Organisations’ dependency on information and communications technology continues to grow, increasing the need to manage their security, resilience and risks more effectively. This all needs to be set against a background of low total cost of ownership and high availability. Microsoft System Center equips IT departments with a suite of products to manage their physical and virtual IT environments across datacentres, client computers and devices.
Waterstons’ Desktop and Systems Management consultants Charlie Hales and David Meads will introduce the whole System Center 2012 suite of products, explaining how they integrate and providing examples of time and cost savings that businesses can achieve. This can include standardising your PC builds; device and application management; enabling user self-service; incident, problem and change management and automatic updates and issue resolution.
Components of the suite addressed include:
• Configuration Manager (SCCM)
• Service Manager (SCSM)
• Operations Manager (SCOM)
• Orchestrator (SCO)
• Virtual Machine Manager (SCVMM)
The seminar will also detail where specific components of the suite are free for organisations with a Microsoft Enterprise Agreement.
2. Agenda
•
•
•
•
•
•
System Center 2012 Components
Licensing
Device and Application Management
Service Management
Enable IT to be more proactive
Summary of benefits
3. System Center 2012 Components
•
•
•
•
•
•
•
•
Configuration Manager
Endpoint Protection
Operations Manager
Orchestrator
Service Manager
Data Protection Manager
Virtual Machine Manager
App Controller
6. System Center 2012 Licencing
• No longer licence product, licence the endpoint that is
managed
• SQL standard licence included
• Server ML’s come in 2 editions
– Datacenter benefitting highly virtualised environments. 2
physical processors, unlimited OSEs
– Standard covers 2 physical processors and up to 2 OSEs
• Enterprise CALs includes System Center Client
Management Suite
• Core CALs include Configuration Manager and
Endpoint protection
• If you have SA you can upgrade the licence
7. Configuration Manager
• Device Management
– Desktops, laptops, thin clients, mobile devices
– Operating System Deployment and base build
• Standardise the estate
– Anti-virus
• Integrated and can be cheaper than existing AV
–
–
–
–
Software Update Management
Power Management
Client Health & Monitoring
Asset Intelligence and Inventory
8. Configuration Manager
• Application Management
– Application Delivery
– Application Intelligence and Inventory
– Application Updates
• Not just Microsoft
12. Service Manager
• IT Service Management
– Incident/Change/Problem/Service Requests
• Configuration Management
– One place for all data
– Saves service desk time inputting data
• Self service portal
– Logging tickets
– Raising requests
– Tailor to streamline processes
• Reporting
13. Service Manager
• Saving in licence costs?
– Included in enterprise CALs
• Works with Silverlight
• Works on MOF framework and is ITIL
compliant
• Mobile portals can be created for access
form anywhere
16. SCOM
• Monitor
– Not just Microsoft systems and devices
– Addition of AviCode
– Management Packs
– Baseline systems
• Alert
– Email and/or integration with SCSM
• Automate (with Orchestrator)
17. VMM
• Management console for Hyper-V and
others
– Including VMWare and Citrix
• Enables private clouds for business
– Provides service teams with access to
provision their own servers from a pool of
resources through app controller
• Automate (with Orchestrator)
18. Orchestrator - Automation
• Implement server maintenance
• Usually implemented with Operations
Manager but not essential
• Automates resolution of issues and resource
hungry tasks
– Can automatically patch servers and log issues if
they arise (through SCSM)
– Can monitor services (e.g. webpage) and
automatically log calls/resolve issue and call if
relevant
20. Benefits
• Reduced licence costs if you already have
existing CALs
• Manage all of your devices from one place
• Time and resource massively reduced for
deploying devices and applications
• Time and cost savings for Anti Virus solution
• Ease of use and management
• Time available to focus on proactive tasks
rather than reactive “keeping the lights on”
CHQuick overview as only 1 hour Provide an overview of all components – more detail on some of them later onRun through the licencing as some businesses with enterprise agreements will already be licenced for some of the componentsRun though some features and benefits of SCCMRun though some features and benefits of SCSMRun though some features and benefits of SC with Orch/VMM/SCOMSome examples of benefits including time and cost savings
CHSCCM management of devices, standardising the builds and helping with Desktop strategiesEndpoint now included in SCCM, both management console and licences. Cost of current AV could pay for SCCM/EP licencesOperations Manager, can now manage network devices and most applications. Not out of the box in all cases, through scripting.Orchestrator, this is the Automation hub, can automate patching, restarting services, logging calls (through SCSM)Service Manager, Ticketing system, still in its infancy, a few bugs and based on Silverlight, good tool and suitable for most companies but can require some additional work if a company does not use SilverlightData Protection Manager, Backup solution, enables disk-based and tape-based data protection and recovery for servers such as SQL Server, Exchange Server, SharePoint, virtual servers, file servers, and support for Windows desktops and laptops. DPM can also centrally manage system state and Bare Metal Recovery (BMR).Virtual Machine Manager, single management console to manage Hyper-V, VmWarevSphere and Citrix XenServer.App Controller, very new, this allows Application managers to manage their applications. Infrastructure teams will provide them with a pool of resources through the likes of vmm and config manager. Then they can decide through the App controller to provision new servers to clusters on the fly (for example)
CHExample: SCOM monitors a website, notices it’s down, logs a call in SCSM, Orchestrator try's to resolve restarting IIS, website checks again, could reboot if not fixed, check again, if resolved close ticket in SCCM, if not resolved escalate ticketExample 2: HR team notice application slow response times to HR website, provision new Web server to farm using template and remonitor
CHHistory and lifecycle of System Center componentsStarted in 1994 with sccm200 SCOM came along2006 DPM added2007 VMM added, mainly to manage Hyper-V initially, VmWare added then Citrix later2009 Microsoft purchased Opalis and rebranded Orchestrator2010 Service manager included and Avi code purchased (this allowed SCOM to monitor none Microsoft systems that did not have an out of the box management pack.2010 System Center suite aligned and integration across the board improved. This does also mean though that all need to be managed together, for example SP’d at the same time. But provides great functionality and benefits
CHTwo components, Server Management Licences and Client Access LicencesServer ML’s 2 editionsBreak point can depend on agreements in place for Microsoft but in general if you need more than 3 Standard you may as well purchase DatacenterEnterprise CAL’s – whole suite includedCore CAL’s SCCM and endpoint protection included, this includes AntiVirus (old Forefront)Another point to note, if the company has an enterprise agreement with SA and use Windows 7 (or later) enterprise, they are licenced to use bitlocker for encryption, some companies can pay a lot to third parties for this.
DMManage full client estate – desktops, laptops, thin clients, mobile devicesOperating System Deploymentsimplifies the complex task of distributing operating systems Standardised builds for easier management and maintenanceEndpoint Protection builtin – single place for client managementSoftware Update Management – MS and 3rd party applicationsPower Management – reports, set power optionsClient Health&Mon – baseline, compliance, integrates with SCSMAsset Intel – hundreds of default reports on the estate, custom reports can be created using SQL
DMApplication Delivery Central location for application managementEfficiently distribute applicationsSave a lot of time Distribute new software or critical updates at the required speedRange of delivery method for different devicesInstall locallyApp-VDistributed sites can have DP’s placed at each site to save network bandwidthAsset IntelCorrect Application on the right deviceReport on usage of applicationsProvide knowledge on upgrades and licenses requiredPublish application Application UpdatesRight applications at the right time EFFICIENTLY
DMDevice managementApplication managementApplication catalogueIntegrated EP
DMFor Client ManagementMicrosoft clear leaderLandesk, Symantec and IBM challengers
DMFor Application lifecycle managementMicrosoft LeaderIBM and Atlassain challengersSo for overall, IBM only challenger but can be very costly compared to if you already have an enterprise CAL agreement with MS. Core CAL all required to include Config manager.
CHTicketing tool – Incident / Change / Problem / ReleaseDifferentiator is:Configuration management Database – Central, integrates with other systems, One view of your dataSelf service portal – log tickets / raise / requests / view progress / IT requestsReporting – KPI / SLA
CHIncluded in Enterprise agreementsBased on Silverlight, great for companies only using Windows devices for users, if using the likes of IPADs bespoke front end portal would need creatingITIL compliant but not based on ITIL, in some companies following strict ITIL framworks there may be some development required to make to tool do as required.New product but improving as extra companies take on the technology
CHService Manager: •CMDB •Contains configuration items such as computers, the hardware around those computers, the software, and service components such as web sites and databases. •knowledge base that contains information in one CMDB. •create relationships between different objects, such as an incident and a database that went down. Infrastructure: •Workflow infrastructure can be used to optimize and automate the fulfilment of requests. •The forms infrastructure can create customized forms, both on the self-service portal as well as in the Service Manager console. •The data warehouse and reporting infrastructure can be used for long-term data storage and reporting purposes. Connectors: •System Center components such as Operations Manager, Configuration Manager, Orchestrator, and Virtual Machine Manager. •Active Directory. •These connectors bring data into Service Manager to drive the processes and enable Service Manager to automate activities across the System Center product. •Service Manager provides a number of solutions out of the box for activities such as compliance and risk management, change management, release management, service request fulfilment, and incident and problem management. Self-service interfaces: •service catalogue on the self-service portal, submit requests for incidents, and can view the status of those requests. •Self-service reporting is also available, so people can go to either a Microsoft SharePoint dashboard you create, or they can use tools they are familiar with such as Excel, to analyse the data that is stored in the data warehouse. These solutions provide the forms, workflows, and reports that you need out of the box, and they are designed in such a way to be customized by you for your individual process.
CHOverview of ticketing system
DMAgents agents deployed to machines for monitoringpossible to run agentless but this increase the workload of the server dramaticallyManagement packscan monitor many aspects of a Windows system out of the boxto provide in depth management of specific roles and products such as Exchange management packs must be installed into SCOMmanagement packs provide the logic for the system to know how to monitor the systemsSCOM out of the box is the bare bones management framework that needs logic addingTailoring the logicimperative that is effort is put into the tweaking the logic so that all alerts are relevant to the business. This is done through creating override management packs and adding extra logic to stop some alerts from being alerted or increasing / decreasing severity of an alert and the action it takes on that alertApplication tiersbiggest move in SCOM 2012Aware of what is required to make an application accessible and healthy. This may include many different parts of your infrastructure to deliver this service. By adding this logic into SCOM alerts start becoming more meaningful. E.G. SharePoint site may need a database, application layer and a website front end. If any of the components in the application tier fail, it can decide and alert if the failure has resulted in the service being down and which part required attention. This can be setup with HA so it knows if one web front end in a cluster is down it needs to alert that to the service deskBut if all web front ends are down it knows that it needs to ring somebody immediately.
DM
DMAutomation tool for the datacentreCreation, monitoring and deployment of resourcesUses workflows (runbooks) created in advance