Presentation is loading. Please wait.

Presentation is loading. Please wait.

5/29/2018 9:53 AM BRK3351 Achieving a modern workplace with Windows 10, Enterprise Mobility + Security, and Office 365 Paul Huijbregts Technology Solutions.

Published byBeatrix Brooks Modified over 6 years ago

Similar presentations

Presentation on theme: "5/29/2018 9:53 AM BRK3351 Achieving a modern workplace with Windows 10, Enterprise Mobility + Security, and Office 365 Paul Huijbregts Technology Solutions."— Presentation transcript:

1 5/29/2018 9:53 AM BRK3351 Achieving a modern workplace with Windows 10, Enterprise Mobility + Security, and Office 365 Paul Huijbregts Technology Solutions Professional © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Key takeaways Know what a Modern Workplace is
Identify technical challenges & solutions Learn about a new, strategic approach Find out how you can help your organization or customer achieve a Modern Workplace – become an MWW (Modern Workplace Warrior) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3 “Our mission is to empower every person and every organization on the planet to achieve more.”
Satya Nadella © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION

4

5 5/29/2018 9:53 AM This Photo by Unknown Author is licensed under CC BY
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Photo by Spenser H on Unsplash
5/29/2018 9:53 AM Photo by Spenser H on Unsplash © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 What is a “Modern Workplace”?
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

8 Management from the Cloud Group Policies -> Mobile Device Management Policies Dynamic Provisioning Advanced, Intelligent Security

9 Management from the Cloud Group Policies -> MODERN Device Management Dynamic Provisioning Advanced, Intelligent Security

10 Management from the Cloud Group Policies -> Dynamic Provisioning Advanced, Intelligent Security *MODERN DEVICE MANAGEMENT

11 System Center Configuration Manager
5/29/2018 9:53 AM Traditional on-prem Active Directory Domain Join Group Policy System Center Configuration Manager © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

12 Traditional on-prem Cloud Active Directory Domain Join Group Policy
5/29/2018 9:53 AM Traditional on-prem Cloud Active Directory Domain Join Group Policy System Center Configuration Manager Azure Active Directory Azure AD Join MDM Policies Microsoft Intune and other MDM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

13 Windows 10 designed for modern IT
5/29/2018 9:53 AM Modern IT Traditional IT Cloud Windows 10 designed for modern IT © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

14 Change is challenging 5/29/2018 9:53 AM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

15 Traditional ≠ MODERN Challenges ahead…

16 Current Management Options
Traditional Modern Provisioning AAD Join and Auto enrollment into Intune / Provisioning Package / Autopilot* OS Deployment/Imaging Procurement OEM Image | Custom Factory Image | “Signature Editions” OEM Image | Custom Factory Image Identity & Authentication Active Directory | NTLM and Kerb Auth for file and print | H4B Azure Active Directory | ADFS | TGT | H4B Windows Update for Business, light scheduling with rings/deferrals Software Updates Granular patch selection, targeting, scheduling Application types Universal, Windows Store for Business, Desktop Bridge, SaaS, Web, Win32* Universal, Win32, SaaS, Web Management Agent ConfigMgr Inbox MDM (OMA-DM) Policy configuration Group Policy MDM Policies (OMA-DM)

17 Current Configuration & Security Options
Traditional Modern Printers Active Directory | Group Policy Internet/Cloud Printing | Self-Service Files File Shares | Homedrives | Folder redirection SharePoint | OneDrive for Business Application Configuration ConfigMgr | Group Policy Self-Service User Preferences Enterprise State Roaming | Office 365 | Start Menu Layout via MDM | Self-Service Roaming Profiles | UE-V | Group Policy Access Control Kerberos | NAP | Direct Access/VPN Conditional Access | MFA Security Approach Perimeter based | Device lockdown Identity Based | Advanced Intelligent Security

18 MODERN ≠ Traditional

19 Finding the right mix Classic Hybrid Modern Future Workplace
Network Access LAN, VPN LAN, VPN WAN, VPN WAN Authentication Active Directory (AD) AD first, AAD Azure AD first, AD Azure AD only Applications Client/Server, Win32, Web, SaaS (Virtual) Win32, SaaS, Web Universal/Store, SaaS, Web Client/Server, Win32 Storage Local (fileshare, homedrive) Local+Online (fileshare, OneDrive) Online (OneDrive, SharePoint) Online (OneDrive, SharePoint) Settings Local Profiles, Enterprise State Roaming Local Profiles, Enterprise State Roaming Roaming Profiles Roaming Profiles, UE-V Security Perimeter, GPO Perimeter, GPO Identity, MDM Identity, MDM Access Kerberos | NAP | Direct Access/VPN Kerberos | NAP | Direct Access/VPN Conditional Access | Triggered VPN Conditional Access Printing Print Server + Follow-me printing Print Server Follow-me + Internet Printing Enterprise Cloud Printing

20 DO NOT ATTEMPT TO MIGRATE
Finding the right mix Classic Hybrid GAP Modern Future Workplace DO NOT ATTEMPT TO MIGRATE Network Access LAN, VPN LAN, VPN WAN, VPN WAN Authentication Active Directory (AD) AD first, AAD Azure AD first, AD Azure AD only Applications Client/Server, Win32, Web, SaaS Universal/Store, SaaS, Web Client/Server, Win32 (Virtual) Win32, SaaS, Web Storage Local (fileshare, homedrive) Local+Online (fileshare, OneDrive) Online (OneDrive, SharePoint) Online (OneDrive, SharePoint) Settings Local Profiles, Enterprise State Roaming Local Profiles, Enterprise State Roaming Roaming Profiles Roaming Profiles Security Perimeter, GPO Perimeter, GPO Identity, MDM Identity, MDM Access Kerberos | NAP | Direct Access/VPN Kerberos | NAP | Direct Access/VPN Conditional Access | Triggered VPN Conditional Access Printing Print Server + Internet printing Print Server Internet Printing Enterprise Cloud Printing

21 Demo Modern Device Management Policies 5/29/2018 9:53 AM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

22 5/29/2018 9:53 AM Modern Security © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

23 Modern Security Approach
From To Fully locked down & reliant on endpoint protection/3600 security policies Targeted, transparent security where & when it matters Bolted-on solutions Built-in features Perimeter based security Identity based security Centralized storage & protection of data Data stored & protected everywhere Zero trust Intelligent trust

24 5/29/2018 9:53 AM Bridging the gap © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

25 Bridging the gap Management
Provisioning AAD Bulk enrollment using provisioning package & enrollment tokens | AutoPilot!!! Procurement CleanPC CSP; remove OEM pre-installed software using Provisioning Package | AutoPilot & AutoPilot Reset Identity & Authentication Hello for Business new Hybrid options, Domain Controller passthrough with Azure AD Connect Software Updates Defer updates with Windows Update for Business up to 365 days | new Update Compliance Service including AV Applications App-V management support through CSP | Office C2R CSP Agent HTML5 Intune portal with more & better reporting (PowerBI, Graph API) | Policy New CSP options such as: DynamicManagement, Bitlocker, NetworkProxy | Many “GPO-like” settings using PolicyCSP & ADMX-backed policies such as Internet Explorer

26 Configuration & Security
Bridging the gap Configuration & Security Printers Internet/Cloud Printing | Self-Service Files Reporting configuration service provider (CSP) enhanced audit reports for Windows Information Protection App configuration ADMX-backed policies through Policy CSP* User Preferences Start Menu Layout CSP, taskbar layout option added Access Control Risk-based Conditional Access

27 Bridging the gap – moving forward
Intune Management Extension: Deploy PowerShell scripts through MDM Easier de-hybridizing of ConfigMgr + Intune Co-management of ConfigMgr + Intune Windows Analytics: Update Compliance Service including AV Tighter integration between WDATP + WDAV including cloud-based operations management Many more Security & Compliance (reporting) options through Windows Security Center CSP: Firewall, WindowsDefenderApplicationGuard, DeviceStatus, Office, Bitlocker, more PolicyCSP options

28 5/29/2018 9:53 AM management/mdm/new-in-windows-mdm-enrollment- management#whatsnew1709 © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

29 What about applications?
5/29/2018 9:53 AM What about applications? © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

30 Matching application usage, not ownership
1 Win32 3 Store/Universal Apps 2 Internal Web Apps 4 SaaS

31 Modernizing applications
SaaS Citrix Farm Application Servers Database Servers File Servers (Data) Backup, Other Published Desktop Active Directory Profile storage SBC/VDI

32 Modernizing applications
PaaS SaaS Store for Business Azure Active Directory Citrix Farm Application Servers Database Servers File Servers (Data) Backup, Other Published Apps Active Directory Profile storage SBC/VDI

33 Modernizing applications
IaaS PaaS SaaS Application Servers Database Servers Backup, Other Active Directory Store for Business Azure Active Directory Azure Application Proxy Citrix Farm Application Servers Database Servers Backup, Other Published Apps Active Directory Profile storage SBC/VDI

34 Modernizing applications
IaaS PaaS SaaS Legacy servers Active Directory Store for Business Azure Active Directory Azure Application Proxy Citrix Farm Published Apps Citrix Session Hosts / VDI

35 “One size does not fit all
“One size does not fit all. If you give everyone the same t-shirt, hardly anyone will want to wear it”

36 Think big, start small – but start now
Think big, start small – but start now. Deliver a Modern Workplace today – to the users that fit the profile.

37 5/29/2018 9:53 AM The journey © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

38 TODAY Classic TOMORROW Hybrid NEXT YEAR Modern 2020 Future Win32 Apps
IN 2 YEARS

39 Match users to a workspace concept based on application needs – deploy what you need, not what you have Modernize your application portfolio (do it) Start implementation of “low hanging workspace fruit” – the simplest scenarios first One size has never fit all – don’t try to put everyone in the same shirt Leverage support options like FastTrack & Microsoft Partners

40 Microsoft 365 Enterprise Office 365 Enterprise Mobility & Security
Windows 10 Enterprise Microsoft 365 Enterprise

41 Please evaluate this session
Tech Ready 15 5/29/2018 Please evaluate this session From your Please expand notes window at bottom of slide and read. Then Delete this text box. PC or tablet: visit MyIgnite Phone: download and use the Microsoft Ignite mobile app Your input is important! © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

42 5/29/2018 9:53 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "5/29/2018 9:53 AM BRK3351 Achieving a modern workplace with Windows 10, Enterprise Mobility + Security, and Office 365 Paul Huijbregts Technology Solutions."

Similar presentations

Align your Windows 10 management strategy to end-user and IT needs

Align your Windows 10 management strategy to end-user and IT needs
Conduct a successful pilot deployment of Microsoft Intune

Conduct a successful pilot deployment of Microsoft Intune
5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.

5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.
5/22/2018 1:39 AM BRK2156 Power BI Report Server: Self-service BI and enterprise reporting on-premises Christopher Finlan Senior Program Manager © Microsoft.

5/22/2018 1:39 AM BRK2156 Power BI Report Server: Self-service BI and enterprise reporting on-premises Christopher Finlan Senior Program Manager © Microsoft.
Deployment Planning Services

Deployment Planning Services
5/29/2018 1:51 AM THR2071 Managing enterprise applications, permissions, and consent in Azure Active Directory Adam Steenwyk & Jeff Sakowicz Program Managers.

5/29/2018 1:51 AM THR2071 Managing enterprise applications, permissions, and consent in Azure Active Directory Adam Steenwyk & Jeff Sakowicz Program Managers.
Manage Windows devices in the complex hybrid cloud world of today

Manage Windows devices in the complex hybrid cloud world of today
6/10/2018 5:07 PM THR2218 Deploying Windows Defender AV and more with Intune and Configuration Manager Amitai Rottem @AmitaiTechie Senior Program Manager,

6/10/2018 5:07 PM THR2218 Deploying Windows Defender AV and more with Intune and Configuration Manager Amitai Senior Program Manager,
Azure Cloud Shell Magic of Modern Command-line Management

Azure Cloud Shell Magic of Modern Command-line Management
Developing Hybrid Apps on Microsoft Azure Stack

Developing Hybrid Apps on Microsoft Azure Stack
6/17/2018 5:54 AM OSP322 Getting the best of both worlds, making the most of SharePoint hybrid search solutions Shyam Narayan Microsoft © 2013 Microsoft.

6/17/2018 5:54 AM OSP322 Getting the best of both worlds, making the most of SharePoint hybrid search solutions Shyam Narayan Microsoft © 2013 Microsoft.
Windows 10 and the cloud: Why the future needs hybrid solutions

Windows 10 and the cloud: Why the future needs hybrid solutions
Modernizing your Remote Access

Modernizing your Remote Access
Where is your Windows support career going wrong?

Where is your Windows support career going wrong?
6/25/2018 11:13 PM BRK1076 Make Windows devices more secure by taking them out of your existing infrastructure Chris Rhodes & Andrew Bettany MCTs & MVPs.

6/25/ :13 PM BRK1076 Make Windows devices more secure by taking them out of your existing infrastructure Chris Rhodes & Andrew Bettany MCTs & MVPs.
Lessons learned from moving to Microsoft Azure

Lessons learned from moving to Microsoft Azure
Do more with Microsoft Word and Office 365

Do more with Microsoft Word and Office 365
Microsoft Virtual Academy

Microsoft Virtual Academy
Optimizing Microsoft OneDrive for the enterprise

Optimizing Microsoft OneDrive for the enterprise
The power of common identity across any cloud

The power of common identity across any cloud

Similar presentations

Ads by Google