Windows Management

Technologies in Vista and

beyond
Agenda
Group Policy Improvements
WMI Enhancements
WinRM – Windows Remote Management
WS-Man Remote Protocol
WinRS – Windows Remote Shell
New Vista Windows Event Log support
Windows Vista Task Scheduler
New Performance Counter Model
WSUS 3.0 Changes
Windows PowerShell
Improvements In Group Policy
For Windows Vista
Extends the reach of Group Policy with
hundreds more settings
Reliably and efficiently apply policy
Easier to use
Extending The Reach Of
Group Policy
Over 500 new settings across key areas
Device Internet IPSEC &
Power Explorer Printer
Installation and Windows
Management Deployment
Usage Firewall
Windows
Troubleshooting User Account Defender Windows Error
& Diagnostics iSCSI
Control Reporting

Terminal
Remote Services Globalization Shell Tablet
Assistance
Improvements In Group Policy
Applied more reliably, and easier to use

Reliable and Efficient

Easier to Use
Application of Policy

Network aware application

of Group Policy GPMC integrated into Windows

Support for editing Group Policy Search and filter (Post Vista)
settings in Multilingual
Environments Templates (Post Vista)

Support for Multiple Local GPOs

Windows Management Infrastructure (WMI)
Enhancements Improve Manageability

Windows Vista includes 13

new WMI Providers:
BitLocker Drive Encryption
Trusted Platform Module
Boot Configuration Database
Intelligent Platform
Management Interface
Windows Parental Controls
Network Access Protocol
Client
Others…
WinRM - Windows
Remote Management
Firewall Friendly Remote Access Protocol
(Replaces DCOM)
HTTP and HTTPS
Microsoft’s implementation of
WS-Management

Use WinRM to Access WMI Information

over the Internet
Components
WinRM: Windows Remote Management
WSMan implementation in Windows
WinRS: Windows Remote Shell
Uses WSMan stack for remote
script executions
IPMI Driver
Event Collector
Event Forwarder
In-Band And Out Of Band
Management console
OS
Cmdline Client
tool App WSMan
WSMAN Service
WSMan client

WMI EventLog
WSMAN

IPMI
driver

Hardware
BMC
Architecture WMI EventLog

Boundary
Reg Service Service

Machine
Svchost
Config WMI
Config SEL Events
Client Cmdline plugin plugin
plugin plugin plugin
App tool
WSMan WSMan
WSMan Client DLL Prov DLL
Automation DLL
WSMan service
WSMan WSMan
Client DLL Prov DLL
WSMan
WinHTTP HTTP.sys
plugin

3rd party
WSMan
Other mgmnt
component HTTP/HTTPS
Windows platform
Event Forwarding
Collector
Machine Event Source

Boundary
Machine

Machine
3rd party Cmdline Event
App tool Viewer
Create
Subscription
Collector API
Svchost
Svchost
Events EventLog
EventLog Event Collector plugin Service
Service Service WSMan
WSMan service
Client API
Event
Event
WinHTTP HTTP.sys Log
Log

3rd party
WSMan component
EventLog component
HTTP/HTTPS
Windows platform
Remote Shell
Access to Remote shell (cmd.exe)
Batch mode execution of scripts
and commands
Access to output streams from remote shell
Input data for prompts
Example usage: Add/Remove server roles,
collect inventory, configure Firewall etc
PowerShell will use WinRS for remoting
New Vista Event Logging
Windows Eventing 6.0

Right Data to Diagnose Problems

The right data…but not too much data
Improved supporting data and documentation for
all events
Infrastructure Supports Ad-hoc Diagnosis and
Management Tools
Schematized events (XML) provide richer information
Easy integration with management tools
Event Log In Windows Vista
Performance, scalability, and security

New event publishing API

Schematized, discoverable,
structured events
Unified API for event logging and tracing
Logging is asynchronous
(Does not block the application)
Log size limitation removed
Now limited only by available disk space
Improved security
Event Log In Windows Vista
Event consumption

New event consumption API

XPath-based queries
Event subscriptions
Bookmarks
Full remoting support
Full backwards compatibility with
existing applications
Event forwarding using
WS-Management protocol
New event collector service
Event Log In Windows Vista
Configuration, management, and tools

New configuration and metadata API

Log management improvements
Group Policy based event
log configuration
GUI – Enhanced Event Viewer
Command line utility
Event Viewer In Windows Vista
Know where to look
Admin, operational, analytic and debug logs
High-level event summary on home page
Find what you need
Enhanced filtering, multi-log queries, preview
Event views
Know what to do
Richer online information about events
Event Viewer In Windows Vista
Manage centrally
Full remoting to Event Log service
Cross-log queries
Log configuration
Self-contained archives
Event forwarding from multiple sources
Troubleshooting flow
Admin, operational, analytic, and debug logs
Enable/disable detailed logging
E2E tracing
Event Viewer Drill Down
What’s New in Task Scheduler?
Power and Flexibility
Sophisticated Scheduling Options with new triggers,
conditional launch, and action chaining
Completely scriptable
Visibility
Task dashboard shows active and upcoming tasks
Improved Reliability and Resource Allocation
Retry tasks in case of failure
Run when next available
Task Scheduler: Today And Vista
Today Vista
Rich Schedule Trigger  
Backward Compatibility  
Trigger on Event 
Network Conditions 
Multiple Synch’d Steps 
Failure Notification 
Password Update Resiliance 
Execution History 
Task Import/Export 
Jitter! 
Task Structure
What launches the task?
Triggers Multiple triggers allowed
OR-ed

Defines constraints
Conditions Multiple conditions allowed
AND-ed

Many Actions per Task now

Actions
Serialized
Triggers
TimeTrigger / CalendarTrigger (Periodic)
Schedule At specified global (UTC) time
Jittered (Delayed) start

~ OR ~

EventLog event trigger

Generic Event Registration based on EventLog
query

~ OR ~

IdleTrigger, BootTrigger, LogonTrigger

System Events RegistrationTrigger
SessionStateChangeTrigger
Conditions
DisallowStartIfOnBatteries
Power State StopIfGoingOnBatteries

~ AND ~

Run Only If Idle

Idle State Stop at Idle End
Restart at Idle Resume
~ AND ~

Network Launch if network is available

Availability Any or specific network profile
Task Actions
Any command shell program
Command Exe, Script, Batch
Line / DLL
DLLs hosted in user apps

Includes attachments
E-Mail
Over SMTP

Body and title

Message Box For interactive tasks
Task Scheduler Demo
Task Management Interfaces
XML File %windir%\system32\tasks

Programmatic New COM / Scripting API

MMC Admin Tool

Admin Tools
SchTasks.exe

End User Create Task Wizard

Task Scheduler Architecture
Status
Events
Task Scheduler UI & Configuration
Command line (Registry)

Transient Control
COM+ Process
Scripting Session
API Task Scheduler Manager
Service
(shared svchost) S4U / CredMan 2 per login session
(Logon) (high and low privileges)

Credentials “Jobs”
Pre-Vista computers (Credman)
DCOM, RPC Access User Process
User Process
(cmd.exe, dll, etc.)
User Process
(cmd.exe, dll, etc.)
(cmd.exe, dll, etc.)

Info bucket Task XML

(Registry) (File System)
Windows Perf Counters
Before Windows Vista
Win32 Counter Providers
Requires performance counter DLLs
Uses registry and system files as
central repository
Uses no unified IPC mechanism
Managed Counter Providers
Provides a simple managed API for a
Win32 technology
Uses a component oriented design
Integrated with Visual Studio Designers
Windows Perf Counters
Before Windows Vista
Developer’s Concerns
Complex programming model
Registry corruption
Inefficient handling of multiple instances
32-bit and 64-bit incompatibility
Windows Perf Counters
What’s new in Windows Vista
Improved Manageability
Simplified programming model
No more 32-bit/64-bit issue
Development tools
Improved Reliability
No more registry corruption
No need for performance counter DLLs
Improved Scalability
Retrieval of only requested data
WSUS 3.0 Improvements
Simpler Deployment
Improved Performance
Improved Reliability
Reporting Support
Targeting Enhancements
Improved Admin Experience
Simpler Deployment
WSUS 3.0 is an in-place upgrade of 2.0
3.0 has all the features of 2.0 and then some!
WSUS 2.0 Servers can sync from a
3.0 Server
Allows for a gradual top down roll out
New OOBE (Out of the box experience) wizard to help
guide initial setup
Many improvements to replica mode to support branch
office deployments
Move between Replica and Autonomous modes without a
reinstall
Support for language subsetting on downstream replica servers
Replica’s can sync meta-data from a USS and content from MU
Support for disconnected
replica synchronization
Improved Performance
Reporting performance
50% performance gain
Server Synchronization
Full sync down from 1 ½ hours to 20 minutes
New UI makes it easier to see
what’s relevant
New deployment options make it easier to
build large scale deployments
Server now has native support for x64
Reporting Support
See a single unified view of the status of
your organization
Reporting rollup is in the box!
Roll up detailed status or summaries
Roll up from autonomous or
replica servers
UI reporting based on Rosetta controls
Print, Save to Excel or PDF
New “Reporters” user role
Allows read-only access to the server
Targeting Enhancements
WSUS 3.0 supports 2 new
grouping concepts
Nested target groups

Overlapping group membership

A computer can be a member of > 1 group
Eg: Computer 1 is a member of Servers as well
as Exchange Servers
Improved Admin Experience
New MMC 3.0 based console
Column sorting and reordering
Context Menus
Host multiple servers in a single console
Home pages to give a quick overview
Custom Views
Additional Filtering views for the results pane
Integrated reporting “in context”
Built in email notifications and status
Access to drivers and hotfixes via the Microsoft
Update (MU) Catalog site
API support for importing 3rd party updates
Windows PowerShell
Next generation shell that is:
As interactive and composable as BASH/KSH
As programmatic as Perl/Ruby
As production oriented as AS400 CL/VMS DCL
Allows access to data stores as easy to access
as filesystems
 Shell

PowerShell Highlights
Rich set of Namespaces (data dources)
Man-style help with rich schema
and searching
Command-line-oriented following strong
naming guidelines
E.g., Verb-Noun
Interactive experience (aliases,
navigation, tab-completion, command
line editing)
Pipelines
Object utilities
 Shell

Uniformity
Get-Process | Where { $_.handles –gt 500 } | Sort handlecount | Format-
Table
Common PowerShell Parser
Get-Process

Where Class

Format
Class

Class

Class
Sort

PowerShell Pipeline Processor

 Shell

Commands
Verb-Noun
Verb-Noun –FirstP Val –SecondP V2,V3 –ThirdP:V4
You can alias
Set-Alias gps Get-Process
Parameters can be positional
gps –ProcessName LSASS
gps LSASS
Many parameters can be wildcarded
gps c*
Partial parameter names allowed
Gps –p lsass
 Shell

Trusting Operations
Commands with side-effects support:
Whatif
Gps |where {$_.handles –ge 500} |
stop-process –WhatIf
Confirm
Stop-process S* -Confirm
Verbose
Stop-Process [a-x]*[q]*[r-t] -Verbose
 Shell

Finding Data
Data stores surfaced as “Drives”
Filesystem, Registry, Alias, Certs, Env, Functions, Variables, etc
> Get-Drive
> dir HKLM:\SOFTWARE\Microsoft
Drive is a namespace with numerous
information axis
Item, ChildItem, Content, ItemProperty, ACL, etc.
New navigation/interaction model supported with aliases
for existing commands

Get-ChildItem dir ls
Get-Cwd cd pwd
Get-Content type cat
New-Item –type Directory mkdir mkdir
Set-Location cd cd
 Shell

Explicit Object Formatting

Built-in formatters for lists, tables, wide,
and custom-views
> Get-Command Format-*
Formatters allow you to specify
properties, propertysets and property
expressions
> gps |format-table name,id,handlecount
> gps |format-table Configuration -auto
> gps |format-table name,@{
Expression= {$_.mainmodule.filename};
Label="File"}
 Scripting

Scripting
Supports existing scripting models
*NIX model of text processing including regular expressions
Visual Basic Script model of COM automation
Supports scripting .NET objects
Support loose, strong, and extensible typing models
Uniform syntax to access to a wide range of types
WMI, XML, COM, ADSI, ADO
Rich variable semantics (typed, read-only, constraints,
descriptions)
Rich operators and control structures (C#-like with access
to cmds & utilities)
Functions (positional, named, typed,
constrained params)
PowerShell Scripting
For more Information
Related Sessions on the MMS 2006 DVD

SW02 Windows Vista Client: Overview of Manageability Infrastructure enhancements

SW03 Group Policy - What's New in Vista and Longhorn Server
SW04 Solving Management Problems with Windows Power Shell
Maximizing the Value of Windows Management Technologies - Today and
SW05
Tomorrow
SW06 Windows Power Shell - Next Generation Command Line Scripting
WS-Management: Heterogeneous Application Systems Management and
SW08
problem solving by example
SW09 Overview of WSUS 3.0
SW11 Windows Vista: New Performance Counter Infrastructure and Data Collection
Windows Management Instrumentation: Roadmap and Best Practices for WMI
SW12
Troubleshooting and Scripting
SW14 New Remote Management Capabilities in Vista
SW15 Improved Diagnosis and Troubleshooting with Vista Event Viewer
SW16 Vista Client Management with the New Task Scheduler
 © 2006 Microsoft Corporation. All rights reserved.
This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.