250 likes | 475 Views
Managing The Dynamic Desktop. System CenterMicrosoft Corporation. . Agenda. The changing desktopMicrosoft's approachSolutions for the desktopBenefits and conclusion. Desktop Trends. . . . . . . Flexible Work Styles. 30% of workforce mobile in 3 years (IDC)50% of workers travel with non-pc device by 2012 (Gartner).
E N D
2. Managing The Dynamic Desktop System Center
Microsoft Corporation
3. Agenda The changing desktop
Microsoft’s approach
Solutions for the desktop
Benefits and conclusion
4. Desktop Trends Extreme Mobility
The mobile lifestyles people are living in their personal lives is expected to be available in their work environment. And these workstyles are nothing like those offered even a few years ago. Even a few years ago the supporting technologies for mobility were not available. Mobile phones were prevalent globally, but they were used for calls and were hard or impossible to connect to the Internet. Laptops and mobile devices needed a plethora of cables to get on-line, and even then were painfully slow. Reading and sending e-mail on a mobile phone was a complicated matter for only the most tech-savvy. Bandwidth was rare and expensive in the home – and unavailable in public spaces. There was no Wi-Fi. There were devices, but little connectivity – and only the most tech savvy ventured there.
Another big assumption confused mobility with travel. Early mobile phones were used largely by business executives – and we in IT assumed that mobility was about supporting the corporate traveler in particular. Many mobile workers are travelers - frequent flyers, for example. But although extreme mobility and travel can coincide, they need not. Indeed, how far he moves is completely irrelevant. Even if an urban mobile worker confines himself to a small perimeter, he nonetheless has a new and surprisingly different relationship to time, to place and to other people. Permanent connectivity, not motion, is the critical thing,
Devices, too, are on a steep trajectory. Now the mobile phone is on course to replace the PC as the primary device for getting online. According to the International Telecommunications Union, 3.3 billion people, more than half the world’s population, now subscribe to a mobile-phone service, so the internet at last looks set to change the whole world.
(The Economist April 12th 2008 A special report on mobility 1)
A few more data points:
There will be 4 times the number of managed devices than PCs by 2009
Laptops will overtake desktop shipments in 2009
Half of all workers will travel with a device other than their notebook by 2012
2010 – 12-17M icafe PCs serving 300-380M users (of 923M)
Forrester has forecast home networks to grow to more than 45 million households in the US by 2009.
And already, two in five home network owners also own laptops, a ratio that will increase steadily as laptops drop in price. And two years ago, eMarketer recorded 94M mobile/remote workers in 2002; Projected 104.5M this year (11% increase in 4 years!)
James Ware, a co-founder of the Work Design Collaborative, a small think-tank, says that nomadic work styles are fast becoming the norm for knowledge workers. His research shows that in America such people spend less than a third of their working time in traditional corporate offices, about a third in their home offices and the remaining third working from places such as cafés, public libraries or parks. And it is not only the young and digitally savvy.
Generational Impact
But it becomes even more prevalent as the new generation enters the workforce. In the next few years we are going to see a drastic change in the workforce – the users you support.
By 2012, Gen Y (born 1980 – 2000) will make up over 1/3rd of the workforce
In the US, workers aged 35-44yrs. will decline by 14%
Up to 24 million people are expected to retire from the labor pool by 2013
76 million baby boomers are reaching retirement age in the next decade
Generation Y will impact the ways that we acquire and use technologies. This generation grew up on the Internet with social and collaboration tools like MySpace and FaceBook. We’re already seeing them leave companies that restrict their abilities – don’t enable them to work in the ways they know how to work. In the near term past, businesses drove the use and pick up of technology. With generation y it will reverse. Users will pick up technology in personal life and bring demands for those technologies and services into IT.
Compliance
But the requirements for security and controls – largely driven by compliance requirements doesn’t let up. In fact, there is more concern and more requirement for management as mobility grows. AMR Research released its annual report that stated companies will spend $6.0B in 2007 on Sarbanes-Oxley (SOX) compliance. The report, which looks at spending associated with governance, risk management, and compliance (GRC), found that GRC spending hit $29.9B in 2007, up 8.5%. SOX spending only accounts for 20% of overall GRC spending but by the end of this year companies will have cumulatively spent $32.3B on SOX. Relative to the desktop, one of primary compliance concerns is the protection of confidential or sensitive business data. A recent study by the Ponemon Institute, states "eighty-one percent of 484 survey respondents report that their organizations have experienced one or more lost or missing laptop computers containing sensitive or confidential business information in the past 12-month period.” We’ve all seen the headlines. In the United States, the number of reported records containing sensitive personal information involved in security breaches since in the past three years exceeds 93 million records.
Extreme Mobility
The mobile lifestyles people are living in their personal lives is expected to be available in their work environment. And these workstyles are nothing like those offered even a few years ago. Even a few years ago the supporting technologies for mobility were not available. Mobile phones were prevalent globally, but they were used for calls and were hard or impossible to connect to the Internet. Laptops and mobile devices needed a plethora of cables to get on-line, and even then were painfully slow. Reading and sending e-mail on a mobile phone was a complicated matter for only the most tech-savvy. Bandwidth was rare and expensive in the home – and unavailable in public spaces. There was no Wi-Fi. There were devices, but little connectivity – and only the most tech savvy ventured there.
Another big assumption confused mobility with travel. Early mobile phones were used largely by business executives – and we in IT assumed that mobility was about supporting the corporate traveler in particular. Many mobile workers are travelers - frequent flyers, for example. But although extreme mobility and travel can coincide, they need not. Indeed, how far he moves is completely irrelevant. Even if an urban mobile worker confines himself to a small perimeter, he nonetheless has a new and surprisingly different relationship to time, to place and to other people. Permanent connectivity, not motion, is the critical thing,
Devices, too, are on a steep trajectory. Now the mobile phone is on course to replace the PC as the primary device for getting online. According to the International Telecommunications Union, 3.3 billion people, more than half the world’s population, now subscribe to a mobile-phone service, so the internet at last looks set to change the whole world.
(The Economist April 12th 2008 A special report on mobility 1)
A few more data points:
There will be 4 times the number of managed devices than PCs by 2009
Laptops will overtake desktop shipments in 2009
Half of all workers will travel with a device other than their notebook by 2012
2010 – 12-17M icafe PCs serving 300-380M users (of 923M)
Forrester has forecast home networks to grow to more than 45 million households in the US by 2009.
And already, two in five home network owners also own laptops, a ratio that will increase steadily as laptops drop in price. And two years ago, eMarketer recorded 94M mobile/remote workers in 2002; Projected 104.5M this year (11% increase in 4 years!)
James Ware, a co-founder of the Work Design Collaborative, a small think-tank, says that nomadic work styles are fast becoming the norm for knowledge workers. His research shows that in America such people spend less than a third of their working time in traditional corporate offices, about a third in their home offices and the remaining third working from places such as cafés, public libraries or parks. And it is not only the young and digitally savvy.
Generational Impact
But it becomes even more prevalent as the new generation enters the workforce. In the next few years we are going to see a drastic change in the workforce – the users you support.
By 2012, Gen Y (born 1980 – 2000) will make up over 1/3rd of the workforce
In the US, workers aged 35-44yrs. will decline by 14%
Up to 24 million people are expected to retire from the labor pool by 2013
76 million baby boomers are reaching retirement age in the next decade
Generation Y will impact the ways that we acquire and use technologies. This generation grew up on the Internet with social and collaboration tools like MySpace and FaceBook. We’re already seeing them leave companies that restrict their abilities – don’t enable them to work in the ways they know how to work. In the near term past, businesses drove the use and pick up of technology. With generation y it will reverse. Users will pick up technology in personal life and bring demands for those technologies and services into IT.
Compliance
But the requirements for security and controls – largely driven by compliance requirements doesn’t let up. In fact, there is more concern and more requirement for management as mobility grows. AMR Research released its annual report that stated companies will spend $6.0B in 2007 on Sarbanes-Oxley (SOX) compliance. The report, which looks at spending associated with governance, risk management, and compliance (GRC), found that GRC spending hit $29.9B in 2007, up 8.5%. SOX spending only accounts for 20% of overall GRC spending but by the end of this year companies will have cumulatively spent $32.3B on SOX. Relative to the desktop, one of primary compliance concerns is the protection of confidential or sensitive business data. A recent study by the Ponemon Institute, states "eighty-one percent of 484 survey respondents report that their organizations have experienced one or more lost or missing laptop computers containing sensitive or confidential business information in the past 12-month period.” We’ve all seen the headlines. In the United States, the number of reported records containing sensitive personal information involved in security breaches since in the past three years exceeds 93 million records.
5. Managing The Changing Desktop Key Points:
Management is at the center of enabling the dynamic desktop
Must manage multiple user types and access requirements – users are more mobile and require multiple access methods based on their role. You must be able to accommodate these multiple user types. A shift from device centric to user centric.
Must manage the underlying diverse infrastructure requirements that support the dynamic desktop – broad range of services and devices. The user centric world requires a flexible and divers infrastructure.
Must manage the security and compliance requirements - the business walks a fine line between providing diverse access methods and mobile support while still having to ensure services, applications and data are kept secure and compliant.
Respond to the evolving and varying needs of business
Support security and compliance of the desktop and network
Optimize the user experience by ensuring the health and performance of the system
Key Points:
Management is at the center of enabling the dynamic desktop
Must manage multiple user types and access requirements – users are more mobile and require multiple access methods based on their role. You must be able to accommodate these multiple user types. A shift from device centric to user centric.
Must manage the underlying diverse infrastructure requirements that support the dynamic desktop – broad range of services and devices. The user centric world requires a flexible and divers infrastructure.
Must manage the security and compliance requirements - the business walks a fine line between providing diverse access methods and mobile support while still having to ensure services, applications and data are kept secure and compliant.
Respond to the evolving and varying needs of business
Support security and compliance of the desktop and network
Optimize the user experience by ensuring the health and performance of the system
6. Dynamic IT And The Optimized Data Center We strongly believe that the move from physical to logical with virtualization will change how the datacenter operates. We will move away from being tied to physical resources, to a world where the software is able to dynamically manage loads and provision new resources according to policies that you set. This will happen first for server and desktop virtualization – but we will see networking, compute cycles, data and storage virtualization all advance in the near future. As I mentioned today too, management of that total environment is key – and will continue to be the cornerstone of our unique strategy in the industry.
We will also continue the push to have models and policy-based management across all of our technologies and tools. This builds on our standards collaboration around the WS*Man work, and also builds on our work to have SML built into the infrastructure so that systems can be managed by policy, and maintenance / break-fix situations avoided as we build systems and applications that are state-aware and able to heal themselves in the event that a problem occurs. This doesn’t mean that jobs will go away – this means that the money spent on keeping the lights on, that customers tell us they want to minimize – hopefully can be. Then we see IT being able to step out of that break-fix mode and allocate resources to new capabilities that add greater value back to the business.
Of course, we will continue to work with the industry to ensure that availability, security and agility are key traits of the DC of the future as well.
We strongly believe that the move from physical to logical with virtualization will change how the datacenter operates. We will move away from being tied to physical resources, to a world where the software is able to dynamically manage loads and provision new resources according to policies that you set. This will happen first for server and desktop virtualization – but we will see networking, compute cycles, data and storage virtualization all advance in the near future. As I mentioned today too, management of that total environment is key – and will continue to be the cornerstone of our unique strategy in the industry.
We will also continue the push to have models and policy-based management across all of our technologies and tools. This builds on our standards collaboration around the WS*Man work, and also builds on our work to have SML built into the infrastructure so that systems can be managed by policy, and maintenance / break-fix situations avoided as we build systems and applications that are state-aware and able to heal themselves in the event that a problem occurs. This doesn’t mean that jobs will go away – this means that the money spent on keeping the lights on, that customers tell us they want to minimize – hopefully can be. Then we see IT being able to step out of that break-fix mode and allocate resources to new capabilities that add greater value back to the business.
Of course, we will continue to work with the industry to ensure that availability, security and agility are key traits of the DC of the future as well.
7. Dynamic IT Management Key points
Focus in on the 4 pillars –
Desktop to Data Center
Physical and Virtual
Knowledge Driven
Time to Value
Also call out:
System Center growing 4 times faster than the industry
Leader in Gartner PC Lifecycle Magic Quadrant (12/07)
“When I think about what are some of the unifying themes of how we think about making investments and what we're trying to do to really help customers, there are four key themes that we think about as driving how we are trying to go forward, and how we make investment choices. The first, on the upper right, is ensuring that we have solutions that we think about as desktop to datacenter, end-to-end integrated management solutions to solve those problems and those opportunities that I identified earlier.
As we do that, the deep integration that we have across and into the infrastructure, taking advantage of Windows wherever possible to ensure a seamless and tightly integrated experience, and then ensuring that we expand our portfolio, because your environment, Mr. Customer, is heterogeneous, to ensure that we're natively able to manage not only your Windows platform but your non-Windows environments, and even your non-Microsoft virtualization platforms as well, desktop to datacenter, end-to-end.
With our management solutions, ensuring that you have one management single infrastructure, not multiple infrastructures, depending on whether you have a physical environment or a virtual environment, whether you're managing desktops or whether you're managing servers in the datacenter, so seamlessly managing physical and virtual through a single infrastructure and a single tool; that same tool allowing you to manage not only the infrastructure but the applications that sit on top of that, because it's the applications that you really care about, and with all of that knowledge that Microsoft has about Microsoft applications and the Microsoft infrastructure, that is made available out of the box, and in using this common infrastructure across the physical and virtual IT environment.
So, desktop to datacenter, physical and virtual, and then capturing and leveraging knowledge natively within the toolset.
So, the model of what we call a management pack, whether that is an operations management pack or a configuration pack, working closely with the Microsoft application teams to build these detailed capabilities around their management packs, so you capture the knowledge that exists in their heads about what they intended, how to diagnose, how to fix particular application issues, that all comes free as part of the System Center solution; and then using that capability in your infrastructure, giving you the right tools to tune that effectively, to ensure you are delivering the proactive, high-quality service to your users.
But that knowledge, whether it's management packs, whether it's Solution Accelerators which build on top of our products to help you solve your problems, whether that's the Microsoft operations framework, which is about how to take it all and apply Microsoft technologies to your end-to-end service management solution, or even MCS in the consulting that we do, significant investment in knowledge and IP to ensure that you can take advantage of our solutions.
Then finally, doing all of that in a way that allows very, very fast time of value, number one, through leveraging your Windows expertise, common infrastructure, common way to interact; two, ensuring that that knowledge that I just talked about is free out of the box and not something that you have to go invest in or pay consultants a significant amount of dollars to go customize for your particular environment; all of that is critical to ensuring that you can take advantage of the capabilities as quickly as possible.
So, desktop to datacenter, physical and virtual, knowledge-driven, and an extremely rapid time to value.”Key points
Focus in on the 4 pillars –
Desktop to Data Center
Physical and Virtual
Knowledge Driven
Time to Value
Also call out:
System Center growing 4 times faster than the industry
Leader in Gartner PC Lifecycle Magic Quadrant (12/07)
“When I think about what are some of the unifying themes of how we think about making investments and what we're trying to do to really help customers, there are four key themes that we think about as driving how we are trying to go forward, and how we make investment choices. The first, on the upper right, is ensuring that we have solutions that we think about as desktop to datacenter, end-to-end integrated management solutions to solve those problems and those opportunities that I identified earlier.
As we do that, the deep integration that we have across and into the infrastructure, taking advantage of Windows wherever possible to ensure a seamless and tightly integrated experience, and then ensuring that we expand our portfolio, because your environment, Mr. Customer, is heterogeneous, to ensure that we're natively able to manage not only your Windows platform but your non-Windows environments, and even your non-Microsoft virtualization platforms as well, desktop to datacenter, end-to-end.
With our management solutions, ensuring that you have one management single infrastructure, not multiple infrastructures, depending on whether you have a physical environment or a virtual environment, whether you're managing desktops or whether you're managing servers in the datacenter, so seamlessly managing physical and virtual through a single infrastructure and a single tool; that same tool allowing you to manage not only the infrastructure but the applications that sit on top of that, because it's the applications that you really care about, and with all of that knowledge that Microsoft has about Microsoft applications and the Microsoft infrastructure, that is made available out of the box, and in using this common infrastructure across the physical and virtual IT environment.
So, desktop to datacenter, physical and virtual, and then capturing and leveraging knowledge natively within the toolset.
So, the model of what we call a management pack, whether that is an operations management pack or a configuration pack, working closely with the Microsoft application teams to build these detailed capabilities around their management packs, so you capture the knowledge that exists in their heads about what they intended, how to diagnose, how to fix particular application issues, that all comes free as part of the System Center solution; and then using that capability in your infrastructure, giving you the right tools to tune that effectively, to ensure you are delivering the proactive, high-quality service to your users.
But that knowledge, whether it's management packs, whether it's Solution Accelerators which build on top of our products to help you solve your problems, whether that's the Microsoft operations framework, which is about how to take it all and apply Microsoft technologies to your end-to-end service management solution, or even MCS in the consulting that we do, significant investment in knowledge and IP to ensure that you can take advantage of our solutions.
Then finally, doing all of that in a way that allows very, very fast time of value, number one, through leveraging your Windows expertise, common infrastructure, common way to interact; two, ensuring that that knowledge that I just talked about is free out of the box and not something that you have to go invest in or pay consultants a significant amount of dollars to go customize for your particular environment; all of that is critical to ensuring that you can take advantage of the capabilities as quickly as possible.
So, desktop to datacenter, physical and virtual, knowledge-driven, and an extremely rapid time to value.”
8. Desktop Management Solutions Note, there are 6 desktop management solutions. They fall into the 3 buckets you see at the top of the slide
Key points:
(Each one of these solutions isn’t just one product – it’s multiple products that work together to address a customer need)
Comprehensive Management to Achieve the Dynamic Desktop
Microsoft’s System Center supports the realization of the Dynamic IT vision by providing a unified, policy-based solution for managing both physical and virtual environments. This allows IT professionals to handle enterprise-wide provisioning and change management all from a central location.
The System Center desktop management solutions provide the capabilities that allow IT be more agile in its delivery of services to the desktop users, without introducing overwhelming management complexity. By blending the right combinations of technologies, System Center desktop management solutions allow IT departments to:
Respond to the evolving and varying needs of business
Support security and compliance of the desktop and network
Optimize the user experience by ensuring the health and performance of the system
System Center desktop solutions enable IT to empower users by streamlining the connection of any authorized user to the applications or resources they need—regardless of their location or connectivity. System Center achieves this by managing the delivery of traditional, virtual application, streamed and virtual desktop infrastructure, providing both secure access and the consistent, optimized performance that today’s users expect.
“Let's move on now to the desktop, and the client management solutions. Client management is a space that Microsoft really started in management in with SMS, and that we have building on that solid foundation for quite a while.
When we look at the client management arena, there's really three key areas of solutions that we have been investing in or engaging with customers in today. Those three: streamlined application and desktop delivery, which is thinking about the numerous ways that customers want to deploy and manage applications on their desktops, thinking about the ways that customers want to take advantage of new technology, be it Vista, other applications to ensure that they can deploy those as quickly as possible into their environment.
Once they've streamlined those apps in the desktops, then how do they ensure optimized client health and performance? Critical to delivering the capabilities and expectations around users. Then when something does go wrong, how do you ensure that you have the diagnostic capability and the repair capability to do so remotely and cost-effectively?
Finally, the third area of solutions is user access without compromise. So, this is all about end-point security, this is about configuration compliance, and this is about asset management and asset intelligence. We are making investments in each one of these areas over the course of the past several years, and customers currently taking advantage of these solutions.”
Note, there are 6 desktop management solutions. They fall into the 3 buckets you see at the top of the slide
Key points:
(Each one of these solutions isn’t just one product – it’s multiple products that work together to address a customer need)
Comprehensive Management to Achieve the Dynamic Desktop
Microsoft’s System Center supports the realization of the Dynamic IT vision by providing a unified, policy-based solution for managing both physical and virtual environments. This allows IT professionals to handle enterprise-wide provisioning and change management all from a central location.
The System Center desktop management solutions provide the capabilities that allow IT be more agile in its delivery of services to the desktop users, without introducing overwhelming management complexity. By blending the right combinations of technologies, System Center desktop management solutions allow IT departments to:
Respond to the evolving and varying needs of business
Support security and compliance of the desktop and network
Optimize the user experience by ensuring the health and performance of the system
System Center desktop solutions enable IT to empower users by streamlining the connection of any authorized user to the applications or resources they need—regardless of their location or connectivity. System Center achieves this by managing the delivery of traditional, virtual application, streamed and virtual desktop infrastructure, providing both secure access and the consistent, optimized performance that today’s users expect.
“Let's move on now to the desktop, and the client management solutions. Client management is a space that Microsoft really started in management in with SMS, and that we have building on that solid foundation for quite a while.
When we look at the client management arena, there's really three key areas of solutions that we have been investing in or engaging with customers in today. Those three: streamlined application and desktop delivery, which is thinking about the numerous ways that customers want to deploy and manage applications on their desktops, thinking about the ways that customers want to take advantage of new technology, be it Vista, other applications to ensure that they can deploy those as quickly as possible into their environment.
Once they've streamlined those apps in the desktops, then how do they ensure optimized client health and performance? Critical to delivering the capabilities and expectations around users. Then when something does go wrong, how do you ensure that you have the diagnostic capability and the repair capability to do so remotely and cost-effectively?
Finally, the third area of solutions is user access without compromise. So, this is all about end-point security, this is about configuration compliance, and this is about asset management and asset intelligence. We are making investments in each one of these areas over the course of the past several years, and customers currently taking advantage of these solutions.”
9. Adaptive Application DeploymentManaged client application delivery via traditional and virtual methods Adaptive Application Delivery
The adaptive application delivery solution helps IT departments respond to the evolving and varying needs of users through adaptive application technologies that provide flexible options for deployment of virtual or streamed applications, terminal services and virtual desktops as well as traditional software deployment.
The solution includes the ability for IT administrators to deploy and provision virtual application packages to a desktop. This allows a user to execute this application without any machine settings or creating application-to-application conflicts or application-to-operating-system conflicts. The virtual applications themselves are cached to allow offline use. Additionally the adaptive application delivery solution also allows the provisioning and management of applications that will be presented to users via Microsoft Terminal Services.
As previously discussed, individual users are likely to cross many roles in a single day. The following outlines how System Center supports the adaptive delivery of applications and provides access to the resources required by each role:
Office Knowledge Workers - Ensures that the right set of knowledge worker applications are installed and customized based on the user profile. Further ensures that the workstation has been configured based on organizational policy and that non-compliant systems are patched or updated before accessing network resources.
Mobile Knowledge Workers - Delivers applications, completely installed and configured, based on user profiles so the user can access them whether connected or disconnected. Additionally, configures Folder Redirection so that work created while disconnected automatically replicates to the network for backup purposes.
Contract and Offshore Workers - Manages the provisioning of virtual desktops hosted in the organization’s data center, allowing access to corporate resources required for contract and offshore workers.
Task Workers - Configures workstations based on a scoped policy, only installing applications specific to the tasks required, keeping licensing and support requirements to a minimum.
Remote Workers - Ensures that when users require Terminal Services sessions to work remotely, their data has been replicated. It also provides application installation and configuration to provision a Terminal Services session nearly identical to a user’s regular office-bound desktop.
The adaptive application delivery solution ensures a consistent user experience across these various access methods, thus optimizing this experience in-line with the user’s particular needs. A key benefit for the IT Professional of this approach is the centralizing of management of this wider range of application delivery methods thus increasing control and reducing costs.
Organization Profile
BASF IT Services, a BASF Group subsidiary, offers practical technological solutions and a full range of IT services to its parent company and external customers.
BASF IT Services supports networks and computers for nearly 60,000 users worldwide. The company followed an expensive certification process to ensure flawless operation of the applications it makes available—but the careful certification process was delaying the delivery of applications. BASF IT Services needed a way to shorten application deployment time while still keeping certification at the same high level of quality. The IT service provider found a solution in software virtualization technology. Microsoft® SoftGrid® Application Virtualization accelerates the certification process and reduces overhead considerably by delivering applications to customer PCs dynamically. Virtualization is invisible to users, who receive their new applications and updates sooner than before and can remain confident that the new software is compatible with their existing applications.
Business Situation
The Desktop Services business unit at BASF IT Services used automatic software distribution to deploy applications and updates to its customers’ PCs, but security testing was delaying their availability .
Solution
After a pilot installation, BASF IT Services adopted Microsoft® SoftGrid® Application Virtualization, a solution that disassociates applications from the operating system, making it possible to deliver applications dynamically, without physical installation.
Benefits
Shortened deployment time
High level of security certification maintained
Invisible technology from user perspective
Reduced number of support calls
Faster response to customer needs
Software and ServicesMicrosoft Desktop Optimization Pack for Software AssuranceMicrosoft SoftGrid Application Virtualization
Vertical IndustriesIT Services
Country/RegionGermany
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000001313
Adaptive Application Delivery
The adaptive application delivery solution helps IT departments respond to the evolving and varying needs of users through adaptive application technologies that provide flexible options for deployment of virtual or streamed applications, terminal services and virtual desktops as well as traditional software deployment.
The solution includes the ability for IT administrators to deploy and provision virtual application packages to a desktop. This allows a user to execute this application without any machine settings or creating application-to-application conflicts or application-to-operating-system conflicts. The virtual applications themselves are cached to allow offline use. Additionally the adaptive application delivery solution also allows the provisioning and management of applications that will be presented to users via Microsoft Terminal Services.
As previously discussed, individual users are likely to cross many roles in a single day. The following outlines how System Center supports the adaptive delivery of applications and provides access to the resources required by each role:
Office Knowledge Workers - Ensures that the right set of knowledge worker applications are installed and customized based on the user profile. Further ensures that the workstation has been configured based on organizational policy and that non-compliant systems are patched or updated before accessing network resources.
Mobile Knowledge Workers - Delivers applications, completely installed and configured, based on user profiles so the user can access them whether connected or disconnected. Additionally, configures Folder Redirection so that work created while disconnected automatically replicates to the network for backup purposes.
Contract and Offshore Workers - Manages the provisioning of virtual desktops hosted in the organization’s data center, allowing access to corporate resources required for contract and offshore workers.
Task Workers - Configures workstations based on a scoped policy, only installing applications specific to the tasks required, keeping licensing and support requirements to a minimum.
Remote Workers - Ensures that when users require Terminal Services sessions to work remotely, their data has been replicated. It also provides application installation and configuration to provision a Terminal Services session nearly identical to a user’s regular office-bound desktop.
The adaptive application delivery solution ensures a consistent user experience across these various access methods, thus optimizing this experience in-line with the user’s particular needs. A key benefit for the IT Professional of this approach is the centralizing of management of this wider range of application delivery methods thus increasing control and reducing costs.
Organization Profile
BASF IT Services, a BASF Group subsidiary, offers practical technological solutions and a full range of IT services to its parent company and external customers.
BASF IT Services supports networks and computers for nearly 60,000 users worldwide. The company followed an expensive certification process to ensure flawless operation of the applications it makes available—but the careful certification process was delaying the delivery of applications. BASF IT Services needed a way to shorten application deployment time while still keeping certification at the same high level of quality. The IT service provider found a solution in software virtualization technology. Microsoft® SoftGrid® Application Virtualization accelerates the certification process and reduces overhead considerably by delivering applications to customer PCs dynamically. Virtualization is invisible to users, who receive their new applications and updates sooner than before and can remain confident that the new software is compatible with their existing applications.
Business Situation
The Desktop Services business unit at BASF IT Services used automatic software distribution to deploy applications and updates to its customers’ PCs, but security testing was delaying their availability .
Solution
After a pilot installation, BASF IT Services adopted Microsoft® SoftGrid® Application Virtualization, a solution that disassociates applications from the operating system, making it possible to deliver applications dynamically, without physical installation.
Benefits
Shortened deployment time
High level of security certification maintained
Invisible technology from user perspective
Reduced number of support calls
Faster response to customer needs
Software and ServicesMicrosoft Desktop Optimization Pack for Software AssuranceMicrosoft SoftGrid Application Virtualization
Vertical IndustriesIT Services
Country/RegionGermany
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000001313
10. Comprehensive Virtualization Management Key points
Everyone thinks about server virt when they think about virt – we have history here w/ Virtual Server, and a big strength w/ Hyper-V
But, there’s more to virt than server virt…
As virtualization becomes more pervasive, management is much more critical to enable dynamic scenarios – System Center can sit at the heart of all of this
“When we think about virtualization, most of the hype in the industry today is focused on machine virtualization or server virtualization, and certainly server virtualization is a critical enabling technology where I'm able to encapsulate an operating system and application and my data all together.
Depending on the problem that you're trying to solve, there are a number of different virtualization technologies that are important to take advantage of.
So Application Virtualization: On clients the ability to do application isolation and to stream application on-demand is critical; if we think about the adaptive application delivery, which I'll talk to in a minute, and we have the leading virtualization capability here with Microsoft Application Virtualization.
Desktop virtualization: Virtual PC has been in market for awhile, and then we announced an acquisition of a company called Kidaro to really enable enterprise-class desktop virtualization solutions and scenarios.
Then presentation virtualization, which you may know of as Terminal Services, but the ability to centrally manage and host an application and the data, and just serve out the interaction with that, so present it up to a user remotely.
All of these different pieces can play a role in the solution that you're trying to solve for, but what's critical is at the heart of this is management. In a virtualized world, management becomes much, much more critical in enabling some of these dynamic scenarios that we talk about. So, take a broad view and think about desktop to datacenter.”Key points
Everyone thinks about server virt when they think about virt – we have history here w/ Virtual Server, and a big strength w/ Hyper-V
But, there’s more to virt than server virt…
As virtualization becomes more pervasive, management is much more critical to enable dynamic scenarios – System Center can sit at the heart of all of this
“When we think about virtualization, most of the hype in the industry today is focused on machine virtualization or server virtualization, and certainly server virtualization is a critical enabling technology where I'm able to encapsulate an operating system and application and my data all together.
Depending on the problem that you're trying to solve, there are a number of different virtualization technologies that are important to take advantage of.
So Application Virtualization: On clients the ability to do application isolation and to stream application on-demand is critical; if we think about the adaptive application delivery, which I'll talk to in a minute, and we have the leading virtualization capability here with Microsoft Application Virtualization.
Desktop virtualization: Virtual PC has been in market for awhile, and then we announced an acquisition of a company called Kidaro to really enable enterprise-class desktop virtualization solutions and scenarios.
Then presentation virtualization, which you may know of as Terminal Services, but the ability to centrally manage and host an application and the data, and just serve out the interaction with that, so present it up to a user remotely.
All of these different pieces can play a role in the solution that you're trying to solve for, but what's critical is at the heart of this is management. In a virtualized world, management becomes much, much more critical in enabling some of these dynamic scenarios that we talk about. So, take a broad view and think about desktop to datacenter.”
11. Simplified Windows Vista DeploymentAutomated OS deployment via image standardization Simplified Vista Deployment
The simplified vista deployment solution focuses on delivering as simple a deployment of Windows Vista (or other operating systems) as possible. It allows IT Professionals to plan, design, deploy and manage their Windows Vista images.
The solution can quickly determine the upgrade readiness of an organization’s desktops through integrated reporting capabilities. This works alongside the Windows Vista Application Compatibility Toolkit (ACT) that determines the impact of the operating system upgrade on specific applications, supporting the prioritization of compatibility testing efforts. When incompatibility issues arise, System Center can mitigate these issues by delivering applications via the virtualization methods outlined in the previous section—through Virtual Desktop, PC virtualization, application virtualization or presentation virtualization.
Once the planning and design of desktop images is complete, System Center further simplifies this deployment process by reducing the image size by separating applications and drivers from the core OS image. The drivers are stored in a library, allowing their deployment at runtime; IT professionals can then deploy these images automatically using the task sequence based deployment, patch and update capabilities available in the solution. Alternative delivery models are also available to support organizations or sites with specific needs – including those with low or no network bandwidth connection to their desktops.
Customer Size: 5000 employees
Organization Profile
DONG Energy is a leading energy group in the Nordic region, with headquarters in Denmark. It procures, produces, distributes, trades, and sells energy and related products in Northern Europe.
DONG Energy, Denmark’s largest energy company, needed a way quickly deploy a consistent technology infrastructure to 5,700 computers located across several countries. Its solution: Microsoft® System Center Configuration Manager 2007. DONG Energy has reduced the manual involvement in operating system deployment, automated the rollout of custom deployments, and gained a comprehensive overview of infrastructure status.
Partner(s)Globeteam
Software and ServicesMicrosoft System Center Configuration Manager 2007
Vertical IndustriesOil & Gas
Country/RegionDenmark
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000000997Simplified Vista Deployment
The simplified vista deployment solution focuses on delivering as simple a deployment of Windows Vista (or other operating systems) as possible. It allows IT Professionals to plan, design, deploy and manage their Windows Vista images.
The solution can quickly determine the upgrade readiness of an organization’s desktops through integrated reporting capabilities. This works alongside the Windows Vista Application Compatibility Toolkit (ACT) that determines the impact of the operating system upgrade on specific applications, supporting the prioritization of compatibility testing efforts. When incompatibility issues arise, System Center can mitigate these issues by delivering applications via the virtualization methods outlined in the previous section—through Virtual Desktop, PC virtualization, application virtualization or presentation virtualization.
Once the planning and design of desktop images is complete, System Center further simplifies this deployment process by reducing the image size by separating applications and drivers from the core OS image. The drivers are stored in a library, allowing their deployment at runtime; IT professionals can then deploy these images automatically using the task sequence based deployment, patch and update capabilities available in the solution. Alternative delivery models are also available to support organizations or sites with specific needs – including those with low or no network bandwidth connection to their desktops.
Customer Size: 5000 employees
Organization Profile
DONG Energy is a leading energy group in the Nordic region, with headquarters in Denmark. It procures, produces, distributes, trades, and sells energy and related products in Northern Europe.
DONG Energy, Denmark’s largest energy company, needed a way quickly deploy a consistent technology infrastructure to 5,700 computers located across several countries. Its solution: Microsoft® System Center Configuration Manager 2007. DONG Energy has reduced the manual involvement in operating system deployment, automated the rollout of custom deployments, and gained a comprehensive overview of infrastructure status.
Partner(s)Globeteam
Software and ServicesMicrosoft System Center Configuration Manager 2007
Vertical IndustriesOil & Gas
Country/RegionDenmark
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000000997
12. Operating System Deployment Key Points:
GUIDELINES: Emphasize the ability to do an end-to-end deployment of the client environments.
SLIDE NOTES: One of the really big deals in Configuration Manager is the new task sequencer. The advanced and flexible Task Sequencer automates execution across multiple deployment steps, with 30 built in tasks that can be used as is or customized to leverage an organization’s existing investments in OS deployment automation. So let’s say you have an 84 step build process. That’s possible. You can put every step in the build process into the task sequencer – driver loads, application loads, update loads. Even reboots. This not only provides a more efficient process than scripting or manual builds – but it helps ensure that systems are deployed correctly, increasing system reliability.
What’s desktop nirvana? One build image. With Configuration Manger, this becomes more of a reality.
One of the new features in the Os Deployment tool is a driver catalog. The driver catalog enables dynamic deployment of drivers at runtime to significantly reduce the number of required OS images.
CUSTOMER ANECDOTES:
One of the customers in the SCCM TAP told us that their upgrade to Windows 2000 cost $1,500 per PC. Using SCCM 2007 they plan to upgrade for roughly $15 per PC. The customer did have to update hardware going to Windows 2000, so the comparison isn’t pure apples to apples. But the $15 is an amazing number.
One of the RDP customers has 3,000 desktop machines scattered around the globe. Bandwidth to most locations is limited and remote locations can only be served by relatively low-bandwidth satellite links. Using Configuration Manager to deploy Vista delivered an estimated $500,000 in savings of labor and expenses to send personnel to locations worldwide and cut hundreds of hours off the deployment time. The Task Sequencer eliminates the need to babysit software deployments that can take 5-6 hours per machine. The copy package wizard will save 200 hours in deployment labor. “We wouldn’t have thought of moving to Vista without Configuration Manager”, says the customer.
Key Points:
GUIDELINES: Emphasize the ability to do an end-to-end deployment of the client environments.
SLIDE NOTES: One of the really big deals in Configuration Manager is the new task sequencer. The advanced and flexible Task Sequencer automates execution across multiple deployment steps, with 30 built in tasks that can be used as is or customized to leverage an organization’s existing investments in OS deployment automation. So let’s say you have an 84 step build process. That’s possible. You can put every step in the build process into the task sequencer – driver loads, application loads, update loads. Even reboots. This not only provides a more efficient process than scripting or manual builds – but it helps ensure that systems are deployed correctly, increasing system reliability.
What’s desktop nirvana? One build image. With Configuration Manger, this becomes more of a reality.
One of the new features in the Os Deployment tool is a driver catalog. The driver catalog enables dynamic deployment of drivers at runtime to significantly reduce the number of required OS images.
CUSTOMER ANECDOTES:
One of the customers in the SCCM TAP told us that their upgrade to Windows 2000 cost $1,500 per PC. Using SCCM 2007 they plan to upgrade for roughly $15 per PC. The customer did have to update hardware going to Windows 2000, so the comparison isn’t pure apples to apples. But the $15 is an amazing number.
One of the RDP customers has 3,000 desktop machines scattered around the globe. Bandwidth to most locations is limited and remote locations can only be served by relatively low-bandwidth satellite links. Using Configuration Manager to deploy Vista delivered an estimated $500,000 in savings of labor and expenses to send personnel to locations worldwide and cut hundreds of hours off the deployment time. The Task Sequencer eliminates the need to babysit software deployments that can take 5-6 hours per machine. The copy package wizard will save 200 hours in deployment labor. “We wouldn’t have thought of moving to Vista without Configuration Manager”, says the customer.
13. Client Infrastructure MonitoringClient health monitoring and proactive issue identification Client Infrastructure Monitoring
In order to ensure continued user productivity and to optimize the user experience, IT must ensure the user’s desktop remains healthy and properly configured. With System Center, IT administrators can proactively monitor and identify high impact client operating system, application, and hardware issues, and then deal with these to minimize support costs and impact to user productivity. They can also monitor compliance with desired configurations to reduce problems associated with configuration drift.
Collective health and infrastructure monitoring enables support teams to report, and to be notified, when client issues are impacting a large number of users by collecting detailed availability, reliability, performance and hardware configuration information from client systems. These can then be rolled up into consolidated system views. Monitoring extends through the variety of application deployment methods outlined in this paper, including Terminal Services-based applications.
Proactive monitoring helps improve systems availability, security and performance by letting IT address problems early on, avoiding any reduction in user productivity or failed systems.
Customer Size: 2000 employees
Organization Profile
Skyguide, based in Geneva, Switzerland, manages and monitors all air traffic in Swiss airspace.
Skyguide, which monitors all air traffic in Swiss airspace, needed a better way to monitor its management information systems. That’s why it adopted Microsoft® System Center Operations Manager 2007. IT staff save one hour per person per day in faster and more effective monitoring, and availability is up because problems that occur are identified and resolved more quickly.
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=201240 Client Infrastructure Monitoring
In order to ensure continued user productivity and to optimize the user experience, IT must ensure the user’s desktop remains healthy and properly configured. With System Center, IT administrators can proactively monitor and identify high impact client operating system, application, and hardware issues, and then deal with these to minimize support costs and impact to user productivity. They can also monitor compliance with desired configurations to reduce problems associated with configuration drift.
Collective health and infrastructure monitoring enables support teams to report, and to be notified, when client issues are impacting a large number of users by collecting detailed availability, reliability, performance and hardware configuration information from client systems. These can then be rolled up into consolidated system views. Monitoring extends through the variety of application deployment methods outlined in this paper, including Terminal Services-based applications.
Proactive monitoring helps improve systems availability, security and performance by letting IT address problems early on, avoiding any reduction in user productivity or failed systems.
Customer Size: 2000 employees
Organization Profile
Skyguide, based in Geneva, Switzerland, manages and monitors all air traffic in Swiss airspace.
Skyguide, which monitors all air traffic in Swiss airspace, needed a better way to monitor its management information systems. That’s why it adopted Microsoft® System Center Operations Manager 2007. IT staff save one hour per person per day in faster and more effective monitoring, and availability is up because problems that occur are identified and resolved more quickly.
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=201240
14. Reduce Problem Resolution Time Through Built-In Application Specific Knowledge And Models Key Points:
System Center Data Center Operations differ from traditional management tools because they include management and configuration packs with prescriptive knowledge develop by application, hardware, and OS teams and verified in production deployments to improve monitoring, troubleshooting and problem resolution.
Management packs are used by our monitoring solutions to monitor overall system health and availability as well as IT security policy and capacity. They play a key role in client monitoring and contain the knowledge from the client and application teams to manage them effectively and efficiently.
Configuration packs – are used by our configuration solutions to ensure system configuration baselines and regulatory standards are enforced and maintained.
Key Points:
System Center Data Center Operations differ from traditional management tools because they include management and configuration packs with prescriptive knowledge develop by application, hardware, and OS teams and verified in production deployments to improve monitoring, troubleshooting and problem resolution.
Management packs are used by our monitoring solutions to monitor overall system health and availability as well as IT security policy and capacity. They play a key role in client monitoring and contain the knowledge from the client and application teams to manage them effectively and efficiently.
Configuration packs – are used by our configuration solutions to ensure system configuration baselines and regulatory standards are enforced and maintained.
15. Incremental ApproachScales to meet diverse needs Operations Manager enables proactive problem management by analyzing and reporting on application and system crash and hang data collected agentlessly from clients and servers via Windows Error Reporting (Watson). Problems are automatically linked to the latest troubleshooting and resolution knowledge about Microsoft and 3rd party causes and information can be gathered for developers to analyze.
Operations Manager enables aggregate monitoring of client systems so support teams can focus on resolving high impact problems and scale to manage tens of thousands of client systems.
Operations Manager lowers the cost of deployment and configuration by leveraging Active Directory and the Windows platform for easy system discovery and secure, automated remote agent deployment. Agents can also automatically discover and connect to management servers via Active Directory.
Operations Manager lowers the cost of ongoing configuration by automatically discovering new systems and applications and deploying the available and appropriate monitoring policies.
Operations Manager includes proactive monitoring of system utilization, reliability, and errors for Windows Vista and XP clients, Internet Explorer, and the Office suite with troubleshooting knowledge and tasks to accelerate identification and resolution of end user problems.
Operations Manager introduces an audit collection service that efficiently and securely gathers all security event log data from Windows systems for forensic reporting and compliance auditing. Active Directory security logs can be archived to prevent data loss from log rollover.
Operations Manager scales to support organizations with hundreds of IT operations users, tens of thousands of managed servers, and hundreds of thousands of managed clients via highly scalable management servers that can be tiered to provide consolidated views of the entire enterprise.
Operations Manager enables proactive problem management by analyzing and reporting on application and system crash and hang data collected agentlessly from clients and servers via Windows Error Reporting (Watson). Problems are automatically linked to the latest troubleshooting and resolution knowledge about Microsoft and 3rd party causes and information can be gathered for developers to analyze.
Operations Manager enables aggregate monitoring of client systems so support teams can focus on resolving high impact problems and scale to manage tens of thousands of client systems.
Operations Manager lowers the cost of deployment and configuration by leveraging Active Directory and the Windows platform for easy system discovery and secure, automated remote agent deployment. Agents can also automatically discover and connect to management servers via Active Directory.
Operations Manager lowers the cost of ongoing configuration by automatically discovering new systems and applications and deploying the available and appropriate monitoring policies.
Operations Manager includes proactive monitoring of system utilization, reliability, and errors for Windows Vista and XP clients, Internet Explorer, and the Office suite with troubleshooting knowledge and tasks to accelerate identification and resolution of end user problems.
Operations Manager introduces an audit collection service that efficiently and securely gathers all security event log data from Windows systems for forensic reporting and compliance auditing. Active Directory security logs can be archived to prevent data loss from log rollover.
Operations Manager scales to support organizations with hundreds of IT operations users, tens of thousands of managed servers, and hundreds of thousands of managed clients via highly scalable management servers that can be tiered to provide consolidated views of the entire enterprise.
16. Remote PC Diagnostics And RepairZero-touch remote diagnosis and remediation for client systems Remote PC Diagnostic and Repair
System Center desktop solutions enable zero-touch remote diagnosis and remediation of problems for online and out-of-band client systems to help pinpoint and troubleshoot issues. This significantly reduces onsite service calls for problem resolution—even for PCs that are powered off or won’t boot—improving the overall user experience.
Utilizing the integration between System Center and Intel’s iAMT technology, helpdesk personnel can quickly troubleshoot problems and reduce time to resolution through reports that let them check the status of the PC configuration compared against a desired state, analyze application failure, system failure and hang data. They can then resolve problems by automatically linking to the latest troubleshooting and resolution knowledge or leveraging diagnostic tools that monitor performance and stability and enable remediation.
Once an administrator has determined a system to be in a state that requires remote repair, the following remote actions can be taken:
Reboot, power off or power on (if already in an off state) systems
View and change PC BIOS as necessary
Re-image by pointing the system to a network-hosted boot image (without using PXE)
View a system using a command-line console to troubleshoot the boot process
These actions are available for desktops using Intel’s iAMT technology and overall reduce the number and length of required visits directly to the desk or working environment of users by support staff.
Using Mobile Device Manager (MDM) for Windows Mobile 6.1: Users can remotely wipe lost or stolen devices via web access.Remote PC Diagnostic and Repair
System Center desktop solutions enable zero-touch remote diagnosis and remediation of problems for online and out-of-band client systems to help pinpoint and troubleshoot issues. This significantly reduces onsite service calls for problem resolution—even for PCs that are powered off or won’t boot—improving the overall user experience.
Utilizing the integration between System Center and Intel’s iAMT technology, helpdesk personnel can quickly troubleshoot problems and reduce time to resolution through reports that let them check the status of the PC configuration compared against a desired state, analyze application failure, system failure and hang data. They can then resolve problems by automatically linking to the latest troubleshooting and resolution knowledge or leveraging diagnostic tools that monitor performance and stability and enable remediation.
Once an administrator has determined a system to be in a state that requires remote repair, the following remote actions can be taken:
Reboot, power off or power on (if already in an off state) systems
View and change PC BIOS as necessary
Re-image by pointing the system to a network-hosted boot image (without using PXE)
View a system using a command-line console to troubleshoot the boot process
These actions are available for desktops using Intel’s iAMT technology and overall reduce the number and length of required visits directly to the desk or working environment of users by support staff.
Using Mobile Device Manager (MDM) for Windows Mobile 6.1: Users can remotely wipe lost or stolen devices via web access.
17. Remote PC Diagnostics And RepairFeature Integration with Intel vPro Technology Remote PC Diagnostic and Repair
System Center desktop solutions enable zero-touch remote diagnosis and remediation of problems for online and out-of-band client systems to help pinpoint and troubleshoot issues. This significantly reduces onsite service calls for problem resolution—even for PCs that are powered off or won’t boot—improving the overall user experience.
Utilizing the integration between System Center and Intel’s iAMT technology, helpdesk personnel can quickly troubleshoot problems and reduce time to resolution through reports that let them check the status of the PC configuration compared against a desired state, analyze application failure, system failure and hang data. They can then resolve problems by automatically linking to the latest troubleshooting and resolution knowledge or leveraging diagnostic tools that monitor performance and stability and enable remediation.
Once an administrator has determined a system to be in a state that requires remote repair, the following remote actions can be taken:
Reboot, power off or power on (if already in an off state) systems
View and change PC BIOS as necessary
Re-image by pointing the system to a network-hosted boot image (without using PXE)
View a system using a command-line console to troubleshoot the boot process
These actions are available for desktops using Intel’s iAMT technology and overall reduce the number and length of required visits directly to the desk or working environment of users by support staff.
Case study info coming…Remote PC Diagnostic and Repair
System Center desktop solutions enable zero-touch remote diagnosis and remediation of problems for online and out-of-band client systems to help pinpoint and troubleshoot issues. This significantly reduces onsite service calls for problem resolution—even for PCs that are powered off or won’t boot—improving the overall user experience.
Utilizing the integration between System Center and Intel’s iAMT technology, helpdesk personnel can quickly troubleshoot problems and reduce time to resolution through reports that let them check the status of the PC configuration compared against a desired state, analyze application failure, system failure and hang data. They can then resolve problems by automatically linking to the latest troubleshooting and resolution knowledge or leveraging diagnostic tools that monitor performance and stability and enable remediation.
Once an administrator has determined a system to be in a state that requires remote repair, the following remote actions can be taken:
Reboot, power off or power on (if already in an off state) systems
View and change PC BIOS as necessary
Re-image by pointing the system to a network-hosted boot image (without using PXE)
View a system using a command-line console to troubleshoot the boot process
These actions are available for desktops using Intel’s iAMT technology and overall reduce the number and length of required visits directly to the desk or working environment of users by support staff.
Case study info coming…
18. End-Point Security ManagementEnforced compliance with system health policy definitions via remediation End-Point Security Management
The end-point security management solution provides comprehensive end-point security that protects the integrity of private networks enforcing compliance with system health policy definitions, configuration baselines (for example having the required software updates installed), and, through integration with Microsoft Forefront security technology, security software configuration requirements.
Through integration with Network Access Protection (NAP), a policy enforcement platform built into Windows Vista and Windows Server 2008, System Center desktop solutions help provide continuous network protection and quarantine support for both perimeter and core systems to ensure that computers connecting or communicating on the network meet the organization’s requirements for system health.
To keep systems up to date, System Center extends the use of Windows Server Update Services, allowing automatic or user-driven updates of critical and optional patches. This is delivered via an internet-based deployment model. These capabilities allow IT Professionals to govern which updates to approve and deploy, while giving users the option to bring their desktops into compliance manually or to allow the system to do it automatically.
To enable cost-effective yet secure network access by outside vendors, Freightliner will use a combination of System Center Configuration Manager capabilities, including Desired Configuration Manager (DCM) and Network Access Protection (NAP). With DCM, Freightliner can check the configurations of computers to ensure that they remain within the parameters set by IT policy. NAP enables the company to quarantine external machines that fail to meet those policies, and to update them with required software before allowing them to access the network. Freightliner also plans to use DCM to help maintain both servers and desktop computers in facilities without onsite IT staff.
FOR Windows Mobile 6.1 using Mobile Device Manager (MDM): System Center also provides comprehensive end-point security to managed Windows Mobile 6.1 devices.These mobile-optimized capabilties secure the managed device and help to control the applications used upon it. This achieved through both the ability to configure applications on the mobile device and through a mobile specific firewall that adds to the secuirt of an organizations existing mobile device infrastructure. This solution also supports the user productivity efforts described elsewhere in this paper through capabilties such as dast reconnect and session persistence.
Customer Size: 24500 employees
Organization Profile
Freightliner LLC, a Daimler company, is the largest heavy-duty truck manufacturer in North America and a leading producer of medium-duty trucks and specialized commercial vehicles. It is based in Portland, Oregon.
Freightliner LLC wanted to improve management of thousands of computers spread across 13 facilities to reduce costs and to provide secure network access for outside vendors. It’s in the process of doing all that and more with the help of Microsoft® System Center Configuration Manager 2007. The company expects to cut software licensing costs, improve planning for major deployments, and roll out applications to users in just 15 minutes.
Software and ServicesMicrosoft System Center Configuration Manager 2007Microsoft Windows Server 2003 Enterprise Edition
Vertical IndustriesAutomotive and Industrial Manufacturing Industry
Country/RegionUnited States
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000001183
End-Point Security Management
The end-point security management solution provides comprehensive end-point security that protects the integrity of private networks enforcing compliance with system health policy definitions, configuration baselines (for example having the required software updates installed), and, through integration with Microsoft Forefront security technology, security software configuration requirements.
Through integration with Network Access Protection (NAP), a policy enforcement platform built into Windows Vista and Windows Server 2008, System Center desktop solutions help provide continuous network protection and quarantine support for both perimeter and core systems to ensure that computers connecting or communicating on the network meet the organization’s requirements for system health.
To keep systems up to date, System Center extends the use of Windows Server Update Services, allowing automatic or user-driven updates of critical and optional patches. This is delivered via an internet-based deployment model. These capabilities allow IT Professionals to govern which updates to approve and deploy, while giving users the option to bring their desktops into compliance manually or to allow the system to do it automatically.
To enable cost-effective yet secure network access by outside vendors, Freightliner will use a combination of System Center Configuration Manager capabilities, including Desired Configuration Manager (DCM) and Network Access Protection (NAP). With DCM, Freightliner can check the configurations of computers to ensure that they remain within the parameters set by IT policy. NAP enables the company to quarantine external machines that fail to meet those policies, and to update them with required software before allowing them to access the network. Freightliner also plans to use DCM to help maintain both servers and desktop computers in facilities without onsite IT staff.
FOR Windows Mobile 6.1 using Mobile Device Manager (MDM): System Center also provides comprehensive end-point security to managed Windows Mobile 6.1 devices.These mobile-optimized capabilties secure the managed device and help to control the applications used upon it. This achieved through both the ability to configure applications on the mobile device and through a mobile specific firewall that adds to the secuirt of an organizations existing mobile device infrastructure. This solution also supports the user productivity efforts described elsewhere in this paper through capabilties such as dast reconnect and session persistence.
Customer Size: 24500 employees
Organization Profile
Freightliner LLC, a Daimler company, is the largest heavy-duty truck manufacturer in North America and a leading producer of medium-duty trucks and specialized commercial vehicles. It is based in Portland, Oregon.
Freightliner LLC wanted to improve management of thousands of computers spread across 13 facilities to reduce costs and to provide secure network access for outside vendors. It’s in the process of doing all that and more with the help of Microsoft® System Center Configuration Manager 2007. The company expects to cut software licensing costs, improve planning for major deployments, and roll out applications to users in just 15 minutes.
Software and ServicesMicrosoft System Center Configuration Manager 2007Microsoft Windows Server 2003 Enterprise Edition
Vertical IndustriesAutomotive and Industrial Manufacturing Industry
Country/RegionUnited States
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000001183
19. End-Point Security Management End-Point Security Management
The end-point security management solution provides comprehensive end-point security that protects the integrity of private networks enforcing compliance with system health policy definitions, configuration baselines (for example having the required software updates installed), and, through integration with Microsoft Forefront security technology, security software configuration requirements.
Through integration with Network Access Protection (NAP), a policy enforcement platform built into Windows Vista and Windows Server 2008, System Center desktop solutions help provide continuous network protection and quarantine support for both perimeter and core systems to ensure that computers connecting or communicating on the network meet the organization’s requirements for system health.
To keep systems up to date, System Center extends the use of Windows Server Update Services, allowing automatic or user-driven updates of critical and optional patches. This is delivered via an internet-based deployment model. These capabilities allow IT Professionals to govern which updates to approve and deploy, while giving users the option to bring their desktops into compliance manually or to allow the system to do it automatically.
End-Point Security Management
The end-point security management solution provides comprehensive end-point security that protects the integrity of private networks enforcing compliance with system health policy definitions, configuration baselines (for example having the required software updates installed), and, through integration with Microsoft Forefront security technology, security software configuration requirements.
Through integration with Network Access Protection (NAP), a policy enforcement platform built into Windows Vista and Windows Server 2008, System Center desktop solutions help provide continuous network protection and quarantine support for both perimeter and core systems to ensure that computers connecting or communicating on the network meet the organization’s requirements for system health.
To keep systems up to date, System Center extends the use of Windows Server Update Services, allowing automatic or user-driven updates of critical and optional patches. This is delivered via an internet-based deployment model. These capabilities allow IT Professionals to govern which updates to approve and deploy, while giving users the option to bring their desktops into compliance manually or to allow the system to do it automatically.
20. Configuration ComplianceAssess systems compliance against established configuration baselines Configuration Compliance
To enhance the availability, security and performance of systems, System Center desktop solutions provides desired configuration management that allows IT administrators to assess systems compliance against established configuration baselines. Administrators can easily monitor and capture configuration information of devices across their network and evaluate the compliance of those devices against regulatory and corporate requirements. They can remediate non-compliant systems with software distribution that targets computers identified as not compliant.
Configuration packs provide configuration settings, security settings and relevant system knowledge. These configuration packs are best practices that Microsoft and other software vendors create to identify common configuration errors for applications and operating systems that compromise system availability.
Customer Size: 69000 employees
Organization Profile
The Shoprite Group, based in Western Cape, South Africa, is Africa’s largest food retailer, serving about 12 million customers.
How do you keep desktop computers, kiosks, and servers consistent and up-to-date when thousands of them are spread across approximately 1,200 locations in 17 countries? The Shoprite Group, Africa’s leading food retailer, is using Microsoft® System Center Configuration Manager 2007. The software will enable Shoprite to complete what used to be months-long manual updates in a single night, cutting vendor fees significantly and ensuring prompt, full compliance with company standards.
Software and ServicesMicrosoft System Center Configuration Manager 2007
Vertical IndustriesRetail Industry
Country/RegionSouth Africa
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000000995Configuration Compliance
To enhance the availability, security and performance of systems, System Center desktop solutions provides desired configuration management that allows IT administrators to assess systems compliance against established configuration baselines. Administrators can easily monitor and capture configuration information of devices across their network and evaluate the compliance of those devices against regulatory and corporate requirements. They can remediate non-compliant systems with software distribution that targets computers identified as not compliant.
Configuration packs provide configuration settings, security settings and relevant system knowledge. These configuration packs are best practices that Microsoft and other software vendors create to identify common configuration errors for applications and operating systems that compromise system availability.
Customer Size: 69000 employees
Organization Profile
The Shoprite Group, based in Western Cape, South Africa, is Africa’s largest food retailer, serving about 12 million customers.
How do you keep desktop computers, kiosks, and servers consistent and up-to-date when thousands of them are spread across approximately 1,200 locations in 17 countries? The Shoprite Group, Africa’s leading food retailer, is using Microsoft® System Center Configuration Manager 2007. The software will enable Shoprite to complete what used to be months-long manual updates in a single night, cutting vendor fees significantly and ensuring prompt, full compliance with company standards.
Software and ServicesMicrosoft System Center Configuration Manager 2007
Vertical IndustriesRetail Industry
Country/RegionSouth Africa
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000000995
21. Desktop Configuration ComplianceBuilt in desktop compliance best practices Key Points:
Configuration Packs support compliance through:
Configuration items, settings and values
Targeted assessment of servers against specific configuration baselines
Customizable settings
Key Points:
Configuration Packs support compliance through:
Configuration items, settings and values
Targeted assessment of servers against specific configuration baselines
Customizable settings
22. Desktop Configuration ComplianceAsset Intelligence Reporting Reducing license compliance risk through reporting
Hardware and software inventory
Software license usage informationReducing license compliance risk through reporting
Hardware and software inventory
Software license usage information
23. Desktop Compliance ManagementSecurity Vulnerability Assessment Security compliance reporting
Security specific Configuration Packs
Best practices for planning, setting, monitoring and remediating security baselines
Security compliance reporting
Security specific Configuration Packs
Best practices for planning, setting, monitoring and remediating security baselines
24. Desktop Solution Benefits Integrated management for the physical and virtual desktop infrastructure
Lower costs through improved efficiencies
Management from the hardware through the OS, application, data, and user settings layers
Supports delivering an improved user experience
Deep, embedded knowledge from Microsoft and its partners
All parts of the desktop experience can be managed effectively
Integration of management capabilities with other desktop infrastructure technologies from Microsoft
Reduce the IT effort to holistically manage their entire environment
Microsoft Confidential By bringing together all of these capabilities in each of these targeted solutions, System Center support IT professionals as they strive for a Dynamic Desktop environment. This approach delivers:
An integrated management system for the physical and virtual desktop infrastructure, leading to lower costs through improved efficiencies
Management from the hardware through the operating system, application, data, and user settings layers that supports delivering an improved user experience
Deep, embedded knowledge from Microsoft and its partners that ensures all parts of the desktop experience can be managed effectively
Integration of management capabilities with other desktop infrastructure technologies from Microsoft, reducing the effort expended by IT to holistically manage their entire environment
By bringing together all of these capabilities in each of these targeted solutions, System Center support IT professionals as they strive for a Dynamic Desktop environment. This approach delivers:
An integrated management system for the physical and virtual desktop infrastructure, leading to lower costs through improved efficiencies
Management from the hardware through the operating system, application, data, and user settings layers that supports delivering an improved user experience
Deep, embedded knowledge from Microsoft and its partners that ensures all parts of the desktop experience can be managed effectively
Integration of management capabilities with other desktop infrastructure technologies from Microsoft, reducing the effort expended by IT to holistically manage their entire environment
25. Conclusion Conclusion
As computing becomes more powerful and mobile, IT environments must become more agile to support a changing work force with ever-changing work styles. IT organizations face the challenge of providing this flexibility while ensuring the necessary levels of IT control, security and compliance. System Center desktop solutions provide a unified system that lets IT be more agile without introducing overwhelming management complexity. IT organizations can quickly respond to the varying needs of users though adaptive application and operating system deployment technologies that let them deliver the services that users need, when they need them—whether the user is in the office or mobile, connected or occasionally connected. The solution also helps IT organizations protect the security and compliance of their systems by ensuring that any device accessing the network, regardless of the connection type, is up to date and meets the company’s requirements for system health.
Finally, System Center desktop solutions help IT organizations optimize the user experience by providing tools that let them keep systems functioning smoothly. Real-time and trend information helps IT staff identify, diagnose and remotely repair client health and performance issues before they affect user productivity, providing the consistent, optimized performance that today’s users expect.
Conclusion
As computing becomes more powerful and mobile, IT environments must become more agile to support a changing work force with ever-changing work styles. IT organizations face the challenge of providing this flexibility while ensuring the necessary levels of IT control, security and compliance. System Center desktop solutions provide a unified system that lets IT be more agile without introducing overwhelming management complexity. IT organizations can quickly respond to the varying needs of users though adaptive application and operating system deployment technologies that let them deliver the services that users need, when they need them—whether the user is in the office or mobile, connected or occasionally connected. The solution also helps IT organizations protect the security and compliance of their systems by ensuring that any device accessing the network, regardless of the connection type, is up to date and meets the company’s requirements for system health.
Finally, System Center desktop solutions help IT organizations optimize the user experience by providing tools that let them keep systems functioning smoothly. Real-time and trend information helps IT staff identify, diagnose and remotely repair client health and performance issues before they affect user productivity, providing the consistent, optimized performance that today’s users expect.