Presentation is loading. Please wait.

Presentation is loading. Please wait.

5/12/2019 2:57 PM © Microsoft Corporation. All rights reserved.

Published byJessie Francis Modified over 5 years ago

Similar presentations

Presentation on theme: "5/12/2019 2:57 PM © Microsoft Corporation. All rights reserved."— Presentation transcript:

1 5/12/2019 2:57 PM © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

2 Server Patch Management at Microsoft
5/12/2019 2:57 PM Server Patch Management at Microsoft Sue Brazier IT Manager Microsoft Corporation © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

3 Agenda Microsoft IT Environment Challenges Requirements
5/12/2019 2:57 PM Agenda Microsoft IT Environment Challenges Requirements Patch Management Process Patch Management Framework Lessons learned More information © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

4 Microsoft IT Environment
5/12/2019 2:57 PM Microsoft IT Environment 101,000 server accounts Single Instance SAP (1.5Tb Db) 300,000+ PCs and devices Dublin Redmond Tukwila Silicon Valley Tokyo Charlotte Singapore 92,000 end users 89 countries Johannesburg 3M+ messages per day internally 99.99% availability 7,000,000 remote connections/month © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

5 Microsoft IT’s Priorities
5/12/2019 2:57 PM Microsoft IT’s Priorities Being Microsoft’s first and best customer Enabling world-class and predictable customer, client, and partner experience Protecting Microsoft’s physical and digital assets Excelling in integrated operations and IT © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

6 Vulnerability Management
5/12/2019 2:57 PM Vulnerability Management Product ship Vulnerability discovered Disclosed Update released deployed Automation of exploit Responsible Disclosure HIGH RISK LOW RISK © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

7 Challenges Large, highly dynamic environment Security
5/12/2019 2:57 PM Challenges Large, highly dynamic environment Security 2,500 attacks, probes, and scans daily Over 125,000 virus-infected messages quarantined monthly Unique IT environments for product development, testing, support, and research require special security Technology-literate staff 95% with local administrator right to their desktop © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

8 Requirements Automated security update and application deployment
5/12/2019 2:57 PM Requirements Automated security update and application deployment Enforcement within prescribed timeframes Minimized unplanned downtime Central reporting and administration Clear communication path More accurate and efficient patch management More updates, fewer administrators, less time Reduction in manual effort to deploy updates Automated tools, fewer scripts © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

9 Server Patch Management Process: Team Roles
5/12/2019 2:57 PM Server Patch Management Process: Team Roles Microsoft Response Centre (MSRC) Releases security bulletins Corporate Security Assigns deployment priority Data Centre Operations Manages data centres Hosts SMS infrastructures Patches servers © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

10 SMS Environment Desktop Management Environment
115,000 clients worldwide 4 AD forests Server Management Environment 7,000 servers worldwide 3 AD forests 1 Central Site Server Windows Server 2003 SQL Server ™ 2000 SP3a 1 Central Site Server Windows Server 2003 SQL Server 2000 SP3a 22 Primary Site Servers Windows Server 2003 1 Network Load Balancing server (Puget Sound) 30 Dedicated Secondary Site Servers 100+ Shared Secondary Site Servers Windows Server 2003 10 Primary Site Servers Windows Server 2003 © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

11 Patch Management Framework
5/12/2019 2:57 PM Patch Management Framework Identify New Patches Relevance Enforcement Assess Environment to Be Patched Baseline Assess Review 1. Assess 2. Identify 3. Evaluate and Plan Deploy the Patch Distribute Install Report 4. Deploy Evaluate and Plan Patch Deployment Testing Risk Assessment Schedule © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

12 Server Patch Management Process: Phases
5/12/2019 2:57 PM Server Patch Management Process: Phases Phase 4: Deploying the patch 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Thursday Friday 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Standard Deployment Saturday 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Sunday 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Hour 1 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Thursday Hour 2 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Emergency Deployment Friday Hour 3 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Saturday Hour 4 12 A.M.– 4 A.M. 4 A.M.– 8 A.M. 8 A.M.– 1 P.M. 1 P.M.– 4 P.M. 4 P.M.– 8 P.M. 8 P.M.– 12 A.M. Sunday © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

13 Lessons Learned and Best Practices
5/12/2019 2:57 PM Lessons Learned and Best Practices Establish a change advisory board To control planned downtime, use a change control database Target update distribution according to pre-determined maintenance periods Suspend monitoring during patching Aggressively monitor and manage SMS client © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

14 Lessons Learned and Best Practices
5/12/2019 2:57 PM Lessons Learned and Best Practices Make status self-serve through a website Monitor bandwidth when sending updates between SMS sites Streamline the SMS 2003 installation by enabling only necessary features Test the impact of the update © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

15 Lessons Learned and Best Practices
5/12/2019 2:57 PM Lessons Learned and Best Practices Baseline the environment Begin with accurate inventory Keep baseline simple and enforce rigidly Bring sub-baseline computers into compliance Carefully consider servers that exceed baseline Establish enforcement policy © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

16 5/12/2019 2:57 PM For More Information For additional information about how to deploy, operate, maintain, and support SMS, visit For details about MSM and MOF, visit © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

17 5/12/2019 2:57 PM For More Information Additional content on Microsoft IT deployments and best practices can be found on Microsoft TechNet Microsoft Case Study Resources IT Showcase © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

18 © 2003-2004 Microsoft Corporation. All rights reserved.
5/12/2019 2:57 PM © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary. © Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Download ppt "5/12/2019 2:57 PM © Microsoft Corporation. All rights reserved."

Similar presentations

Harnessing the power of SWIFT for enterprise financial messaging Published: April 2007 Microsoft BizTalk Accelerator for SWIFT.

Harnessing the power of SWIFT for enterprise financial messaging Published: April 2007 Microsoft BizTalk Accelerator for SWIFT.
Incident Response Managing Security at Microsoft Published: April 2004.

Incident Response Managing Security at Microsoft Published: April 2004.
Microsoft ® System Center Configuration Manager 2007 R3 and Forefront ® Endpoint Protection Infrastructure Planning and Design Published: October 2008.

Microsoft ® System Center Configuration Manager 2007 R3 and Forefront ® Endpoint Protection Infrastructure Planning and Design Published: October 2008.
Introduction to Systems Management Server 2003 Tyler S. Farmer Sr. Technology Specialist II Education Solutions Group Microsoft Corporation.

Introduction to Systems Management Server 2003 Tyler S. Farmer Sr. Technology Specialist II Education Solutions Group Microsoft Corporation.
1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.

1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Operational MS Tibor Kolejak Regional IT Site Manger Microsoft Czech Republic Tibor Kolejak Regional IT Site Manger Microsoft Czech Republic.

Operational MS Tibor Kolejak Regional IT Site Manger Microsoft Czech Republic Tibor Kolejak Regional IT Site Manger Microsoft Czech Republic.
1 Secure Your Business PATCH MANAGEMENT STRATEGY.

1 Secure Your Business PATCH MANAGEMENT STRATEGY.
Managing LOB Applications by Using System Center Operations Manager Published: March 2007.

Managing LOB Applications by Using System Center Operations Manager Published: March 2007.
Windows XP Professional Deployment and Support Microsoft IT Shares Its Experiences Published: May 2002 (Revised October 2004)

Windows XP Professional Deployment and Support Microsoft IT Shares Its Experiences Published: May 2002 (Revised October 2004)
Smart Card Deployment David Gautrey IT Manager – Microsoft New Zealaand Microsoft Corporation.

Smart Card Deployment David Gautrey IT Manager – Microsoft New Zealaand Microsoft Corporation.
Patch Management Strategy

Patch Management Strategy
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
Identity and Access Management Business Ready Security Solutions.

Identity and Access Management Business Ready Security Solutions.
Using the WDK for Windows Logo and Signature Testing Craig Rowland Program Manager Windows Driver Kits Microsoft Corporation.

Using the WDK for Windows Logo and Signature Testing Craig Rowland Program Manager Windows Driver Kits Microsoft Corporation.
Module 14: Configuring Server Security Compliance

Module 14: Configuring Server Security Compliance
SAM for Virtualizatio n Presenter Name. Virtualization: a key priority for business decision makers Technavio forecasts that the global virtualization.

SAM for Virtualizatio n Presenter Name. Virtualization: a key priority for business decision makers Technavio forecasts that the global virtualization.
The Infrastructure Optimization Journey Kamel Abu Ayash Microsoft Corporation.

The Infrastructure Optimization Journey Kamel Abu Ayash Microsoft Corporation.
Future of the Server Room Tour. Ottawa Montreal Calgary Vancouver Toronto Future of Your Server Room Three Pillars of Windows Server 2008 Virtualization.

Future of the Server Room Tour. Ottawa Montreal Calgary Vancouver Toronto Future of Your Server Room Three Pillars of Windows Server 2008 Virtualization.

Similar presentations

Ads by Google