1 / 32

Windows Vista Client Manageability

Windows Vista Client Manageability. James O’Neill Evangelist Microsoft Corporation. Contents. Introducing Vista’s Management Goals Maintain PC Configuration User Account Control Resource Protection Simplify Configuration Management Group Policy Update Management

kiona
Download Presentation

Windows Vista Client Manageability

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Windows Vista Client Manageability James O’NeillEvangelist Microsoft Corporation

  2. Contents • Introducing Vista’s Management Goals • Maintain PC Configuration • User Account Control • Resource Protection • Simplify Configuration Management • Group Policy • Update Management • Desktop Troubleshooting & Task Automation • New / revamped tools

  3. Management Features and Improvements in Windows Vista 3 Management Goals: • User Account Control • Windows Resource Protection • Group Policy Enhancements • Update Management Improvements • New WMI Providers and Windows Remote Management Maintain PC configuration Simplify Configuration Management Desktop Troubleshooting andTask Automation • New Event Viewer and Logging Infrastructure • New Task Scheduler • Reliability Analysis Component

  4. Windows Vista Client Manageability Goal 1: Maintain PC Configuration

  5. User Account Control • Lowers total cost of ownership by making it practical to run as standard user • PC is kept in known state • Restrict installations of unapproved software • Less downtime and higher productivity • Reduce need to re-image system “…a locked and well-managed PC can save 40%.” —Gartner, December 2005

  6. Barriers to Deploying as Standard User Can user perform required tasks to be productive without help desk support? (Connect to network, add printer, etc.) Will existing 3rd party and LOB applications run for standard users? Does enterprise have required tools, processes, and policies to support and maintain desktops where users do not have administrator privileges?

  7. Moving the mountain… • You will encounter hurdles during this effort. • Here are a few to watch out for: • Communication is key. • There are applications in your environment you probably don’t know about. • Standard Users need a deployment service. • Helpdesk is going to get more calls as you start the process. In Vista, Microsoft makes this easier.

  8. Standard Users Can Do More • View system clock and calendar • Change time zone • Configure secure wireless (WEP/WPA) connection • Change power management settings • Create and configure a Virtual Private Network connection • Add printers and other devices that have the required drivers installed or allowed by IT policy • Disk defragmentation is a scheduled background process Shield icon consistently marks actions that require elevation 8

  9. User Account Control • All users run as Standard User by default • Filtered token created during logon • Only specially marked apps get the unfiltered token • Explicit consent required for elevation • Predictable shell elevation paths • High application compatibility • Data redirection • Enabling legacy apps to run as standard user • Installer Detection

  10. Elevation Model Administrator Privileges Ways to Request ElevationApplication markingSetup detectionCompatibility fix (shim)Compatibility assistantRun as administrator AdministratorAccount Standard User Privileges (Default) Standard UserAccount

  11. Data Redirection for Legacy Apps • Legacy apps write to admin locations • HLKM\Software; • %SystemDrive%\Program Files etc. • Redirection removes need for elevation • Writes to HKLM go to HKCU redirected store • Writes to system directories redirected to per-user store • Copy-on-write • This is a crutch for legacy applications.

  12. Windows Resource Protection • Maintain PC configuration by preventing potentially damaging system configuration changes • System files and registry settings protected from accidental changes by user or from software installers • Only OS Trusted Installer Service can change Windows Resource Protection resources • If modified, boot critical files are replaced with trusted copies

  13. Windows Vista Client Manageability Goal 2: Simplify Configuration Management

  14. Improvements in Group Policy for Windows Vista • Extends the reach of Group Policy with hundreds more settings • Reliably and efficiently apply policy • Easier to use

  15. Extending Group Policy Reach Over 500 new settings across key areas

  16. Improvements In Group PolicyApplied more reliably, and easier to use Reliable and Efficient Application of Policy Easier to Use Network aware application of Group Policy Support for editing Group Policy settings in Multilingual Environments Support for Multiple Local GPOs GPMC integrated into Windows Search and filter (Post Windows Vista) Templates (Post Windows Vista)

  17. We’re Making Progress Reducing the Pain of Update Management… • Fewer updates delivered via Windows Update (WU) require reboots • Updates requiring a reboot reduced by at least 17% since August 2003 • Reduction in update delivery frequency from once a week to once a month • Consolidate multiple reboots into a single reboot when multiple patches requiring a reboot are installed together

  18. … And Getting Even Better With Windows Vista • Patches can be applied directly to images • Auto-update everything • Platform technology to reduce reboots

  19. Windows Vista and 2007 Office SystemFurther Reduce Disruptions from Reboots • Fewer reboots when using the Windows Add/Remove Programs feature • Corporate Developers can reduce reboots for installations and updates by using the Windows Installer • Automatically restart after a reboot due to an installation or update • Recreate application state upon restart Windows Installer (MSI) Key 2007 Microsoft Office applications (1) (1) Selected Microsoft applications that take advantage of Microsoft Office Restart Manager Word, Office Excel, Office Outlook, Office PowerPoint, and Internet Explorer

  20. Windows Management Infrastructure (WMI) Enhancements Improve Manageability • Windows Vista includes 13 new WMI Providers: • BitLocker Drive Encryption • Trusted Platform Module • Boot Configuration Database • Intelligent Platform Management Interface • Windows Parental Controls • Network AccessProtocol Client • Others…

  21. WinRM: Windows Remote Management • Firewall Friendly Remote Access Protocol (Replaces DCOM) • HTTP & HTTPS • Microsoft’s implementation of WS-Management Use Windows Remote Managementto Access WMI Information over the Internet

  22. Windows Vista Client Manageability Goal 3: Desktop Troubleshooting and Task Automation

  23. Productivity/Cost Implications • Productivity losses • Potential data loss • No IT awareness • Root problem not fixed All costs above and … • Help desk FTE cost • Additional productivity loss in time with helpdesk All costs above and … • One-off escalations often low priority • Little ability to track problems from changes (i.e., patch, new app) Desktop Crash! Reboot Most common end-user behavior >90%(1) + Resolve Known error fielded before Call Help Desk Few help desks equipped to resolve <10%(1) + Escalate Desktop Admin likely sees few crashes <5%(1) Lack of Awareness of End-User ProblemsUnreported issues drive productivity, costs, satisfaction (1) CER TAP participant interviews; MS Help desk qualitative discussions

  24. OUT WITH THE OLD….

  25. New Event Logging Infrastructure:Windows Eventing 6.0 • Right data to diagnose problems • The right data…but not too much data • Improved supporting data and documentation for all events • Infrastructure supports Ad-hoc diagnosis and management tools • Schematized events (XML) provide richer information • Easy integration with management tools

  26. User Experience in Event Viewer is Dramatically Improved • Single place to view events for all Windows Vista components • Focus on important events with filtering and custom views • Events are actionable • Associate a task with an event with a single click • Event Subscriptions • IT Professionals can subscribe to events and view them centrally • Based on Windows Remote Management

  27. What’s New in Task Scheduler? • Power and flexibility • Sophisticated Scheduling Options with new triggers, conditional launch, and action chaining • Completely scriptable • Visibility • Task dashboard shows active and upcoming tasks • Improved reliability and resource allocation • Retry tasks in case of failure • Run when next available

  28. Reliability Analysis Console • Helps you understand causes of crashes and hangs • Tracks frequency and type of user disruptions • Shows connections between application installs and other system events

  29. User Account Control • Windows Resource Protection • Group Policy Enhancements • Update Management Improvements • New WMI Providers and Windows Remote Management • New Event Viewer and Logging Infrastructure • New Task Scheduler • Reliability Analysis Component Summary: Management Features &Improvements in Windows Vista Maintain PC configuration Simplify Configuration Management Desktop Troubleshooting andTask Automation

  30. Windows Vista Resources

  31. What else does TechNet give you? • FREE TechNet Newsletter” • FREE Events and Webcasts • FREE quarterly “TechNet” magazine • FREE comprehensive technical website • FREE TechNet Radio, Security Centre, Learning Paths and Virtual Labs • TechNet Plus Subscription DVD A range of tools and resources for IT professionals that let you plan, manage ,deploy To subscribe to the newsletter or just to find out more, please visit www.microsoft.com/uk/technet

  32. Thank you for attending this TechNet Event http://www.microsoft.com/uk/technet PS (The evaluation form is now sent out electronically with your thank you e-mail. This can take up to 5 working days. Please do feedback as we read all the comments and use them to shape future event content)

More Related