Solutions Road Show 2013 10 – 13 December 2013 | India Yasser, Microsoft & Sanjeev Bhor, Dell Windows XP Migration

Solutions Road Show 201310 – 13 December 2013 | India

Yasser, Microsoft

&

Sanjeev Bhor, Dell

Windows XP Migration

Moving to Modern OS

Yasser A AhmedTech. Solutions Professional – Windows Client and Devices Microsoft India

Windows XP SP3 End of Support

April 82014

Thank you for being a Windows XP Customer!

Windows XP Launch

October 2001

April 2008

Windows XP SP3 Launch

On April 8, 2014 Windows XP will reach the end of support lifecycle and will no longer be supported.

Start Moving from Windows XP today

Retire

Workstyle 2001

BYOD goes mainstream

businesses at crossroads

dynamic, connected, global environment

anywhere, anytime expectations

Today…..

Top Three Reasons to Retire Windows XP and move to a Modern OS today!1

• Proven customer benefits in mobility, productivity, security, manageability

• Up to 70% of enterprises* have plans to deploy within 12mo or already deployed Windows 7

Windows 7 Windows 8

“Windows 7 has gotten positive reviews, and many Gartner clients are now in the midst of their production deployments.” - Gartner

• “No-compromise” Tablet for Business Users & New Windows Enterprise apps

• New Possibilities in Mobile Productivity with WTG

• Enhanced End-to-End Security

• Management and Virtualization Advancements

Get Value today. Get Modern.

Eliminate Risks ofWindows XP End of Support

Risks• Lack of support from ISVs and OEMs for

the new applications and PC hardware• Security and compliance issues running

unsupported software• Need to purchase expensive custom

support• Office 2013 does not work with Windows

XP

Organizations that continue to retain a Windows XP environment not only are leaving themselves exposed to security risks and support challenges but also are wasting budget dollars that would be better used in modernizing their IT investments.” - IDC Whitepaper (May 2012)

2 Deployment is easier than you think

Leverage Available Resources• Deployment tools, guidance and

best practices on Springboard /TechNet

• Windows 8 Evaluation edition• Accelerate programs - –

Jumpstart PoCs & Pilots and other deployment resources

Take advantage of high compatibility between Windows 7 & Windows 8 • Windows 7 apps run on Windows

8• Windows 7 devices perform with

Windows 8 faster than with Windows 7

• Windows 8 works well with customers’ existing Windows 7 infrastructure

3

http://microsoft.com/springboard

http://accelerate/




Windows 7

Windows 8












XP


2Deployment is easier than you think

Leverage Available Programs• Migration path: The Deployment

Project• Accelerate programs - – Jumpstart

PoCs & Pilots and other deployment resources

• Springboard Series on TechNet

Take advantage of high compatibility between Windows 7 & Windows 8 • Windows 7 apps run on Windows 8• Windows 7 devices perform with



3

http://accelerate/


• Protect data & PCs

• Built on secure foundation

• At their desk• In a branch• On the road

• Easy migration • Keep PCs

running• Virtualization

Enhance Security & Control

Windows 7 for the Enterprise

Make Users Productive Anywhere

Streamline PC Management

Fast, Responsive, Reliable

No Compromise Business Tablet

New Possibilities in Mobile Productivity

Enhanced End-to-End Security

Management

and Virtualization

Windows 8 in the Enterprise

Enterprise-Grade Solutions

Devices & Experiences People Love

Top Three Reasons to Retire Windows XP and move to a Modern OS today!

1



Windows 7

Windows 8












XP




Project• Accelerate programs - –







3

http://accelerate/


Key Threats• Internet was just

growing• Mail was on the

verge

Key Threats• Melissa (1999), Love

Letter (2000)• Mainly leveraging

social engineering

Key Threats• Code Red and

Nimda (2001), Blaster (2003), Slammer (2003)

• 9/11• Mainly exploiting

buffer overflows• Script kiddies• Time from patch to

exploit: Several days to weeks

Key Threats• Zotob (2005)• Attacks «moving up

the stack» (Summer of Office 0-day)

• Rootkits• Exploitation of

Buffer Overflows• Script Kiddies• Raise of Phishing• User running as

Admin

Key Threats• Organized Crime• Botnets• Identity Theft• Conficker (2008)• Time from patch to

exploit: days

Key Threats• Organized Crime,

potential state actors

• Sophisticated Targeted Attacks

• Operation Aurora (2009)

• Stuxnet (2010)

Windows 95• -

Windows XP• Logon (Ctrl+Alt+Del)• Access Control• User Profiles• Security Policy• Encrypting File System

(File Based)• Smartcard and PKI

Support• Windows Update

Windows XP SP2• Address Space Layout

Randomization (ASLR)• Data Execution

Prevention (DEP)• Security Development

Lifecycle (SDL)• Auto Update on by

Default• Firewall on by Default• Windows Security

Center• WPA Support

Windows Vista• Bitlocker• Patchguard• Improved ASLR and

DEP• Full SDL• User Account Control• Internet Explorer

Smart Screen Filter• Digital Right

Management• Firewall improvements• Signed Device Driver

Requirements• TPM Support• Windows Integrity

Levels• Secure “by default”

configuration (Windows features and IE)

Windows 7• Improved ASLR and

DEP• Full SDL• Improved IPSec stack• Managed Service

Accounts• Improved User

Account Control • Enhanced Auditing• Internet Explorer

Smart Screen Filter• AppLocker• BitLocker to Go• Windows Biometric

Service• Windows Action Center• Windows Defender

Windows 8• UEFI (Secure Boot)• Firmware Based TPM• Trusted Boot (w/ELAM)• Measured Boot and

Remote Attestation Support

• Significant Improvements to ASLR and DEP

• AppContainer• Windows Store• Internet Explorer 10

(Plugin-less and Enhanced Protected Modes)

• Application Reputation moved into Core OS

• BitLocker: Encrypted Hard Drive and Used Disk Space Only Encryption Support

• Virtual Smartcard• Picture Password, PIN• Dynamic Access

Control• Built-in Anti-Virus

1995

2001

2004

2007

2009

2012

How security & threats evolved

Operating System No. of Patches

Windows XP Professional with SP2

3

Windows XP Professional with SP3

154

Total 157

Windows XP End of Support – April 2014Impact:

• Security Updates and patches to discontinue.• No more product fixes and service packs• No. of patches released in last 2 years below

Continue to be on Windows XP will exposed organizations to security risks and in unsupported environment

*Source: MS Security Bulletin 2011-2012

Denia

l of

Serv

ice

Ele

vation o

f Pri

vile

ge

Info

rmation D

iscl

osu

re

Rem

ote

Code E

xecu

tion

Microsoft Windows XP Service Pack 3

0

40

80

120

2

267

119

Types of Patches

Total

Cri

tica

l

Import

ant

Modera

te

Microsoft Windows XP Service Pack 3

0

20

40

60

80

100

120

104

47

3

Severity

Total

Patches released in last 2 Years

End of Support will leave you unprotected from future security threats like RCE or DOS

*Source: MS Security Bulletin 2011-2012




Windows 7

Windows 8












XP




Project• Accelerate programs - –







3

http://accelerate/


Ready To Deploy

The average IT pro is taking 6 hours to deploy a single work station? Why? They are still using the tools they used to deploy XP. Using modern tools from Microsoft (most free), a machine can be moved from Windows XP to Windows 7 in 30 minutes or less.

– Gartner 2011

Learn Microsoft’s Free Deployment Tools

Microsoft Deployment Toolkit (MDT)

Windows Deployment Server (WDS)

Application Compatibility Toolkit (ACT)

Microsoft Assessment and Planning Toolkit (MAP)

Still on Windows XP?

Start your migration from Windows XP now!Windows XP end-of-life is April 2014Vendors are already dropping support now with new software and hardware releasesLook at new tablets, slates and other innovative device form factorsCreate proof-of-concept Windows Store apps

Plan to adopt Windows 7 and Windows 8 side by sideEnable evaluation and pilot scenariosBYOD may require infrastructure support earlier than everPrepare your infrastructure for Windows 8 Evaluate Windows 8 for targeted scenarios

MeetWindows 8

Meet the Start screen.

A personalized bulletin board, bringing the things that matter to the screen of your device.

What comes built-in?• Windows

Store• People• Internet

Explorer 10• SkyDrive• Mail• Calendar• Photos• Messaging• Desktop

• Maps• Sports• Travel• Bing• Camera• Finance• News• Video• Weather• Xbox 360

Games• Music

Windows 8 for Enterprise

Fast and Fluid

New Possibilities in Mobile Productivity

Enhanced End-to-End Security

Easy Management

Enterprise-Grade Solutions Businesses Need

Devices & Experiences People Love

MICROSOFT CONFIDENTIAL – INTERNAL ONLY

Legacy vs. Modern Boot

Legacy Boot

Modern Boot

• BIOS Starts any OS Loader, even malware• Malware may starts before Windows

• The firmware enforces policy, only starts signed OS loaders

• OS loader enforces signature verification of Windows components. If fails Trusted Boot triggers remediation.

• Result - Malware unable to change boot and OS components

BIOS

OS Loader (Malware)

OS Start

UEFITrusted Loader Only

OS Start


BitLocker and BitLocker to Go

BitLocker • Prevents unauthorized access to data on lost or

stolen PCs • Supports full volume encryption of OS and Data

volumes• Offers variety of pre-boot authentication options:

• TPM-only, PIN/Password, Network Unlock, USB storage

• Supports PCs, Servers, and “Slate” form factors

BitLocker to Go• Used to protect data on removable drives• Able to deny or grant write access to volumes by

organization• Enables read-only access on Windows Vista &

Windows XP

Secure: Protects Corporate Data

Supports BitLocker drive encryption

New Password Key Protector

Pre-OS password to unlock Windows To Go

Protection with Trusted Boot

Protects Windows boot process and anti-malware software

Shared PCsContractorsTravel Light /

Work from Home

Bring YourOwn

Device (at work)

Your Portable WorkspaceNew Use Cases with Windows To Go


Windows Defender – Inbuilt Anti-malware

• Protecting the system from known and unknown threats• Windows Defender, a Ground breaking

comprehensive Virus Solution• Protects against full range of malware,

not just adware and spyware• Real-time (active) protection• High performance• Optimized for the user experience• Automatic Updates

AppLocker- Preventing Unwanted SoftwareDeny list of unapproved applications

• Similar approach to what anti-virus programs use• Reactive approach• Limited effectiveness

• Specify applications, installers, scripts and libraries allowed to run

• Unwanted or unapproved software blocked by default

• Exclude files from allow/deny rule that would normally be included

Allow list of approved applications

Exception

Work Anywhere - DirectAccess*

Productivity on the road

BENEFITS

Persistent internet connection

Easy and secure access to corporate data behind firewall

Seamless personal data access

One device for life and work when travelling

FIREWALL

Mobile Broadband

DirectAccessSkyDrive

Lync

SharePoint

Data servers

Exchange

WINDOWS 8 ADVANCEMENTS• Access through local server

when travelling

• More scalable

• Ease of deployment

• Deployment Wizard

• Part of RAS Server Role

• Utilize existing infrastructure

• Support for one-time password

• Mobile broadband enhancements*Internet access required

10111011101

BranchCache: Faster Downloads

10

11

00

10

01

01

10

10

01

10

01

00

10

11

01

0

10

11

00

01

00

11

10

01

10

10

10

11

01

10

11

00

10

01

01

10

10

10

11

10

01

00

11

0

10

11

10

00

01

00

11

10

11

00

10

01

0

10

11

10

10

01

00

01

01

10

1

10

11

00

10

01

01

10

11

10

0

1011100010011010

1011001001011010

101100100101101011010101

10110001001110011010

1011001001011010

101110010011011010

10111000010011

1011001001011010

1011101001011010

1011001001011010101101101101

10

11

10

10

11

01

00

10

01

10

10

10

11

00

10

01

01

10

10

10

11

01

10

1110

1110

1

10

0111

0111

1

101110101111101

10

1110

1011

1110

1

101110101111101

Improved network and data delivery performance• File division performed only one time

and may be done offline

• Smaller file division reduces duplicates

and increases bandwidth savings

• Pre-load or distribute content to branch

offices ensuring immediate availability

and reducing network usage during

peak times

• Reduced print file data traversing the

network and decreased print response

times

Thank You!

© 2012 Microsoft Corporation. All rights reserved.

Solutions Road Show 201310 – 13 December 2013 | India

Sanjiv Bhor

Practice Lead, End User Computing

MS Windows Migration…A Dell Perspective

32Solutions Road Show 2013

10 – 13 December 2013 | IndiaConfidential

Windows Migration Journey



Windows Adoption WorkshopPath to Migration Overview

Migration Planning

End User Migration &

Training

• Complete a client and application Inventory• Make informed Architectural Decisions• Identify resource requirements and time lines

• Schedule End User Migration• Define deployment and communication plans• Provide user training and next day support

Windows Readiness Assessment

• Identify which applications are required• Test to ensure compatibility with Windows 7• Package or virtualize for automated distribution

Application Readiness & Remediation

Application Rationalisation, Compatibility Reporting and Remediation

• Design and build the Windows Standard Build• Define Security Policies and Settings• Implement an Automated Deployment Solution• Update Infrastructure (where required)

Infrastructure Design and

Build

Client Management, Patch Management, AD, VDI

Windows & application, Automated Deployment



Migration Path

Windows Configuration

Compatilibty testing, remediation and packaging. Provide a RAG (Red, Amber, Green) status for each required application as well as recommended remediation strategy.

Inventory collection & rationalizations, using agent less Asset Management tools (e.g. Dell KACE / Quest Asset Management Tool) to collect and identify applications as well as hardware details

Dell combines our own expertise, industry best practice, and tools to automate processes, centralize management, and reduce deployment costs

Application Readiness

Deliver a stable and secure Windows platform tightly integrated with the customer’s client management solution. The platform Can be integrated with a variety of management platforms (SCCM, Dell KACE or MDT)

ProjectManagement

Readiness Assessment

Provide a flexible model for deployment, kitting and logistics, asset recovery and support throughout the deployment

Deployment Management



Ensure that end users are familiar with the new interface, features and software applications (e.g. Office 2010/2013). Dell End User Education services provide price competitive online training for Windows 7 as well as Office 2010/2013.

End User Training

Migration Path Contd.,



Windows Readiness Assessment

Identify & report on more than 100 executables (including suites)

Consolidate application inventory, usage, and license data is clearly organized by title, publisher, and category

Dell KACE or Quest Asset Manager will find and catalog every executable on every system & collect key hardware data points

Software Title Installed Purchased UsedAcrobat 8.x Standard 8 0 5Illustrator 12.x CS2 22 5 10Photoshop 9.x CS2 24 25 8Diskeeper 10.x Professional 528 400 367

Hardware Inventory, identifying Windows 7 capable and non-capable devices

1.2.3.4



Software Rationalization

348

69164

38

257

Unused / Under UtilisedNon-BusinessDuplicate VersionDuplicate Functional-ity

348

69164

38

257


348

69164

38

257


348

69164

38

257


348

69164

38

257


348

69164

38

257


Master Inventory List

Software Title Installed Purchased UsedAcrobat 8.x Standard 8 0 5Illustrator 12.x CS2 22 5 10Photoshop 9.x CS2 24 25 8Diskeeper 10.x Professional 528 400 367



Windows Adoption WorkshopApplication Readiness - Compatilibty Testing & Remediation GREEN – Application is

compatible with Windows 7AMBER – Application requires some level of remediation or packagingRED – Application is incompatible. Use client hosted virtualisation or retire/replace application

**



Infrastructure Readiness

Process Definition

Build Engineering

UAT & PilotTesting Training

Infrastructure Adjustment

App

Outcome• Process realignment for Operating System build and application delivery.• Build Engineering of the OS Image, user data migration and deployment tools• Infrastructure adjustment of deployment tools and supporting services.• UAT & Pilot testing of the build, business & non business applications

(performed by SMEs & Application Owners)• Training help desk, deployment & support teams ready for mass deployment



Windows MigrationEnd User Training

Microsoft Windows 7 & 8 Essential & Office 2010 & 2013 (What’s New) with Live TutorMicrosoft Office 2010 & 2013 (What’s New) with Live Tutor

Microsoft Windows 7 & 8 Essential with Live Tutor

Help start taking advantage of the powerful features of Windows 7 & 8 and Office 2010 & 2013 now!! • Good for customers who are new to Windows/Office and those upgrading from earlier versions• Unlimited access for 1 person for a full year of online training plus Live Tutor Online Chat• Live Tutor Online Chat provides quick answers to your Windows 7 & 8 and Office 2010 & 2013 questions at real-time

What Can Customers Get?One year access to both the online training and the Live Tutor online chat, which is self-paced and interactive. It includes online labs that lets you practice what you have learnt.

Who Should Take This Training? • Users with questions on how to use Microsoft Windows 7 & 8 or Office 2010 & 2013 • Users who needs to learn features of Microsoft Windows 7 & 8 or Office 2010 & 2013 quickly

24/7 Live Tutor right at your finger tips! Users have access to live experts via online chat. The experts can escalate to live phone support for users who require additional assistance. They can also use screen share for live demonstrations and provide step-by-step instructions.



Automate the Deployment

HW and SW Discovery

Configure Automated Deployment

Application Testing

Test Plans and Labs

Define Image & GPOs Build & Test Image

Pilot

Application Remediation

App Rationalization

Rollout Scheduling andSite/User Readiness

Apply business rules to drive retain/retire recommendations• Standardize versions

• Duplicate functionality

• Business use• License costs• Vendor roadmaps

Automatically identify & filter more than 93 million executables.• Title• Publisher• Version• Functional category

Catalog every executable on each PC

Test and Remediation Applications

Discovery, Assessment and Planning

Remediation &

Packaging

Virtualize or Replace

Rationalized App Library

Compatible with Win 7

Fix in Packaging

Incompatible Core

App Sentencing Reports

Managed Application Library

In Dell’s real-world testing, over half of packages that work on XP need to be addressed

Windows 7 Compatible Application Library

Dell Titling Engine

Results in reduce library for Window 7 testing

Unique and Proven Methodology for Windows Migration

Network Bandwidth

Design the Process

Automate

DriversOS

Core Apps

Dept AppsUser Apps

User Data

User Settings

Image3-4 GB

Apps1-2 GB

User State5-20 GBOver-reliance on the network

can cause problems in branch offices, global locations and remote sites.

Leverage factory, portable drives and content streamed over throttled network connections

Client Deployment Assessment rates practices in terms of cost and best practice.

Designs a highly efficient PC or OS deployment process

Install Image

Name PC

Config OS

Install Apps

MigrateData

Report …

Task Sequencer

Implement Flex Solutions Pilot



Why Dell?



Windows MigrationDell’s Experience

– Dell was number 1 in Win 7 seats deployed in 2011 & 2012

– Microsoft Win 7 Partner of the Year for 2011 & 2012 – Dell manages the deployment of over 4 million

deployments a year (globally)– Dell Application Packaging & Virtualization factory

recommended for all Microsoft MCS engagements– All PM are PMP & ITIL Certified– Strong Project Methodology (Dell Project Management

Framework) that is based on PMI, Dell is Gold Partner of PMI (Worldwide)

What did you learn from this session today?

Tweet your responses using the hashtag #dellst13

Solutions Road Show 201310 – 13 September 2013 | India

Thank You

Documents

Solutions Road Show 2013 10 – 13 December 2013 | India Yasser, Microsoft & Sanjeev Bhor, Dell Windows XP Migration