Presentation is loading. Please wait.

Presentation is loading. Please wait.

Align your Windows 10 management strategy to end-user and IT needs

Published byDarren Scott Modified over 6 years ago

Similar presentations

Presentation on theme: "Align your Windows 10 management strategy to end-user and IT needs"— Presentation transcript:

1 Align your Windows 10 management strategy to end-user and IT needs
Microsoft Ignite 2016 5/10/ :23 AM BRK2137 Align your Windows 10 management strategy to end-user and IT needs Jason Githens Principal Group PM Manager Deen King-Smith Program Manager © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Session Overview With the enhanced MDM capabilities in Windows 10, a common question is when to use ConfigMgr vs Intune, what’s the future of ConfigMgr and Intune for PC Management There are IT and end-user considerations for both approaches to management At the end of this session, you should have a clear perspective on which solution to use, and the long-term Microsoft strategy for both ConfigMgr and Intune

3 Traditional Management
TechReady 23 5/10/ :23 AM Traditional Management Group Policy Group Policy Preferences Desired State Configuration (DSC) Configuration Manager 3rd part Security Management tooling On Prem Primarily Desktop © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

4 IT Life Cycle – Traditional Management
56% IT time spent on app/update testing, managing security IT Life Cycle – Traditional Management Acquire Windows Deploy Identity Managing Device & Apps (Test, Manage & Monitor) Update Complex process Wipe & Reload (SCCM OSD) On-premise Active Directory Group policy, SCCM, 3rd party security mgmt. tools, Win32 app install SCCM

5 Modern Management TechReady 23 5/10/2018 12:23 AM
© 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Microsoft 2016 5/10/ :23 AM In a mobile-first, cloud-first world, management should empower users to be productive from anywhere and always up-to-date, while keeping enterprise data and assets secure. © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 IT Lifecycle – Modern Management
Windows Update for Business, Intune Simple with per user licensing Acquire Windows Deploy Identity Security Update Azure AD (w/ Identity based roaming) WDATP, Security mgmt App Mgmt Manage licenses Analytics & Mgmt Enterprise Store, Centennial Windows as a subscription Windows Analytics, Intune Cloud based Provisioning

8 Windows 10 Management Principles
Reduce Total Cost of Ownership through Intune/Cloud Management and Azure Active Directory for identity Provide rich IT insights through data and telemetry for business enablement (Upgrade Analytics, Defender Advanced Threat Protection) Empower and delight end users (self provisioning with AAD Join, Windows Store for Business for applications, Windows Hello for authentication)

9 What’s the Challenge?

10 Management options (Traditional vs. Modern)
Microsoft Ignite 2015 5/10/ :23 AM Management options (Traditional vs. Modern) Provisioning OS Deployment/Imaging AAD Join and Auto enrollment into Intune / Provisioning Package Identity and Authentication Membership Active Directory Domain Join | Workgroup Azure Active Directory Azure Active Directory join Software Updates Granular patch selection, targeting, scheduling Windows Update for Business, light scheduling with rings/deferrals Applications Win32 Universal, Centennial, SaaS* Agent SCCM Inbox MDM (OMA-DM) Policy Group Policy MDM Policies (OMA-DM) * Only basic, single-file MSI support is available through inbox MDM for application deployment © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

11 So, how should my organization deploy and manage Windows 10?

12 Customer examples Startups or spinoffs looking to start life all-in on the cloud, O365, EMS, etc. Established enterprises looking to move significant users in their estate to cloud Established enterprises looking to move pockets of users to the cloud, field sales, etc., maintain traditional management for the rest (for now) Established enteprises with no plans (for now) to move to the cloud

13 Best of Both Worlds: Traditional and Modern Converge with ConfigMgr and Intune
5/10/ :23 AM Intune stand-alone (cloud only) ConfigMgr with Intune (hybrid) Mobile devices and PCs Intune web console ConfigMgr console System Center Configuration Manager MDM MDM IoT/Kiosk devices MDM or agent Agent Transition = IT Desire + Functional Requirements Domain-joined PCs Mobile devices © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

14 Microsoft Azure Office 365 Windows Upgrade Analytics Windows as a Service Microsoft Intune Windows Store for Business Windows Update for Business Windows Defender Advanced Threat Protection Health Attestation Configuration Manager Operations Management Suite (OMS) Azure Active Directory Microsoft Cloud Services

15 Configuration Manager Current Branch
Product version Release vehicle Availability Windows 10 features supported Support Windows Servicing Model supported System Center Configuration Manager Current Branch In market for 9+ months, 3 releases (1606 the latest). Tech Preview every month New features, security updates, and bug fixes Can defer updates for up to 12 months before you must deploy updates to maintain support Windows 10 Current Branch, Current Branch for Business, and Long Term Servicing Branch Current Branch (version 1511) Current Branch (version 1602) Current Branch (version 1606) System Center Configuration Manager Winter 2015 2016 (1610)

16 20,533 Total Tenants

17 40,497,142 Million Total Clients

18 Key Principles of the Microsoft Management Strategy
Cloud and modern management are absolutely where Microsoft sees the future of Windows in the Enterprise however . . . Traditional management, and by extension Configuration Manager are not going away We continue to invest deeply in Configuration Manager, and will continue to do so Moving Configuration Manager to a servicing model, sets it to provide years of rapid, iterative value and support for Windows management Modern management through Intune has significant potential, particularly in TCO, and we’ll continue to invest deeply in Windows management there to meet customer demand Monthly iterations of Intune service updates and innovation plus Windows as a Service provide continuous improvements to make modern management a reality With the combination of Configuration Manager and Intune, you’ll continue to get the best of both management styles regardless of where your organization is today, or where you’re going

19 How we think about this….

20 Customer IT Trends Over Time
IT today is mostly split along Desktop, Mobile, and Productivity teams IT is converging into combined endpoint teams (PC and Mobile) and Cloud Office teams IT of the future will be an End-User computing group, combining cloud-mobility management (Enterprise Mobility and Security) and productivity (Office 365)

21 The SCCM to Intune Trajectory – Windows 10
5/10/ :23 AM The SCCM to Intune Trajectory – Windows 10 Deployment and mgmt. strategy On-ramp to the cloud and MDM over time New or Existing Windows Devices Win32 Apps, AD Auth, GP ConfigMgr agent Upgrade/Refresh 7, 8, 8.1 to Windows 10 with ConfigMgr Preserve apps and configuration Maintain management processes and principles of today Azure Hosted SCCM ConfigMgr Cloud Based Mgmt Modern Manage Windows 10 Device Universal Apps, MDM Policy Enroll in Intune (Azure AD Join/provision) Manage via MDM Universal apps (Store/LOB) MDM Policy © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

22 Enhancing Windows 10 experiences with EMS
System Center Marketing 5/10/2018 Enhancing Windows 10 experiences with EMS Simplify deployment Azure AD Join with Intune auto enrollment Provisioning packages and profiles for bulk enrollment In-place upgrade to Windows 10 with ConfigMgr Configure Windows 10 Expanded MDM settings Per-app VPN Microsoft Passport policies and certificates Windows Universal and Win32 apps Support volume purchase of apps User IT Unify device management Intune integration with ConfigMgr to manage all devices in the environment New in ConfigMgr: Faster and easier ConfigMgr updates Windows 10 servicing Deep cloud integration Manage and protect Corporate data leakage prevention through Windows Information Protection policies Azure Information Protection integration for securing shared documents/files Device Guard and AppLocker policies Advanced conditional access policies Integration with Device Health Attestation Service © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

23 Getting to Windows 10 Existing devices Refresh Existing devices
5/10/2018 Getting to Windows 10 Improved Modern Traditional Existing devices Refresh Use if significant changes are needed, such as OS architecture change x86 versus x64 Traditional process Capture data and settings Deploy (custom) OS image Inject drivers Install apps Restore data and settings Existing devices Upgrade Let Windows and ConfigMgr do the work Preserve all data, settings, apps, and drivers Install (standard) OS image Restore everything Recommended for existing devices (Windows 7/8/8.1) New devices IT Pro Provisioning Provisioning package Windows Image and Configuration Designer (WICD) Transform into an enterprise device Provisioning profile with ConfigMgr User Provisioning Azure AD Join with Intune auto enrollment ConfigMgr/MDT ConfigMgr/WICD/Intune/Azure AD © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

24 Windows 10 Azure AD Joined Devices
Apps in Azure 3rd party apps & clouds Azure AD Join for Windows 10 Azure AD Join makes it possible to connect work-owned Windows 10 devices to your company’s Azure Active Directory. With Azure AD Join, you can auto enroll devices in Microsoft Intune for management. Azure Active Directory Microsoft Intune Windows 10 Azure AD Joined Devices Intune/MDM auto enrollment Intune auto enrollment Enterprise-compliant services Support for hybrid environments Single sign-on from the desktop to cloud and on-premises applications with no VPN On-premises apps

25 How do I choose?

26 Management options (Traditional vs. Modern)
Microsoft Ignite 2015 5/10/ :23 AM Management options (Traditional vs. Modern) Provisioning OS Deployment/Imaging AAD Join and Auto enrollment into Intune / Provisioning Package Identity and Authentication Membership Active Directory Domain Join | Workgroup Azure Active Directory Azure Active Directory join Software Updates Granular patch selection, targeting, scheduling Windows Update for Business, light scheduling with rings/deferrals Applications Win32 Universal, Centennial, SaaS* Agent SCCM Inbox MDM (OMA-DM) Policy Group Policy MDM Policies (OMA-DM) * Only basic, single-file MSI support is available through inbox MDM for application deployment © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

27 In closing….

28 Things to Remember Our customers have options
All of these options are designed to work together Pick what works best for our customer based on their goals & scenarios Customers can get started today by optimizing what they have for their migration to modern management

29 Please evaluate this session
5/10/ :23 AM Please evaluate this session Your feedback is important to us! From your PC or Tablet visit MyIgnite at From your phone download and use the Ignite Mobile App by scanning the QR code above or visiting © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

30 Free IT Pro resources To advance your career in cloud technology
Microsoft Ignite 2016 5/10/ :23 AM Free IT Pro resources To advance your career in cloud technology Plan your career path Microsoft IT Pro Career Center Cloud role mapping Expert advice on skills needed Self-paced curriculum by cloud role $300 Azure credits and extended trials Pluralsight 3 month subscription (10 courses) Phone support incident Weekly short videos and insights from Microsoft’s leaders and engineers Connect with community of peers and Microsoft experts Get started with Azure Microsoft IT Pro Cloud Essentials Demos and how-to videos Microsoft Mechanics Connect with peers and experts Microsoft Tech Community © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

31

Download ppt "Align your Windows 10 management strategy to end-user and IT needs"

Similar presentations

Microsoft Virtual Academy

Microsoft Virtual Academy
2/20/2018 7:04 PM BRK1038 Meet Azure Information Protection customers and learn about their success stories Jeffrey Kalfut Strategy & Architecture Manager,

2/20/2018 7:04 PM BRK1038 Meet Azure Information Protection customers and learn about their success stories Jeffrey Kalfut Strategy & Architecture Manager,
Microsoft Ignite 2016 4/30/2018 9:28 PM BRK3174

Microsoft Ignite /30/2018 9:28 PM BRK3174
Examine information management in Cortana Intelligence

Examine information management in Cortana Intelligence
5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.

5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.
5/22/2018 1:39 AM BRK2156 Power BI Report Server: Self-service BI and enterprise reporting on-premises Christopher Finlan Senior Program Manager © Microsoft.

5/22/2018 1:39 AM BRK2156 Power BI Report Server: Self-service BI and enterprise reporting on-premises Christopher Finlan Senior Program Manager © Microsoft.
Develop, debug and deploy containerized applications with Docker

Develop, debug and deploy containerized applications with Docker
Manage Windows devices in the complex hybrid cloud world of today

Manage Windows devices in the complex hybrid cloud world of today
Microsoft 2016 6/2/2018 3:42 PM BRK3129 Query Big Data using the Expanded T-SQL footprint with PolyBase in SQL Server 2016 Casey Karst Program Manager.

Microsoft /2/2018 3:42 PM BRK3129 Query Big Data using the Expanded T-SQL footprint with PolyBase in SQL Server 2016 Casey Karst Program Manager.
Cloud-First, Modern Windows Management and Security

Cloud-First, Modern Windows Management and Security
Microsoft 2016 6/4/2018 8:21 AM BRK3082 Build solutions and apps with Microsoft OneDrive API and Microsoft Graph API Ryan Gregg Principal Program Manger,

Microsoft /4/2018 8:21 AM BRK3082 Build solutions and apps with Microsoft OneDrive API and Microsoft Graph API Ryan Gregg Principal Program Manger,
Windows Server* 2016 & Intel® Technologies

Windows Server* 2016 & Intel® Technologies
Azure Information Protection Strategy and Roadmap

Azure Information Protection Strategy and Roadmap
Conduct a successful pilot deployment of Microsoft Intune

Conduct a successful pilot deployment of Microsoft Intune
6/10/2018 5:07 PM THR2218 Deploying Windows Defender AV and more with Intune and Configuration Manager Amitai Rottem @AmitaiTechie Senior Program Manager,

6/10/2018 5:07 PM THR2218 Deploying Windows Defender AV and more with Intune and Configuration Manager Amitai Senior Program Manager,
Review the Nutanix Cloud Platform System Standard solution

Review the Nutanix Cloud Platform System Standard solution
Modern application lifecycle with DevOps

Modern application lifecycle with DevOps
Windows 10 and the cloud: Why the future needs hybrid solutions

Windows 10 and the cloud: Why the future needs hybrid solutions
Modernizing your Remote Access

Modernizing your Remote Access
Microsoft 2016 6/23/2018 1:11 AM BRK3180 Migrate CRM OnPremise organizations to CRM Online cloud using Dynamics Lifecycle Services (LCS) Aditya Varma Ganapathy.

Microsoft /23/2018 1:11 AM BRK3180 Migrate CRM OnPremise organizations to CRM Online cloud using Dynamics Lifecycle Services (LCS) Aditya Varma Ganapathy.

Similar presentations

Ads by Google