How to Save Time, Money, and Headaches with Group Policy 2008 R2

How to Save Time, Money, and Headaches with Group Policy 2008 R2 PowerPoint PPT Presentation


  • 151 Views
  • Uploaded on
  • Presentation posted in: General

Session Objectives and Takeaways. PowerShellAutomation is awesomeObject model will save you Group Policy PreferencesPower: manage, reportGet rid of login scripts. Compliance. Q: How can I determine if my environment is compliant?. A:Use automation to run exhaustive tests. Group Policy PowerShe

Download Presentation

How to Save Time, Money, and Headaches with Group Policy 2008 R2

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


1. How to Save Time, Money, and Headaches with Group Policy 2008 R2 Lilia Gutnik Program Manager Microsoft Corporation

2. Session Objectives and Takeaways PowerShell Automation is awesome Object model will save you Group Policy Preferences Power: manage, report Get rid of login scripts This slide is required. Do NOT delete. This should be the first slide after your Title Slide. This is an important year and we need to arm our attendees with the information they can use to Grow Share! Please ensure that your objectives are SMART (defined below) and that they will enable them to go in and win against the competition to grow share. If you have questions, please contact your Track PM for guidance. We have also posted guidance on writing good objectives, out on the Speaker Portal (https://www.mytechready.com).   This slide should introduce the session by identifying how this information helps the attendee, partners and customers be more successful. Why is this content important? This slide should call out what’s important about the session (sort of the why should we care, why is this important and how will it help our customers/partners be successful) as well as the key takeaways/objectives associated with the session. Call out what attendees will be able to execute on using the information gained in this session. What will they be able to walk away from this session and execute on with their customers. Good Objectives should be SMART (specific, measurable, achievable, realistic, time-bound). Focus on the key takeaways and why this information is important to the attendee, our partners and our customers. Each session has objectives defined and published on www.mytechready.com, please work with your Track PM to call these out here in the slide deck. If you have questions, please contact your Track PM listed below: Application Server (APS) – Kirby Bartholomew Architecture (ARC) – Miha Kralj Business Intelligence (BI) - John Hormaechea Business Solutions (MSDY) - Pattie Grimm, Scarlet Leung Database (DB) – Tamer Farag, Lisa Hicks, Kevin Ashby Development Tools and Technologies (DEV) – Bijan Javidi Integrated Solutions / ReadyTech (SOLN) – John Wink, KariLynne Gratzer, Joe Culp Management, Operations and Deployment (MOD) – Maki Hanamoto, Michael Cooper Office System (OFC) – Katy Olmstead, Lita Spratt Optimization (OPT) – Jerry Lee, Michael McGuire, Yoav Land, Rick Marcet Security, Identity & Privacy (SIP) – Michelle Moore Unified Communications (UC)– David Alexander Virtualization (VIR) – Maki Hanamoto, Michael Cooper Windows Client (CLI) – Ali Parker, Angie Nelson Windows Phone and Windows Embedded (WPWE) – Jane Hemmen, Larry Lieberman, Katie Leland, Olivier Bloch Windows Server (SVR) – Justin Graham, Lindsey Harper   Cross Track Coverage Application Platform – Ignacio Davila Azure – David Aiken Competition – Jules Dickerson Education - Pavel Kolesnikov, Javier Paramo Ortega Microsoft Online Services (MOS) – Paul Englis, Lori Skinner-Studley Next Web – Olga Londer Storage Solutions – Jason Buffington This slide is required. Do NOT delete. This should be the first slide after your Title Slide. This is an important year and we need to arm our attendees with the information they can use to Grow Share! Please ensure that your objectives are SMART (defined below) and that they will enable them to go in and win against the competition to grow share. If you have questions, please contact your Track PM for guidance. We have also posted guidance on writing good objectives, out on the Speaker Portal (https://www.mytechready.com).   This slide should introduce the session by identifying how this information helps the attendee, partners and customers be more successful. Why is this content important? This slide should call out what’s important about the session (sort of the why should we care, why is this important and how will it help our customers/partners be successful) as well as the key takeaways/objectives associated with the session. Call out what attendees will be able to execute on using the information gained in this session. What will they be able to walk away from this session and execute on with their customers. Good Objectives should be SMART (specific, measurable, achievable, realistic, time-bound). Focus on the key takeaways and why this information is important to the attendee, our partners and our customers. Each session has objectives defined and published on www.mytechready.com, please work with your Track PM to call these out here in the slide deck. If you have questions, please contact your Track PM listed below: Application Server (APS) – Kirby Bartholomew Architecture (ARC) – Miha Kralj Business Intelligence (BI) - John Hormaechea Business Solutions (MSDY) - Pattie Grimm, Scarlet Leung Database (DB) – Tamer Farag, Lisa Hicks, Kevin Ashby Development Tools and Technologies (DEV) – Bijan Javidi Integrated Solutions / ReadyTech (SOLN) – John Wink, KariLynne Gratzer, Joe Culp Management, Operations and Deployment (MOD) – Maki Hanamoto, Michael Cooper Office System (OFC) – Katy Olmstead, Lita Spratt Optimization (OPT) – Jerry Lee, Michael McGuire, Yoav Land, Rick Marcet Security, Identity & Privacy (SIP) – Michelle Moore Unified Communications (UC)– David Alexander Virtualization (VIR) – Maki Hanamoto, Michael Cooper Windows Client (CLI) – Ali Parker, Angie Nelson Windows Phone and Windows Embedded (WPWE) – Jane Hemmen, Larry Lieberman, Katie Leland, Olivier Bloch Windows Server (SVR) – Justin Graham, Lindsey Harper   Cross Track Coverage Application Platform – Ignacio Davila Azure – David Aiken Competition – Jules Dickerson Education - Pavel Kolesnikov, Javier Paramo Ortega Microsoft Online Services (MOS) – Paul Englis, Lori Skinner-Studley Next Web – Olga Londer Storage Solutions – Jason Buffington

3. Compliance Q: How can I determine if my environment is compliant?

4. Group Policy PowerShell PowerShell Scripting inside GP Extend current reach of GP Script Extension to include PowerShell for logon/logoff, startup/shutdown scripts PowerShell Cmdlets for GPMC operations Full lifecycle: create, manage, restore, and remove PowerShell Cmdlets that write and read registry settings to GPO(s) Values can be written to either Policy or Preferences Settings can accept more value types Conditional actions. Objects allow accessing of pieces. Three things: Powershell in three areas of scripting inside GP, GPMC operations, Registry extension control Powershell is awesome for repetitive tasks GP cmdlets can get the data and PowerShell will allow you to manipulate how you want GPMC – do things faster Read/write reg settings – more control Registry extension requires some guidance – lets talk more about that later PowerShell Scripting inside GP Extend current reach of GP Script Extension to include PowerShell for logon/logoff, startup/shutdown scripts PowerShell Cmdlets for GPMC operations Full lifecycle: create, manage, restore, and remove PowerShell Cmdlets that write and read registry settings to GPO(s) Values can be written to either Policy or Preferences Settings can accept more value types Conditional actions. Objects allow accessing of pieces. Three things: Powershell in three areas of scripting inside GP, GPMC operations, Registry extension control Powershell is awesome for repetitive tasks GP cmdlets can get the data and PowerShell will allow you to manipulate how you want GPMC – do things faster Read/write reg settings – more control Registry extension requires some guidance – lets talk more about that later

5. RC – all the help is in, all the syntax is lockedRC – all the help is in, all the syntax is locked

6. GP PowerShell Examples Two things: The AD cmdlets can be used with the GP cmdlets Careful with the GP Registry Value setting – easy to do, not quite so easy to find later Top TP: Extension settings cant be modified with PS cmdlets – only the registry settings Two things: The AD cmdlets can be used with the GP cmdlets Careful with the GP Registry Value setting – easy to do, not quite so easy to find later Top TP: Extension settings cant be modified with PS cmdlets – only the registry settings

7. PowerShell Lilia Gutnik Program Manager Group Policy demo

8. More GP PowerShell Examples Two things: The AD cmdlets can be used with the GP cmdlets Careful with the GP Registry Value setting – easy to do, not quite so easy to find later Top TP: Extension settings cant be modified with PS cmdlets – only the registry settings Two things: The AD cmdlets can be used with the GP cmdlets Careful with the GP Registry Value setting – easy to do, not quite so easy to find later Top TP: Extension settings cant be modified with PS cmdlets – only the registry settings

9. …and more GP PowerShell Examples Two things: The AD cmdlets can be used with the GP cmdlets Careful with the GP Registry Value setting – easy to do, not quite so easy to find later Top TP: Extension settings cant be modified with PS cmdlets – only the registry settings Two things: The AD cmdlets can be used with the GP cmdlets Careful with the GP Registry Value setting – easy to do, not quite so easy to find later Top TP: Extension settings cant be modified with PS cmdlets – only the registry settings

10. Save Time Remove login scripts

11. Save Power (Schemes) http://blogs.technet.com/grouppolicy/archive/2009/09/30/configuring-a-power-plan-with-group-policy-preferences-by-alan-burchill.aspxhttp://blogs.technet.com/grouppolicy/archive/2009/09/30/configuring-a-power-plan-with-group-policy-preferences-by-alan-burchill.aspx

12. Group Policy Preferences New in R2: Vista+ support Power Plans and Scheduled Tasks Three things: Preferences arent Policy Preferences can make 90% of standard logon scripts redundant Targetting through GPP is much better/easier than WMI Preference Settings Not true “Policy” Beyond policy-aware applications Rich UI Granular targeting Top TP: Customers really don’t know about it. Get the message out!Three things: Preferences arent Policy Preferences can make 90% of standard logon scripts redundant Targetting through GPP is much better/easier than WMI Preference Settings Not true “Policy” Beyond policy-aware applications Rich UI Granular targeting Top TP: Customers really don’t know about it. Get the message out!

13. Configuring Familiar Experience Powerful browsers Granular: Red/Green Don’t have to learn something one way in the User UI and then learn it differently in the management UI In the ADMX, configuring part of a setting means pushing all of those configuration choices down; the red green ui allows for granularity, more of a choice of what you want to push out as a preference Powerful browsers: for example, when selecting a device, the browser is the same as the device manager one; you can select the device directly from a populated list. (instead of looking up the device ID). Other examples are in scheduled tasks, services, among others. Don’t have to learn something one way in the User UI and then learn it differently in the management UI In the ADMX, configuring part of a setting means pushing all of those configuration choices down; the red green ui allows for granularity, more of a choice of what you want to push out as a preference Powerful browsers: for example, when selecting a device, the browser is the same as the device manager one; you can select the device directly from a populated list. (instead of looking up the device ID). Other examples are in scheduled tasks, services, among others.

14. Preferences Lilia Gutnik Program Manager Group Policy demo

15. Targeting Item level targeting – on individual items If you have 10 printers, you can have them all be in a single GPO but have them all be targeted to different users or computers Before, things happened at the GPO level and were specified with WMI, which can be slow, and problematic. This targeting uses native API’s so it’s faster and more reliable. Career limiting configuration choices (you can single out your boss from a pref, or specifically make preferences for VP’s etc) Familiar UI to the Windows experience Grouping into collections – parenthetical phrasing Brand new interface, totally redesigned even from the policy maker days There’s also a built-up summary at the top of what’s been chosen so far Item level targeting – on individual items If you have 10 printers, you can have them all be in a single GPO but have them all be targeted to different users or computers Before, things happened at the GPO level and were specified with WMI, which can be slow, and problematic. This targeting uses native API’s so it’s faster and more reliable. Career limiting configuration choices (you can single out your boss from a pref, or specifically make preferences for VP’s etc) Familiar UI to the Windows experience Grouping into collections – parenthetical phrasing Brand new interface, totally redesigned even from the policy maker days There’s also a built-up summary at the top of what’s been chosen so far

16. Granular Actions Create : create new Replace : delete and recreate if present, else create. Update : update if present, else create. Delete: remove True Preference Red/Green Fine-Grained Actions Red/Green Fine-Grained Actions

17. Preferences Lilia Gutnik Program Manager Group Policy demo

18. Light Weight Multiple items XML Descriptions/Comments Backup Import/Export Duplication Community Sharing Display in reports Result view Create Replace Update Delete Fine Grained: apply and do not reapply, remove when no longer applicableBackup Import/Export Duplication Community Sharing Display in reports Result view Create Replace Update Delete Fine Grained: apply and do not reapply, remove when no longer applicable

19. Policy vs. Preference

20. Save Time – Replace Scripting Easy to Set up, Report, Maintain Group Policy Results Results of Item-level Targeting does not appear in report Shows winning items Does not necessarily reflect final settings Group Policy Modeling Assumes all targeting return true Group Policy Results Results of Item-level Targeting does not appear in report Shows winning items Does not necessarily reflect final settings Group Policy Modeling Assumes all targeting return true

22. appendix

23. Deploying GP Preferences Client Side Extension (CSE) Download: XP+, Server 2003, Vista Update: Windows Vista Sp1 In box: Windows 7 GPMC Windows Server 2008 Windows Vista SP1 + RSAT Windows Server 2008 R2 Windows 7 + RSAT

24. Links & Resources Try to limit to TOP 5 links and Resources Try to limit to TOP 5 links and Resources

25. Speakers, Please Read (hidden slide)

26. Speakers, Please Read (hidden slide)

27. Related Content Breakout Sessions/Chalk Talks Session Codes and Titles Webcasts Session Codes and Titles Instructor-led Labs Session Codes and Titles Hands-on Labs Hands-on Lab Codes and Titles Competitive Content Competitive Content related to your topic area (Session Codes and Titles) Security Content Security Content related to your topic area (Session Codes and Titles) Speakers should use this slide to identify content, related to their presentation, being offered in other sessions or labs at TechReady. Your Track PM can provide a full listing of all of the sessions, webcasts, hands-on labs and instructor-led labs in your track, as well as the other tracks. Track PMs are listed below: Application Server (APS) – Kirby Bartholomew Architecture (ARC) – Miha Kralj Business Intelligence (BI) – John Hormaechea Business Solutions (MSDY) – Pattie Grimm, Scarlet Leung Database (DB) – Tamer Farag, Lisa Hicks, Kevin Ashby Development Tools and Technologies (DEV) – Bijan Javidi Integrated Solutions / ReadyTech (SOLN) – John Wink, KariLynne Gratzer, Joe Culp Management, Operations and Deployment (MOD) – Maki Hanamoto, Michael Cooper Office System (OFC) – Katy Olmstead, Lita Spratt Optimization (OPT) – Jerry Lee, Michael McGuire, Yoav Land, Rick Marcet Security, Identity & Privacy (SIP) – Michelle Moore Unified Communications (UC)– David Alexander Virtualization (VIR) – Maki Hanamoto, Michael Cooper Windows Client (CLI) – Ali Parker, Angie Nelson Windows Phone and Windows Embedded (WPWE) – Jane Hemmen, Larry Lieberman, Katie Leland, Olivier Bloch Windows Server (SVR) – Justin Graham, Lindsey Harper Cross Track Coverage Application Platform – Ignacio Davila Azure – David Aiken Competition – Jules Dickerson Education - Pavel Kolesnikov, Javier Paramo Ortega Microsoft Online Services (MOS) – Paul Englis, Lori Skinner-Studley Next Web – Olga Londer Storage Solutions – Jason Buffington If there is additional content available that attendees should know about, please add a section for Additional Resources to the slide. In this section you can call out whitepapers or websites that you and your team have created.Speakers should use this slide to identify content, related to their presentation, being offered in other sessions or labs at TechReady. Your Track PM can provide a full listing of all of the sessions, webcasts, hands-on labs and instructor-led labs in your track, as well as the other tracks. Track PMs are listed below: Application Server (APS) – Kirby Bartholomew Architecture (ARC) – Miha Kralj Business Intelligence (BI) – John Hormaechea Business Solutions (MSDY) – Pattie Grimm, Scarlet Leung Database (DB) – Tamer Farag, Lisa Hicks, Kevin Ashby Development Tools and Technologies (DEV) – Bijan Javidi Integrated Solutions / ReadyTech (SOLN) – John Wink, KariLynne Gratzer, Joe Culp Management, Operations and Deployment (MOD) – Maki Hanamoto, Michael Cooper Office System (OFC) – Katy Olmstead, Lita Spratt Optimization (OPT) – Jerry Lee, Michael McGuire, Yoav Land, Rick Marcet Security, Identity & Privacy (SIP) – Michelle Moore Unified Communications (UC)– David Alexander Virtualization (VIR) – Maki Hanamoto, Michael Cooper Windows Client (CLI) – Ali Parker, Angie Nelson Windows Phone and Windows Embedded (WPWE) – Jane Hemmen, Larry Lieberman, Katie Leland, Olivier Bloch Windows Server (SVR) – Justin Graham, Lindsey Harper Cross Track Coverage Application Platform – Ignacio Davila Azure – David Aiken Competition – Jules Dickerson Education - Pavel Kolesnikov, Javier Paramo Ortega Microsoft Online Services (MOS) – Paul Englis, Lori Skinner-Studley Next Web – Olga Londer Storage Solutions – Jason Buffington If there is additional content available that attendees should know about, please add a section for Additional Resources to the slide. In this section you can call out whitepapers or websites that you and your team have created.

28. Please Complete An Evaluation Form Your input is important! Multiple ways to access Online Evaluation Forms: CommNet stations located throughout conference venues Via a Windows phone device Via the CommNet “Julian” offline Windows phone evaluation and session scheduling tool From any wired or wireless connection to: https://www.MyTechReady.com Speakers: Please note this slide will be exchanged to the actual evaluation slide onsite as currently the launch button is not linked to any videos. After the slide exchange onsite the evaluation video needs to be activated with you clicking on the black button.Speakers: Please note this slide will be exchanged to the actual evaluation slide onsite as currently the launch button is not linked to any videos. After the slide exchange onsite the evaluation video needs to be activated with you clicking on the black button.

  • Login