Features not available in Vista Premium

Part 1a: for IT professionals

Control over installation of device drivers

Desktop deployment tools for managed networks

Encrypting File System

Network Access Protection Client Agent

Policy-based quality of service for networking

System image–based backup and recovery

Windows Rights Management Services (RMS) Client

Control over installation of device drivers

Allows administrators to create special rules for which kind of devices can and can't be installed on a PC running Windows Vista. While this is useful for business and public computers, it is hardly of any benefit for the home user.

Desktop deployment tools for managed networks

One big difference between XP and Vista is the way Vista is installed on the computer. Instead of a file-by-file procedure, Vista is copied as an image. It's the same technique that is used when restoring image based backups. Once the OS is installed, applications, drivers, updates and so on can be installed the same way as in XP. The problem with this way of doing things is that when you have to do it for a large number of computers it becomes very time consuming.

For Vista, Microsoft has released an AIK (Automated installation Kit) which contains several tools that allow the installation image, which is a .wim file, to be mounted like a drive in explorer, modified and recaptured in a forma ready to be deployed to any number of computers. The advantages in an enterprise environment are obvious: starting with a standard Vista DVD, one can add all the software installation packages, updates, not included drivers and so on, and have a fully personalized Vista DVD. Using some more specialized software this image can then be deployed via the network, with the technicians never needing to come near the client computer. And this is what this extra feature is all about: the network deployment requires a dedicated server, active directory and a domain. Visa Ultimate and Business (and Enterprise) are able to join a domain. The other editions of Vista aren't.

So: if you need the ability to deploy the OS through a network, and have both a server and active directory up and running, then you'll need at least Vista Business. Otherwise this is another feature that you don't need to pay for.

Encrypting file System

This is not new to Vista, the feature is also available in XP Professional. The security is somewhat better in Vista, because of the way user passwords are saved and protected. This also means that the risk of permanently loosing access to the encrypted files is higher.

Basically, instead of/in addition to encrypting the whole drive by using bitlocker or a third party software, a user can encrypt individual files or folders. For those using shared/public PCs there might be a usefulness outweighing the risks in this feature. Price-wise, there is no shortage of third party applications providing or claiming to provide the same ability, for around 40 USD/license. For once though, if secrecy is truly important to you, the Vista based solution seems to be more robust than most of the other options. Be warned though: if you don't have a backup of the certificate and encryption key and disaster strikes, your files are lost for good.

Network access protection (NAP)

One of the new features for Windows Longhorn (Vista Server) will allow the server to check each machine that wants to connect to the network for specific things, like up-to-date updates, the absence of viruses and so on. For that purpose, on he clients running Vista there is now a service that will collect that information and pass it to the server when/if needed.
For home users, they will never need this. But if you use the home PC to VPN to work, a couple of years from now the network administrator might have implemented this.
The answer here is: maybe.

Conclusion

File encryption is something that might be of enough value for some users to motivate the price difference between Vista Premium and Vista Business or Ultimate. If the feature is needed for a multiuser/public PC where not all users are comfortable using the same language, that's 2 reasons to get Vista Ultimate. Finally, in 2-3 years, you might need one of these 2 editions in order to be able to VPN to work.

If your count is still 0, maybe some of the other features will prove a "must have". I will go through more of them soon.

Ultimate only features

Out of a list of 101 features from the different Vista editions, there are only 4 that can only be found in Ultimate (all four are also available in the Enterprise edition, but that one is only available to enterprises with a special agreement with Microsoft)

1. Windows BitLocker Drive encryption.
   
2. Support for simultaneous installation of multiple user interface languages
   
3. All worldwide user interface languages (36 total) available
   
4. Subsystem for UNIX-based applications
   

All four are, by Microsoft, classified as targeting an audience of IT professionals.

Windows BitLocker Drive encryption

This is a feature that allows the user to encrypt the OS partition on a system. In order for this to work, you would need either a computer with TPM enabled, or a motherboard that can detect USB devices before the OS is loaded. The pros are that in the event someone stoles your computer, or tries to access it without your permission, they will most likely not be able to access the data on the OS partition. This is an important point for enterprises, with sensitive data on their hard drives. But for a home user? Or if the data is not on the same partition as the OS?

If someone stole your computer, all they have to do is to replace the hard drive and the PC will be fully functional, albeit without your family photos.

If your sensitive data is not on the C drive (I routinely move all Documents, Pictures and Music folders to another drive, for example) it will not be protected.

Once the OS is booted, the data is no longer protected, so this is no protection against attacks from the network/internet. Many power users have their machines turned on 24/7. If you are one of those, BitLocker won't do a thing for you.

If you forget your password, you have very effectively locked yourself out of your computer and there is NO way you can get access to that data again, ever.

Lastly, you have to prepare your hard drive for encryption before you install the OS.

Conclusion: If it is important to you that no one boots your computer without your permission or steals the hard drive for the express purpose of reading the data on your system partition, you might need this feature. There is no other reason whatsoever for this feature, no matter if you are a home or a professional user.

Support for simultaneous installation of multiple user interface languages & All worldwide user interface languages (36 total) available

Pretty self explanatory to what it does. The languages are available as Ultimate Extra downloads. The settings are per user and in the context of one user account are system wide. That is one user account can have only one language for that account, but you can have as many user accounts as you want with whichever language each of them wants. Each user can change the language for any other installed language at will, they would need to log out and log back in again for the changes to apply, but no reboot is needed. Once a language is chosen, that language will be applied to all windows apps, so you can't have Help in French and IE in English.

I do use this feature and find it very useful, because I provide support for people that have other than English as an OS language, and I need to know what menus and commands are called in their language. Do you need this feature? Is it worth the price difference?

Subsystem for UNIX-based applications

Compiled any Unix program lately? Need to make NFS mount points appear as Windows shares and vice versa? Other things this feature can do for you described HERE.

Basically if you are not a developer or IT Pro, you really, really, don't need this.

Conclusion

If you don't need any of these features, can you write off Ultimate and start looking at another edition of Vista? Not quite. There are 14 features available on Business but not on Premium, and 9 available in Premium but not in Business. I will detail them in upcoming posts.