by lerfran

Slides
35 slides

Undefined

Published Apr 22, 2013 in
Direct Link :

Undefined... Read more

Read less


Comments

comments powered by Disqus

Presentation Slides & Transcript

Presentation Slides & Transcript

What’s New in SCCM 2012?
Colin Smith
Microsoft Practice Manager
Cistel Technology Inc.

Agenda
Architecture Changes
CAS
Primary Sites
Secondary Sites
Reporting
Security Changes
Role Based Security
Collection Based Configuration Changes
User-centric Management
Device Affinity
Software Center and Application Catalog
Cross-Platform Support
Mobile Devices
Unix Linux
Software Distribution
Deployment Types
App-V
Configuration Settings
Remediation
Migration from SCCM 2007

Where’s Waldo?
Canadian/US version of British “Where’s Wally”
Helps us explore and find things
Wally Mead aka “The Godfather of SMS”

Architectural changes
PS0
PS1
PS2
SS1
PS3
SCCM 2007
SCCM 2012
CAS – Central Administration Site
PSn – Primary Site
SSn – Secondary Site

CAS

PSn – Primary Site
SSn – Secondary Site

?
Secondary sites need SQL and can be tiered
New Site Type CAS
Primary sites can only be children of CAS
SCCM 2012
SS2

Architecture Changes
Flatter Architecture
More Scalable
SCCM 2007 R3 scales up to 300K devices
SCCM 2012 scales up to ???
Central Administration Site (CAS)
Does not process client data
Does not accept client assignments
Does not support all site system roles
Participates in database replication


Architecture Changes – Primary Site
Primary Sites manage clients in well-connected networks
Additional primary sites allow the hierarchy to support more clients.
Cannot be tiered below other primary sites
No longer used as a boundary for client agent settings or security
Participates in database replication

Architecture Changes – Secondary Site
Secondary Sites control content distribution for clients in remote locations across links that have limited network bandwidth
SQL Server is required and SQL Server Express will be installed during site installation if required
A proxy management point and distribution point are automatically deployed during the site installation
Secondary sites can be tiered to support content distribution to remote locations
Participates in database replication.

New Interface

Reporting
No More Reporting Point
Only Reporting Services Point
Tight Integration with Report Builder

Security - RBAC
No more Classes and Instances
Replaced with Security Roles, Security Scopes & Collections that can span sites

Benefits:
Sites are no longer administrative boundaries.
You create administrative users for the hierarchy and assign security to them one time only
You create content for the hierarchy and assign security to that content one time only
All security assignments are replicated and available throughout the hierarchy.
There are built-in security roles to assign the typical administration tasks and you can create your own custom security roles.
Administrative users see only the objects that they have permissions to manage.
You can audit administrative security actions.



Collections
Removed:
No More Sub-collections
Can’t combine devices and users in the same collection
Added:
Include and Exclude contents of another collection
Incremental Collection evaluation
Target for RBAC scopes
Collections can span sites
Collection limiting for all collections (must be subset of another collection)

Administrative Segmentation
Security Roles
What types of objects can I see and what can I do to them?
Example: the “Software Update Manager” role gives rights to read and deploy collections and Software Updates.
Security Scopes
Which instances can I see and interact with?
Collections
Which resources can I interact with?


ConfigMgr 2007 – Data Segmentation
Montreal Primary Site
Toronto Primary Site
Meg Collins
“Central Admin”
French collections
Create advertisement for French collections
English collections
Create advertisement for English collections
Meg wishes to distribute a package to all of her users in Eastern Canada
Create and distribute package

ConfigMgr 2012 – Segmentation using RBAC
French collection(s)
Create deployment for French collection(s)
English collection(s)
Create deployment for English collection(s)
Meg wishes to distribute an application to all of her users in Eastern Canada
Create and distribute application

Collections

Cross Platform Support
Mobile Support in RTM
Unix/Linux Support with SP1

Exchange Server Connector
Purpose
light management for devices connected to Exchange Server
Exposes majority of Exchange ActiveSync management features to SCCM
Benefits
Manage all of your devices (desktop, laptop, mobile devices) via SCCM console
Smooth addition to SCCM infrastructure, with no device ‘touch’
Enhanced reports over Exchange server experience
Support
On-premise Exchange 2010 and hosted Exchange
All Exchange Active Sync capable devices

Exchange Connector in Operation
Primary Site
Apply Settings
Check access to
Exchange
Get Device
Settings Policy
Device Settings
Apply Settings
Mail Request
Mail Request
Settings Policy
Settings Policy
Device Info
Discover Mobile Devices
Discover Mobile Devices
Device info
Retrieve Device Info
Device info

Key Features of Exchange Connector
Easy configuration
Simply enter exchange server/hosted URL and credentials
Inventory
Pulls data from Exchange Server
Full and fast/delta synchronization
Key info: user, deviceID, device type, last contact time
Policy
Parity with exchange: security, sync, device lockdown
Define globally per Exchange Server
Wipe
Wipe a device from console action

Software Distribution
Application
Files
Information
Deployment Types
Local
Virtual
Mobile
Requirement Rules
Global Conditions

Content Library
Single Instance Store for Content Files
On each site server and DP
Software Updates
Applications
Operating System Images
Etc.
Checks to see if file already in library before downloading
Minimizes
Bandwidth
Processing
disk space

Software Updates
Update Groups
Replaces Update Lists
Can be manually or automatically updated
New Updates are automatically deployed when added to the group
Automatic Deployment Rules
E.g.. All Windows 7 updates in last 30 days
More control over Superseded Updates
Updates stored in Content library
Single Instance Store
More User Control
Software Center

Software Distribution

Configuration Settings
DCM -> Configuration Settings
Alert to Drift from baseline
Remediate
Registry
WMI
Script

Configuration Settings

Upgrade from SCCM 2007 to 2012?
Upgrade not supported 
Migration is supported with the Migration Tool

Migration Tool Features
Migration Job Types:
Object Migration (Collections, software distribution packages, boundaries, metering rules etc.)
Collection based Migration (Select a collection and migrate associated objects)
Content functionality:
Re-use of existing Configuration Manager 2007 content (Distribution point sharing)
Distribution point upgrade
Import of Configuration Manager 2007 inventory MOF files

Migration Process

Helpful Hints to Ease Migration
Flatten hierarchy where possible
Plan for Windows Server 2008, SQL 2008, and 64-bit
Start implementing BranchCache™ with Configuration Manager 2007 SP2
Move from web reporting to SQL Reporting Services
Avoid mixing user & devices in collection definitions
Use UNC (\\server\myapp\myapp.msi) in package source path instead of local path (d:\myapp)

next steps
Download the beta of ConfigMgr 2012 : http://bit.ly/ConfigMgr2012
Download the VHDs : http://bit.ly/VHDs
Work through the TechNet Virtual Labs (being revved right now)
Start Planning for Migration


resources
www.microsoft.com/systemcenter
www.systemcentercentral.com
www.myitforum.com

related sessions
Tomorrow at 1:00pm in Munro 1-6
MGT374 System Center in the Data Center – Putting Together the Puzzle

Remember To Complete Your Evaluations!
You could WIN a Samsung Focus Windows Phone 7!
Let us know what you liked & disliked!
Remember, 1=Bad, 5=Good 
Please provide comments!
No purchase necessary. The contest is open to residents of Canada (excluding government employees). The Toronto Tech·Days evaluation form contest begins on October 25th, 2011 and ends on October 26th, 2011. The Vancouver Tech·Days evaluation form contest begins on November 15th, 2011 and ends on November 16th, 2011. The Montreal Tech·Days evaluation form contest begins on November 29th, 2011 and ends on November 30th, 2011. Participants can enter the contest in one of two ways: (1) complete and submit an evaluation form by the contest close date; or (2) provide contact information by the contest close date. The draw for Toronto will take place on October 31st, 2011. The draw for Vancouver will take place on November 21st, 2011. The draw for Montreal will take place on December 5th, 2011. The chances of being selected depend upon the number of eligible entries. Selected participants will be contacted by phone and/or e-mail and will be required to answer correctly a time-limited skill-testing question. There are three (3) prizes available to be won. One (1) prize will be given away for each Tech·Days event in Toronto (October 25-26 2011), Vancouver (November 15-16 2011) and Montreal (November 29-30 2011). The prize consists of a Samsung Focus Windows Phone 7 (handset only; voice and/or data plan not included) (approximate retail value of $499 CAD). The prize will be delivered to the shipping address designated by the winner within 6-8 weeks. The winner may be required to sign a declaration and release form. For full contest rules, please see a Microsoft Tech·Days representative.
You can email any additional comments directly to td_can@microsoft.com at any time.