Book Image

Microsoft System Center Configuration Manager Advanced Deployment

By : Martyn Coupland
Book Image

Microsoft System Center Configuration Manager Advanced Deployment

By: Martyn Coupland

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Microsoft System Center Configuration Manager Advanced Deployment
Martyn Coupland
Sep, 2014 | 290 pages
No titles found
Table of Contents (20 chapters)
Microsoft System Center Configuration Manager Advanced Deployment
Microsoft System Center Configuration Manager Advanced Deployment
Credits
Credits
About the Author
About the Author
Acknowledgments
Acknowledgments
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Designing Complex Hierarchies
Designing Complex Hierarchies
Selecting the appropriate site system server
Designing fault-tolerant hierarchies
Backup and recovery in Configuration Manager
Designing to support trusted forests
Designing to support nontrusted forests
Designing a sample hierarchy
Summary
2
Implementing Security with Certificates
Implementing Security with Certificates
Planning for the use of certificates
Setting up a secure communication
Configuring Configuration Manager
Deploying certificates to workgroup computers
Summary
3
Working with Inventory, Asset Intelligence, and Software Metering
Working with Inventory, Asset Intelligence, and Software Metering
Configuring the software and hardware inventory
Using the inventory data to your advantage
Making use of software metering
Real-world use of asset intelligence
Controlling applications with the inventory data
Summary
4
Security with Endpoint Protection
Security with Endpoint Protection
Configuring the endpoint protection infrastructure
Creating endpoint protection policies
Deploying endpoint protection definition updates
Deploying endpoint protection agents
Responding to threats
Controlling the Windows Firewall
Summary
5
Advanced Content Management
Advanced Content Management
Deploying distribution points
How to deploy cloud distribution points
Understanding the content library
Introducing network caching
Working with data deduplication
Summary
6
Application Deployment
Application Deployment
Introducing the application model
Deploying virtual applications
How the application model works
When to use packages
Summary
7
Deploying Windows 8.1 and Windows Server 2012 R2
Deploying Windows 8.1 and Windows Server 2012 R2
Introduction to operating system deployment
Integrating the Microsoft Deployment Toolkit
Creating custom boot images
Maintaining a driver library
Creating reference images
Using images in virtual environments
Deploying your captured images
Summary
8
Deploying Security Updates
Deploying Security Updates
Software updates
Designing a software update infrastructure
Monitoring software updates
A sample scenario to patch workstations
A sample scenario to patch servers
Summary
9
Advanced Reporting
Advanced Reporting
Report Builder
Creating custom reports
Creating custom charts
Optimizing query performance
Configuring report subscriptions
Summary
10
Preventing Configuration Drift
Preventing Configuration Drift
An introduction to compliance settings
Example scenarios for compliance monitoring
Summary
11
Managing Bring Your Own Device and Mobility
Managing Bring Your Own Device and Mobility
Deploying company resource profiles
Managing Internet-based devices
Using the Microsoft Exchange connector
Using Windows Intune
Summary
12
Advanced Troubleshooting
Advanced Troubleshooting
Error tracing in Configuration Manager
Using the Configuration Manager toolkit
Using the service manager utility
Real-world scenarios
Summary
Index
Index

Controlling applications with the inventory data

It is not uncommon for organizations to provide applications based on roles. For example, users in finance may get one set of applications, and users within HR may get another set of applications.

Another scenario that is common is controlling installs and uninstalls via security groups in Active Directory. A lot has been written about the best way to populate collections. If a specific method fits your organization, then use it; you will end up with the same results.

Using security groups for application control

This method of controlling applications uses a combination of inventory and security groups in Active Directory. The basic principle behind this is as follows:

  • Add the user to the Active Directory security group

  • Collection members install based on a query looking for where the software is not installed and the user is a member of the security group

  • Collection uninstalls based on a query looking for where the software is installed and the...

Previous Section
End of Section 6
Next Section