Microsoft Business Desktop Deployment Solution Accelerator 2.0

About This Presentation

Title:

Microsoft Business Desktop Deployment Solution Accelerator 2.0

Description:

... for MDBs at the file level, DAO level, and Access level properties ... SMS delivers role based applications and post-OS configuration. User state is restored. ... – PowerPoint PPT presentation

Number of Views:636

Avg rating:3.0/5.0

Slides: 77

Provided by: simonh46

Category:

more less

Transcript and Presenter's Notes

Title: Microsoft Business Desktop Deployment Solution Accelerator 2.0

1
MicrosoftBusiness Desktop Deployment Solution
Accelerator 2.0

Simon Higgins
Tamas Horvath
National Technology Specialists
Microsoft Australia
shiggins_at_microsoft.com tamash_at_microsoft.com

2
Zero Touch Desktop Migration NT4.0 -gt XPSP2
3
Agenda

Overview Microsoft Business Desktop Deployment
Solution Accelerator 2.0
Overview of BDD Toolset
Access Conversion Toolkit
Application Compatibility toolkit
Office resource kit
User State Migration Tool
Zero Touch
Zero Touch Installation (ZTI)
Windows PreInstall Enwironment (WinPE)
SMS 2003 OS Deployment Feature Pack (OSD FP)
Zero Touch Provisioning (ZTP)
QA

4
Overview of MS Business Desktop Deployment
Solution Accelerator
5
Finding Solution Accelerators
6
Finding Solution Accelerators
7
Finding Solution Accelerators
http//www.microsoft.com/desktopdeployment
8
Deployment Defined
9
Value of Automated Deployment
Task Manual Automation
Software Inventory 4 hrs elapsed time 4 hrs tech .1 hrs elapsed time 0 hrs tech
Software Compatibility Testing (based on 10 applications) 20 hrs elapsed time 20 hrs tech .1 hrs elapsed time .1 hrs tech
Hardware Inventory 2 hrs elapsed time 2 hrs tech .1 hrs elapsed time 0 hrs tech
User Configuration/Data Saved Not Applicable 2 hrs elapsed time 0 hrs tech
Operating System Installation 1 hrs elapsed time 1 hrs tech .5 hrs elapsed time .5 hrs tech
User Configuration Applied 2 hrs elapsed time 2 hrs tech 2 hrs elapsed time 0 hrs tech
Application Installation (based on 10 applications) 2 hrs elapsed time 2 hrs tech .5 hrs elapsed time 0 hrs tech
Manual time based on CD installation Automation
time based on OS image applied Research provided
by Microsoft Corporation
10
Desktop Deployment Costs
Manual Deployment 500 - 1000 per PC
Light Touch Deployment 350 per PC
USMT, Application Compatibility Toolkit, Windows
PE, RIS, PQDI, Ghost
Zero Touch Based Deployment Less than 100lt per
PC (goal)
Deployment automation with Zero Touch (SMS, MOM)
11
Solution Accelerators for BDD
Two Solutions Standard Edition and Enterprise
Edition

BDD Standard Edition for 25 or more unmanaged
workstations
Few infrastructure requirements
Based on light tools, scripts, and commercially
available imaging software
Lite Touch installs and takes only a few moments
per PC

12
Solution Accelerators for BDD
Two Solutions Standard Edition and Enterprise
Edition

BDD Enterprise Edition for 500 or more managed
wkstns
Leverages SMS 2003 SP1, Active Directory,
BizTalk Server 2004
Zero Touch installs and provisions
SMS 2003 OS Deployment Feature Pack includes
Windows Imaging (WIM)

13
Products and Technologies used in BDD

Microsoft Systems Management Server 2003
(Service Pack 1)
Microsoft Systems Management Server 2003
Operating System Deployment Feature Pack
Microsoft Windows XP Professional with Service
Pack 2
Microsoft Office Professional Edition 2003 with
Service Pack 1
Microsoft Windows User State Migration Tool 2.6
Microsoft Office Manager 2005
Microsoft BizTalk Server 2004
Microsoft Windows SharePoint Services 2.0
Microsoft Virtual PC 2004
Microsoft Office 2003 Editions Resource Kit
Microsoft Application Compatibility Toolkit 3.0
Microsoft Office Access 2003 Conversion Toolkit
Microsoft Windows Preinstallation Environment
2004
Microsoft Windows Server 2003
Microsoft Active Directory

14
BDD Tools And ApplicationsStandard Edition and
Enterprise Edition Comparison
Business Desktop Deployment Standard Edition Enterprise Edition
Customer Scenarios Customer Scenarios Customer Scenarios
Light Touch Wipe Load
Zero Touch Install
Zero Touch Provisioning
Tools Used Tools Used Tools Used
Application Compatibility Toolkit 3.0
Virtual PC Virtual Server
Windows Pre-Installation Environment (WinPE 1.5)
User State Migration Tool 2.6
Remote Installation Server (RIS) for Windows Server 2003
Symantec DeployCenter Library
Symantec Ghost Corporate Edition
Access 2003 Conversion Toolkit
SMS 2003 SP1
SMS OS Deployment Feature Pack
BizTalk Server 2004 (ZTP)
Microsoft Operations Manager 2005
Applications and OS Applications and OS Applications and OS
Windows XP Service Pack 2
Office 2003 Service Pack 1
15
BDD Technology Components

Solution Technology Foundation Components
Access Conversion Toolkit
Application Compatibility toolkit
Office resource kit
User State Migration Tool
Zero Touch
Windows PreInstall Enwironment (WinPE)
SMS 2003 OS Deployment Feature Pack (OSD FP)
Zero Touch Installation (ZTI)
Zero Touch Provisioning (ZTP)

16
Access Conversion Toolkit
17
Office Access 2003 Conversion Toolkit

Goal
Reduce conversion pain associated with Access 97
conversions when deploying Office XP/2003
Features
Identify number of databases in the organization
Identify conversion work associated with
databases
Fix top conversion errors
Provide better control of when databases get
converted
Provide more documentation about conversion

18
Office Access 2003 Conversion Toolkit components

Scanning Tool
Scans server share for MDBs at the file level,
DAO level, and Access level properties
Reporting Front End
Canned reports that make sense of the data
returned from the scanning tool
Changes to msaccess.exe
Corrected top conversion errors
eLearning and documentation
Best practices and guidelines to aid Access 97
conversion
Supports Office Professional 2003 Edition Service
Pack 1

19
Application Compatibility Toolkit
20
Application Compatibility Toolkit
Goal Adopt new Windows versions by reducing
application compatibility as a deployment blocker

Provide a unified, end-to-end system to address
application issues
Detect and evaluate potential application
compatibility issues
Provide solutions to address compatibility issues
Package and deploy solutions
Listen, learn and respond to corporate
application compatibility issues
Provide a privacy-compliant Web service with
enhanced protection for customers to share
application issues and solutions with Microsoft

21
XP Application Compat Challenges

Changes to Windows XP code base
9x was more relaxed in memory management
Subtle changes in Win32 API behavior across OS
releases
Registry value changes
Relying on OS Version number / Hard-coding paths
to special folders
Documents Settings
My Documents
Applications with Platform-Specific drivers
Common in Anti-Virus, Backup and Partitioning
software
Low-level drivers, 9x drivers, File System
Filters, etc.

Internet Explorer
Binary Behaviors, Local Machine Lockdown, Mime
Handling Sniffing, Zone Elevation, Windows
Restrictions, Download blocking
DCOM RPC
Launch Activation Permissions, Remote Anonymous
Access
Windows Firewall
Ports Closed by default
Data Execution Prevention (DEP)
Access Violations for Applications that do not
handle NX

22
ACT 4.0 Feature Overview

Evaluation tools to gauge application and website
compatibility with Windows
WinXP SP2 compatibility evaluators
Automated issue-detection agents (DCOM, Windows
Firewall)
Test tool for web application/site compatibility
detection and root cause analysis
Web service that enables real-time application
issue and solution exchange
Internet Explorer compatibility evaluation
Compatibility issue reporting and analysis made
easy
Efficient and accurate application inventory tool
Comprehensive compatibility data, including SP2
issues and solutions
Faster and more comprehensive data filtering
Mitigation Tools
Compatibility administrator for applying common
fixes
Mitigation tool for applying registry fixes
(DCOM, Windows Firewall)
Automated creation of solutions to address
compatibility issue
Easy deployment of evaluation tools and solution
packages

23
Microsoft Office 2003 Resource Kit
24
Office 2003 Editions Resource Kit (ORK)

Use ORK to customize MST and use local source
installs
Tools
Excellent documentation
Profile Wizard
Custom Installation Wizard
Custom Maintenance Wizard
Office 2003 viewer tools
Where to get?
www.microsoft.com/office/ork
MS Press

25
Local Installation Source (LIS)

New in Office 2003
Compressed Cabs on Share or CD
OSE caches source on each target computer
Cache can be configured many ways
Pros
Better support for a mobile workforce
Ensures files are in place before install happens
CDs can be created and distributed
Cons
EULA PID need to be entered in MST or INI
Can take 200mb additional space on client

26
User SettingsProfile Wizard

Install Office 2003 on sample PC
Configure settings in each program
Create OPS file using Profile Wizard
Deploy settings from OPS file
Embed OPS file in transform
Deploy OPS file standalone
Drawbacks
Cant edit contents of OPS files
Captures all settings in Proflwiz.ini

27
User SettingsProfile Wizard

Custom Installation Wizard
Configures individual settings
Defaults (not mandatory)
Group Policy
Configures individual settings
Mandatory

28
User State Migration Tool
29
User State Migration

Balances between standardized desktops and user
state migration
User State Migration Tool (USMT)
Migrates data files and user settings
Provides guidance on modifying USMT scriptsto
achieve different goals

30
USMT overview

Source Operating Systems
Windows 95
Windows 98
Windows ME
Windows NT 4
Windows 2000
Windows XP
Destination Operating Systems
Windows 2000
Windows XP

31
Getting Started

Which Users do I need to migrate?
Only Domain Users
Active/Inactive Users
What Files and Settings are important?
How is data stored now after migration?
Opportunity to create managed environment.
What Application settings are important?
Office migration
Important LOB applications
Custom applications

32
Features - Settings List

E-mail settings
Outlook
Outlook Express
Mail profile(s)
Personal store
Address Book
Internet Explorer
Proxies
Favorites
History
Cookies
Home Page

Environment
Desktop Properties
Folder Options
Taskbar Settings
Accessibility
Fonts
RAS/DUN
Network Resources
Mapped Drives
Network Printers
And more

33
USMT 2.6 New Features

Support for multiple user profiles
Unattended migration
Progress logs
Interoperability with EFS
Compression
Office 2003 support\
Estimates

34
Multi-User support

Capture all user profiles and state found on a
single system within a single execution
scanstate /all \\server42\UserData\COMPUTERNAME
Include users/domains based on wildcards
/userltdomain patterngt\ltusername patterngt

35
Unattended migration

Enables fully automated migration
No need for users to be logged on
Can run in the context of localsystem\administrato
r

36
EFS Encrypted file system

4 new command line arguments
/efsabort
Abort if EFS file is encountered (default)
/efsskip
Skip EFS files
/efsdecryptcopy
Decrypt and copy
/efscopyraw
Copy as is
/efsrecover
restores files that are in a backup format
EFS Encryption keys are computer specific - use
extreme caution in wipe load scenarios.

37
Compression

Decreased storage space during migration
/compress (default)
/compress-
Appropriate when transporting over the network.

38
Zero Touch

39
What is Zero Touch?

An instantiation of
Microsoft Solutions for Management
Solution Accelerator for Business Desktop
Deployment
Zero Touch Install
Automated method to migrate user data and legacy
OS to Win XP
Minimize resources for deployment
Zero Touch Provisioning v2
Business Rule driven IT Workflow Engine
Self-administration portal/web site that
minimizes help desk
Provides services to end-users, help desk, and
administrators
Includes sample flows with business logic and
delivery scripts
Microsoft supplied object model based on BizTalk
Server 2004

40
What is ZTI?

Zero Touch Installation
Extensions to the OS Deployment Feature Pack
Designed to completely automate three scenarios
Refresh Computer
New Computer
Replace Computer
Designed to extend OSD capabilities
Sysprep.inf editing, computer rename
Greater control over the process dynamic USMT
state backup location
Centralized monitoring and control
Progress reporting and alerting
Build custom WinPE image

41
Zero Touch Installation process
Zero Touch Desktop Builds using SMS 2003 OSD
Target Machine
SMS inventory is used to create a collection.
Computers are targeted for refresh.
Compressed WIM OS image is downloaded and
installed.
1
5
Client receives advertisement for OS refresh,
saves user state.
Image is personalized and boots to full OS with
SMS agent.
2
6
SMS Advanced Client agentstarts up.
SMS delivers bootable Windows PE image using WIM
to existing OS partition.
3
7
SMS ClientAgent Pre-OS
SMS delivers role based applications and post-OS
configuration. User state is restored.
Boot files are modified, reboots to Windows PE on
hard disk, then cleans disk.
8
4
SMSServer
Application Delivery
Windows PE Image Delivery
OS Image Delivery
SMS Advanced Client Agent Windows-Present
Logs all activity
42
Windows PE
43
What is Windows PE?

Replaces DOS for 64 32 bit
Scriptable installation environment
Supports batch files, WSH, HTA
HW independent
TCP/IP Networking support
Subset of Win32 API environment
HD configuration

44
Deployment Features

Boot via PXE (RIS), HDD, CD, DVD)
Can configure Mass Storage and NIC drivers
Scriptable Hard Disk Drive configuration tools
Diskpart
Format
All 32-bit (rapid partitioning and formatting)
Runs from CD, HD, and Net (PXE) using RIS
Easily customized
Requires 64MB minimum

45
Windows PE versions

Version 1.0
Released internally at Microsoft.
For OEM an MCS
Version 1.1
Released with Select
Support for DFS (standalone)
Version 1.2
Released with Select
Built on Windows Server 2003
No new features!
Some updated files (drivers, tools)
Version 2004
Released with Select
Built on Windows XP Service Pack 2
Support for installing PnP device drivers
Support for WMI

46
Windows PE Requirements

32-bit version
300 MHz Processor
VGA (800600)
Size on CD is around 120MB
Can be tuned to around 80MB if needed
Size in memory is around 40MB
64-bit version
300 MHz Processor
VGA (800600)
Size on CD is around 220MB
Size in memory is around 42MB

47
Windows PE limitations

Reboots every 24 hours
Antipiracy - PE is not allowed to be used as an
ordinary operating system
Cannot share files and folders
Supports only TCP/IP
Can access standalone DFS
Cannot run 16-bit applications
Only 32-bit applications in the64-bit environment

48
Building a Windows PE Image

Customization and build commands built in to BDD
mkimg.cmd - Creates directory structure for CD
Manually tailor the platform
Drivers, utilities
Customize the default scripts
startnet.cmd startnet.opk
Start networking by default
Invokes winbom.ini or runs command lines
oscdimg.exe
Creates iso CD image of your directory
El Torito bootable

49
SMS 2003 OS Deployment Feature Pack
50
SMS 2003 OS Deployment Feature Pack

Microsofts first offering into Desktop imaging
Adds support to SMS 2003 for deploying new OS
images to desktops in a distributed environment
Integrates with SMS 2003 to improve functionality
Inventory-based planning and targeting
Centralized tracking and status
Replication of images throughout distributed
enterprises
Open architecture
Partitioning capability (using Diskpart)
Uses WIM image format No need to delete system
partition data can stay local
Capable of new computer install and refreshes OS
Supports custom scripts and migration tools
Installs into SMS 2003
Requires SMS 2003 Service Pack 1

51
SMS 2003 OS Deployment Feature Pack
Windows Imaging Format (WIM) and USMT

WIM Format Component
File-based and non-destructive
Automates to eliminate duplicate files
Provides high image compression (31)
Integrates with USMT for image installation task
sequencing
User notification
State capture and restore
USMT or Custom
Partitioning Diskpart or custom
Custom actions
Ability to include and execute custom
installation scripts
SMS packages can be executed as part of
installation sequence

52
Reference Computer Requirements

Windows 2000, Windows XP, Windows 2003
Member of a Workgroup
Operating System must be installed on C
partition
Sysprep installed in C\Sysprep
Partition must be NTFS primary partition
No hidden partitions

53
Destination Computer Requirements

Targeted Systems to be upgraded in-place
Windows NT 4.0 via legacy client
Windows 2000 (Advanced Client)
Windows XP (Advanced Client)
Windows 2003 Server (Advanced Client)
Fresh Computer
All above plus add Windows 98

54
SMS 2003 OS Deployment Feature Pack
Administrator Activities

Capture a reference image
Save image to SMS server
Create SMS Image package
Distribute to Distribution Points (DPs)
Identify collections (Target)
Advertise to collection (Schedule)

55
Image Capture

Admin configures Reference Computer

2. Insert Image Capture CD
3. Image Capture Wizard prepares computer

OS Service Packs
Applications (Office, etc)
SMS Advanced Client

Sysprep
Advanced Client prep
Shutdown

Capture settings
Output options
Click Capture

Begin Capture
4. Computer boots from Image Capture CD
6. Capture complete
5. Capture image

Generate WIM image

Boot into Windows PE
Capture wizard continues

56
Core Scenarios

Refresh Computer
Central planning, targeting and distribution of
Image Packages
User state is saved
Image is installed
Other SMS packages rapidly installed
User state is restored
Centralized status reporting
New Computer
Central Administrator creates Image Installation
CD
Local Administrator inserts CD or RIS to Install
Image
Image is installed and managed by SMS 2003
Other SMS packages rapidly installed
Automation script can be added
Validation, state capture phases skipped

57
Core Scenarios

Replace Computer
Central Administrator creates Image Installation
CD
Local Administrator inserts CD or RIS to Install
Image
User state is saved (if replacement)
Image is installed and managed by SMS 2003
Other SMS packages rapidly installed
User state restored
Variation on Bare Metal
State capture performed via separate
advertisement (or manually) on old computer

58
Image Distribution
59
Refresh Computer
Target Machine
SMS inventory is used to create a collection.
Computers are targeted for refresh.
Compressed WIM OS image is downloaded and
installed.
1
5
Client receives advertisement for OS refresh,
saves user state.
Image is personalized and boots to full OS with
SMS agent.
2
6
SMS Advanced Client agentstarts up.
SMS delivers bootable Windows PE image using WIM
to existing OS partition.
3
7
SMS ClientAgent Pre-OS
SMS delivers role based applications and post-OS
configuration. User state is restored.
Boot files are modified, reboots to Windows PE on
hard disk, then cleans disk.
8
4
SMSServer
Application Delivery
Windows PE Image Delivery
OS Image Delivery
SMS Advanced Client Agent Windows-Present
Logs all activity
60
Image Installation

Phases of image installation
Validation
State Capture
Pre-install
Install
Post-install
State Restore
Customer and ISV actions can be added to extend
functionality
Other SMS packages can be run in specific order
OSD Client sends status messages.

61
Image Installation
Validation Phase
State Capture Phase
Interactive
System

Examples
Check disk space
Check host name

OSD Client
62
Image Installation
Validation Phase
State Capture Phase
Interactive
System
OSD Client
63
Image Installation
Validation Phase
State Capture Phase
Interactive
System
OSD Client
64
Image Installation
Installation Phase (Old OS)
Installation Phase (Windows PE)
User Interface (Progress)
Pre-installation Phase
Post-installation Phase (New OS)
Interactive
System
OSD Client
OSD Image Installer
65
Image Installation
Installation Phase (Old OS)
Installation Phase (Windows PE)
User Interface (Progress)
Pre-installation Phase
Post-installation Phase (New OS)
Interactive
System
OSD Client
OSD Client
OSD Client
OSD Image Installer
66
Image Installation
State Restore Phase
Complete
Minisetup
Interactive
System
New Operating System
67
Image Installation
State Restore Phase
Complete
User Logon
Minisetup
Interactive
System
New Operating System
68
OSD Summary

Adds additional value to SMS 2003
Free SMS AddOn
SMS now can do end-to-end management of PCs from
cradle to grave
SMS package custom actions may help customers
reduce the number of images they need by
installing apps immediately after image deploy
Microsoft committed to incremental improvement

69
Zero Touch Provisioning
70
What is Provisioning?
Method of creating, constructing, deploying, and
managing any service, software, or device,
whether dependant on human interaction or system
automation

Identities
Security
Desktops
Software
Terminal Server sessions
Smartcards
Web sites
Email features

Server software features
Shares
Storage
Voicemail
PDA
Cell Phone
VOIP
Integrate with B2E, B2B

71
What is Zero Touch Provisioning?

Execution engine for IT and related tasks
Automated method for managing exceptions to
policy
Leverages infrastructure provided by ZTI
Includes
Multi-purpose workflow engine
Self-service portal site
Sample InfoPath forms
Sample scripts
Sample reports
Best Practice Guidance

72
ZTP Architecture
WSS 2.0 Web Parts
InfoPath 2003
ServiceObjects
BizTalk 2004 Human Workflow Services
BizTalk Orchestrations
BizTalk Rules
SQL Server 2000
Authorization Manager
Active Directory
73
Scenario Subscribe to Application
Request Application
Determine Approver
Email Approver
Approve or Deny
Execute SMS
Calculate Billing
74
Building Blocks

Approve send complex approval workflow and wait
for response (unlimited sequential and two
parallel approvals)
Audit generic audit for tracking and custom
status reporting
Bill create billing record based on business
rule (calculate actual or value cost)
Completion Alert send email from workflow
without waiting for response
Run Script execute a script or command with
parameters
Run SMS execute commands to SMS
Validate verify parameters and data

75
Terms

Service
Published to an end-user or admin (id, name,
type) using Authorization Manager
Service Plan
Associated grouping and cost of service published
for a service (i.e. SLA or support agreement)
Service Action
Unit of workflow for each service (template
implementation of BizTalk Orchestrations and
schemas for Human Workflow Services)

76
Provisioning Example of use