools in use at our customers include Intune, JAMF, IBM MaaS360, VMware Airwatch, Citrix, Connectwise, BigFix, Google Device Manager, Ivanti Nuerons, Cisco Meraki Systems Manage

UEM  increases security and improves the management of computers throughout the IT asset lifecycle. Its capabilities make it a perfect ally in preparing IT assets for safe and efficient disposition.

How UEM Can Prepare IT Assets for Recycling with an IT Asset Disposition Vendor

1. Comprehensive Asset Inventory: UEM tools provide real-time visibility into all endpoints within your organization. This centralized inventory makes tracking devices’ location, status, and configuration easy, ensuring no asset is overlooked during ITAD planning.  This inventory may be integrated with IT Asset Management (ITAM) databases like ServiceNow.
2. Secure Data Erasure: UEM allows IT administrators to perform initial wipes before disposing of devices. This adds a layer of security to your IT recycling and complements Securis’ certified data destruction processes. As a NAID AAA-certified company, Securis ensures your devices are completely sanitized, including hard drive shredding or data purging, that meets or exceeds industry, state, and federal compliance standards. 
3. IT Asset Lifecycle Management: UEM tracks device age, performance, and usage patterns, helping IT teams determine when an asset should be retired or recycled. Devices flagged for end-of-life can be prioritized for UEM-based preparation and secure IT asset recycling.
4. Policy Enforcement: Features like BIOS locks, encryption enforcement, and Trusted Platform Module (TPM) settings protect your devices from breaches before they reach an ITAD vendor.
5. Compliance Assurance: UEM platforms facilitate adherence to data protection regulations, such as GDPR or HIPAA, by standardizing data handling and ensuring devices meet compliance requirements throughout their lifecycle.

Issues with ITAD when BIOS locks are not removed from IT Assets

A BIOS lock is a security feature restricting unauthorized access to a computer’s Basic Input/Output System (BIOS) settings. The BIOS is responsible for initializing hardware components during the boot-up process, and setting a password can prevent unauthorized users from tampering with hardware configurations or altering system settings. UEM can automate the removal of BIOS locks and resetting devices, ensuring that customer data is removed and recycling or reuse happens quickly. However, BIOS locks can also slow down the ITAD process in several ways:

1. Access Restriction: If a device is BIOS-locked and the password is unknown, it can prevent access to the system. This restriction can complicate the data wiping process, which is essential for ensuring that no sensitive data remains on devices before recycling, re-use, or resale.
2. Hardware Configuration: A locked BIOS might prevent changes to the boot order or other hardware configurations necessary for running data erasure software from external media. This limitation can hinder the ability to erase data from storage drives.
3. Disposal Challenges: For organizations disposing of large numbers of devices, managing BIOS locks can be resource-intensive. It may require additional time and effort to unlock devices or ensure they are disposed of securely without compromising data security.

To mitigate these issues, IT departments should use their UEM  software to reset the device, remove it from management, and wipe corporate data before the disposition process begins.  If this step is not performed and the asset has a bios lock, the asset will become stuck in limbo and unable to be sanitized to NIST 800-88 standards by the ITAD firm.

The Benefits of Removing BIOS Locks Before Initiating ITAD Service

Reasons to make sure that you remove BIOS locks before sending assets to a certified ITAD vendor include: 

1. Frees Up Software Licenses: Removing corporate data and unregistering devices from management through UEM releases software licenses, making them available on newer devices.
2. Enhanced Security: By wiping devices before sending them to an ITAD provider, UEM reduces the risk of breaches. Companies should choose a NAID AAA ITAD provider that will also sanitize the data, but an initial software sanitization is easy when automated and provides an extra layer of security for protecting data during storage or transport.
3. Supports Environmental Goals Properly prepared devices have greater reuse or donation potential because value is reduced over time.  This process supports sustainability efforts and reduces e-waste.
4. Speeds Up ITAD Processing: Devices reset and removed from UEM are ready for immediate processing by your ITAD vendor, saving time and ensuring quicker asset turnaround.

Your Next Steps in ITAD Success

By integrating UEM into your IT asset management strategy, your organization can unlock more value from its devices while ensuring data security and regulatory compliance. At Securis, we’re here to partner with you, offering certified ITAD services that complement your use of UEM. Together, we can streamline the final stage of your IT lifecycle and positively impact the environment.

Don’t let outdated devices slow you down.  Securis can make sure your IT Asset disposition projects are successful and efficient. Contact Securis today for a consultation on how UEM and certified ITAD services can benefit your business.