1 / 26

Configuration Manager as a Service & Hybrid MDM

Explore the latest features, updates, and enhancements in Configuration Manager Current Branch and Technical Preview versions, including hybrid device management strategies and support for Windows 10 and Intune. Keep your systems updated efficiently and respond to customer feedback effectively.

barbaram
Download Presentation

Configuration Manager as a Service & Hybrid MDM

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Configuration Manager as a Service & Hybrid MDM Luca Portoni - PFE Marco Saracco - PFE

  2. Configuration Manager Changes • Configuration Manager Servicing • Strategy • Cadence • Support • Overview Hybrid Device Management Agenda www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  3. Simplify the upgrade experience: in-place upgrade from Configuration Manager 2012 and R2 to latest product version • Support faster paced updates for Windows 10, Office 365, and Microsoft Intune: new updates and servicing nodes deliver periodic updates for new features, bug fixes, and extensions for hybrid deployments using Intune • Listen and respond quickly to customer feedback: foundational improvements made in latest version of the product allow us to respond to customer feedback more quickly The New Configuration Manager www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  4. Configuration Manager Current Branch Configuration Manager Current branch (version 1511) Current branch (version 1602) Current branch (version 1606) Technical Preview (version yymm) WINTER SPRING SUMMER www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  5. Baseline and update versions www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  6. Current Branch FAQs • How often will updates be released? • How long is each update supported? • Can I have mixed versions of hierarchy and clients? • What about System Center 2016? • Will previous updates versions support newer builds of Windows 10? www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  7. Features not available in the LTSB • Does not receive updates for new features. • Does not support adding a Microsoft Intune Subscription, which prevents the use of: • Intune in a hybrid MDM configuration • On-premises MDM • Does not support use of the Windows 10 Servicing Dashboard, Servicing Plans, and does not support Windows 10 Current Branch (CB) and Current Branch for Business (CBB) • Does not support future releases of Windows 10 LTSB and Windows Server • No support for Asset Intelligence • No support for cloud-based distribution points • No support for Support for Exchange Online as an Exchange Connector • Does not support any pre-release features www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  8. Configuration Manager, version 1610 Current Branch www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  9. What’s new in 1610 1/3 • In-console monitoring of update installation status • Exclude clients from automatic upgrade • Improvements for boundary groups • Peer Cache for content distribution to clients • Migrate multiple shared distribution points at the same time • Cloud management gateway for managing Internet-based clients • Improvements to the Windows 10 Edition Upgrade Policy • Manage hardware identifiers www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  10. What’s new in 1610 2/3 • Enhancements to Windows Store for Business integration with Configuration Manager • Policy sync for Intune-enrolled devices • Use compliance settings to configure Windows Defender settings • General improvements to Software Center • Customizable Branding for Software Center Dialogs • Enforcement grace period for required application and software update deployments • Improved functionality for required software dialogs www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  11. What’s new in 1610 3/3 • Software updates dashboard • Improvements to the application request process • Filter by content size in automatic deployment rules • Office 365 Client Management dashboard • Task sequence steps to manage BIOS to UEFI conversion • New compliance settings for configuration items • Improvements to the Prepare ConfigMgr Client for Capture task sequence step www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  12. DEMO - 1610 Features www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  13. Configuration Manager Technical Preview TP www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  14. What is the Technical Preview Comparison with production builds • For lab-only evaluation • Cannot switch between the two • For early product insight, encourage customer feedback Current versions • Baseline: System Center Technical Preview 1610 • Update: Configuration Manager 1611 TP Requirements/limitations • https://technet.microsoft.com/en-us/library/mt595861.aspx#bkmk_reqs www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  15. Overview Hybrid Device Management MDM www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  16. MDM Lifecycle management Enroll • Provide a self-service Company Portal for users to enroll devices • Deliver custom terms and conditions at enrollment • Bulk enroll devices using Apple Configurator, DEP or service account • Restrict access to Exchange email or SharePoint if a device is not enrolled Provision • Deploy device security policy settings • Deploy certificates, email, VPN, and WiFi profiles • Install mandatory apps • Deploy app restriction policies • Deploy data protection policies Manage and Protect • Restrict access to corporate resources if policies are violated (e.g., jailbroken device) • Protect corporate data by restricting actions such as copy/cut/paste/save outside of managed app ecosystem • Report on device and app compliance User IT Retire • Revoke access to corporate resources • Perform selective wipe • Audit lost and stolen devices www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  17. Microsoft IntuneStandalone Manage and Protect • No existing infrastructure necessary • No existing Configuration Manager deployment required • Simplified policy control • Simple web-based administration console • Faster cadence of updates • Always up-to-date Devices Supported • Windows PCs (x86/64, Intel SoC) • Windows Phone 8.x+ • iOS • Android • Mac OSX Intune standalone (cloud only) Intune web console Mobile devices and PCs www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  18. Configuration Manager with Intune (hybrid) System Center Configuration Manager + Microsoft Intune • Build on existing Configuration Manager deployment • Single pane of glass for device management • Rich targeting • Custom reporting • Deep policy control requirements • Large scale – 50k+-300k • Extensible administration tools (RBA, PowerShell, SQL reporting services) Configuration Manager console System Center Configuration Manager Devices Supported (In Addition To Mobile Devices) • Windows PCs (x86/64, Intel SoC) • Windows to Go • Windows Server • Linux/UNIX server • Mac OS X Windows Phone, iOS, Android Windows PC & Server, Mac, Linux www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  19. Hybrid CM - Principal Management Capabilities • Retire and wipe devices • Configure compliance settings (passwords, security, roaming, encryption, and wireless communication, …) • Deploy line-of-business (LOB) apps to devices • Deploy apps to devices that connect to Stores (Windows Store, Windows Phone Store, App Store, or Google Play) • Collect inventories www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  20. Hybrid CM – BYOD or Corportate Devices Enrollment • BYOD (Bring Your Own Device) • Users install the Company Portal app and enroll their device. This can let users connect to the company network, joining the domain or Azure Active Directory. • COD (Corporate-owned devices) • Can be managed with the Configuration Manager console. • iOS devices can be enrolled directly through tools provided by Apple. • All device types can be enrolled by an admin or manager using the device enrollment manager. • Devices with an IMEI number can also be identified and tagged as company-owned to enable COD scenarios. www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  21. Start Enrolling…  Bring Your Own device or Corporate Owned Devices Set up configuration items and conditional access for enrolled devices Enable Managed Platforms (Windows, iOS, Android) The service connection point sends settings and software deployment information to Configuration Manager and retrieves status and inventory messages from mobile devices. Create terms and conditions to which users must agree before they can use the Company Portal app The Intune service lets you manage devices over the Internet. Confirm your organization's domain name service (DNS) Create a Configuration Manager user collection with users whose devices can be enrolled • Create MDM Collection • Verify Domain Name Requirements Hybrid CM – Configuration Steps • Configure Intune Subscription • Add terms and Conditions (Optional) • Create Service Connection Point • Enable Platform Enrollment • Setup Policies (Optional) • Enroll Devices www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  22. DEMO – Hybrid MDM www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  23. What's new in hybrid mobile device management with System Center Configuration Manager and Microsoft Intune Setup hybrid mobile device management (MDM) with System Center Configuration Manager and Microsoft Intune Hybrid MDMUseful Links www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  24. Technical Preview for System Center Configuration Manager https://docs.microsoft.com/it-it/sccm/core/get-started/technical-preview Enterprise Mobility and Security Blog https://blogs.technet.microsoft.com/enterprisemobility/?product=system-center-configuration-manager Useful Links www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  25. Domande e Risposte Q&A www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

  26. OverNet Education info@overneteducation.it www.overneteducation.it Tel. 02 365738 @overnet www.facebook.com/OverNetEducation www.linkedin.com/company/overnet-solutionswww.wpc2016.it Contatti OverNet Education www.wpc2016.it – info@wpc2016.it - +39 02 365738.11

More Related