5/12/2019 2:57 PM © Microsoft Corporation. All rights reserved.

Slides:

Advertisements

Similar presentations

Harnessing the power of SWIFT for enterprise financial messaging Published: April 2007 Microsoft BizTalk Accelerator for SWIFT.

Advertisements

Incident Response Managing Security at Microsoft Published: April 2004.

Microsoft ® System Center Configuration Manager 2007 R3 and Forefront ® Endpoint Protection Infrastructure Planning and Design Published: October 2008.

Introduction to Systems Management Server 2003 Tyler S. Farmer Sr. Technology Specialist II Education Solutions Group Microsoft Corporation.

1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

Operational MS Tibor Kolejak Regional IT Site Manger Microsoft Czech Republic Tibor Kolejak Regional IT Site Manger Microsoft Czech Republic.

1 Secure Your Business PATCH MANAGEMENT STRATEGY.

Managing LOB Applications by Using System Center Operations Manager Published: March 2007.

Windows XP Professional Deployment and Support Microsoft IT Shares Its Experiences Published: May 2002 (Revised October 2004)

Smart Card Deployment David Gautrey IT Manager – Microsoft New Zealaand Microsoft Corporation.

Patch Management Strategy

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Identity and Access Management Business Ready Security Solutions.

Using the WDK for Windows Logo and Signature Testing Craig Rowland Program Manager Windows Driver Kits Microsoft Corporation.

Module 14: Configuring Server Security Compliance

SAM for Virtualizatio n Presenter Name. Virtualization: a key priority for business decision makers Technavio forecasts that the global virtualization.

The Infrastructure Optimization Journey Kamel Abu Ayash Microsoft Corporation.

Future of the Server Room Tour. Ottawa Montreal Calgary Vancouver Toronto Future of Your Server Room Three Pillars of Windows Server 2008 Virtualization.

Paul Butterworth Management Technology Architect

Module 6: Designing Security for Network Hosts

Microsoft Management Seminar Series SMS 2003 Change Management.

Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.

Virtual Machine Management Challenges What are Solution Accelerators? Offline Virtual Machine Servicing Tool Next Steps.

Managed Support CSM Event – 1 st June Steven Grier Premier Support Manager Premier Support.

The Business of IT How Microsoft does IT William McKnight Microsoft IT Microsoft Corporation.

Be Microsoft’s first and best customer Enabling world-class and predictable customer, client, and partner experience Protecting Microsoft’s physical and.

Active Directory design recommended practices Mark Cribben Consultant.

Windows Small Business Server 2003 R2 Powering Small Businesses.

Application Migration Fritz Ohman Alphageek

Infrastructure for the People-Ready Business. Presentation Outline POINT B: Pro-actively work with your Account manager to go thru the discovery process.

Asif Jinnah Field Desktop Services Enabling a Flexible Workforce, an insider’s view.

Network and Server Basics. Learning Objectives After viewing this presentation, you will be able to: Understand the benefits of a client/server network.

ConfigMgr Discovering and Organizing Resources Mariusz Zarzycki, Phd, MCT, MCTS, MCITP, MCSE, MCSA.....

Microsoft Connect /23/ :39 PM

Managed IT Solutions More Reliable Networks Are Our Business

Azure Solution Alignment Workshop

System Center 2012 Configuration Manager

Patch Management Patch Management Best Practices

Microsoft Ignite /16/2018 3:12 PM BRK2119

Self-service enrollment for Windows desktops

MODULE 10 – PROJECT SERVER

Microsoft Assessment and Planning 3.0

Security Insights: How Microsoft Secures IT

Microsoft Ignite /18/2018 8:30 PM BRK2065

Threat Management Gateway

Opalis and Service Manager: IT Automation & Compliance

Hyper-V Cloud Proof of Concept Kickoff Meeting <Customer Name>

Migration Strategies – Business Desktop Deployment (BDD) Overview

Microsoft Virtual Academy

SQL Server BI on Windows Azure Virtual Machines

SQL Server OLTP with Microsoft Azure Virtual Machines

Deployment timeline This template is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED, OR STATUTORY, AS TO THE INFORMATION.

11/23/2018 3:03 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

DAT381 Team Development with SQL Server 2005

Windows Azure Hybrid Architectures and Patterns

5/24/ :22 AM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

Module 1: Overview of Systems Management Server 2003

Microsoft Virtual Academy

SCCM in hybrid world Predrag Jelesijević Microsoft 7/6/ :17 AM

SQL Server Assessment Results

SMS 2003 Install and Configuration Walkthrough

Security in the Real World – Plenary Day One

Implementing Security Patch Management

In the attack index…what number is your Company?

Mark Quirk Head of Technology Developer & Platform Group

Using Software Restriction Policies

Microsoft Virtual Academy

IT Management, Simplified

Presentation transcript:

5/12/2019 2:57 PM © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Server Patch Management at Microsoft 5/12/2019 2:57 PM Server Patch Management at Microsoft Sue Brazier IT Manager Microsoft Corporation © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Agenda Microsoft IT Environment Challenges Requirements 5/12/2019 2:57 PM Agenda Microsoft IT Environment Challenges Requirements Patch Management Process Patch Management Framework Lessons learned More information © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Microsoft IT Environment 5/12/2019 2:57 PM Microsoft IT Environment 101,000 e-mail server accounts Single Instance SAP (1.5Tb Db) 300,000+ PCs and devices Dublin Redmond Tukwila Silicon Valley Tokyo Charlotte Singapore 92,000 end users 89 countries Johannesburg 3M+ e-mail messages per day internally 99.99% availability 7,000,000 remote connections/month © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Microsoft IT’s Priorities 5/12/2019 2:57 PM Microsoft IT’s Priorities Being Microsoft’s first and best customer Enabling world-class and predictable customer, client, and partner experience Protecting Microsoft’s physical and digital assets Excelling in integrated operations and IT © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Vulnerability Management 5/12/2019 2:57 PM Vulnerability Management Product ship Vulnerability discovered Disclosed Update released deployed Automation of exploit Responsible Disclosure HIGH RISK LOW RISK © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Challenges Large, highly dynamic environment Security 5/12/2019 2:57 PM Challenges Large, highly dynamic environment Security 2,500 attacks, probes, and scans daily Over 125,000 virus-infected messages quarantined monthly Unique IT environments for product development, testing, support, and research require special security Technology-literate staff 95% with local administrator right to their desktop © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Requirements Automated security update and application deployment 5/12/2019 2:57 PM Requirements Automated security update and application deployment Enforcement within prescribed timeframes Minimized unplanned downtime Central reporting and administration Clear communication path More accurate and efficient patch management More updates, fewer administrators, less time Reduction in manual effort to deploy updates Automated tools, fewer scripts © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Server Patch Management Process: Team Roles 5/12/2019 2:57 PM Server Patch Management Process: Team Roles Microsoft Response Centre (MSRC) Releases security bulletins Corporate Security Assigns deployment priority Data Centre Operations Manages data centres Hosts SMS infrastructures Patches servers © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

SMS Environment Desktop Management Environment 115,000 clients worldwide 4 AD forests Server Management Environment 7,000 servers worldwide 3 AD forests 1 Central Site Server Windows Server 2003 SQL Server ™ 2000 SP3a 1 Central Site Server Windows Server 2003 SQL Server 2000 SP3a 22 Primary Site Servers Windows Server 2003 1 Network Load Balancing server (Puget Sound) 30 Dedicated Secondary Site Servers 100+ Shared Secondary Site Servers Windows Server 2003 10 Primary Site Servers Windows Server 2003 © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Patch Management Framework 5/12/2019 2:57 PM Patch Management Framework Identify New Patches Relevance Enforcement Assess Environment to Be Patched Baseline Assess Review 1. Assess 2. Identify 3. Evaluate and Plan Deploy the Patch Distribute Install Report 4. Deploy Evaluate and Plan Patch Deployment Testing Risk Assessment Schedule © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Server Patch Management Process: Phases 5/12/2019 2:57 PM Server Patch Management Process: Phases Phase 4: Deploying the patch 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Thursday Friday 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Standard Deployment Saturday 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Sunday 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Hour 1 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Thursday Hour 2 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Emergency Deployment Friday Hour 3 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Saturday Hour 4 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Sunday © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Lessons Learned and Best Practices 5/12/2019 2:57 PM Lessons Learned and Best Practices Establish a change advisory board To control planned downtime, use a change control database Target update distribution according to pre-determined maintenance periods Suspend monitoring during patching Aggressively monitor and manage SMS client © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Lessons Learned and Best Practices 5/12/2019 2:57 PM Lessons Learned and Best Practices Make status self-serve through a website Monitor bandwidth when sending updates between SMS sites Streamline the SMS 2003 installation by enabling only necessary features Test the impact of the update © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Lessons Learned and Best Practices 5/12/2019 2:57 PM Lessons Learned and Best Practices Baseline the environment Begin with accurate inventory Keep baseline simple and enforce rigidly Bring sub-baseline computers into compliance Carefully consider servers that exceed baseline Establish enforcement policy © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

5/12/2019 2:57 PM For More Information For additional information about how to deploy, operate, maintain, and support SMS, visit http://www.microsoft.com/smserver/ For details about MSM and MOF, visit http://www.microsoft.com/technet/itsolutions © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

5/12/2019 2:57 PM For More Information Additional content on Microsoft IT deployments and best practices can be found on http://www.microsoft.com Microsoft TechNet http://www.microsoft.com/technet/itshowcase Microsoft Case Study Resources http://www.microsoft.com/resources/casestudies E-mail IT Showcase showcase@microsoft.com © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

© 2003-2004 Microsoft Corporation. All rights reserved. 5/12/2019 2:57 PM © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary. © 2003-2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.