Transcript Agenda - MEEC - Maryland Education Enterprise Consortium

Agenda
 New
OS Features
 Application Compatibility
 Deployment and Adoption
New OS Features





User Interface
WAN Optimization: BranchCache
Remote Access for all: DirectAccess
Data Protection: BitLocker & BitLocker-To-Go
Application Control: AppLocker
Taskbar JumpLists





Mini Start Menu for your program
Surface key destinations and tasks
Customizable
Accessible via Right-click and via Drag
APIs use the name “Destination List”
Taskbar Thumbnail Toolbars




Remote-control for a window
Surface key commands
Up to seven buttons
Accessible from taskbar thumbnail
Taskbar Custom Switchers



Surface custom UI (e.g. TDI/MDI)
Custom thumbnails for each window
Appears in your program’s window list
Taskbar Visual Feedback
Windows Explorer
Windows Scenic Ribbon
Application Menu
Quick Access Tab
Toolbar
Group (aka “Chunk”)
 In-box
Contextual Tab Set
Help
Contextual Tab
Dialog Launcher
with Windows 7, redistribution available to Vista
 Win32 API, COM-based (targets native developers first)
 Feature parity (or close) with Microsoft Office 2007 Ribbon
Federated Search
Consistent experience across providers
Libraries
Rich pivots over files from multiple locations
Branch Office Network Performance
Situation Today
BranchCache
• Application and data access over
WAN is slow in branch offices
• Slow connections hurt user
productivity
• Improving network performance is
expensive and difficult to
implement
• Caches content downloaded from
file and Web servers
• Users in the branch can quickly
open files stored in the cache
• Frees up network bandwidth for
other uses
Distributed Cache vs. Hosted Cache
Enterprise
Distributed Cache
Hosted Cache
Data cached amongst clients
Data cached at the host server
• Recommended for branches without
• Recommended for larger branches
• Cache stored centrally: can use
any infrastructure
• Easy to deploy: Enabled on clients
through Group Policy
• Cache availability decreases with
laptops that go offline
existing server in the branch
• Cache availability is high
• Enables branch-wide caching
Remote Access for Mobile Workers
Situation Today
DirectAccess
Office
Home
• Difficult for users to access
corporate resources from outside
the office
• Challenging for IT to manage,
update, patch mobile PCs while
disconnected from company
network
Office
Home
• New network paradigm enables same
experience inside & outside the office
• Seamless access to network
resources increases productivity of
mobile users
• Infrastructure investments also make
it easy to service mobile PCs and
distribute updates and polices
Data Protection
Situation Today
BitLockerToGo
+
Worldwide Shipments (000s)
1200
1000
800
600
400
200
0
Removable
Solid-State
Storage
Shipments
PC
Shipments
2007
2008
2009
2010
2011
• Gartner “Forecast: USB Flash Drives, Worldwide, 2001-2011”
24 September 2007, Joseph Unsworth
• Gartner “Dataquest Insight: PC Forecast Analysis, Worldwide,
1H08” 18 April 2008, Mikako Kitagawa, George Shiffler III
• Data protected on internal drives
and removable storage
• Mandate the use of encryption with
Group Policies
• Store recovery information in Active
Directory for manageability
• Simplify BitLocker setup and
configuration of primary hard drive
Application Control
Situation Today
AppLocker
• Users can install and run
unapproved applications
• Even standard users can install
some types of software
• Unauthorized applications may:
•
•
•
•
Introduce malware
Increase helpdesk calls
Reduce user productivity
Undermine compliance efforts
• Eliminate unwanted/unknown
applications in your network
• Enforce application standardization
within your organization
• Easily create and manage flexible
rules using Group Policy
Application Compatibility
Compatibility Overview
 Application Compatibility Toolkit
 XP Virtual Mode
 Enterprise Desktop Virtualization (MED-V)

Building on Vista
Deployments, pilots, and testing will continue to pay off
Similar Compatibility:
•
•
Most software that runs on Windows Vista will run on Windows 7
Exceptions will be low level code (AV, Firewall, Imaging)
Hardware that runs Windows Vista well will run Windows 7 well
Few Changes: Focus on quality and reliability improvements
Deep Changes: New models for security, drivers, deployment,
and networking
Top Compatibility Issues in Vista





User Account Control (UAC)
Windows Resource Protection (WRP)
Internet Explorer Protected Mode
64-bit Operating System
OS Version Changes
Changes in Windows 7






OS Versioning
Security Class Applications
Removal of built-in Windows Applications
(Mail, Movie Maker, Photo Gallery, Messenger, Address Book)
Internet Explorer 8
Revamped CDROM driver stack and Biometrics Support
And a few more
Application Compatibility Resources
• App Compatibility Toolkit
• App Compatibility Toolkit
• App Compatibility Toolkit
• App Inventory Service
• Win Compatibility Center
• App Virtualization
• Microsoft Assessment
and Planning (MAP)
• App Quality Cookbook
• App Quality Cookbook
• App Verifier
• Virtual Legacy Win OS
• System Center
Application Compatibility Toolkit
Collection of free tools to:
 Inventory for software, hardware, and device assets
 Compatibility evaluation for the above
 Obtain vendor support statements and Logo data from
Compatibility Exchange
 Recommendations for fixing applications & websites (IE8)
 Tools to apply compatibility fixes or “shims” to applications
22
Application Compatibility Toolkit
Methodology
• Inventory
Applications
and Devices
• Gather
high-level
compatibility
evaluator data
• Prioritize
and
Categorize
• Synchronize
data with
Microsoft
Compatibility
Exchange
• Verify high-level
issues
• In-depth testing
with dev/test
tools
• Log test data
• Build and test
mitigations
Application Compatibility Toolkit
High Level Architecture
4
Compatibility Exchange
Desktop Topology
Europe
2
Finance
HR
North America
Log Processing
Service and DB
Internet
1
Data Collection Package/Compatibility Evaluators
Inventory
Windows 7
Windows Vista
Update
3
Application
Compatibility
Manager
Ichiro
Greg
Application Compatibility Toolkit 5.5

Added support for Windows 7 adoption



Detection of Windows Mail depreciation
Compatibility Reports
Added support for Windows Update

Detect compatibility issues w/ Windows 7 and Vista SP2
Compatibility data included from Compatibility Center
 Improvements to Compatibility Exchange
 Ability to select which apps to share data about with
Microsoft (and improved report review)

Application Compatibility Resources
 Application Compatibility Toolkit 5.5
○ http://www.microsoft.com/downloads/details.aspx?FamilyID=24da89e9-
b581-47b0-b45e-492dd6da2971&displaylang=en
 For IT Professionals:
○ Application Compatibility for Windows 7 - Springboard
http://technet.microsoft.com/appcompat
 For Developers:
○ Application Quality Cookbook (Windows 7)
http://code.msdn.microsoft.com/Windows7AppQuality
○ Application Compatibility Cookbook (Windows Vista)
http://msdn.microsoft.com/windowsvista/default.aspx?pull=/library/enus/dnlong/html/AppComp.asp
○ Application Compatibility in Internet Explorer 8
http://msdn.microsoft.com/en-us/ie/cc405106.aspx
○ Application Compatibility Forum
http://social.msdn.microsoft.com/forums/enUS/windowscompatibility/threads/
Application Compatibility Ecosystem
 Windows Logo Program
○ Getting the “Certified for Windows Vista” or “Works with Windows Vista”
logo is the most effective way for your customers to identify products that
work well with Windows Vista
○ https://winqual.microsoft.com/
 Windows Vista Application Compatibility Training
○ 2 days of intense learning on tools and techniques for detecting,
diagnosing and mitigating Windows Vista Application Compatibility issues
○ On-site engagements to help enterprise customers resolve Windows Vista
Deployment blockers
○ Contact: [email protected]
 Application Compatibility Factory
○
○
○
○
○
5 global System Integrators are on board and ready to work with you now
Have deep expertise in application testing and remediation
ACF partner services focus on custom apps, scales to some ISV apps
Contact: Wipro, Infosys, TCS (Tata), Satyam, HP, Sogeti
http://technet.microsoft.com/en-us/windows/bb510132.aspx
Virtual XP Mode
Virtual PC 2007




Developer/ IT Professional
Development & Test/ Helpdesk
Multiple Guest OSes
Cost for each Guest OS
Virtual XP Mode (Win7 Pro/Ent/Ultimate)




Small/Medium Business
XP to Win7 App Compatibility
Windows XP Guest
Virtual XP included (Pro/Ent/Ultimate)
MED-V

Operating System Compatibility




Simplified Virtual PC Delivery and Updates





Resolve App-to-OS incompatibility
‘Publish’ Apps from VPC image to Start Menu
Single desktop experience
Centralized PC image management
Background VPC management
Image delivery via Network/ Internet/ DVD/ USB memory
Automated internet based image updates
Central Access Control


Data use policies control data flow from the VPC images
Global/User based permissions and policies
Use Virtual XP Mode or MED-V?
MED-V centrally manages virtual Windows environments
• Deploy – deliver virtual Windows images and customize per user and device settings
• Provision – define which applications and websites are available to different user groups
• Control – assign and expire usage permissions and Virtual PC settings
• Maintain & Support - update images, centrally monitor users and remotely troubleshoot
Windows Virtual PC provides the ease of use for end users
• Run Windows XP or other Windows environments on Windows 7
• Install and launch Windows XP applications from Windows 7 Desktop
IT Professionals: Use MED-V when deploying Windows Virtual PCs,
to reduce complexity, maintain control and keep costs low
Increase Desktop Computing Flexibility

Deliver IT-managed desktops to unmanaged PCs
Enable work at home and increased mobility without a laptop
 Drive business continuity/recovery plans with virtual desktops anywhere
 Increase productivity for contractors and branch workers
 Increase manageability and usability of agency laptops
 Eliminate the trade off between IT control and user flexibility
 Enable employee-owned model, using a virtual agency desktop

Deployment and Adoption
Deployment Automation
 Imaging and Image Delivery in Windows 7
 Building VHD Images
 User State Migration
 Volume Activation

Windows 7 Deployment
Deployment
Image Servicing
and Management
• Add/Remove Drivers
and Packages
• WIM and VHD Image
Management
Microsoft Assessment and
Planning
Windows
Deployment Services
User State
Migration Tool
• Multiple Stream Transfer
• Hard-link Migration
• Dynamic Driver
Provisioning
• Offline File Gatherer
• WIM and VHD Support
Application
Compatibility Toolkit
• Improved User File
Detection
Microsoft Deployment
Toolkit
Deployment Image Servicing
and Management (DISM)



Enable/Disable, Enumerate,
Add/Remove Packages and
Updates
Add/Remove,
Enumerate Drivers
WIM and VHD Support
Boot from VHD
Not like your old Virtual PC and Hyper-V VHD Experience



Images are specialized after setup – no HW emulation
Windows 7 Enterprise/Ultimate & Server 2008 R2 only
(for VHD and host OS components)
BitLocker and Hibernation are not supported
What you get from Boot from VHD…


Single image for VDI and physical
Easy to redeploy OS if personality is abstracted
Windows Deployment Services
Multicast Enhancements

Multiple Stream Transfer
 Multiple bands to broadcast
images to clients
 Optimized rates per client
connection
Fast

Client Auto Removal
 Slower clients can be dropped
to unicast or entirely
Medium

Boot Image Multicast
 Windows PE boot images
Slow
can use multicast
Windows Deployment Services
Dynamic Driver Provisioning
WDS Server
Images
Drivers
Driver targeting to match
drivers to hardware
 Reduces image size
 Centralizes deployment
driver management

Client
User State Migration Tool (USMT)

Hard-link Migration
 Enables local file migration without
copying or moving files
 Processes migration jobs in third
of the time or less

Offline User State Capture
 Capture during Windows PE phase
to improve speed

Volume Shadow Copy
 Capture files even while they are in use

Improved File Discovery
 Reduces XML customization need
Windows 7 Volume Activation
Based on Volume Activation 2.0
for Windows Vista and Windows Server 2008
Activation is required for all editions of Windows 7
 Employs the same key hierarchy (KMS, MAK)
 Online validation experience unchanged

 A full OS release (32-bit and 64-bit)
 Built on the Windows Vista Foundation
 Compatibility with Windows Vista software,
hardware and tools
 Investment Areas:
 Make Users Productive Anywhere
 Enhance Security & Control
 Streamline PC Management
 User Experience and UI Enhancements
Where we are in the development cycle…
Planning &
Vision
Development &
Test
Pre-Beta
Beta
RC
Release