MD-101-Dynamic Deployment Summary

Version vom 7. November 2019, 19:25 Uhr von Rladmin (Diskussion | Beiträge)

(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)

Dynamic provisioning aims to transform windows 10 installations. The following methods can be used to accomplish this:
- Azure AD
- Mobile Device Management
- provisioning packages
  - Provisioning packages are created using the Windows Configuration Designer.
- subscribtion activation
- Windows Autopilot
  - Windows Autopilot can enroll devices into MDM and customize the OOBE.
  - All Windows 10 editions from 1703 are licensed for Autopilot.
  - Autopilot requires Azure AD and an MDM.
  - The Windows Autopilot Enrollment Status Page allows users to see the progress during the device setup.
  - The registration for the Autopilot service can be done by device vendors or manually by extractiting the the hardware-id with Get-WindowsAutoPilotInfo.ps1.

The following is included in Windows Analytics, which is a free cloud based tool:
- Device Health
- Update Compliance
  - Updates in enterprises can be monitored with the settings app or Update Compliance.
- Upgrade Readiness
  - Manage the upgrade process end to end.
- The commercial ID has to be added to devices, so they can send telemetry data to the Windows Analytics Environment.
- After the requirements for the devices for Windows Ananlytics is met, it can take 48 to 72 hours before the first data and solutions will be shown.

Windows or Azure AD authentication options
- Dynamic Lock on smartphones will lock windows pcs, when the user steps away from the device.
- Multifactor authentication
- biometrics through Windows Hello (for Business)
- set up to 1000 banned passwords with Azure AD Password Protection

You can not downgrade from Windows 10 to Windows 8.1, 8 or 7.
Windows S Mode allows users to switch the edition of Windows 10 at any time using the Windows Store.
User profiles should be migrated, whenever possible.
Windows Known Folder Move for One Drive automatically redirects users folders to OneDrive for Business.
Enterprise State Roaming allows cloud based accounts to be synced.
Delivery Optimization seems to use peer to peer for updates to reduce external bandwidth.
Windows Update for Business allows the management of Non-Deferrable Updates, Quality Updates (deferrable up to 30 days) and Feature Updates (deferrable up to 365 days).
Servicing channels can be implemented by GPO or Intune.
- Updates in enterprises can be monitored with the settings app or Update Compliance.

Abgerufen von „https://wiki.lehmann.systems/index.php?title=MD-101-Dynamic_Deployment_Summary&oldid=169“