Overview of how one college took control of its desktop environment using Microsoft's SCCM for imaging and improved user satisfaction, quality, and reduced support demands and costs.

1. Desktop ManagementUsing Microsoft SCCM Jerry Bishop, CIO Originally Presented March 21, 2011 SunGard Higher Education Summit

2. This presentations supports telling the story of how one college reworked its desktop imaging and management strategy around Microsoft’s System Center Configuration Manager (SCCM) and related products to increase user satisfaction and dramatically reduce support demand and support costs. Additional information about the changes, tools and strategy can be found in The Higher Ed CIO blog. About

3. Snippet of the Imagining Sequence

4. Gains Using SCCM Imaging with SCCM Before ~2 hrs Now <45 min Immediate Payoff 1550 hrs saved deploying 1000 PCs 1240 hrs saved reimaging 800 PCs 400 hrs saved encrypting laptops 30% reduction in help desk calls

5. Takeaways What is SCCM? What is SCCM capable of? What can SCCM do for me?

6. An Imaging Primer Before we start…

8. Clone to other PCs of same model

9. Changes require new gold image and re-cloning“Templating” Build the parts Base image and collections of add-ons Layer then on PC’s

10. Customer Satisfaction was in the Tank The Problem…

11. Historical Desktop Pain Points Computer labs had Deepfreeze replaced with a GPO approach to managing them Faculty had lost local admin in their labs Imaging a PC took ~2 hrs, 5+ hrs for several labs still may not be right Fixing the issues could take days Reimaging Labs could take weeks to get right impacting instruction

12. The Challenge Image any device (PC, laptop, tablet, Netbook, or server) from bare metal without errors Required Outcomes Improve user experience Shorten time to image Support scale Eliminate complexity Reduce support demand & cost Deliver self-service application installs It must be “Gute-Proof”

13. 3 Factors Driving the Strategy IT Staffing Model Complexity of Desktop Imaging Geography of College District

14. Staffing Model Imaging plan must allow for: Part-time entry-level techs Lower headcount Lower cost It must be “Gute-Proof” Kyle “The Gute” Gutenberger

15. Complexity of Desktop Scale 2200 PCs 37 models 5 platforms Growth Projections Mobile Devices Non-College Devices

16. Previous Complexity

17. Result - Simplicity

18. Geography of College’s District 12 Campus Locations (Rural Western Wisconsin) 120 miles East-West and 70 miles North-South 10 Counties, 5500 square miles Rhode Island – 1214 square miles Delaware – 2026 square miles Connecticut – 5506 square miles Dispatching tech to the farthest remote campuses 2 hrs 15 min round trip (not counting stops) $126 direct costs (mileage and windshield time)

19. What can SCCM do for me… Error free imaging

20. System Center Configuration Manager SCCM 2007 is a major upgrade of SMS functionality that provides features for OS Deployment Internet-based client management WSUS integration for software update management Service windows/collection variables

21. What is SCCM capable of? Configuration Management Patch management Software distribution Operating system deployment Hardware and software inventory Power Management

22. The solution PXE Boot, SCCM Task Sequence, App-V

23. PXE Boot Pre-Boot Execution Environment Allows bare metal imaging Cuts imaging time in half Simplifies process

24. “Gute-Proof” Imaging What “Gute” has to know: Press F12, Bot from NIC PXE Password Lab or Staff Computer Computer Name “Gute” doesn’t have to know: What drivers are needed How to install the software What software is needed How to install the OS

25. PXE Boot Sequence - Again

26. Task Sequences Overview Core mechanism for controlling all OS deployment operations Sequence of steps to execute Steps prior to deploying new OS Steps to deploy new OS Steps after the new OS is deployed Completely hands-off for full automation of the process

27. Task Sequence

28. Collection of Images

29. Driver Packages View shows collections built by SCCM Admin Changes with Windows 7 Windows 7 dynamically pulls drivers from SCCM collection or web.

30. Application Virtualization - App-V Microsoft Application Virtualization (App-V) Allows less testing when packaging applications App-V packages can be applied to other OS’s with little or no change There is no “Install” or “Uninstall” so OS doesn’t get changed Packaging can be easier with some apps

31. SCCM-App-V Infrastructure Source: Microsoft

32. Ongoing maintenance Patch Management, Application Deployment

33. Maintenance Process Labs: automated nightly maintenance sequence Wake on LAN Initiates Deepfreeze Thaws McAfee Updates Reapply DATs All software and updates get installed at that time Staff: automated real-time updates Monthly update cycle for patches and changes 3-tier model: test group, power users, all users 5-days to apply then updates are forced

34. Software Update Management Compliance assessment Security updates / vulnerability assessment Application updates Update deployment Full Microsoft update content Zero-day and routine deployments Simplified admin experience Manage non-Microsoft software updates OEMs and software vendors (ISVs) Internally-developed applications

35. Track Patch & Vulnerability Applicability

36. Track Patch Deployments & Compliance

37. Application Deployment Over the summer, 215 software applications were packaged SCCM made it easy to quickly and remotely deploy software to any college computer Many hours saved Improved service delivery

38. Self-Service Application Installations

39. Control Panel

40. Advertised Programs

41. Manage SW & HW Inventory

42. Current and near term changes EVOLVING STRATEGY…

43. Current Changes Rolling Out Currently rolling out new Integrated Platform BranchCache User State Migration Toolkit (USMT) Application Compatibility Toolkit (ACT) Complete changes to Task Sequence Full Windows 7 Integration Collapse driver collections User Self-Service Web Site

44. Near Term Changes Simplify Toolset and Reduce Costs Migrate PGP Disk encryption over to Bitlocker Migrate McAfee Enterprise over to Forefront EndPoint Migrate Verdiem Surveyor power management to SCCM Rationalize Application Delivery Strategy Migrate some Citrix functions to App-V with Applocker Prepare for VMM and SCCM 2012 Complete Quick ROI/TCO on Windows Intune

45. Questions?

46. Thank You! Jerry Bishop, The Higher Ed CIO Blog