Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tech·Ed North America /13/2018 5:39 AM

Published byEvelyn Simon Modified over 6 years ago

Similar presentations

Presentation on theme: "Tech·Ed North America /13/2018 5:39 AM"— Presentation transcript:

1 Tech·Ed North America 2009 9/13/2018 5:39 AM
© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 MDOP: Managing GPOs with Advanced Group Policy Management 3.0
Microsoft Confiential: Preliminary Information: NDA Only MDOP: Managing GPOs with Advanced Group Policy Management 3.0 Michael Kleef Program Manager Microsoft WCL308

3 What We Will discuss Advanced Group Policy Management (AGPM)
9/13/2018 5:39 AM What We Will discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New Features Getting it Running What Does the Future Hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

4 What We Want Know what changed and undo bad changes

5 What We Want Track settings across GPOs in live environment

6 demo The Big Picture

7 What We Will Discuss Advanced Group Policy Management (AGPM)
9/13/2018 5:39 AM What We Will Discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

8 Change Management Version Control using check in – check out
Permissions prevent accidental edits Offline Editing separates production from the Archive

9 Offline Editing Edit GPOs offline before deploying live

10 Template Create a complete baseline for future GPOs

11 Comments Add useful metadata for important changes
“Adjusted IE restrictions after PTA meeting” “Changed desktop background from whatever the user wants to corporate approved” “Removed Solitaire from Emergency Room computers” Add useful metadata for important changes

12 demo Authoring

13 What We Will discuss Advanced Group Policy Management (AGPM) Auditing
9/13/2018 5:39 AM What We Will discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

14 Auditing Get complete details on what happened, who did it, and why

15 Auditing - History History is a list of complete backups
Rollback to a safe state Safeguard your live environment from unapproved changes and untested settings

16 What We Will Discuss Advanced Group Policy Management (AGPM) Reporting
9/13/2018 5:39 AM What We Will Discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

17 vs Reporting GPO 1.0 Security Template GPO A Security Kiosk GPO 1.5
Settings Parity with Group Policy settings reports Difference Versions: older compared to newer Any two GPOs Template: GPO compared to its baseline GPO 1.0 Security Template GPO A Security Kiosk GPO 1.5 GPO B vs

18 Reporting - Differences
Added Changed Removed Compare settings between GPOs

19 Auditing and Reporting
demo Auditing and Reporting

20 What We Will Discuss Advanced Group Policy Management (AGPM)
9/13/2018 5:39 AM What We Will Discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

21 Delegation - Roles Define granular control without making everyone
Full Control Editor Approver Reviewer Define granular control without making everyone a Domain Admin 21

22 Workflow Create a repeatable workflow that you can track Offline
Control Check-out Edit Check-in Requests Reporting Deployment Create a repeatable workflow that you can track Offline

23 demo Workflow

24 What We Will Discuss Advanced Group Policy Management (AGPM)
9/13/2018 5:39 AM What We Will Discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

25 New 3.0 Features Overview OS support Localization
Windows 2008, Vista SP1 with RSAT 64 bit systems Group Policy Preferences Localization 11 languages Granular change tracking Purge historical data Delegation

26 Granular Change Tracking

27 Purge Historical Data

28 Delegation

29 Also… Improved installation process
Simplified procedure for modifying the port on which the AGPM Server listens security - SSL encryption of SMTP traffic Friendlier names for AGPM policy settings The Editor role requires permissions to delete GPOs Improved GPO role delegation experience General UI improvements

30 What We Will Discuss Advanced Group Policy Management (AGPM)
9/13/2018 5:39 AM What We Will Discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

31 Requirements Windows Server 2008 Vista SP1 + RSAT
Server component Domain member or DC .net framework 3.5 Specifics Establish a service account Establish an administrator Client component Installed on computer with GPMC .net Framework 3.0 Windows Server 2008 Vista SP1 + RSAT Full support for 64 bit systems and GP Preferences 31

32 Administrative Desktop
Set-up Archive/Offline Production AGPM Server Copy of GPO 2 Domain Controller GPO 1 GPO 2 GPO 2 Copy of GPO 1 GPO 1 Direct link Server Component Direct link Admin Component Administrative Desktop 32

33 What We Will Discuss Advanced Group Policy Management (AGPM)
9/13/2018 5:39 AM What We Will Discuss Advanced Group Policy Management (AGPM) Change Management Auditing Reporting New features Getting it running What does the future hold for AGPM? © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

34 Advanced Group Policy Management
AGPM Roadmap H2 CY08 CY09 AGPM 3.0 Flexible security WS08 support Localization Enhanced UI AGPM 4.0 Search & Filter Cross-forest GPO mgmt Windows 7 /WS08 R2 support MDOP: Advanced Group Policy Management

35 demo AGPM 4.0

36 Translating software inventory
into business intelligence Dynamically streaming software as a centrally managed service Enhancing group policy through change management Proactively managing application and operating system failures Powerful tools to accelerate desktop repair Simplifying deployment and management of Virtual PCs

37 Summary Create a complete baseline for future GPOs
9/13/2018 5:39 AM Summary Create a complete baseline for future GPOs Add useful metadata for important changes Get complete details on what happened, who did it, and why Safeguard your live environment from unapproved changes and untested settings Compare settings between GPOs Define granular control w/o making everyone a domain admin Create a repeatable workflow that you can track Edit GPOs offline before deploying live Goals: Know what changed and undo bad changes Track settings across GPOs in live environment © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

38 Group Policy sessions WSV326 Windows Server 2008 R2 Group Policy Changes - 2:45PM-4:00PM – Petree Hall D

39 Blogs.technet.com/mkleef Blogs.technet.com/grouppolicy
question & answer Blogs.technet.com/mkleef Blogs.technet.com/grouppolicy

40 Helpful Resources Group Policy TechNet page Group Policy Team Blog Group Policy TechNet Forum

41 appendix 41

42 Resources www.microsoft.com/teched www.microsoft.com/learning
Sessions On-Demand & Community Microsoft Certification & Training Resources Resources for IT Professionals Resources for Developers Microsoft Certification and Training Resources

43 Track Resources Meet us today at the
Want to find out which Windows Client sessions are best suited to help you in your deployment lifecycle? Want to talk face-to-face with folks from the Windows Product Team? Meet us today at the Springboard Series Lounge, or visit us at Springboard Series The Springboard Series empowers you to select the right resources, at the right technical level, at the right point in your Windows® Client adoption and management process. Come see why Springboard Series is your destination for Windows 7.

44 Complete an evaluation on CommNet and enter to win!

45 9/13/2018 5:39 AM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION. © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Tech·Ed North America /13/2018 5:39 AM"

Similar presentations

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Feature: Purchase Requisitions - Requester © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

Feature: Purchase Requisitions - Requester © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
MIX 09 4/15/2017 11:14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

MIX 09 4/15/ :14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Feature: Payroll and HR Enhancements © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

Feature: Payroll and HR Enhancements © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.
Windows 7 Training Microsoft Confidential. Windows ® 7 Compatibility Version Checking.

Windows 7 Training Microsoft Confidential. Windows ® 7 Compatibility Version Checking.
Johan Arwidmark Chief Technical Architect WCL315.

Johan Arwidmark Chief Technical Architect WCL315.
Session 1.

Session 1.
Built by Developers for Developers…. © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

Built by Developers for Developers…. © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
Feature: Customer Combiner and Modifier © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.

Feature: Customer Combiner and Modifier © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.
© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

customer.

customer.
demo © 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

demo © 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
demo Demo.

demo Demo.
demo QueryForeign KeyInstance /sm:body()/x:Order/x:Delivery/y:TrackingId1Z01234567893.

demo QueryForeign KeyInstance /sm:body()/x:Order/x:Delivery/y:TrackingId1Z
Feature: Suggested Item Enhancements – Analysis and Assignment © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and.

Feature: Suggested Item Enhancements – Analysis and Assignment © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and.
© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks.

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks.
© 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

© 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

Similar presentations

Ads by Google