Modern BIOS Management from the Cloud

Similar documents
Mastering the Move to Modern Management using ConfigMgr

INTEGRATING WITH DELL CLIENT COMMAND SUITE: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

PowerShell for System Center Configuration Manager Administrators

São Paulo. August,

DEPLOYING WIN32 APPLICATIONS: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

USING PRODUCT PROVISIONING TO DELIVER FILES TO WINDOWS 10: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

PLANNING YOUR WINDOWS 10 DEPLOYMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

GET YOUR HOUSE IN ORDER. Patching and Imaging Creation Strategies

PowerShell for System Center Configuration Manager Administrators (55133)

Speaker Introduction Who Mate Barany, VMware Manuel Mazzolin, VMware Peter Schmitt, Deutsche Bahn Systel Why VMworld 2017 Understanding the modern sec

Adnan Cloud Solutions Architect. SAFFA living in Netherlands, work globally. Microsoft Trainer +25y (xrl MSLearning)

Phil Schwan Technical

Kent Agerlund Enterprise Mobility MVP & Microsoft Regional Director

Windows 10. scalable IT services & solutions. October 25, Bruce Ward, VP of Business Strategy. Dan Sharp, Senior Consultant

VMware Workspace ONE Intelligence. VMware Workspace ONE

Today s focus Microsoft 365 powered devices

GT-SCCM Onboard/Environment Overview

Sccm 2012 Automatically Approve Clients In Trusted Domains

Deploying VMware Workspace ONE Intelligent Hub. October 2018 VMware Workspace ONE

Redefine Windows 10 Management. Embrace True Business Mobility

MANAGING ANDROID DEVICES: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

MD-101: Modern Desktop Administrator Part 2

What s new in System Center Configuration Manager Current Branch? Ievgen Liashov

VMware Workspace ONE UEM Integration with Smart Glasses. VMware Workspace ONE UEM 1811

CONFIGURING BASIC MACOS MANAGEMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Windows 10 Management Technologies: What s New. Michael Niehaus Senior Product Marketing Manager, Windows Microsoft

VMware AirWatch Integration with Apple School Manager Integrate with Apple's School Manager to automatically enroll devices and manage classes

VMware AirWatch - Unified Endpoint Management for Windows 10

Microsoft Intune App Protection Policies Integration. VMware Workspace ONE UEM 1811

Mobile Security using IBM Endpoint Manager Mobile Device Management

NE Administering System Center Configuration Manager and Intune

Secure Access - Update

Dell Provisioning for VMware Workspace ONE. VMware Workspace ONE UEM 1902

Introduction to the Azure Portal

VMware AirWatch - Mobile Application Management and Developer Tools

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware Workspace ONE UEM Integration with Apple School Manager

Windows 8/RT Features Matrix

BRING MAC TO THE ENTERPRISE WITH A MODERN APPROACH TO MANAGEMENT

Service Description VMware Workspace ONE

Client Health Key Features Datasheet. Client Health Key Features Datasheet

Cloud Mobility: Meraki Wireless & EMM

MOC 20416B: Implementing Desktop Application Environments

MS-20696: Managing Enterprise Devices and Apps using System Center Configuration Manager

Sophos Central for partners and customers: overview and new features. Jonathan Shaw Senior Product Manager, Sophos Central

Implementing and Supporting Windows Intune

905M 67% of the people who use a smartphone for work and 70% of people who use a tablet for work are choosing the devices themselves

Introducing. Secure Access. for the Next Generation. Bram De Blander Sales Engineer

Ipswitch: The New way of Network Monitoring and how to provide managed services to its customers

Managing Windows 8.1 Devices with XenMobile

Improve productivity with modernized PCs and Windows 10. Christopher Choong, DTM Field Marketing Manager

Sccm 2007 Manual Client Install Command >>>CLICK HERE<<<

Sccm management console download windows 7. Sccm management console download windows 7.zip

VMware Workspace ONE UEM Apple tvos Device Management. VMware Workspace ONE UEM 1811 VMware AirWatch

Deploying VMware Mirage : Tips and Tricks for Success

Deployment Genval November 2018

ForeScout Extended Module for VMware AirWatch MDM

Table of Contents. VMware AirWatch: Technology Partner Integration

VMware AirWatch Google Sync Integration Guide Securing Your Infrastructure

Cisco Tetration Analytics

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

What s new in Configuration Manager 1702 and beyond. Jörgen Nilsson.

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

Cloud Print Migration Step-by-Step Deployment Guide

Microsoft Administering System Center Configuration Manager and Intune

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

ForeScout Extended Module for MobileIron

Course A: Administering System Center Configuration Manager

Technical Overview. Jack Smith Sr. Solutions Architect

Modern Management of Windows - Intune & Autopilot

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Tetration Hands-on Lab from Deployment to Operations Support

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

Verizon MDM UEM Unified Endpoint Management

Please give me your feedback

VMware AirWatch Chrome OS Platform Guide Managing Chrome OS Devices with AirWatch

MOC ADMINISTERING SYSTEM CENTER CONFIGURATION MANAGER AND INTUNE

ADMINISTERING SYSTEM CENTER 2012 CONFIGURATION MANAGER

Demo KACE K1000 System Management Appliance

Workspace ONE UEM Recommended Architecture. VMware Workspace ONE UEM 1811

1 Introduction Requirements Architecture Feature List... 4

Microsoft 365 powered device webinar series Microsoft 365 powered device Assessment Kit. Alan Maddison, Architect Amit Bhatia, Architect

Google Sync Integration Guide. VMware Workspace ONE UEM 1902

ALERT LOGIC LOG MANAGER & LOG REVIEW

McAfee MVISION Mobile Microsoft Intune Integration Guide

Table of Contents HOL-1757-MBL-5

ADMINISTERING SYSTEM CENTER CONFIGURATION MANAGER

Administering System Center Configuration Manager

Administrering System Center 2012 Configuration Manager vd

Guide to Deploying VMware Workspace ONE with VMware Identity Manager. SEP 2018 VMware Workspace ONE

YOUR IT REMOTE MANAGEMENT & SUPPORT SOLUTION. Goverlan REACH vs TeamViewer

Administering System Center Configuration Manager and Intune

Administering System Center Configuration Manager

이창섭부장 IoT Device Experience Microsoft. Windows 10 IoT Technical Overview

Installing and Configuring Windows 10

[ Sean TrimarcSecurity.com ]

ForeScout Extended Module for MaaS360

GlobalSign Integration Guide. GlobalSign Enterprise PKI (EPKI) and VMware Workspace ONE UEM (AirWatch)


Transcription:

Modern BIOS Management from the Cloud Josué Negrón Sr. Solutions Architect VMware Brooks Peppin EUS Systems Engineer VMware

Agenda Modern Management Challenges Cloud Architecture Microsoft BIOS & Firmware Updates PowerShell Execution & Deploying Drivers Managing & Configuring BIOS for Dell Automated OEM Updates Sensors to Pull in OEM Details Intelligence Reporting & Automation Q&A

With Windows 10, Microsoft Enables Modern Management of PCs Integrated MDM Framework Simplified Device Onboarding Cloud-based Management Microsoft s own IT is moving away from traditional PC management to modern management for Windows 10.* * Source: Microsoft IT Showcase; Aug 21, 2017; https://www.microsoft.com/itshowcase/article/video/708/windows-10-deployment-tips-and-tricks-from-microsoft-it 3

Most EMMs Focus on Limited Windows 10 MDM Capabilities Modern Onboarding OOBE doesn t fit the bill in all customer situations Cloud Updates Frequency and size of cloud updates is a challenge Most EMMs + Windows 10 MDM Configuration MDM doesn t support 1000s of OS and firmware settings Device Health Modern Apps Limited features means more siloed security tools MDM supports limited Win32 app management

Workspace ONE Extends MDM to Meet Critical PC Management Needs Device and OS Lifecycle Management App Management Zero-Trust Security 1. Onboarding 2. Configuration 3. OS Updates 4. Software 5. Security Ready-to-work Experience Out-of-the-Box Deployment MDM Configuration Standard Baselines & GPOs Always-up-todate OS updates Granular Controls Win32 App Management Company App Store & SSO Device Health Attestation Data Protection Imageless Provisioning Co-exist with PCLM BIOS / Firmware Management Asset Tracking Delivery Optimization Patch Analytics & Automation Peer-to-Peer Distribution App Inventory BitLocker Management Automated Compliance Intelligent Insights and Rules Engine

Understanding the Workspace ONE UEM Solution Stack Workspace ONE UEM Console WNS AWCM Management Server PowerShell Microsoft CSPs OMA-DM Client VMware CSP CSP / GPO Protection Agent Direct Win32 WMI Management Clients Management API Firewall Updates MSI WiFi VPN Passcode ZIP, EXE, MSI, Windows OS P2P Policy Engine Scripting BitLocker OEM Updates Drivers Windows Capabilities BIOS Firmware

OEM Updates via Windows Updates You have two options when leveraging Windows Updates for OEM Updates (Firmware, BIOS, Drivers, etc.): 1. WSUS devices are on network and have access to WSUS. Very granular control over which updates are approved and when they become available however highly mobile users will never get their updates. 2. Windows Update for Business devices who are on or off the network, must enable delivery optimization to control large downloads over WAN networks. Granular control when not using auto approvals. Only works for OEMs who publish their updates to Windows Updates. Works well for Surface devices!

Live Demo: Windows Updates in a Cloud Console

Getting Granular with Scripting You can leverage scripting to modify and update devices. Intune supports PowerShell scripts, while SCCM and Workspace ONE UEM supports custom scripting (e.g. PS1, BAT, etc.) 1. PROS 1. Granular and fits every use-case 2. Automated way of updating devices 2. CONS 1. Very custom per device model and OEM 2. Time Consuming

Live Demo: Leveraging Custom Scripting

Deploying Drivers Leverage software deployment to push drivers to devices, however this might not be the most automated way. Most EMMs support deploying MSI packages. Intune now supports other files types with the latest announcement at Ignite! Workspace ONE UEM supports deploying EXEs, MSIs (MSI, MSP, MST), and custom ZIP packages (PowerShell wrapped deployments). SCCM supports all types and has built-in driver management support. Overall this is a very manual process to keep drivers updated and deployed, works well when only deploying to a single OEM/Model.

Live Demo: Leveraging Software Distribution to Deploy Drivers

Dell Command Monitor Workspace ONE UEM natively integrates with Dell Command Monitor to provide the ability to: 1. Set or Read BIOS Attributes 1. Set BIOS Password 2. Update BIOS to UEFI 2. Read System Properties via DCIM classes 3. Report on all attributes and take automated actions (e.g. replace worn batteries before users complain) 4. Supports deploying CCTK packages, created using Dell Command Configure Admins just have to create a BIOS profile in the console and Dell Command Monitor must be installed on the devices.

Live Demo: Configuring and Reading BIOS Attributes

Dell Command Update Workspace ONE UEM natively integrates with Dell Command Update to provide the ability to: 1. Set Scan Intervals, choose which Updates are Approved, how updates are applied (force reboot, etc.) 2. Provides a per-device and consolidated view of all OEM updates on the devices 3. Provides reporting and automation Admins just have to create an OEM updates profile in the console and Dell Command Update must be installed on the devices.

OEM Updates

Live Demo: Automatic OEM Updates

Custom Inventory and Scripting Run scripts and queries in real-time Make edits to the scripts in-line Admins can collect any device property and report on it in real time Inclusion in smart groups for dynamic targeting Expand to new query types for Dell BIOS Integrate with Intelligence APIs to invoke sensor through automations Create a community library on code.vmware.com for pre-defined sensors

Workspace ONE Sensors Allow admins to define and configure different sensor queries and target specific devices Write or upload scripts in-place within the console. Define multiple query types of PowerShell and Dell BIOS queries Define dynamic membership of devices in smart groups based on the attribute values. Choose datatypes for device response so they can be compared to other data

Reporting/Dashboards via Intelligence TRUST NETWORK PARTNERS UEM Workspace ONE Intelligence DASHBOARDS IDM REPORTS APTELIGENT ACTIONS HORIZON Aggregate Correlate Insights Automate NOTIFICATIONS INGESTION DECISIONS

Demo: Reporting, Dashboards and Automation

Learn Workspace ONE modern management for Windows 10 Test Drive Workspace ONE on your Windows 10 devices Get Started on Your POC or Deployment Demos https://youtu.be/3ooap0qqom Y https://vmwarelearningzone.vm ware.com/oltpublish/site/cms.d o?view=openlearning Hands-on-Labs http://labs.hol.vmware.com/hol /catalogs/catalog/878 Beginners: HOL-1857-01-UEM - Getting Started Advanced: HOL-1857-02-UEM - Unified Endpoint Management for Windows 10 Sign up to VMware TestDrive: https://portal.vmtestdrive.com/ TestDrive Getting Started Guide: https://kb.vmtestdrive.com/hc/en- us/articles/360001372254-getting- Started-with-TestDrive Workspace ONE for Windows 10 Walkthrough Guide: https://kb.vmtestdrive.com/hc/en- us/articles/360001152734-experience- Workspace-ONE-on-Windows-10 POC: Workspace ONE Windows 10 Reviewers Guide: https://techzone.vmware.com/resour ce/reviewers-guide-windows-10- unified-endpoint-managementairwatch Deployment: Professional Services Use Case Add-on for Windows 10: https://www.vmware.com/content/da m/digitalmarketing/vmware/en/pdf/d atasheet/vmware-workspace-oneairwatch-service-add-on-use-casedatasheet.pdf

You ve got questions, we got answers hopefully

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback