©2006 microsoft corporation. all rights reserved. cli220 windows vista client manageability...
Post on 18-Dec-2015
216 views
TRANSCRIPT
©2006 Microsoft Corporation. All rights reserved.
CLI220CLI220Windows Vista Client Windows Vista Client ManageabilityManageability
CLI220CLI220Windows Vista Client Windows Vista Client ManageabilityManageability
Presented by Mark MinasiPresented by Mark Minasi
Created by David ZipkinCreated by David ZipkinProduct ManagerProduct ManagerWindows VistaWindows VistaMicrosoft CorporationMicrosoft Corporation
©2006 Microsoft Corporation. All rights reserved.
User Account ControlUser Account ControlWindows Resource ProtectionWindows Resource Protection
New Event Viewer and Logging New Event Viewer and Logging InfrastructureInfrastructureNew Task SchedulerNew Task SchedulerReliability Analysis ComponentReliability Analysis Component
Maintain PC configurationMaintain PC configuration
Desktop Troubleshooting and Desktop Troubleshooting and Task AutomationTask Automation
Group Policy EnhancementsGroup Policy EnhancementsUpdate Management ImprovementsUpdate Management ImprovementsNew WMI Providers and Windows New WMI Providers and Windows Remote ManagementRemote Management
Simplify Configuration Simplify Configuration Management Management
3 Management Goals:3 Management Goals:
Management Features and Management Features and Improvements in Windows VistaImprovements in Windows Vista
©2006 Microsoft Corporation. All rights reserved.
Goal 1: Maintain PC ConfigurationGoal 1: Maintain PC Configuration
©2006 Microsoft Corporation. All rights reserved.
“…“…a locked and well-managed PC can save 40%.” a locked and well-managed PC can save 40%.” ——Gartner, December 2005Gartner, December 2005
User Account ControlUser Account Control
Lowers total cost of ownership by making it Lowers total cost of ownership by making it practical to run as standard userpractical to run as standard user
PC is kept in known state PC is kept in known state
Restrict installations of unapproved softwareRestrict installations of unapproved software
Less downtime and higher productivityLess downtime and higher productivity
Reduce need to re-image systemReduce need to re-image system
©2006 Microsoft Corporation. All rights reserved.
Demo: User Account ControlDemo: User Account Control
Administrator experienceAdministrator experience
Group policy controlsGroup policy controls
Standard user experienceStandard user experience
©2006 Microsoft Corporation. All rights reserved.
Windows Resource ProtectionWindows Resource Protection
Maintain PC configuration by preventing Maintain PC configuration by preventing potentially damaging system configuration potentially damaging system configuration changeschanges
System files and registry settings protected System files and registry settings protected from accidental changes by the user or from from accidental changes by the user or from software installerssoftware installers
Only the OS Trusted Installer Service can Only the OS Trusted Installer Service can change Windows Resource Protection resourceschange Windows Resource Protection resources
If modified, boot critical files are replaced If modified, boot critical files are replaced with trusted copieswith trusted copies
©2006 Microsoft Corporation. All rights reserved.
Demo: Windows Resource Demo: Windows Resource ProtectionProtection
New name, old technologyNew name, old technology
Try to delete calc.exeTry to delete calc.exe
Examine permissionsExamine permissions
And if we were to take control and delete And if we were to take control and delete it…it…
©2006 Microsoft Corporation. All rights reserved.
Goal 2: Simplify Configuration Management
Goal 2: Simplify Configuration Management
©2006 Microsoft Corporation. All rights reserved.
Improvements in Group Policy Improvements in Group Policy for Windows Vistafor Windows Vista
Extends the reach of Group Policy with Extends the reach of Group Policy with hundreds more settingshundreds more settings
Reliably and efficiently apply policyReliably and efficiently apply policy
Easier to useEasier to use
©2006 Microsoft Corporation. All rights reserved.
Power Power ManagementManagement
Device Device Installation Installation and Usageand Usage
Internet Internet ExplorerExplorer
IPSEC & IPSEC & Windows Windows FirewallFirewall
Printer Printer DeploymentDeployment
TroubleshootiTroubleshooting & ng &
DiagnosticsDiagnostics
User User Account Account ControlControl
iSCSIiSCSIWindows Windows DefenderDefender
Windows Windows Error Error
ReportingReporting
Remote Remote AssistanceAssistance
Terminal Terminal ServicesServices
GlobalizatioGlobalizationn ShellShell TabletTablet
Over 500 new settings across key areasOver 500 new settings across key areas
Extending the Reach of Extending the Reach of Group PolicyGroup Policy
©2006 Microsoft Corporation. All rights reserved.
Improvements In Group PolicyImprovements In Group PolicyApplied more reliably, and easier to useApplied more reliably, and easier to use
Network aware application Network aware application of Group Policyof Group Policy
Support for editing Group Policy Support for editing Group Policy settings in Multilingual settings in Multilingual
EnvironmentsEnvironments
Support for Multiple Local GPOsSupport for Multiple Local GPOs
Reliable and Efficient Reliable and Efficient Application of PolicyApplication of Policy Easier to UseEasier to Use
GPMC integrated into WindowsGPMC integrated into Windows
Search and filter (Post Windows Vista)Search and filter (Post Windows Vista)
Templates (Post Windows Vista)Templates (Post Windows Vista)
©2006 Microsoft Corporation. All rights reserved.
Demo: Using GP for device Demo: Using GP for device controlcontrol
Goal: kill CD-ROM driveGoal: kill CD-ROM drive
Open device manager, find CD-rom, PropertiesOpen device manager, find CD-rom, Properties
Details, look for Hardware Ids and Compatible IdsDetails, look for Hardware Ids and Compatible Ids
Note themNote them
Uninstall hardwareUninstall hardware
In Gpedit, go to Computer Configuration / In Gpedit, go to Computer Configuration / Administrative Templates / System / Driver Administrative Templates / System / Driver Installation /Device Installation RestrictionsInstallation /Device Installation Restrictions
Prevent installation of devices that match any of Prevent installation of devices that match any of these device IDsthese device IDs
Punch in IDPunch in ID
gpupdate /forcegpupdate /force
rescan for changesrescan for changes
©2006 Microsoft Corporation. All rights reserved.Search and Filter Prototype Interface…coming soonSearch and Filter Prototype Interface…coming soon
Search and Filter Will Make it Search and Filter Will Make it Easier to Find the Right Easier to Find the Right SettingsSettings
©2006 Microsoft Corporation. All rights reserved.Search and Filter Prototype Interface…coming soonSearch and Filter Prototype Interface…coming soon
Templates Will Facilitate Templates Will Facilitate Policy CreationPolicy Creation
©2006 Microsoft Corporation. All rights reserved.
We’re Making Progress We’re Making Progress Reducing the Pain of Update Reducing the Pain of Update Management…Management…
Fewer updates delivered via Windows Fewer updates delivered via Windows Update (WU) require rebootsUpdate (WU) require reboots
Updates requiring a reboot reduced by at least Updates requiring a reboot reduced by at least 17% since August 200317% since August 2003
Reduction in update delivery frequency Reduction in update delivery frequency from once a week to once a monthfrom once a week to once a month
Consolidate multiple reboots into a single Consolidate multiple reboots into a single reboot when multiple patches requiring a reboot when multiple patches requiring a reboot are installed togetherreboot are installed together
©2006 Microsoft Corporation. All rights reserved.
……And Getting Even Better With And Getting Even Better With Windows VistaWindows Vista
Patches can be applied directly to imagesPatches can be applied directly to images
Auto-update everythingAuto-update everything
Platform technology to reduce rebootsPlatform technology to reduce reboots
©2006 Microsoft Corporation. All rights reserved.
Windows Windows Installer Installer (MSI)(MSI)
Key 2007 Key 2007 Microsoft Microsoft Office Office applications applications (1)(1)
Fewer reboots when using the Windows Fewer reboots when using the Windows Add/Remove Programs featureAdd/Remove Programs feature
Corporate Developers can reduce reboots Corporate Developers can reduce reboots for installations and updates by using the for installations and updates by using the Windows InstallerWindows Installer
Automatically restart after a reboot due Automatically restart after a reboot due to to an installation or updatean installation or update
Recreate application state upon restartRecreate application state upon restart
(1)(1) Selected Microsoft applications that take advantage of Microsoft Office Restart Manager Word, Office Excel, Selected Microsoft applications that take advantage of Microsoft Office Restart Manager Word, Office Excel, Office Outlook, Office PowerPoint, and Internet ExplorerOffice Outlook, Office PowerPoint, and Internet Explorer
Windows Vista and 2007 Office Windows Vista and 2007 Office SystemSystemFurther Reduce Disruption From Further Reduce Disruption From Reboots Reboots
©2006 Microsoft Corporation. All rights reserved.
Windows Vista includes 13 new WMI Windows Vista includes 13 new WMI Providers:Providers:
BitLocker Drive Encryption BitLocker Drive Encryption
Trusted Platform Module Trusted Platform Module
Boot Configuration Database Boot Configuration Database
Intelligent Platform Intelligent Platform Management InterfaceManagement Interface
Windows Parental Controls Windows Parental Controls
Network Access Network Access Protocol Client Protocol Client
Others…Others…
Windows Management Infrastructure Windows Management Infrastructure (WMI) Enhancements Improve (WMI) Enhancements Improve ManageabilityManageability
©2006 Microsoft Corporation. All rights reserved.
Use Windows Remote Management to Use Windows Remote Management to Access WMI Information Access WMI Information
over the Internetover the Internet
WinRM - Windows WinRM - Windows Remote ManagementRemote Management
Firewall Friendly Remote Access Protocol Firewall Friendly Remote Access Protocol (Replaces DCOM)(Replaces DCOM)
HTTP & HTTPSHTTP & HTTPS
Microsoft’s implementation of WS-ManagementMicrosoft’s implementation of WS-Management
©2006 Microsoft Corporation. All rights reserved.
Goal 3: Desktop Troubleshooting and Task Automation
Goal 3: Desktop Troubleshooting and Task Automation
©2006 Microsoft Corporation. All rights reserved.
©2006 Microsoft Corporation. All rights reserved.
New Event Logging New Event Logging Infrastructure - Windows Infrastructure - Windows Eventing 6.0Eventing 6.0
Right data to diagnose problemsRight data to diagnose problemsThe right data…but not too much dataThe right data…but not too much data
Improved supporting data and documentation Improved supporting data and documentation for all eventsfor all events
Infrastructure supports Ad-hoc diagnosis Infrastructure supports Ad-hoc diagnosis and management toolsand management tools
Schematized events (XML) provide Schematized events (XML) provide richer informationricher information
Easy integration with management toolsEasy integration with management tools
©2006 Microsoft Corporation. All rights reserved.
User Experience in Event User Experience in Event Viewer is Dramatically Viewer is Dramatically ImprovedImproved
Single place to view events for all Windows Single place to view events for all Windows
Vista componentsVista components
Focus on important events with filtering Focus on important events with filtering and custom viewsand custom views
Events are actionableEvents are actionableAssociate a task with an event with a single Associate a task with an event with a single clickclick
Event SubscriptionsEvent SubscriptionsIT Professionals can subscribe to events and IT Professionals can subscribe to events and view view them centrallythem centrally
Based on Windows Remote ManagementBased on Windows Remote Management
©2006 Microsoft Corporation. All rights reserved.
What’s New in Task Scheduler?What’s New in Task Scheduler?
Power and flexibilityPower and flexibilitySophisticated Scheduling Options with new Sophisticated Scheduling Options with new triggers, conditional launch, and action chainingtriggers, conditional launch, and action chaining
Completely scriptableCompletely scriptable
VisibilityVisibilityTask dashboard shows active and upcoming Task dashboard shows active and upcoming taskstasks
Improved reliability and resource allocationImproved reliability and resource allocationRetry tasks in case of failureRetry tasks in case of failure
Run when next availableRun when next available
©2006 Microsoft Corporation. All rights reserved.
Reliability Analysis ConsoleReliability Analysis Console
Helps you understand causes of crashes Helps you understand causes of crashes and hangsand hangs
Tracks frequency and type of user disruptionsTracks frequency and type of user disruptions
Shows connections between application installs Shows connections between application installs and other system eventsand other system events
©2006 Microsoft Corporation. All rights reserved.
Demo: Task SchedulerDemo: Task Scheduler
Creating a taskCreating a task
Task view optionsTask view options
Options to re-run a scheduled taskOptions to re-run a scheduled task
Ability to start it immediatelyAbility to start it immediately
Edit capabilitiesEdit capabilities
©2006 Microsoft Corporation. All rights reserved.
Demo: Event ViewerDemo: Event Viewer
Greater granularityGreater granularity
XML message format XML message format
Event triggersEvent triggers
Event forwardingEvent forwarding
©2006 Microsoft Corporation. All rights reserved.
User Account ControlUser Account ControlWindows Resource ProtectionWindows Resource Protection
New Event Viewer and Logging New Event Viewer and Logging InfrastructureInfrastructureNew Task SchedulerNew Task SchedulerReliability Analysis ComponentReliability Analysis Component
Maintain PC configurationMaintain PC configuration
Desktop Troubleshooting and Desktop Troubleshooting and Task AutomationTask Automation
Group Policy EnhancementsGroup Policy EnhancementsUpdate Management ImprovementsUpdate Management ImprovementsNew WMI Providers and Windows New WMI Providers and Windows Remote ManagementRemote Management
Simplify Configuration Simplify Configuration Management Management
3 Management Goals:3 Management Goals:
Management Features and Management Features and Improvements in Windows VistaImprovements in Windows Vista
©2006 Microsoft Corporation. All rights reserved.
Demo: Reliability MonitorDemo: Reliability Monitor
Built on Reliability Analysis ComponentBuilt on Reliability Analysis Component
An MMC snap-inAn MMC snap-in
Clickable graph format and front-end to Clickable graph format and front-end to Event ViewerEvent Viewer
Thanks for attending!Thanks for attending!
I hope you liked this introduction to new I hope you liked this introduction to new client management technologiesclient management technologies
Please fill out an evaluation!Please fill out an evaluation!
You can find me at [email protected] can find me at [email protected]
Find my online newsletter and forum at Find my online newsletter and forum at www.minasi.comwww.minasi.com