Sccm 2012
-
Upload
ebuc -
Category
Technology
-
view
4.869 -
download
3
description
Transcript of Sccm 2012
System Center Configuration Manager 2012
2012
Āris DzērvānsMicrosoft Latvia
AgendaWhere is the focus in SCCM 2012?Embracing User-CentricNew Administrator ExperienceClient HealthSettings ManagementMobile Device ManagementCross Platform ManagementSoftware UpdatesOperating System DeploymentRemote ControlInfrastructure Changes
What is in SCCM 2012?
classic and App-V Applications
IT AssetIntelligence Software
Update Management Software
Metering
Support forthe Mobile Workforce
What is in SCCM 2012?
Settings Management(aka DCM)
Network Access Protection
Power Management
OS Deployment
Antivirus*
* FEP 2012 has to be licensed separately
Selfservice
Portal
Remote Control
Where is the focus on Configuration Manager 2012 ?
Configuration Manager 2012
User Centric Client Management
Reduces the complexity and improves visibility into systems compliance
Keeps assets available and helps keep the IT environment audit-ready
Simplifies and automates patch management
Simplifies and consolidates the IT infrastructure to provide a new operational cost model
Integrates security to create unified client management
New features around administrative control to reduce infrastructure
Enables IT to provide a flexible work environment
Users can connect from anywhere, on any device they choose
Automatically detects network conditions and device configurations to determine the most appropriate services
EMPOWER CONTROLUNIFY
Embracing User-CentricThe End-User of the Future
Configuration Manager 2012:• Still committed and focused on
System Management scenarios• Embrace User Centric scenarios:• Moving to a state based design, for
apps, deployments, content on DPs.• Full application lifecycle model.
Install, Revision Mgt, Supersedence and Uninstall
• Understand and intelligently target the relationships between user systems
• Management solution tailored for applications
Configuration Manager 2007:
• Optimized for Systems Management scenarios
• Challenging to manage users:• Forced to translate a user to a device
• Explicit: run a specific program on a specific device
• Software Distribution is a glorified script execution.
System and User-Centric
Application Model Diagram
Deployment Type
Requirement Rules
Dependencies
Detection Method
End User Metadata
Content
Install Command
The “friendly” information for your users
Keep your apps organized and managed
Workhorse for application
Can/cannot install app
Source files for the app
Is app installed?
Command line and options
Apps that must be present
App-V
Windows Script
Windows Installer (MSI)
Mobile (CAB)
Administrator Properties
Embracing User Centric: End-User Promises
“A Fitting End-User Experience”Web based software catalogEasily find and request softwareChoose software intelligently thanks to clear, consistent and concise information about applications and their impact
“The ability to define their relationships to their software”
User preferences control ConfigMgr behaviors (e.g. “my business hours”)Manage impact from software installation and system restarts
Application Lifecycle
New Application
Update Application
Replace ApplicationRetire Application
Remove Application
Application Installation(beta1)
Application Revision(beta1)
Application Retirement(beta1)
Application Supersedence(beta2)
Application Uninstall(beta2)
App-V in ConfigMgr 2012
App-V in ConfigMgr 2012: What’s changing?
Integration requires App-V 4.6 clientNew Application Model, User-centric features
Enable support for application dependenciesImproved update behaviors Selective publishing of componentsDynamic Suite Support
Instant icon gratification for unlock eventsIntegration with Remote Desktop Services (TS)
Content ImprovementsStreaming improvementsReduce virtual app footprint when using Download and Execute
New Administrator Experience
Administrator Experience• Common look and
feel across System Center products
• Improve discoverability
• Only show what is relevant
• Complete scenarios within the console
• Simplified navigation
• Consolidated elements
Role-Based Administration
Simplified administration of security permissions
Security RoleGroup sets of permissions together that collectively define an administrative span of controle.g. Read Program + Deploy Program + Read Collection + Advertise to Collection = Software Distribution Administrator Supports assignment of Security Roles to Users, once in a hierarchyAlso supports instance level controls
ConfigMgr provides out-of-the-box Security RolesSupports custom Security Roles
Removes clutter from the consoleSupports “Show me what’s relevant to me” based on my Security Role and Scope
Role-Based Administration Example
Peter as ‘ConfigMgr Admin’ has rights to entire console
Peter assigns Application Deployment role to Meg
Meg is responsible for deploying software
Meg has a limited view
Client Health
Client Health
Server-side metrics covering policy requests, HW & SW Inventory, Heartbeat, Data Discovery Record (DDRs) and Status MessagesCustomizable monitoring/remediation for:
Client prerequisitesConfigMgr client reinstallationDependent Windows ServicesWMI Repository, Namespace, Class, and Instance health evaluation and repair
In-console alerts when healthy/unhealthy ratio drops below configurable threshold
Settings Management(aka DCM)
Features and ImprovementsUnified compliance-settings mgmt across servers, desktops laptops, and mobile devicesSimplify administrator experience
Role-based administration built in “Compliance Settings Management Role”Browse gold system when creating configuration itemsSimplified Baseline creation experience Re-use of settings across CI boundary
Deployment of Baselines User and Device targeting of Baselines Define compliance SLAs for Baseline deployments and generate Alerts True per user evaluation and remediation
Monitoring Baseline deployment compliance statusIn Console monitoringUpdated reports to include remediation, conflict and error reporting
Automatic remediation (aka DCM “set”)CI revisioning and change controlMigration of existing Configuration Manager 2007 Baselines and CIs
Browse on gold system when creating CIsScenario: Simplify configuration item creation. Design principal: Admin can create DCM setting and rule without typing by browsing gold system registry and file system, eliminating human errors.
Browse local / remote machineRegistry and File System only
Mobile Device Management
Mobile Device SupportNew: SCCM 2012 will support the following devices:
iPadsiPhonesSymbianAndroidWindows Phone 7
Managing users means managing beyond desktops with “Single pane of glass” administration Reaching beyond Windows platforms
User Centric – Device Management
“Depth”
Broad feature setCommon administration model for mobile devices, desktops, and servers
“Light”
Provides basic management for all Exchange ActiveSync (EAS) connected devices
Cross Platform Management
Who we are Targeting
“Just a Check-Box”
“Best-of-Breed”
ConfigMgr for UNIX/Linux
Targeting enterprises where: Windows clients and servers predominateUNIX/Linux management is important due to security, regulatory requirementsSimplification and cost drivers demand a unified management solution
Targeting servers & server scenarios, not desktops & client scenariosMost comprehensive solution for heterogeneous environments, but is not “best-of-breed” for a specific UNIX/Linux OS
Planned Features for UNIX/Linux Servers
Feature Plan
Discovery - AD and Network
Push Install of Native Client
Hardware Inventory
Inventory of Installed Software (OS Native - like ARP)
Software Dist: Classic Software and Patch Installation
Mixed and Native Mode Security
Software/File Inventory ?
OS Deployment with OS native tools ?
User Centric Software Installation
Desired Configuration Management (DCM)
Remote Control
Internet-Based Client Management (IBCM)
Planned OS Platforms Supported at (Release To Web)
RTW21 Platforms supported at RTW
AIX Version 7.1 (Power)Version 6.1 (Power)Version 5.3 (Power)
HP-UXVersion 11iv3 (IA64 & PA-RISC)Version 11iv2 (IA64 & PA-RISC)
Red Hat Enterprise LinuxVersion 6 (x86 & x64)Version 5 (x86 & x64)Version 4 (x86 & x64)
SolarisVersion 11(x86 and SPARC)Version 10 (x86 & SPARC*) Version 9 (SPARC)
SUSE Linux Enterprise Server
Version 11 (x86 & x64)Version 10 (x86 & x64)Version 9 (x86)
ConfigMgr for UNIX/Linux - Schedule
Milestone Date Comment
Start Nov-10 Project kicked-off. Development started.
MMS 2011 Mar-11 Announce UNIX/Linux at MMS 2011
CTP Fall 2011 Red Hat 5 & Solaris 10 servers only
Beta Early 2012 All supported OS variants
RTW SP1 Timeframe On display at MMS 2012
Software Updates
Software Updates
State-based Update GroupsDeploy updates individually or in groupsUpdates added to an update group automatically deploy to collections targeted with the group
Auto Deployment RulesUse search criteria to identify class of updates to automatically deploy: category, products, language, date revised, article id, bulletin id, etc.Schedule content download and deployment based on sync schedule or define a separate schedule per rule
Operating System Deployment
Operating System Deployment
Offline Servicing of ImagesSupport for Component Based Servicing compatible updatesUses updates already approved
Boot Media UpdatesHierarchy wide boot media – no longer need one per siteUnattended boot media mode – no longer need to press “next”Use pre-execution hooks to automatically select a task sequence – no longer see many optional task sequences
USMT 4.0 - UI integration and support for hard-link, offline and shadow copy features
Remote Control
Remote Control
Send Ctrl-Alt-Del to host device to regain previous feature parity
IS BACK!
Infrastructure Changes
Infrastructure Promises
Modernizing ArchitectureMinimizing infrastructure for remote officesConsolidating infrastructure for primary sitesScalability and Data Latency Improvements
Central Administration Site is just for administration and reporting – Other work distributed to the primaries as much as possibleFile processing occurs once at the Primary Site and uses replication to reach other sites (no more reprocessing at each site in the hierarchy)System-generated data (HW Inventory and Status) can be configured to flow to the Central Administration Site directly
Be TrustworthyInteractions with SQL DBA are consistent with Configuration Manager 2007Configuration Manager admin can monitoring and troubleshoot new replication approach independently
Simplification
InfrastructureAdministratio
n
Simplify Your Hierarchy
Central Site
Primary
Secondary Site
Secondary Site
Simplification
InfrastructureAdministratio
n
Primary Site
Primary
Distribution PointDistribution Point
Distribution Point
Primary Site
Primary Site
Primary Site
Secondary Site
Distribution Point
Simplify Your Hierarchy
Central Administration Site
Primary
Secondary SiteSecondary Site
Simplification
InfrastructureAdministratio
n
Primary
Distribution PointDistribution PointSecondary SiteDistribution Point
Infrastructure Changes: Modernizing our architecture2012 will allow admins to minimize or consolidate ConfigMgr 2007 infrastructure
Primaries are needed for scale out only
Options for content distribution: -Secondaries-DPs with throttling/scheduling-BranchCache,
Client agent settings configurable by collection
Data Segmentation via Role Based Administration
ConfigMgr 2007 scenarios where a unique primary could be used
Create tiered primary sites to optimize LAN/WAN for:
-content distribution-client inventory-agent status
Create separate primary sites (or hierarchies!) for:
-different server and desktop client agent settings
Create a primary site boundary so admin roles only see the data they need to see for their job
Modernizing our architecture
Improved Distribution Point GroupsManage content distribution to individual Distribution Points or GroupsContent automatically added or removed from Distribution Points based on Group membershipAssociate Distribution Point Groups with a collections to automate content staging for software targeted to the collection
Enhanced investment in SQL technologiesNew replication methods for site to site communicationsOnly supporting SQL Server Reporting Services
© 2011 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a
commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.