Windows Management Windows Management Technologies in Vista and Technologies in Vista and beyondbeyond

Martin DeyMartin DeyDirector, Outbound MarketingDirector, Outbound MarketingWindows and Enterprise Management DivisionWindows and Enterprise Management DivisionMicrosoft Corporation, RedmondMicrosoft Corporation, Redmond

AgendaAgenda

Group Policy ImprovementsGroup Policy ImprovementsWMI EnhancementsWMI EnhancementsWinRM – Windows Remote ManagementWinRM – Windows Remote Management

WS-Man Remote ProtocolWS-Man Remote ProtocolWinRS – Windows Remote ShellWinRS – Windows Remote Shell

New Vista Windows Event Log supportNew Vista Windows Event Log supportWindows Vista Task SchedulerWindows Vista Task SchedulerNew Performance Counter ModelNew Performance Counter ModelWSUS 3.0 ChangesWSUS 3.0 ChangesWindows PowerShellWindows PowerShell

Improvements In Group Policy Improvements In Group Policy For Windows VistaFor Windows Vista

Extends the reach of Group Policy with Extends the reach of Group Policy with hundreds more settingshundreds more settings

Reliably and efficiently apply policyReliably and efficiently apply policy

Easier to useEasier to use

Extending The Reach Of Extending The Reach Of Group PolicyGroup Policy

Power Power ManagementManagement

Device Device Installation and Installation and

UsageUsage

Internet Internet ExplorerExplorer

IPSEC & IPSEC & Windows Windows FirewallFirewall

Printer Printer DeploymentDeployment

Troubleshooting Troubleshooting & Diagnostics& Diagnostics

User Account User Account ControlControl iSCSIiSCSI

Windows Windows DefenderDefender Windows Error Windows Error

ReportingReporting

Remote Remote AssistanceAssistance

Terminal Terminal ServicesServices GlobalizationGlobalization ShellShell TabletTablet

Over 500 new settings across key areasOver 500 new settings across key areas

Improvements In Group PolicyImprovements In Group PolicyApplied more reliably, and easier to useApplied more reliably, and easier to use

Network aware application Network aware application of Group Policyof Group Policy

Support for editing Group Policy Support for editing Group Policy settings in Multilingual settings in Multilingual

EnvironmentsEnvironments

Support for Multiple Local GPOsSupport for Multiple Local GPOs

Reliable and Efficient Reliable and Efficient Application of PolicyApplication of Policy Easier to UseEasier to Use

GPMC integrated into WindowsGPMC integrated into Windows

Search and filter (Post Vista)Search and filter (Post Vista)

Templates (Post Vista)Templates (Post Vista)

Windows Management Infrastructure (WMI) Windows Management Infrastructure (WMI) Enhancements Improve ManageabilityEnhancements Improve Manageability

Windows Vista includes 13 Windows Vista includes 13 new WMI Providers:new WMI Providers:

BitLocker Drive Encryption BitLocker Drive Encryption

Trusted Platform Module Trusted Platform Module

Boot Configuration Database Boot Configuration Database

Intelligent Platform Intelligent Platform Management InterfaceManagement Interface

Windows Parental Controls Windows Parental Controls

Network Access Protocol Network Access Protocol Client Client

Others…Others…

WinRM - Windows WinRM - Windows Remote ManagementRemote Management

Firewall Friendly Remote Access Protocol Firewall Friendly Remote Access Protocol (Replaces DCOM)(Replaces DCOM)

HTTP and HTTPSHTTP and HTTPS

Microsoft’s implementation of Microsoft’s implementation of WS-ManagementWS-Management

Use WinRM to Access WMI Information Use WinRM to Access WMI Information over the Internetover the Internet

In-Band And Out Of BandIn-Band And Out Of Band

WSManServiceWSManService

WMIWMI

IPMIdriverIPMI

driver

EventLogEventLog

BMCBMC

OSOS

Hardware

WSMan clientWSMan client

Cmdlinetool

Cmdlinetool

Management consoleManagement console

WSMANWSMANWSMANWSMAN

Client App

Client App

WS

MA

NW

SM

AN

Remote Shell Remote Shell

Access to Remote shell (cmd.exe)Access to Remote shell (cmd.exe)Batch mode execution of scripts Batch mode execution of scripts and commandsand commands

Access to output streams from remote shellAccess to output streams from remote shell

Input data for promptsInput data for prompts

Example usage: Add/Remove server roles, Example usage: Add/Remove server roles, collect inventory, configure Firewall etccollect inventory, configure Firewall etc

PowerShell will use WinRS for remotingPowerShell will use WinRS for remoting

New Vista Event LoggingNew Vista Event LoggingWindows Eventing 6.0Windows Eventing 6.0

Right Data to Diagnose ProblemsRight Data to Diagnose ProblemsThe right data…but not too much dataThe right data…but not too much dataImproved supporting data and documentation for Improved supporting data and documentation for all eventsall events

Infrastructure Supports Ad-hoc Diagnosis and Infrastructure Supports Ad-hoc Diagnosis and Management ToolsManagement Tools

Schematized events (XML) provide richer informationSchematized events (XML) provide richer informationEasy integration with management toolsEasy integration with management tools

New Vista Event ViewerNew Vista Event ViewerUser Experience Dramatically ImprovedUser Experience Dramatically Improved

Single place to view events for all Windows Single place to view events for all Windows Vista componentsVista componentsFocus on important events with filtering and Focus on important events with filtering and custom viewscustom viewsEvents are actionableEvents are actionable

Associate a task with an event with a single clickAssociate a task with an event with a single click

Event SubscriptionsEvent SubscriptionsIT Professionals can subscribe to events and view IT Professionals can subscribe to events and view them centrallythem centrallyGP Configurable; based on WinRMGP Configurable; based on WinRM

Event Viewer Drill DownEvent Viewer Drill Down

What’s New in Task Scheduler?What’s New in Task Scheduler?

Power and FlexibilityPower and FlexibilitySophisticated Scheduling Options with new triggers, Sophisticated Scheduling Options with new triggers, conditional launch, and action chainingconditional launch, and action chainingCompletely scriptableCompletely scriptable

VisibilityVisibilityTask dashboard shows active and upcoming tasksTask dashboard shows active and upcoming tasks

Improved Reliability and Resource AllocationImproved Reliability and Resource AllocationRetry tasks in case of failureRetry tasks in case of failureRun when next availableRun when next available

Task Scheduler: Today And VistaTask Scheduler: Today And VistaToday Vista

Rich Schedule Trigger Backward Compatibility Trigger on Event Network Conditions Multiple Synch’d Steps Failure Notification Password Update Resiliance Execution History Task Import/Export Jitter!

Task StructureTask Structure

What launches the task?What launches the task?Multiple triggers allowedMultiple triggers allowedOR-edOR-ed

TriggersTriggers

ConditionsConditions

ActionsActions

Defines constraintsDefines constraintsMultiple conditions allowedMultiple conditions allowedAND-ed AND-ed

Many Actions per Task nowMany Actions per Task nowSerializedSerialized

TriggersTriggers

TimeTrigger / CalendarTrigger (Periodic)TimeTrigger / CalendarTrigger (Periodic)At specified global (UTC) timeAt specified global (UTC) timeJittered (Delayed) startJittered (Delayed) start

ScheduleSchedule

Generic EventGeneric Event

System EventsSystem Events

EventLog event triggerEventLog event triggerRegistration based on EventLog Registration based on EventLog queryquery

IdleTriggerIdleTrigger, , BootTrigger, LogonTriggerBootTrigger, LogonTriggerRegistrationTriggerRegistrationTriggerSessionStateChangeTriggerSessionStateChangeTrigger

~ OR ~

~ OR ~

ConditionsConditions

DisallowStartIfOnBatteriesDisallowStartIfOnBatteriesStopIfGoingOnBatteriesStopIfGoingOnBatteriesPower StatePower State

Idle StateIdle State

Network Network AvailabilityAvailability

Run Only If IdleRun Only If IdleStop at Idle EndStop at Idle EndRestart at Idle ResumeRestart at Idle Resume

Launch if network is availableLaunch if network is availableAny or specific network profileAny or specific network profile

~ AND ~

~ AND ~

Task ActionsTask Actions

Any command shell programAny command shell programExe, Script, BatchExe, Script, Batch

DLLs hosted in user appsDLLs hosted in user apps

Command Command Line / DLLLine / DLL

E-MailE-Mail

Message BoxMessage Box

Includes attachmentsIncludes attachmentsOver SMTPOver SMTP

Body and title Body and title For interactive tasksFor interactive tasks

Task Scheduler DemoTask Scheduler Demo

Task Management InterfacesTask Management Interfaces

%windir%\system32\tasks%windir%\system32\tasksXML FileXML File

New COM / Scripting APINew COM / Scripting APIProgrammaticProgrammatic

MMC Admin ToolMMC Admin ToolSchTasks.exeSchTasks.exe

Admin ToolsAdmin Tools

Create Task WizardCreate Task WizardEnd UserEnd User

Windows Perf CountersWindows Perf CountersBefore Windows VistaBefore Windows Vista

Win32 Counter ProvidersWin32 Counter ProvidersRequires performance counter DLLsRequires performance counter DLLs

Uses registry and system files as Uses registry and system files as central repository central repository

Uses no unified IPC mechanismUses no unified IPC mechanism

Managed Counter ProvidersManaged Counter ProvidersProvides a sProvides a simple imple mmanaged API for a anaged API for a Win32Win32  technologytechnology

Uses a cUses a component omponent ooriented riented ddesignesign

Integrated with Integrated with Visual StudioVisual Studio Designers Designers

Improved ManageabilityImproved ManageabilitySimplified programming modelSimplified programming model

No more 32-bit/64-bit issueNo more 32-bit/64-bit issue

Development tools Development tools

Improved Reliability Improved Reliability No more registry corruptionNo more registry corruption

No need for performance counter DLLsNo need for performance counter DLLs

Improved ScalabilityImproved ScalabilityRetrieval of only requested dataRetrieval of only requested data

Windows Perf CountersWindows Perf CountersWhat’s new in Windows VistaWhat’s new in Windows Vista

WSUS 3.0 ImprovementsWSUS 3.0 Improvements

Simpler DeploymentSimpler Deployment

Improved PerformanceImproved Performance

Improved ReliabilityImproved Reliability

Reporting SupportReporting Support

Targeting EnhancementsTargeting Enhancements

Improved Admin ExperienceImproved Admin Experience

Simpler DeploymentSimpler Deployment

WSUS 3.0 is an in-place upgrade of 2.0WSUS 3.0 is an in-place upgrade of 2.03.0 has all the features of 2.0 and then some!3.0 has all the features of 2.0 and then some!

WSUS 2.0 Servers can sync from a WSUS 2.0 Servers can sync from a 3.0 Server3.0 Server

Allows for a gradual top down roll outAllows for a gradual top down roll out

New OOBE (Out of the box experience) wizard to help New OOBE (Out of the box experience) wizard to help guide initial setupguide initial setupMany improvements to replica mode to support branch Many improvements to replica mode to support branch office deploymentsoffice deployments

Move between Replica and Autonomous modes without a Move between Replica and Autonomous modes without a reinstall reinstall Support for language subsetting on downstream replica serversSupport for language subsetting on downstream replica serversReplica’s can sync meta-data from a USS and content from MUReplica’s can sync meta-data from a USS and content from MUSupport for disconnected Support for disconnected replica synchronizationreplica synchronization

Improved PerformanceImproved Performance

Reporting performanceReporting performance50% performance gain50% performance gain

Server SynchronizationServer SynchronizationFull sync down from 1 ½ hours to 20 minutesFull sync down from 1 ½ hours to 20 minutes

New UI makes it easier to see New UI makes it easier to see what’s relevantwhat’s relevant

New deployment options make it easier to New deployment options make it easier to build large scale deploymentsbuild large scale deployments

Server now has native support for x64Server now has native support for x64

Targeting EnhancementsTargeting Enhancements

WSUS 3.0 supports 2 new WSUS 3.0 supports 2 new grouping conceptsgrouping concepts

Nested target groupsNested target groups

Overlapping group membershipOverlapping group membershipA computer can be a member of > 1 groupA computer can be a member of > 1 group

Eg: Computer 1 is a member of Servers as well Eg: Computer 1 is a member of Servers as well as Exchange Serversas Exchange Servers

Windows PowerShellWindows PowerShell

Next generation shell that is:Next generation shell that is:As As interactiveinteractive and and composablecomposable as BASH/KSH as BASH/KSH

As As programmaticprogrammatic as Perl/Ruby as Perl/Ruby

As As production orientedproduction oriented as AS400 CL/VMS DCL as AS400 CL/VMS DCL

Allows access to data stores as Allows access to data stores as easyeasy to access to access as filesystemsas filesystems

PowerShell HighlightsPowerShell Highlights

Rich set of Namespaces (data dources)Rich set of Namespaces (data dources)Man-style help with rich schema Man-style help with rich schema and searchingand searchingCommand-line-oriented following strong Command-line-oriented following strong naming guidelinesnaming guidelines

E.g., Verb-NounE.g., Verb-Noun

Interactive experience (aliases, Interactive experience (aliases, navigation, tab-completion, command navigation, tab-completion, command line editing)line editing)Pipelines Pipelines Object utilitiesObject utilities

ShellShell

UniformityUniformity

Get-Process | Where { $_.handles –gt 500 } | Sort handlecount | Format-Get-Process | Where { $_.handles –gt 500 } | Sort handlecount | Format-TableTable

Get-P

rocess

Get-P

rocess

Class

Class

Common PowerShell ParserCommon PowerShell Parser

PowerShell Pipeline ProcessorPowerShell Pipeline ProcessorW

here C

lassW

here C

lass

So

rt S

ort

Class

Class

Fo

rmat

Fo

rmat

Class

Class

ShellShell

CommandsCommands

Verb-NounVerb-NounVerb-Noun –FirstP Val –SecondP V2,V3 –ThirdP:V4Verb-Noun –FirstP Val –SecondP V2,V3 –ThirdP:V4

You can aliasYou can aliasSet-Alias gps Get-ProcessSet-Alias gps Get-Process

Parameters can be positionalParameters can be positionalgps –ProcessName LSASSgps –ProcessName LSASS

gps LSASSgps LSASS

Many parameters can be wildcardedMany parameters can be wildcardedgps c*gps c*

Partial parameter names allowedPartial parameter names allowedGps –p lsassGps –p lsass

ShellShell

Trusting OperationsTrusting Operations

Commands with side-effects support:Commands with side-effects support:WhatifWhatif

Gps |where {$_.handles –ge 500} | Gps |where {$_.handles –ge 500} | stop-process –WhatIfstop-process –WhatIf

ConfirmConfirmStop-process S* -ConfirmStop-process S* -Confirm

VerboseVerboseStop-Process [a-x]*[q]*[r-t] -VerboseStop-Process [a-x]*[q]*[r-t] -Verbose

ShellShell

Finding DataFinding Data

Data stores surfaced as “Drives”Data stores surfaced as “Drives”Filesystem, Registry, Alias, Certs, Env, Functions, Variables, etcFilesystem, Registry, Alias, Certs, Env, Functions, Variables, etc> Get-PSdrive> Get-PSdrive> dir HKLM:\SOFTWARE\Microsoft> dir HKLM:\SOFTWARE\Microsoft

Drive is a namespace with numerous Drive is a namespace with numerous information axisinformation axis

Item, ChildItem, Content, ItemProperty, ACL, etc.Item, ChildItem, Content, ItemProperty, ACL, etc.

New navigation/interaction model supported with aliases New navigation/interaction model supported with aliases for existing commandsfor existing commands

Get-ChildItemGet-ChildItem dirdir lsls

Get-CwdGet-Cwd cdcd pwdpwd

Get-ContentGet-Content typetype catcat

New-Item –type DirectoryNew-Item –type Directory mkdirmkdir mkdirmkdir

Set-LocationSet-Location cdcd cdcd

ShellShell

Explicit Object FormattingExplicit Object Formatting

Built-in formatters for lists, tables, wide, Built-in formatters for lists, tables, wide, and custom-viewsand custom-views

> Get-Command Format-*> Get-Command Format-*

Formatters allow you to specify properties, Formatters allow you to specify properties, propertysets and property expressionspropertysets and property expressions

> gps |format-table name,id,handlecount> gps |format-table name,id,handlecount

> gps |format-table Configuration -auto > gps |format-table Configuration -auto

> gps |format-table name,@{> gps |format-table name,@{Expression= {$_.mainmodule.filename}; Expression= {$_.mainmodule.filename}; Label="File"}Label="File"}

> gps |format-list name,*size64> gps |format-list name,*size64

ShellShell

ScriptingScripting

Supports existing scripting modelsSupports existing scripting models*NIX model of text processing including regular expressions*NIX model of text processing including regular expressions

Visual Basic Script model of COM automationVisual Basic Script model of COM automation

Supports scripting .NET objectsSupports scripting .NET objects

Support loose, strong, and extensible typing modelsSupport loose, strong, and extensible typing models

Uniform syntax to access to a wide range of typesUniform syntax to access to a wide range of typesWMI, XML, COM, ADSI, ADOWMI, XML, COM, ADSI, ADO

Rich variable semantics (typed, read-only, constraints, Rich variable semantics (typed, read-only, constraints, descriptions)descriptions)

Rich operators and control structures (C#-like with access Rich operators and control structures (C#-like with access to cmds & utilities)to cmds & utilities)

Functions (positional, named, typed, Functions (positional, named, typed, constrained params)constrained params)

ScriptingScripting

PowerShell ScriptingPowerShell Scripting

For more InformationFor more InformationRelated Sessions on the MMS 2006 DVDRelated Sessions on the MMS 2006 DVD

SW02SW02 Windows Vista Client: Overview of Manageability Infrastructure enhancementsWindows Vista Client: Overview of Manageability Infrastructure enhancements

SW03SW03 Group Policy - What's New in Vista and Longhorn ServerGroup Policy - What's New in Vista and Longhorn Server

SW04SW04 Solving Management Problems with Windows Power ShellSolving Management Problems with Windows Power Shell

SW05SW05 Maximizing the Value of Windows Management Technologies - Today and Maximizing the Value of Windows Management Technologies - Today and TomorrowTomorrow

SW06SW06 Windows Power Shell - Next Generation Command Line ScriptingWindows Power Shell - Next Generation Command Line Scripting

SW08SW08 WS-Management: Heterogeneous Application Systems Management and WS-Management: Heterogeneous Application Systems Management and problem solving by exampleproblem solving by example

SW09SW09 Overview of WSUS 3.0Overview of WSUS 3.0

SW11SW11 Windows Vista: New Performance Counter Infrastructure and Data CollectionWindows Vista: New Performance Counter Infrastructure and Data Collection

SW12SW12 Windows Management Instrumentation: Roadmap and Best Practices for WMI Windows Management Instrumentation: Roadmap and Best Practices for WMI Troubleshooting and ScriptingTroubleshooting and Scripting

SW14SW14 New Remote Management Capabilities in VistaNew Remote Management Capabilities in Vista

SW15SW15 Improved Diagnosis and Troubleshooting with Vista Event ViewerImproved Diagnosis and Troubleshooting with Vista Event Viewer

SW16SW16 Vista Client Management with the New Task SchedulerVista Client Management with the New Task Scheduler

© 2006 Microsoft Corporation. All rights reserved.This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.