Post on 15-Jun-2015
transcript
15:03:13Alun Rogers
Enterprise Management - managing Windows 8 devices
Agenda
Client management approach
Cloud and hybrid options
Case References & Examples
App management InTune screenshot
walkthrough Influencing Microsoft
Managing Windows 8
Questions
Client Management approachControlSystem Center Configuration ManagerInfinite Tweaking
GovernanceExchange ActiveSync, VPN PoliciesSimple Primitives
Corporate device
Homogenous System
Push
Corporate standards
Protected devices
IT Owns the Device and sets all of the rules
Hardware, Apps, OS’s
Of apps, patches, configurations
Devices, applications, configurations
Systems enforce device standards to Protect data (Bitlocker, OS/Patch Level, Applications)
Personal Devices
Heterogeneous Systems
Pull
Constraints
Protected Data
IT uses system of least control
PC, Mobile, Slate, Laptop
Self Service, App Stores
Conditional access to Network, Applications and Data
Variable device trust level, data must be directly protected
Cloud only - Windows Intune
Mobile Device Operating System MDM Method Microsoft Surface Windows RT DirectWindows RT Windows RT DirectWindows Phone 8 8.0 DirectWindows Phone 7 7.0 or later EASiPad and iPad2, iPhones, iPod Touch iOS 4.0 or later DirectAndroid-based phones and mobile devices
Android 2.1 or later EAS
Cloud only solutionSubscription basedNo-on premise infrastructureAll devices connect to InternetRich x platform supportAzure AD integration
Hybrid – SCCM and Intune
Full Windows x client managementUser centric app managementUEV/App-V integrationOS X / Linux supportSingle console
Managing Windows 8
Deployment PXE Boot, USB install, Wipe and Load, Side by side, prestaged Media
Metered Connections
Admin with Windows 8 is able to control traffic:Block network impactful client management activitiesAvoid being unpleasantly surprised with their network
bill
Scenarios: Contractors, Bring Your Own Device, Travel Light, Shared PCsProvision: Admin can push deploy WTG to a removable device, End User can pull provision WTGManage: Updated and managed same as a physical laptop/desktop, Admin can determine if device is WTG or not
Windows to Go
Your data and apps on any device
App-V 5.0 and U-EV (MDOP), Folder Redirection
Configuration Manager
User SettingsUser Settings+ Apps + Data
+ Apps + Data
BitLocker Drive Encryption BitLocker Drive Encryption
Personalized, consistent, online & offline experience Apps and data follow usersCentralized management of apps and data (IT)Local data is protected (IT)
RDS/VDI
Windows 8 apps• Benefits:
– Runs across x86 and ARM– Inherently more secure– Easier and faster to deploy
• Software distribution updated:– New object– Same deployment process– Similar management
functionality• End users installation
same as today Windows RT deviceWindows 8 (x86)
Windows Store Self-Service Portal (SSP)
FIREWALL
IT
Side-loading
Side-loading
Deep link apps• Software Distribution updated:– New type of software– Same process
• Administrators do not need to repackage applications
• End Users have one location for all Enterprise Applications
Windows Store Self-Service Portal (SSP)
Redirects
Using Windows Intune
Questions?
alunr@risual.com | markp@risual.com | www.risual.com