Transcript - Microsoft

System Center Configuration Manager 2007:
Overview
Jeff Wettlaufer,
Sr. Product Manager System Center Configuration
Manager 2007
Session Objectives And
Takeaways
Session Objectives
This is not your Dad’s SMS
To show our range of new features, new services,
new abilities, and improvements from SMS 2003
SCCM is THE way to deploy Vista
and Office 2007
SCCM is your Management Tool of choice for
your offering development
We are Enterprise scale
We are a platform for you and
your customers
SCCM 2007 Releases
RTM – Summer 2007
Beta 2 – Releases end of February, 2007
Pre-requisite checker in setup
Auto-create rules from “last usage inventory” data
Internet-based client management
SQL Server 2005 clustering & named instances
Native security mode
OS deployment support for Vista RTM
Desired Configuration
Management
Backup and Recovery based on VSS
Binary delta replication
SMS sites and services are down for minutes instead of hours
Wake on LAN
MOF changes automatically compiled on all clients
Last usage inventory
Multiple MOFs to separate custom data from default data
AD System & User Discovery
New SMS Remote Control protocol using Vista technology
Beta 1 Refresh – Released in July, 2006
Same features from Beta 1, plus added OS deployment of Vista Beta
2, added NAP integration with Longhorn Server, and SMS
Administrator Console performance improvements
Beta 1 – Released in February, 2006
Contained SMS 2003 functionality with a new SMS Administrator
Console, branch distribution point support, ITMU, and the OSD and
Device Management Feature Packs integrated
ConfigMgr Key Investments
Simplicity
Simplicity
Up and running in minutes
Simplified UI
Advanced Task Sequencing
Reduced SCCM infrastructure costs with branch office support
Improved scheduling and greater control including Wake-on-LAN
Common processes for Windows Mobile and embedded device
Deployment
Deployment
Unified delivery of Windows operating system for clients and servers
One worldwide image to manage with Vista
Built on Windows Vista technologies including Windows Imaging
Vista and Office 12 upgrade assessment and resolution planning
Offline media support for full offline provisioning
Security
Security
Integration with “Longhorn” Network Access Protection
Simplified, comprehensive software updating w/ templates for common tasks
Enterprise Vulnerability assessment
Securely managing devices across the Internet
Secure network storage of user state during Operating System deployment
Configuration
Configuration
Knowledge-driven desired configuration management based on the System Definition Model (SDM)
IT policies for analyzing corporate and regulatory compliance
Out of the box configuration policies for server workloads i.e. Exchange
License and asset management
ConfigMgr Server Roles
Primary Site
Secondary Site
MP - Management Point
SLP - Server Locator Point
RP - Reporting Point
DP - Distribution Point
SQL Server SQL Server
SCCM MP
SCCM Primary
Site Server
SCCM SLP
SCCM
SHV
SCCM RP
SCCM FSP
SCCM DP
SCCM
SUP/WSU
S
SCCM
PSP
SCCM SMP
Branch DP
Administrative UI - New & Improved
•
•
•
•
Managed code (C# / .NET 2.0)
Leverages MMC 3.0
Uses WMI/DCOM for communication with provider
Extensible via SDK
Feature
SMS 2003
SCCM 2007
Drag-and-Drop
No
Yes
Multi-select
No
Yes
Actions Pane
No
Yes
Preview Pane
No
Yes
Not Many
Pervasive
No
Yes
NT 3.51-style
High Precision
Only organizational, no replication
Organizational and Search Folders;
replication to child sites
Wizards
Homepages
Icons
Folders
Demo
SCCM ‘07 Admin UI
Jeff Wettlaufer,
Sr. Product Manager System Center Configuration
Manager 2007
What’s changed in Software Distribution?
New Features
Copy Package Wizard
Maintenance Windows
Branch Support
Improvements
Improved Package cache control
Binary delta replication
Client Branding
Wake on LAN
Device Management - Core Scenarios
Device = CE, PPC, Windows Mobile (SmartPhone)
Basic Management
Hardware/Software inventory
File collection
Software distribution
Settings management - Password policy management, Security policy
management
Support for Smartphone
Over-the-air management of devices
Connection Management
Internet Based Management
Fallback Status Point
LOB Device Management
CE on ARM at RTM
Deployment
Automated client distribution via SMS Advanced Client desktop
Full integration with SCCM 07
Over-the-air client upgrade
ConfigMgr 2007 OS Deployment
The way to deploy Vista/LH in an enterprise
Major upgrade to OS deployment
functionality
Significant enhancements from SMS 2003 OS
Deployment Feature Pack
Brings in server deployment from ADS
Integrated part of ConfigMgr 2007
Simplify planning for Vista/LH upgrade
Unified client and server deployment
Use Vista/LH tools
Enhanced security
What’s New in ConfigMgr OSD?
Scenario
SMS 2003 OSD FP
ConfigMgr OSD
End-to-end deployment
Yes
Yes
Fully automated
Yes
Yes
Wipe-and-load upgrade
Yes
Yes
Loose integration
w/RIS
Built-in integration
w/WDS
BDD scripts
Yes, w/built-in SMP
Fully offline deployment
No
Yes
Integrated Vista upgrade planning
No
Yes
Full server deployment
No
Yes
Security
Good
Much stronger
Flexibility/customizability
Good
Excellent
Vista/LH compatibility
Good
Excellent
No
Yes
Bare metal deployment w/PXE
Side-by-side
Device driver management
Internet Based Client Management
Manage clients without a VPN
Road Warriors (Sales force,
Consultant)
Point Of Sale (Restaurant, Retail
store, Gas station)
Employee’s home computers
Roam in and out intelligently
Converge with standards based
technology
PKI for certificate management
SSL/TLS for secure HTTP
communication
“Deliver a secure and reliable infrastructure to
Firewall for SSL terminationenable IT administrators in an enterprise to
manage computers on the internet with the
same level of control as computers on the
intranet.”
SCCM Network Access Protection
Download Updates to
Site Server
Microsoft
Update
Deploy Updates
Primary
to DP
Site
Publish Health State in
Active Directory
DP
Install Required
Updates
`
MP
Download
New Policy
Healthy Client
AD
Protected Network
Retrieve Health
State Policy
Health
Registration
Authority
Send Statement of
Health for Evaluation
Boundary Network
Network Policy
Server : SHV
Quarantine Restricted Network
Desired Configuration Management
Vision
Define configuration baselines
Identify required and prohibited configurations
Audit compliance of Windows systems
Core Scenarios
Detect configuration “drift”
Improve Helpdesk troubleshooting and “time-toresolve”
Regulatory compliance reporting
Change verification
Overview: DCM Terms And Concepts
Configuration Item (CI)
Units of configuration that can be detected, applied, and
removed from ConfigMgr managed machines
Application CI
Operating System CI
General CI
Software Updates CI
Configuration Baseline
A complex type of CI composed of other CIs which are:
Required
Optional
Prohibited
Can be assigned to collections for compliance
monitoring
Demo
SCCM '07 Desired Configuration
Management
Jeff Wettlaufer,
Sr. Product Manager System Center Configuration
Manager 2007
Software Update Management
Compliance assessment
Security updates / vulnerability assessment
Application updates
Update deployment
Full Microsoft update content
Zero-day and routine deployments
Simplified admin experience
Also manage non-Microsoft software
updates
OEMs and software vendors (ISVs)
Internally-developed applications
Software Update Management
WSUS Integration
Software Updates
use DCM channel
Custom Updates
integrate into SCCM
Core Engine
Taking advantage of all Microsoft Update content
SCCM clients no longer using offline catalog (wsusscan.cab)
Software Distribution and Software Updates no longer compete
Update compliance through state messages alleviates pressure on
hardware inventory
Allows for third party or LOB updates to be created outside of the
Microsoft patch process and added to scan catalog
Authorization lists
Simplified Wizard using template
Bundled updates
Selective download of binaries
Custom severity categories
Demo
Software Update Integration into
Management
Jeff Wettlaufer,
Sr. Product Manager System Center Configuration
Manager 2007
Remote Control: What’s New
Completely rewritten!
Significantly faster performance
Using Vista native “collaboration” technology
Back-ported to Windows XP and Windows Server 2003
Underlying protocol: RDP
Same basic functionality as SMS 2003:
No need for end-user acceptance of new session
NEW! 3 levels of access
Full control
View only
None
Still integrated with Remote Assistance
Miscellaneous
Inventory
SMS 2003 SP3 AssetMetrix features added
Last Usage Inventory
Auto-created Metering Rules from this
Discovery
Discover “Extended AD Attributes”
Pre-populated with default attributes
Ability to add additional attributes to discover
Supports hosting SCCM 2007 Site DB
on SQL 2005 Clustered Server
VSS-based backup
Services off-line for minutes
Snapshot data moved to backup location
Summary
SCCM 2007 is a major upgrade of SMS functionality
that provides features for
Network Access Protection
OS Deployment
Internet-based client management
WSUS integration for software update management
Desired configuration management
Service windows/collection variables
Device management of Smartphones over the air
SCCM 2007 beta 2 is full featured
Availability in Q1 of 2007
Join the open beta and evaluate the changes!
Interested in RDP? Email
[email protected]
© 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market
conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation.
MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.