Windows Management Technologies in Vista and beyond

Agenda
Group Policy Improvements WMI Enhancements WinRM – Windows Remote Management
WS-Man Remote Protocol WinRS – Windows Remote Shell

New Vista Windows Event Log support Windows Vista Task Scheduler New Performance Counter Model WSUS 3.0 Changes Windows PowerShell

Improvements In Group Policy For Windows Vista
Extends the reach of Group Policy with hundreds more settings Reliably and efficiently apply policy Easier to use

Extending The Reach Of Group Policy
Over 500 new settings across key areas
Power Management
Troubleshooting & Diagnostics

Device Installation and Usage User Account Control Terminal Services

Internet Explorer

IPSEC & Windows Firewall Windows Defender

Printer Deployment Windows Error Reporting Tablet

iSCSI

Remote Assistance

Globalization

Shell

Improvements In Group Policy
Applied more reliably, and easier to use
Reliable and Efficient Application of Policy

Easier to Use

Network aware application of Group Policy Support for editing Group Policy settings in Multilingual Environments Support for Multiple Local GPOs

GPMC integrated into Windows Search and filter (Post Vista) Templates (Post Vista)

Windows Management Infrastructure (WMI) Enhancements Improve Manageability
Windows Vista includes 13 new WMI Providers:
BitLocker Drive Encryption Trusted Platform Module Boot Configuration Database Intelligent Platform Management Interface Windows Parental Controls Network Access Protocol Client Others…

WinRM - Windows Remote Management
Firewall Friendly Remote Access Protocol (Replaces DCOM)
HTTP and HTTPS Microsoft’s implementation of WS-Management Use WinRM to Access WMI Information over the Internet

Components
WinRM: Windows Remote Management
WSMan implementation in Windows

WinRS: Windows Remote Shell
Uses WSMan stack for remote script executions

IPMI Driver Event Collector Event Forwarder

In-Band And Out Of Band
Management console Cmdline tool Client App WSMAN WSMan Service OS

WSMan client

WMI WSMAN

EventLog

IPMI driver Hardware BMC

Machine Boundary

Architecture
Client App Cmdline tool

Reg

WMI Service

EventLog Service Svchost

Config Config WMI plugin plugin plugin

SEL Events plugin plugin

WSMan Automation DLL WSMan WSMan Client DLL Prov DLL WSMan plugin 3rd party WSMan Other mgmnt component Windows platform HTTP/HTTPS WinHTTP

WSMan Client DLL WSMan service

WSMan Prov DLL

HTTP.sys

Event Forwarding
3rd party App
Create Subscription

Cmdline tool

Event Viewer

Collector API

Machine Boundary

Collector Machine

Event Source Machine

Svchost Svchost Event Collector Service WSMan Client API Events plugin WSMan service HTTP.sys Event Log EventLog Service

EventLog Service

Event Log 3rd party

WinHTTP

WSMan component EventLog component Windows platform HTTP/HTTPS

Remote Shell
Access to Remote shell (cmd.exe)
Batch mode execution of scripts and commands Access to output streams from remote shell Input data for prompts Example usage: Add/Remove server roles, collect inventory, configure Firewall etc

PowerShell will use WinRS for remoting

New Vista Event Logging
Windows Eventing 6.0 Right Data to Diagnose Problems
The right data…but not too much data Improved supporting data and documentation for all events

Infrastructure Supports Ad-hoc Diagnosis and Management Tools
Schematized events (XML) provide richer information Easy integration with management tools

Event Log In Windows Vista
Performance, scalability, and security
New event publishing API
Schematized, discoverable, structured events Unified API for event logging and tracing Logging is asynchronous (Does not block the application)

Log size limitation removed
Now limited only by available disk space

Improved security

Event Log In Windows Vista
Event consumption
XPath-based queries Event subscriptions Bookmarks

New event consumption API

Full remoting support Full backwards compatibility with existing applications Event forwarding using WS-Management protocol
New event collector service

Event Log In Windows Vista
New configuration and metadata API Log management improvements Group Policy based event log configuration GUI – Enhanced Event Viewer Command line utility

Configuration, management, and tools

Event Viewer In Windows Vista
Know where to look
Admin, operational, analytic and debug logs High-level event summary on home page

Find what you need
Enhanced filtering, multi-log queries, preview Event views

Know what to do
Richer online information about events

Event Viewer In Windows Vista
Manage centrally
Full remoting to Event Log service Cross-log queries Log configuration Self-contained archives Event forwarding from multiple sources

Troubleshooting flow
Admin, operational, analytic, and debug logs Enable/disable detailed logging E2E tracing

Event Viewer Drill Down

What’s New in Task Scheduler?
Power and Flexibility
Sophisticated Scheduling Options with new triggers, conditional launch, and action chaining Completely scriptable

Visibility
Task dashboard shows active and upcoming tasks

Improved Reliability and Resource Allocation
Retry tasks in case of failure Run when next available

Task Scheduler: Today And Vista
Today Rich Schedule Trigger Backward Compatibility Trigger on Event Network Conditions Multiple Synch’d Steps Failure Notification Password Update Resiliance Execution History Task Import/Export Jitter! Vista

 

         

Task Structure
Triggers

What launches the task? Multiple triggers allowed OR-ed Defines constraints Multiple conditions allowed AND-ed Many Actions per Task now Serialized

Conditions

Actions

Triggers
Schedule
~ OR ~ TimeTrigger / CalendarTrigger (Periodic) At specified global (UTC) time Jittered (Delayed) start

Generic Event
~ OR ~

EventLog event trigger Registration based on EventLog query

System Events

IdleTrigger, BootTrigger, LogonTrigger RegistrationTrigger SessionStateChangeTrigger

Conditions
Power State
~ AND ~

DisallowStartIfOnBatteries StopIfGoingOnBatteries

Idle State
~ AND ~

Run Only If Idle Stop at Idle End Restart at Idle Resume

Network Availability

Launch if network is available Any or specific network profile

Task Actions
Command Line / DLL
Any command shell program Exe, Script, Batch DLLs hosted in user apps

E-Mail

Includes attachments Over SMTP

Message Box

Body and title For interactive tasks

Task Scheduler Demo

Task Management Interfaces
XML File

%windir%\system32\tasks

Programmatic

New COM / Scripting API MMC Admin Tool SchTasks.exe Create Task Wizard

Admin Tools

End User

Task Scheduler Architecture
Status Events Task Scheduler UI & Command line Configuration (Registry) Transient Control Process
COM+ Scripting

API

Task Scheduler Service (shared svchost)

Session Manager S4U / CredMan (Logon)

2 per login session (high and low privileges)

Pre-Vista computers DCOM, RPC Access

Credentials (Credman)

“Jobs” User Process User dll, etc.) (cmd.exe,Process User dll, etc.) (cmd.exe,Process (cmd.exe, dll, etc.)

Info bucket (Registry)

Task XML (File System)

Windows Perf Counters
Before Windows Vista

Win32 Counter Providers
Requires performance counter DLLs Uses registry and system files as central repository Uses no unified IPC mechanism

Managed Counter Providers
Provides a simple managed API for a Win32 technology Uses a component oriented design Integrated with Visual Studio Designers

Windows Perf Counters
Before Windows Vista

Developer’s Concerns
Complex programming model Registry corruption Inefficient handling of multiple instances 32-bit and 64-bit incompatibility

Windows Perf Counters
What’s new in Windows Vista

Improved Manageability
Simplified programming model No more 32-bit/64-bit issue Development tools

Improved Reliability
No more registry corruption No need for performance counter DLLs

Improved Scalability
Retrieval of only requested data

WSUS 3.0 Improvements
Simpler Deployment Improved Performance Improved Reliability Reporting Support Targeting Enhancements Improved Admin Experience

Simpler Deployment
WSUS 3.0 is an in-place upgrade of 2.0
3.0 has all the features of 2.0 and then some!

WSUS 2.0 Servers can sync from a 3.0 Server
Allows for a gradual top down roll out

New OOBE (Out of the box experience) wizard to help guide initial setup Many improvements to replica mode to support branch office deployments
Move between Replica and Autonomous modes without a reinstall Support for language subsetting on downstream replica servers Replica’s can sync meta-data from a USS and content from MU Support for disconnected replica synchronization

Improved Performance
Reporting performance
50% performance gain

Server Synchronization
Full sync down from 1 ½ hours to 20 minutes

New UI makes it easier to see what’s relevant New deployment options make it easier to build large scale deployments Server now has native support for x64

Reporting Support
See a single unified view of the status of your organization
Reporting rollup is in the box! Roll up detailed status or summaries

Roll up from autonomous or replica servers UI reporting based on Rosetta controls
Print, Save to Excel or PDF

New “Reporters” user role
Allows read-only access to the server

Targeting Enhancements
WSUS 3.0 supports 2 new grouping concepts
Nested target groups

Overlapping group membership
A computer can be a member of > 1 group Eg: Computer 1 is a member of Servers as well as Exchange Servers

Improved Admin Experience
New MMC 3.0 based console
Column sorting and reordering Context Menus Host multiple servers in a single console Home pages to give a quick overview Custom Views Additional Filtering views for the results pane Integrated reporting “in context” Built in email notifications and status

Access to drivers and hotfixes via the Microsoft Update (MU) Catalog site API support for importing 3rd party updates

Windows PowerShell
Next generation shell that is:
As interactive and composable as BASH/KSH As programmatic as Perl/Ruby As production oriented as AS400 CL/VMS DCL Allows access to data stores as easy to access as filesystems

PowerShell Highlights

Shell

Rich set of Namespaces (data dources) Man-style help with rich schema and searching Command-line-oriented following strong naming guidelines
E.g., Verb-Noun

Interactive experience (aliases, navigation, tab-completion, command line editing) Pipelines Object utilities

Uniformity
Common PowerShell Parser

Shell

Get-Process | Where { $_.handles –gt 500 } | Sort handlecount | FormatTable

Get-Process Get-Process Class Class

PowerShell Pipeline Processor

Where Class Where Class

Format Format Class Class

Sort Sort Class Class

Commands
Verb-Noun You can alias
Set-Alias gps Get-Process

Shell

Verb-Noun –FirstP Val –SecondP V2,V3 –ThirdP:V4

Parameters can be positional
gps –ProcessName LSASS gps LSASS

Many parameters can be wildcarded
gps c*

Partial parameter names allowed
Gps –p lsass

Trusting Operations
Commands with side-effects support:
Whatif
Gps |where {$_.handles –ge 500} | stop-process –WhatIf

Shell

Confirm
Stop-process S* -Confirm

Verbose
Stop-Process [a-x]*[q]*[r-t] -Verbose

Finding Data
Data stores surfaced as “Drives”

Shell

Filesystem, Registry, Alias, Certs, Env, Functions, Variables, etc > Get-Drive > dir HKLM:\SOFTWARE\Microsoft

Drive is a namespace with numerous information axis
Item, ChildItem, Content, ItemProperty, ACL, etc.

New navigation/interaction model supported with aliases for existing commands
Get-ChildItem Get-Cwd Get-Content New-Item –type Directory Set-Location dir cd type mkdir cd ls pwd cat mkdir cd

Explicit Object Formatting
> Get-Command Format-*

Shell

Built-in formatters for lists, tables, wide, and custom-views Formatters allow you to specify properties, propertysets and property expressions
> gps |format-table name,id,handlecount > gps |format-table Configuration -auto > gps |format-table name,@{ Expression= {$_.mainmodule.filename}; Label="File"}

Scripting
Supports existing scripting models

Scripting

*NIX model of text processing including regular expressions Visual Basic Script model of COM automation

Supports scripting .NET objects Support loose, strong, and extensible typing models Uniform syntax to access to a wide range of types
WMI, XML, COM, ADSI, ADO

Rich variable semantics (typed, read-only, constraints, descriptions) Rich operators and control structures (C#-like with access to cmds & utilities) Functions (positional, named, typed, constrained params)

PowerShell Scripting

For more Information
SW02 SW03 SW04 SW05 SW06 SW08 SW09 SW11 SW12 SW14 SW15 SW16

Related Sessions on the MMS 2006 DVD
Windows Vista Client: Overview of Manageability Infrastructure enhancements Group Policy - What's New in Vista and Longhorn Server Solving Management Problems with Windows Power Shell Maximizing the Value of Windows Management Technologies - Today and Tomorrow Windows Power Shell - Next Generation Command Line Scripting WS-Management: Heterogeneous Application Systems Management and problem solving by example Overview of WSUS 3.0 Windows Vista: New Performance Counter Infrastructure and Data Collection Windows Management Instrumentation: Roadmap and Best Practices for WMI Troubleshooting and Scripting New Remote Management Capabilities in Vista Improved Diagnosis and Troubleshooting with Vista Event Viewer Vista Client Management with the New Task Scheduler

© 2006 Microsoft Corporation. All rights reserved.
This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.