Transcript WMUG Event - Wally Mead - ConfigMgr 2012 SP1 Slidedeck

Challenges to Enabling Consumerization
I want to use the
device I prefer
I want to connect to
people and be
productive
anywhere, anytime
How can IT support
and manage all
those devices?
Change the Approach
to Client Management
How can IT provide
access to apps and data
while maintaining
security?
Empower Users
Unify Infrastructure
Simplify
Administration
Empower people to be
more productive from
almost anywhere on
almost any device.
Reduce costs by unifying
IT management
infrastructure.
Improve IT effectiveness
and efficiency.
Empower Users
Unify Infrastructure
Windows 8 devices
Simplify
Administration
Windows 8 deployment
Windows 8 apps
Empower people to be
more productive from
anywhere on any device.
Windows Embedded
Reduce costs by unifying
IT management
Heterogeneous
devices
infrastructure.
Improve IT effectiveness
and efficiency.
Controlled
Features
Supported
Application
Governance
Features
OS Deployment
Push Software Distribution
Software Update Managements
(and more…)
Win32 Apps
Windows 8 Apps
Windows 8 Apps in the Windows Store
Pull Software Distribution
Settings Management
Compliance Monitoring
Scenario
Key Functionality
New computer
• Fresh install of a new operating system on client or server system
• New or repurposed hardware
• Bootable Media (CD or USB Flash Drive
PXE boot
• Integrate with WDS PXE server
• Control deployment action with Configuration Manager deployments
• Self-provisioning via F12
Wipe-and-load
• Install new version of operating system on existing client or server hardware
• Reinstall applications under new operating system
• For clients, securely save/restore user state and settings (locally or on a file server)
Side-by-side
• Install new version of operating system on new client hardware for an existing user
• Reinstall applications on new computer under new operating system
• Move user state and settings from old computer to new computer via a file server
Offline with removable media
•
•
•
•
Do operating system deployment from removable media (CD set, DVD, USB flash drive)
With low bandwidth or no connectivity
Large software packages are on the media
No status reporting
Prestaged Media
•
•
•
•
Optimized for network bandwidth
Speeds up end to end deployment
Works with existing processes
Initial staging can be completed detached from ConfigMgr environment
Contractors
Admin can push deploy WTG to a removable device
Bring Your Own Device
End User can pull provision WTG
Travel Light
Shared PCs
Build a WTG image using Configuration
Manager
Updated and managed same as a physical
laptop/desktop
Admin can determine if device is WTG or not
Empower
• Deliver best user experience on each device
• Define application once
< >
Delivery Evaluation Criteria
• User
• Device type
• Network connection
User/Device Relationships
Primary Devices
• MSI
• App-V
• Windows 8 Apps
• Windows 8 Apps in the
Windows Store
Non-primary Devices
• VDI
• Remote Desktop
Windows Store
IT
Self-Service
Portal (SSP)
FIREWALL
Sideloading
Windows 8 (x86)
Sideloading
Windows RT device
Redirects
Windows Store
Self-Service
Portal (SSP)
Device Manufacturer /
Service Provider
Enterprise IT Pro
Industry Specific Device
Unify Infrastructure
Reduced Infrastructure Requirements
Flexible hierarchy management
Content distribution changes
Endpoint Protection enhancements
Reduce costs by unifying
IT management
infrastructure.
Real-time administrative actions
Reduced Infrastructure Requirements
Obsolete Reasons
Reasons Why
Central Administration
Site
Unify
Primary Sites
Secondary Sites
Distribution Points
• Scale
• Support multiple
primary sites
• Client assignment
(up to 100k)
• Reduce impact of a
primary site failing
• Political reasons
• Site data replication
• Prestage content
• Future proofing your
hierarchy (SP1)
• Delegated
administration
• Different client
agent settings
• Language packs
• DMZ/Internet Facing
• Content routing
• Throttling (DPs)
• Lack of BranchCache
• Runs on any
computer (client or
server)
Central Administration Site
Must be a new
installation
Primary Site
Houston Primary Site
10,000 Clients
Primary Site
Miami Primary Site
5,000 Clients
Windows Azure
Provision from the admin console
Most capabilities as on-prem. Except:
OSD and task sequences
Custom updates
App-V streaming
Full BranchCache support
Software Updates from Microsoft Update
Content
Policy
MP
In console content monitoring
Ability to monitor storage and traffic out usage
FIREWALL
PR1
MP
DP
Security and Compliance
Endpoint Protection
Unified Infrastructure
• Simplified server
and client deployment
• Streamlined updates (3x/day in SP1)
• Consolidated reporting
• Real-time alerts
• Real-time admin. actions (SP1)
• Client side policy merge (SP1)
Comprehensive Protection Stack
•
•
•
•
Behavior monitoring
Antimalware
Dynamic Translation
Windows and Firewall Management
Unify
In administrative console
selects “Run Full Scan” on a
collection
•
•
2
A task is created
MP is told that new
urgent task has been
requested
Task = “Run Full Scan”
Administrator
Site Server and MP
“Call is placed”
• Client via this TCP connection is
told there are urgent tasks to
run
• Client then connects to the MP
to get policy
• Client runs the Full Scan Task
Client
1
4
“Dial tone”
• Active TCP Session with
the MP
• Client Checking for
urgent tasks
3
Simplify
Administration
End user client UI improvements
App-V 5.0
PowerShell
Alerts
Improve IT effectiveness
and efficiency.
Operating System Deployment
Linux and Unix management
ConfigMgr administrator and sequencer don’t need to perform redundant tasks
Operating System Deployment
AIX
HP-UX
Red Hat Enterprise
Linux
• Version 5.3 (Power)
• Version 6.1 (Power)
• Version 7.1 (Power)
• Version 11iv2 (PA-RISC/IA64)
• Version 11iv3 (PA-RISC/IA64)
• Version 4 (x86/x64)
• Version 5 (x86/x64)
• Version 6 (x86/x64)
Solaris
• Version 9 (SPARC)
• Version 10 (SPARC/x86)
• Version 11 (SPARC/x86)
SUSE Linux
Enterprise Server
• Version 9 (x86)
• Version 10 SP1 (x86/x64)
• Version 11 (x86/x64)
• Supported OS’s across both:
• Configuration Manager
• Operations Manager
• Newer versions of OS will be supported within
180 days of release
• Old versions supported as long as vendor
provides support
• Broader Linux distro support being evaluated for
future releases
• Hardware Inventory
• Software Deployment
• Using the Package and Program model
• Deploy/patch software, deploy OS patches
and run maintenance scripts that target a
collection
• Consolidated reports
Unify
Empower
Summary
Application Delivery
2007 R3
2012
2012 SP1
Application Delivery
Device Centric
User Centric
Win 8 apps
Mobile Device Management
MDM licensing
Integrated
End user platform support
Windows and EAS
Windows 8,Mac,Linux
Reduced Infrastructure Requirements
New
Flexible hierarchies
Unified Management of Virtual Clients
Improved
Endpoint Protection
Integrated
Real-time actions
Compliance & Settings Management
Auto Remediation
User Profile and Data
Software Update Management
Improved
Simplify
Power Management
Internet-based Client Management
Improved
Role-based Administration
New
Operating System Deployment
Asset Intelligence, Client Health, and Inventory
Improved