Presentation is loading. Please wait.

Presentation is loading. Please wait.

How PNNL Manages Windows Desktops 1 Will Jorgensen.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "How PNNL Manages Windows Desktops 1 Will Jorgensen."— Presentation transcript:

1 How PNNL Manages Windows Desktops 1 Will Jorgensen

2 Windows Deployment Services Universal Image! Simpler user interface Quickly update image for new hardware 2

3 Federal Desktop Core Configuration (FDCC) Start October 2008 Classified impact to three levels 80% of settings classified as low Deployed December 2008 Only 2 exceptions 3

4 Least User Access BeyondTrust Privilege Manager for XP 2 year deployment Elevated installer processes Allow “run elevated” ActiveX control white lists De-elevate IE 4

5 Obstacles Broken permissions (File System & Registry) User Training! More calls to the Help Desk Agent instability 5

6 Benefits Additional security layer Better positioned for the future 6

7 Windows Firewall Block all workstation-to-workstation traffic Except RDP and ICMP Help Desk can grant exceptions Benefits Prevents spread from compromised host Eliminates spurious network traffic 7

8 AntiVirus Protection Upgraded to Symantec Endpoint Protection 11 Silent push via SMS 8

9 Software Patching Windows Server Update Services (WSUS) Available externally Microsoft SMS Patch most common vulnerabilities 9

10 Where are we going SCCM Available externally IPS (Symantec Network Threat Protection) Device Certificates Network Access Protection Software Virtualization (App-V) 10

11 Discussion Questions Will@pnl.gov Scott.Snyder@pnl.gov 11

Download ppt "How PNNL Manages Windows Desktops 1 Will Jorgensen."

Similar presentations

FDCC Implementation Efforts at Idaho National Laboratory Justin Hansen NLIT 2009.

FDCC Implementation Efforts at Idaho National Laboratory Justin Hansen NLIT 2009.
ISV Partner Alliance Value Policy Policy Management for Microsoft® System Center.

ISV Partner Alliance Value Policy Policy Management for Microsoft® System Center.
Windows XP Service Pack 2 Deployment Dave Lee West Campus.

Windows XP Service Pack 2 Deployment Dave Lee West Campus.
System Center Configuration Manager Push Software By, Teresa Behm.

System Center Configuration Manager Push Software By, Teresa Behm.
Understand Virtualized Clients 10753 Windows Operating System Fundamentals LESSON 2.4.

Understand Virtualized Clients Windows Operating System Fundamentals LESSON 2.4.
-How To leverage Virtual Desktop for Manageability & Security -Desktop Computing “as a service” Andreas Tsangaris CTO, PERFORMANCE

-How To leverage Virtual Desktop for Manageability & Security -Desktop Computing “as a service” Andreas Tsangaris CTO, PERFORMANCE
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
Presented by Justin Bode CS 450 – Computer Security February 17, 2010.

Presented by Justin Bode CS 450 – Computer Security February 17, 2010.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Changes in Windows XP Service Pack 2

Changes in Windows XP Service Pack 2
Windows Security Tech Talk 9/25/07. What is a virus?  A computer program designed to self replicate without permission from the end user  The program.

Windows Security Tech Talk 9/25/07. What is a virus?  A computer program designed to self replicate without permission from the end user  The program.
Symantec AntiVirus Update Mark Reynolds Manager of Support Services Technology Support Services Michael Satut Manager of Distributed Support Services Technology.

Symantec AntiVirus Update Mark Reynolds Manager of Support Services Technology Support Services Michael Satut Manager of Distributed Support Services Technology.
IT:Network:Apps.  Security Options  Group Policy  AppLocker  ACL.

IT:Network:Apps.  Security Options  Group Policy  AppLocker  ACL.
Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.

Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.
Terminal Services Terminal Services is the modern equivalent of mainframe computing, in which servers perform most of the processing and clients are relatively.

Terminal Services Terminal Services is the modern equivalent of mainframe computing, in which servers perform most of the processing and clients are relatively.
A Tour of System Center Configuration Manager Adam Duffy Edina Public Schools.

A Tour of System Center Configuration Manager Adam Duffy Edina Public Schools.
Automating Endpoint Security Policy Enforcement Computing and Networking Services University of Toronto.

Automating Endpoint Security Policy Enforcement Computing and Networking Services University of Toronto.
SYSTEM CENTER: ENDPOINT PROTECTION FUNDAMENTALS Howard A. Carter III Senior Consultant Microsoft Consulting Services September 21, 2013 TechGate 2013 –

SYSTEM CENTER: ENDPOINT PROTECTION FUNDAMENTALS Howard A. Carter III Senior Consultant Microsoft Consulting Services September 21, 2013 TechGate 2013 –
Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.

Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.
IBM Endpoint Manager - Bigfix

IBM Endpoint Manager - Bigfix

Similar presentations

Ads by Google