16 results found
-
How to minimize the amount of end user storage you have to manage within your UW unit
How to configure Win 10 / Server 2017 desktops & terminal servers to use the least amount of spinning disk in your local unit for user data (student, faculty, staff) How much of user data (profile, desktop, documents, etc) can be put in the U-Drive or other places so local units can provide software and services but don't have to manage end user storage. What other storage services, besides UDrive, can be auto-mounted with GPO objects using UWNETID credentials at login time.
25 votes -
SCCM in NETID
Hey!! We've been asking for this for years. What's the deal!?
This topic will cover:
-why this has taken so long
-what is currently happening (hopefully with demos)
-what we plan
-why we may never have fully delegated SCCM (and there is an opportunity to have a good MS follow-up topic on delegated SCCM, if there is enough interest)25 votes -
Business Desktop Deployment
Using the Microsoft Deployment Toolkit and the Windows Assessment and Deployment kit, along with the Windows Deployment Service server role, to capture and then deploy, configure, and provision Windows images to your devices.
11 votes -
What is the Managed Workstation service?
Nebula has been a UW fixture for over 20 years, with a ton of both negative and positive associations, that intentionally rebranded itself to Managed Workstation to reset everyone's expectations of what it is. This topic will be a presentation on what the service currently is, a forward look at what we have planned, and interactive exploration of how the service might meet your needs.
9 votes -
Automate SQL Server Installation, Configuration, and Backup
Use automated setup routines, PowerShell, and stored procedures to make provisioning a database server consistent and quick.
8 votes -
Azure administration
Microsoft Azure cloud based services require administration. This topic will provide some background on critical details related to administering Azure:
-Azure subscriptions
-Leveraging Role Based Access Control (RBAC)
-Azure resource groups
-Cost tracking
-Resource tagging4 votes -
OMS: What is it?
In this topic, we'll explore Microsoft's cloud-based monitoring solution.
We'll focus on:
-How does OMS work?
-What advantages/strengths does OMS have over other monitoring agents?
-In what scenarios at the UW might OMS be a great solution?4 votes -
MFA for Windows: MS Passport -> Hello
The Windows 10 based MFA technology Microsoft initially called Passport was rebranded to merge with Windows Hello. Under the covers this is a virtual smart card provisioned either by Azure AD's Device Registration Service or your AD-CS. Logons from that Win10 device require a PIN or other Hello gesture (something you know or are), plus the virtual smart card (something you have). When combined with other MS technologies, you can leverage this device-based MFA further.
3 votes -
Azure Desktop as a Service (DaaS)
Microsoft is discontinuing Azure RemoteApp, but that is not the end of the story. This topic focuses on Microsoft's VDI and virtual application capabilities in the cloud.
3 votes -
RMS -> Azure Info Protection
Azure RMS is the cloud-based technology derived from AD-RMS. Microsoft has recently rebranded RMS as AIP.
This topic will focus on:
-What does this technology do? What scenarios is it strong in? And weak?
-Clearly differentiating between the DLP classification engine, the infrastructure behind encryption, the available controls, and what possibilities are dependent on applications
-The user experience
-Briefly touch on licensing1 vote -
Service account management
We universally do a poor job of tracking what service accounts are used where, have what permissions/privileges, and who has access to them. Having a good tracking mechanism for all of this info would improvement management, and likely reduce risk. A few folks in UW-IT have been exploring this topic, with some ideas and a potential project to initially advance this with a small scope. Discussion would cover canvasing the perceived problem space, discussing how to address it, and how to move this forward on a broader scale.
6 votes -
PowerShell JEA (just enough administration)
JEA allows you to control what PS cmdlets (and even parameters) are available to whom providing an elegant way to delegate privileges. This topic would explore JEA, where we might use it, etc.
2 votes -
Mitigating lateral escalation compromises (pass the hash)
We'll review the problem, then focus discussion on practical actions we can take to mitigate it. Some obvious possibilities for review (which may require their own session): Our Microsoft Advanced Threat Analytics deployment, Microsoft's Privileged Access Workstations, approaches to reduce privileges, and local admin password management.
2 votes -
SCCM for Windows Server configuration management
Why don't we do this? What could be enabled if we did?
1 vote -
Higher Education use of Azure survey
The Higher Education sector has some patterns of use of Azure cloud services. This topic will survey those patterns as they relate to:
-labs
-research
-open source
-Drupal
-WordPress
-Node.js
-disaster recovery
-backup0 votes -
Event Log Forwarding
Not sure what the specific idea here is, nor who should give it. But don't want to lose this idea. :)
0 votes
- Don't see your idea?