GET YOUR HOUSE IN ORDER. Patching and Imaging Creation Strategies

Similar documents
Keeping Current with Windows 10. Jon Anderson Senior Systems Consultant, Now Micro December 5 th, 2018

A tale of Modern Management Part 1

Modern BIOS Management from the Cloud

9 Years in Consulting. Broad experience in Microsoft Infrastructure solutions. Specialised in Windows 10 & Surface familly

Deployment Genval November 2018

Windows 10. scalable IT services & solutions. October 25, Bruce Ward, VP of Business Strategy. Dan Sharp, Senior Consultant

Renault-Nissan EUC «as a service»

Adnan Cloud Solutions Architect. SAFFA living in Netherlands, work globally. Microsoft Trainer +25y (xrl MSLearning)

What s new in System Center Configuration Manager Current Branch? Ievgen Liashov

Phil Schwan Technical

Windows 10 listening tour. What is REALLY on the minds of our customers?

WS011 - Deploying and Managing Windows 10

Mastering the Move to Modern Management using ConfigMgr

Optimizing IT: Toward Modern Workplace Management With Windows 10

Co se změnilo ve Windows 10 z pohledu IT administrátora

Windows 10 Pro for Your Modern Workforce. Jared Bernatt Microsoft Windows

Quo vadis? System Center Configuration Manager Full managed desktop. Mobile device management Light managed device policies, inventory,

Today s focus Microsoft 365 powered devices

905M 67% of the people who use a smartphone for work and 70% of people who use a tablet for work are choosing the devices themselves

Doug Wilson Systems Consultant at Now

Sccm 2012 Automatically Approve Clients In Trusted Domains

MD-101: Modern Desktop Administrator Part 2

Microsoft. MS-101 EXAM Microsoft 365 Mobility and Security. m/ Product: Demo File

Microsoft 365 powered device webinar series Microsoft 365 powered device Assessment Kit. Alan Maddison, Architect Amit Bhatia, Architect

M365 Powered Device Proof of Concept

Windows 10 Management Technologies: What s New. Michael Niehaus Senior Product Marketing Manager, Windows Microsoft

Improve productivity with modernized PCs and Windows 10. Christopher Choong, DTM Field Marketing Manager

Moving to Windows 10. Mike Sandells Computing Services Department

Cloud Print Migration Step-by-Step Deployment Guide

Kent Agerlund Enterprise Mobility MVP & Microsoft Regional Director

WORKPLACE Data Leak Prevention: Keeping your sensitive out of the public domain. Frans Oudendorp Ronny de Jong

Customer Success with Windows as a Service. John Cable Windows Servicing and Delivery

Technical Security Standard

Why Choose MS Azure?

ASSURANCE CONTINUITY MAINTENANCE REPORT FOR. Microsoft Windows 10 IPsec VPN Client (VPNPP14)

Innovate or die!? Modern IT Workplace Security. Alex Verboon Cyber Security Consultant

Windows 10 edition. Find out which. is right for you. Core features. Familar, and better than ever Home Pro Enterprise Education Mobile.

jamf Nation - London Roadshow

OFFICE 365 GOVERNANCE: Top FAQ s & Best Practices. Internal Audit, Risk, Business & Technology Consulting

CONDITIONAL ACCESS FROM A TO Z

More Personal Computing Windows 10 and Surface in the Enterprise. Guenter Weimer GM Windows & Devices Group Microsoft APAC

Sccm 2007 Manual Client Install Command >>>CLICK HERE<<<

Real-life technical decision points in using cloud & container technology:

BDPA Conference Windows 10

PATCH MANAGER AUTOMATED PATCHING OF MICROSOFT SERVERS AND 3RD-PARTY APPS

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY

Desktop features placemat

Identity as the Entrée to the Microsoft Cloud

Unlocking Potential Through Learning

Ring of Fire : Achieving a FISMA Compliant Transition to Office 365. Matthew Maes, INL Cyber Security

COURSE LISTING. Courses Listed. with SAP HANA. 15 February 2018 (05:18 GMT) HA100 - SAP HANA. HA250 - Migration to SAP HANA using DMO

Azure SQL Database. Indika Dalugama. Data platform solution architect Microsoft datalake.lk

Javier Villegas. Azure SQL Server Managed Instance

Use EMS to protect your mobile data and mobile app

Accelerate GDPR compliance with the Microsoft Cloud Agustín Corredera

GFI product comparison: GFI LanGuard 12 vs Microsoft Windows Intune (February 2015 Release)

Accelerate Windows 10 deployments through telemetry driven insights using Upgrade Analytics

President Interlink Cloud Advisors. Mike Wilson Vice President Interlink Cloud Advisors. Kirk Terrell Consultant Interlink Cloud Advisors

Security Compliance and Data Governance: Dual problems, single solution CON8015

Microsoft Security Management

ACTIVE MICROSOFT CERTIFICATIONS:

HCX SERVER PRODUCT BRIEF & TECHNICAL FEATURES SUMMARY

Conditional Access Policies

São Paulo. August,

Windows 10. Tech Note. Open the Window to Endless Possibilities. Windows for the Enterprise. Universal App Experience

Microsoft 365 Business FAQs

Windows 10 Deployment and Security. Crissier Jean-Francois Ageneau

FUJITSU Cloud Service K5 SF Service Functional Overview

Community Edition Getting Started Guide. July 25, 2018

70-414: Implementing an Advanced Server Infrastructure Course 01 - Creating the Virtualization Infrastructure

Use Microsoft EMS. to Protect your Mobile Data and Mobile Apps. Chris Nackers Nackers Consulting

Windows 10 Azure AD / EMS

How Microsoft s Enterprise Mobility Suite Provides helps with those challenges

PLATFORM CONVERGENCE JOURNEY

How To Uninstall Wsus 3.0 Sp2 And Its Related Components

Conference Learning to Live with Windows 10. What we ve learned at UVic

Windows 10 for enterprise. Pramiti Bhatnagar

Company Portal. Peter Daalmans, IT Concern Greg Ramsey, Dell, INC

Ivanti Patch for SCCM. File Downloader User s Guide

Presented by Max Fritz Senior Systems Consultant, Now Micro. Office 365 for Education What to Use When

ACTIVE MICROSOFT CERTIFICATIONS:

Proven video conference management software for Cisco Meeting Server

IT Briefing. November 15, 2012 North Decatur Building 4 th Floor Auditorium

Windows 10 prvi dve leti. Slavko Kukrika, MVP in prijazen fant

e-sens Nordic & Baltic Area Meeting Stockholm April 23rd 2013

Microsoft Azure Course Content

SHAREPOINT 2016 ADMINISTRATOR BOOTCAMP 5 DAYS

Apple OS Deployment Guide for the Enterprise

CAN MICROSOFT HELP MEET THE GDPR

SME License Order Working Group Update - Webinar #3 Call in number:

Speaker Introduction Who Mate Barany, VMware Manuel Mazzolin, VMware Peter Schmitt, Deutsche Bahn Systel Why VMworld 2017 Understanding the modern sec

Faster, Better, and Cheaper? Building the SD-WAN Business Case

Windows Server The operating system

Guide Series. How to upgrade to Microsoft Windows 10? Guide Series

Windows ierīces Enterprise infrastruktūrā. Aris Dzērvāns Microsoft

ACTIVE MICROSOFT CERTIFICATIONS:

2018 CALENDAR OF ACTIVITIES

Mpoli Archive - FTP Site Statistics. Top 20 Directories Sorted by Disk Space

Business today runs on technology. Modernize Your Datacenter. Challenges facing IT. Modernize Your Datacenter 10/17/ % Enterprise IT

Web and API Apps in Azure

Transcription:

GET YOUR HOUSE IN ORDER Patching and Imaging Creation Strategies

SPEAKERS Phil Schwan Solution Architect Netrix, LLC

Agenda Windows Image Management Windows Servicing Patch Management

Build and Capture? WaaS means new build every 6 months Quality Updates are cumulative Secure = Current Branch + a couple patches Thicker image still a valid case TRADITIONAL IMAGING

Designed for Modern IT Simplify device lifecycle management Keep platform secure & up to date Make the user the center of IT Drive scale with cloud Stay secure as cyber threats evolve

Modern IT Modernize and simplify, across the stack. No imaging, use what comes on device Transform new devices so they are ready for productive use Lower effort, lower cost Cloud-focused, light weight MDM management Just enough management, the end of the IT overlords Windows Store for apps Office 365 Pro Plus Cortana 2:1 devices with touch, ink, etc. Azure Active Directory Windows Defender stack, minimize thirdparties Many core OS features Sync with the cloud, for automatic availability, migration, backup Proactive rather than reactive; discover issues and fix them before users report them (or in some cases, even notice)

Traditional vs Modern Management Provisioning OSD/Imaging AutoPilot/Provisioning Package Identity/Authentication Active Directory Azure Active Directory Membership Domain Join/Workgroup Azure AD Join Software Updates Applications Granular selection, targeting and scheduling Win32, Windows Store for Business Windows Update for Business Update rings/deferrals UWA, Windows Store, SaaS, Win32* Management Agent ConfigMgr MDM (OMA-DM) Policies Group Policy MDM (OMA-DM) * Sidecar capability for delivering complex MSI, scripts, etc.

When does modern management make sense?

DEMO Modern Management Provisioning AzureAD + Intune

Windows Servicing

Twice-per-year feature releases 18 month support cycle for each OS build Two branches (no more Current Branch for Business) Semi-Annual Channel Long-Term Servicing Channel ISOs updated monthly with latest cumulative updates Servicing Model Updates

Windows 10 Servicing Old Timeline 2016 2017 July Nov Feb July Nov Feb July Nov 2018 Feb 1507 Evaluate Pilot Deploy / Use (done) 4 months 12 months 60+ days (Support ends May 2017) 1511 Evaluate Pilot Deploy / Use 4 months 4 months ~ 16 months 60 days (Support ends October 2017 Anniversary Update 1607 Evaluate Pilot Deploy / Use ~8 months 4 months ~16 months 60 days Creators Update 1703 Evaluate Pilot Deploy / Use ~8 months ~4 months

Windows 10 Servicing New Timeline Mar 2017 Jun Sep Dec Mar Jun Sep Dec 2018 Mar 2019 Jun 1511 Deploy / Use 22 months (Support ends Oct. 10, 2017) 1607 1703 Deploy / Use ~ 16 months Pilot / Deploy / Use 1709 Evaluate (Insider Preview) ~6 months 18 months Pilot / Deploy / Use 1803 Evaluate (Insider Preview) ~6 months 18 months Pilot / Deploy / Use

Windows 10 Servicing - Controls Microsoft Microsoft hosts content Light management approach Clients point to Windows Update for scanning and availability Windows Update for Business = Controlled release Always relative to Microsoft s timing Non-selective (must eventually be installed) Internal IT You host the content Heavy, granular control Clients point to WSUS for scanning and availability WSUS approval means absolute control over All timing is controlled by policy Selective (can skip updates complete)

DEMO Windows Servicing Options Windows Update for Business Intune SCCM (WSUS)

Patch Management

Third Party Patching Options Two primary options: WSUS integrated Agent based

Utilize Windows Update Agent to govern patch compliance and installation System Center Updates Publisher (SCUP) Create in-house or use subscription service WSUS INTEGRATION

SCUP Methodology Create patch payload (patch install files Define compliance rules (what to target, how to tell) Sign with cert the clients trust Deploy (WSUS/SCCM) WSUS INTEGRATION Third party services such as PatchMyPC can do the heavy lifting You have to know what needs patched

Separate agent from normal management platforms like SCCM Agent handles installation as well as compliance evaluation Powerful option, but at an additional cost AGENT BASED PATCHING

Popular Third Party Options: Flexera Personal Software Inspector (Secunia CSI) Ivanti Patch (Shavlik) SolarWinds GFI LanGuard AGENT BASED PATCHING

DEMO Third Party Patching

Summary Windows Image Management Windows Servicing Patch Management

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback