Recommended
Recommended
More Related Content
What's hot
What's hot (20)
Viewers also liked
Similar to Desktop management and support
Similar to Desktop management and support (20)
More from Stephen Rose
More from Stephen Rose (15)
Recently uploaded
Recently uploaded (20)
Desktop management and support
- 1. Tony Krijnen IT Pro Evangelist tony.krijnen@microsoft.com Daniel van Soest IT Pro Evangelist danielvs@microsoft.com
- 2. Remote Management & Performance of Portable Computers Security Hardening and Defense in Depth Meeting Emerging Compliance Requirements Group Policy and Configuration Management Improving System Resiliency, Reliability, and Hardware Performance Advancing Desktop Management
- 3. Remote Management & Performance of Portable Computers Security Hardening and Defense in Depth Meeting Emerging Compliance Requirements Group Policy and Configuration Management Improving System Resiliency, Reliability, and Hardware Performance Advancing Desktop Management Direct Access NAP BrancheCach e AppLocker GPO AGPM Trouble- shooting DART Bitlocker
- 4. Standard user accounts Group Policy to control configurations Group Policy preferences to manage: Files Folders Registry settings And more
- 5. Up to 2,500+ policy settings in the past +300 in Windows 7 (~2800 currently) Group Policy is a Windows ‘manageability’ basic requirement Policy settings greatly expanded in a number of areas BranchCache BITS Offline Files Biometrics Troubleshooting & Diagnostics Windows Defender User Account Control Internet Explorer Smartcard Windows Error Reporting AppLocker System Audit Policies Desktop Shell Bitlocker Drive Encryption Remote Assistance
- 6. Similar to logon scripts, but with a GUI Use the Group Policy infrastructure to: Deploy non-native settings to Group Policy For example, to map a drive: 1. Create and edit a GPO 2. Edit the Drive Maps preference item *No script code required – just use the GUI.
- 8. The MDOP subscription management tools
- 9. Advanced Group Policy Management Enable group policy change management Provides granular administrative control Reduce risk of widespread failure Versioning, history & rollback of group policy changes Role-based administration & templates Flexible delegation model What it Does Benefits
- 12. Edit GPO AGPM Archive Group PolicyDeploy GPO
- 14. Remote Management & Performance of Portable Computers Security Hardening and Defense in Depth Meeting Emerging Compliance Requirements Group Policy and Configuration Management Improving System Resiliency, Reliability, and Hardware Performance Advancing Desktop Management Direct Access NAP BrancheCach e AppLocker GPO AGPM Trouble- shooting DART Bitlocker
- 15. IPv6 Devices IPv4 Devices DirectAccess Server Windows 7 Client Native IPv6 with IPSec IPv6 Transition Services Supports variety of remote network protocols DirectAccess provides transparent, secured access to intranet resources without a VPN Allows desktop management of DirectAccess clients Allows IPSec encryption and authentication Supports direct connectivity to IPv6-based intranet resources Support IPv4 via 6to4 transition services or NAT-PT (Or use FF UAG) IT desktop management AD Group Policy, NAP, software updates Internet DirectAccess
- 16. Network Access Protection Corporate Resources Quarantine network Netwerk Policy Server Client Computer Antivirus Firewall Antimallware Updates Antivirus Firewall Antimallware Updates Client Computer Compliant Non compliant
- 18. BranchCache Distributed Cache Data cached in cache pool Hosted Cache Data cached at the host server
- 22. Remote Management & Performance of Portable Computers Security Hardening and Defense in Depth Meeting Emerging Compliance Requirements Improving System Resiliency, Reliability, and Hardware Performance Advancing Desktop Management Direct Access NAP BrancheCach e AppLocker Trouble- shooting DART Bitlocker Group Policy and Configuration Management GPO AGPM
- 23. Eliminate unwanted/unknown applications in your network Enforce application standardization within your organization Easily create and manage flexible rules using Group Policy Users can install and run unapproved applications Even standard users can install some types of software Application Control AppLocker
- 25. Security Hardening and Defense in Depth Meeting Emerging Compliance Requirements Improving System Resiliency, Reliability, and Hardware Performance Advancing Desktop Management AppLocker Trouble- shooting DART Bitlocker Remote Management & Performance of Portable Computers Direct Access NAP BrancheCach e Group Policy and Configuration Management GPO AGPM
- 26. Technical Details BitLocker Enhancements Automatic 100 Mb hidden boot partition New Key Protectors Domain Recovery Agent (DRA) Smart card – data volumes only Bitlocker – What’s new?
- 27. BitLocker-To-Go BitLocker To Go Support for FAT* Protectors: DRA, passphrase, smart card and/or auto-unlock Management: protector configuration, encryption enforcement Read-only access on Windows Vista & Windows XP SKU Availability Encrypting – Enterprise Unlocking – All
- 28. Meeting Emerging Compliance Requirements Improving System Resiliency, Reliability, and Hardware Performance Advancing Desktop Management Trouble- shooting DART Bitlocker AIS Security Hardening and Defense in Depth AppLocker Remote Management & Performance of Portable Computers Direct Access NAP BrancheCach e Group Policy and Configuration Management GPO AGPM
- 29. Diagnostics And Recovery Toolset Accelerate TCO savings by minimizing recovery time Recover instead of reloading Windows Make PCs safer to use Recover unbootable PC Access deleted files, manipulate services, reset passwords, & more Safely detect and remove malware while the PC is offline What it Does Benefits
- 30. DART Screenshot
- 32. The MDOP subscription management tools
- 33. Thanks for your time! Tony Krijnen tony.krijnen@microsoft.com @tonykrij Daniel van Soest danielvs@microsoft.com @dansaap Andy O’Donald aodona@microsoft.com @andyodonald Stephen Rose stephen.rose@microsoft.com @stephenlrose Please fill out your evals!
- 34. Follow The Tour and Watch The Videos Windows Team Blog @MSSpringboard - Twitter