Prepare to deploy and manage updates for Windows 10 and Office

JAMES BELL: Welcome to the second part of a three part series on prepare to deploy manage updates for Windows 10 and Office My name is James Bell I’m a Product Marketing Manager with the Microsoft 365 Apps and Endpoints team And with me today, we have Dave Backman, who is the Chief Technology Writer for the Windows servicing and delivery organization today Would you like to introduce yourself? DAVE BACKMAN: Thanks James, my name is Dave Backman I am an Evangelist for Windows 10, Windows-as-a-service, and the modern desktop I spend 99% of my time talking with customers, partners in our internal technical teams espousing the virtues of Windows 10 As James said, I’m in the Windows servicing and delivery organization We are the organization that manages all the patches, all the feature updates up to the 1 billion devices in the world So a lot of good information to share with you folks today And with that, I’ll turn it back to James JAMES BELL: Excellent, thanks Dave So as part of this session we’re going to cover off the prepare activities as part of the Microsoft servicing framework In the last session we had, we covered a lot around plan and this is all part of our plan prepare and deploy mission, which we want enterprises to take on to help ease the adoption of Windows updates and their organization So we want to move away from these once every three to five year big projects where companies update their Windows estate and move it more through a process where we can fit these updates into regular work and use this plan, preparing deploy motion to get the benefits of Windows And you can see those on the screen, whether they’re intelligent security enhance productivity, flexible management and simplified updates This is a process that was introduced back in 2015 with the release of Windows 10 And over that time, it’s been effectively improved with every release And we covered a lot of that in the last session And this session we’re really going to focus on that prepare phase So we’ve achieved that plan done We know what we need to do, and now it’s a case of going in and getting things ready ahead of deploying the environment So today we continue to talk about a journey in the Microsoft service and framework, which really anchors across the plan prepare and deploy phases And this is a process that we would like every commercial customer to follow, to help smooth in the adoption of Windows 10 updates So instead of going through a two to five year deployment cycle, big project, everyone needs to get involved to make it happen and transform the organization We’d like to see updates more as being, if it into to regular work and being done frequently using this plan, preparing deploy methodology But putting this into regular work would advancements in tooling that we’ve had We feel that this is really achievable now, and we want to take that pain away that’s traditionally associated with updates And as you can see, we have a number of benefits of falling It’s like getting more regular updates to provide Intelligence Security, Enhanced Productivity, Flexible Management and of course, Simplified Updates Now, as we go through the plan preparing deploy motion, and we also have four areas of effort that span the pillars of the framework We also covered those on the last session But as a recap, we’d like to think about these in terms of compatibility So what is my device and application compatibility look like? What are the things I need to do to make sure that I’m ready for the update? Then Deployment, which is all about infrastructure use to support the Deployment, the configuration that’s needed also for support that and also support an operations So what are the things that we need to do to prepare them in order to handle those updates and how they’re pushed out to our end user base And then we have two other areas which are around Capability, introducing new capabilities come out through Windows, a big drop updates and Modernization what are the things that we can do to improve the process? whether it’s reducing costs, reducing time or unblocking things within an organization that help you deploy quicker and take away some of the pain traditionally associated with updates As part of the prepare session that we have today, we’re really going to focus on a lot of the tooling that can really help make this easy for you And Dave, would you like some of those tools? DAVE BACKMAN: I certainly can, James As we were preparing for this particular session, James and I wanted to make sure that, you know, from a framework perspective and kind of the theoretical aspects of servicing,

we wanted to sprinkle in some glimpses of some tooling that can actually make you much more successful in your servicing journey Desktop Analytics is certainly one of those and to be fully successful and prepared in your journey, having full visibility into your estate absolutely critical So if you think about how Windows servicing and delivery and our organization manage the 1 billion devices out in the world, I don’t have a golden image for your machine at home I don’t come out to your house to actually test those applications It’s all diagnostic data and analytics that drive our Deployments based on known good machines Our engine is machine learning and AI, and it uses the data that the 1 billion devices feedback to Microsoft to actually create our Deployment plan So we want to provide that same capability for you guys So you can actually make data driven decisions and informed decisions around your Deployment plans, moving from pilot into a broad Deployment So analytics certainly is a key component of that If you want to boil down what analytics actually does for you is it will surface known good machines as well as machines that have issues So a particular device that may have a particular video card and a particular driver may encounter issues We’ll surface that for you So you’ll actually fully understand what machines are going to succeed and which ones might fail and what you need to do to remediate those So on the surface, it’s fairly simple as far as what analytics brings to the table First is compliance It’ll give you compliance reporting as far as who’s patched, who’s up to date who’s not, it’ll give you update readiness So update readiness is all about identifying machines that are good to go and you know, are going to succeed as well as surface those that may have some issues It’ll also give you a device health So device health is certainly an important thing in your support model is as you’re rolling these things out and then a very key and important piece is also the application health analyzer So it’ll give you full inventory of what apps are in the estate, and it’ll give you and give you office stats around things like macros add in so on and so forth It does feed the data back into the cloud So privacy is certainly an issue for certain organizations I did want to mention that we just recently announced the Windows 10 data processor service, which actually gives you full control of all of your data that’s stored out in the cloud So certainly something to keep in mind and kind of explore is as we start to build that solution out So moving on, we talked about, you know, making informed decisions There are two key differentiators with Desktop Analytics There are a lot of third party solutions out there That’ll give you inventory It’ll give you insights into your state, but the key differentiator for us, at least one of them, the first one is the tight integration and the SCCM So through your process of gathering data and insights, it’ll actually leverage our AI engine overlaid with our data from the 1 billion devices And it’ll actually make recommendations as far as what your ring strategy is going to look like James is going to touch on it here in a little bit as part of the prepare phase of the framework, but certainly it’s a, a big differentiator and it can actually save you a lot of time, effort and money because of that integration and actually help, you build out those and recommend the ring structure And I’ll actually populate them in the SCCM The other key differentiator that our competitors do not have is the fact that I overlay the 1 billion device dataset over years so that we will surface those known issues within your state and actually make the recommendations on what you need to do to remediate those devices So it’ll actually pull them out of the pilot or the broad deployment for you so that you can achieve the highest level of success James, you got any final thoughts around Desktop Analytics and what it brings to the table JAMES BELL: But just to echo your sentiments around how much time it can really save you if you glean and use it as your application portfolio, and you assign importance to apps, if you can do that,

you can really save time But one thing I do want to stress is if you can’t take advantage of Desktop Analytics, that doesn’t mean that the session, isn’t about Bell view We have a process, and we have a plan that can be used by any organization of any size And it might take you a little bit longer, but the task that you need to do are all the same So even if you can’t take advantage of it, there are things that you can still do, improve your process and get better as part of it The DA certainly helps alleviate a little of that pain DAVE BACKMAN: Great points, James And just so everybody knows, we do have some large government customers, they’re a little cloud adverse, and they actually leverage scripting to actually accomplish their deployments and identify some of those challenges they may have So there’s certainly other opportunities to support that So moving on, I want to talk about the simplified Updates with Windows Setup that we’ve kind of introduced in the latest release of Windows effectually called 2004, two zero zero four, to talk about kind of what we’ve done to help minimize end user impact, reduce bandwidth as well as set you guys up for success moving forward So since the early days of Windows 10, we’ve actually reduced offline time by over 64% pushing the installation into the background so impacts users less, so you can see, you know, back in the 1607 days, it was about 80 minutes And with 2000 or two zero, zero four, or actually down to 16 minutes The other big one that we’ve introduced is a reserved storage capability We know that one of the biggest challenges organizations have are devices hard drives that fill up and cause the update to fail So the reserve storage capability actually does a very effective job at freeing up as much possible space so that we don’t end up filling up devices And then the other one that I really want to call out is the new setup diag tool So you certainly will run into devices that fail and in order to help troubleshoot at the device level, the new setup, diag tools, absolutely critical in the process and then Windows autopilot I’m going to talk about that in the next session on exactly what that brings to the table But at the end of the day, it’s really about kind of a hands off hardware provisioning in a modern and cloud managed world So we’ll get into that as well So with that, I’m going to turn it back over to James and let him jump into what prepares all about as part of the framework JAMES BELL: Thanks Dave so we’ve talked about the overview of the Microsoft Servicing Framework, but let’s dive into what Prepare looks like So if you’re an organization that starting your prepare phase, where you should be is you should have an understanding of all of the costs that you need to do and what success looks like each of those tasks and the people and resources that are involved in completing those tasks If you can’t meet that bar in any of the four pillars that we discussed, you should probably go back to the planning phase and understand where you are and what you need to do That’s not to say that you won’t be successful, but the highest chance of success you have for everything going smoothly, generally relies on all of these things being covered And what I want to do now is go through each of those pillars and talk through what Prepare looks like in those, those areas of interest and what success looks like as well to get out of them And then we can review the key talking points and I hope they will come in with some extra commentary on what that looks like So if we think about preparing for compatibility, what we need to do here is make sure that all of our, we should have all of our applications categorized in terms of importance And we should know we have another state That helps us understand what we should be testing in the Prepare phase So the way that we like to look at it, if we think about our applications as either being critical, important, or not important in the prepare phase, only those critical applications should really be tested And what we should be doing here is understanding how we should be pressing those critical applications Typically, if they’re assigned a category such as critical, you can also assign a testing approach that works well for the business And that will typically involve either testing that critical application on pre-release Windows, insider builds or the build itself, depending on where you are in your journey to do the update, it’ll involve getting the right resource

to do the right tests, to validate that the application works and that will give us confidence as we move into that pilot Deployment phase Now, every company is different Some companies may choose to do some critical application testing as part of their pilot deployment And other companies may think, well, if this critical application doesn’t work, even in pilot, I can’t consider this as a success So in that case, we really need to do that testing thoroughly We shouldn’t be testing everything as part of the Prepare phase, as part of our motion to do regular updates of Windows We really want to cover a lot of that off in our pilot deployment phase and to some extent broad deployment applications, that aren’t as important So that’s the sort of things we need to think about in terms of Compatibility Identifying all of those users for critical applications is a bigger than time, but the good news is, it really only needs to be done once finding those business owners, establishing that content, informing them about when things are available is part of the regular motion you need to do But once you get over that hump of finding them and working it out, and this process becomes a lot easier if we go through it We’ve talked a bit about Windows on the side of the business, certainly leverage that where you can for those critical applications that need to happen It’s really important to make sure that goes through and also leverage Desktop Analytics, as Dave has mentioned It can not only provide us with application compatibility information to help make that determination easier You can also do it for devices so it can understand what device drivers are going to work, what things might not work, and we should focus that attention on, and by doing that at this phase, we can really get a view of what we should go out and pilot Selecting those devices is really difficult if you don’t have DA generally it involves going through talking to people, understanding what apps on their machines and collating that information manually selecting device names, including them into a group, and then rolling out an update and test your configuration as we get from pilot deployment But this phase DA can take care of all of that, or you with data driven insights, which is a real time saver Having gone through that process myself a number of years ago, it’s something I wouldn’t be keen to do again That’s sort of, I can take advantage of it I certainly would Dave, any additional thoughts on this one? DAVE BACKMAN: Yeah James, as far as the Windows insider for business build, I would definitely make that part of your formal process as far as rolling out is concerned, certainly gives you early access to the early bits and then gives you insight into some of the new capabilities features The other thing that I like to recommend for customers, a lot of the bigger enterprises have snapped to a yearly cadence So they’re really focusing on the 09 series for deployment so the fall releases, but keep in mind with the 1903, 1909 changes that we’ve made the 03 series is also a great opportunity for you to start really doing some early testing and validation, get a good cross section of statistically relevant group on the 03 series, because at the end of the day, we’re not doing an OS swap if your moving from 03 to 09 So we’re really not touching the core core OS at all So whatever works on 03 should work just fine on 09 So it really gives you an early group to test and validate on that particular, OS prior to actually rolling out the 09 series if you guys end up snapping to a yearly cadence So it’s really provided a lot of benefit for organizations to get their drivers nailed down, you know, figure out what kind of business apps are going to work just fine So certainly consider rolling the 03 or the March releases into your process of some sort so that you can get that early testing and validation done That does not change from an approach perspective with 2004 and the latest release soon to be coming out or sticking with that same process So you can guarantee that the 03 series is really going to give you a good solid set of bits because they are in the market and whatever you do to test, it will actually work really well as you rolling the Oh nine as you go to your broad deployment JAMES BELL: Yeah Excellent points and completely agreed with all that So let’s switch, focus and talk through the deployment preparation activities that we need to do This is where we really want to make sure that all of our infrastructure is up to date And also the configuration that we have

And when we call it about the four pillars, we talked about Compare Deployment Capability and Modernization For the purposes of simplicity, we’re going to merge capability and deployment into one, as well as we’ve discovered new capabilities that we want to introduce Typically there’ll be a new configuration setting So that sort of fits under deployment as we go through this phase So what we want to do here is make sure that all of our infrastructure is updated And depending on what infrastructure you’re running will largely depend on the journey and effort that you need to go through The configuration manager, and there are three updates to configuration manager per year, and we want to make sure that we have a version that can support the latest version of Windows 10 So make sure that you go through the process update 10 For third party management solutions, there’ll be different approaches that you’ll need to think about and incorporate And if you’re on something like Microsoft in chain, this process becomes a lot easier Being on the cloud it doesn’t require those manual updates, and you can take advantage of the latest configuration policies and things that come out that new version of Windows as they’re released, rather than having to go back and do those updates So that’s certainly a good point One thing I wanted to mention here for those of you that have been doing Windows deployment for a long time, is to put around Windows 10 base images or reference images that we see a lot of customers really spend time crafting a perfect image, that they can then roll out to their organization With servicing and the new approach that we do, we really want to try and move away from that So we don’t recommend creating that reference image at this point in time There is a need for a reference image in some cases, but this creating it at this time with a lot of online information is not the recommended approach So certainly thinking about the learning map to a later stage of the process, which we’ll cover off in another video Also this is a good opportunity to think about con strategy So how do I reach out to my users? What is my pilot user base going to be given in terms of goals? What user experience can I expect? What sort of downtime can they expect and what we want them to pass it on So bringing these things out after we’ve done upgrade for our infrastructure, upgrade by configuration is really helpful, and that’ll get you into the right place to pass that messaging So that when we do go further down the line and deployment, you’ve got a better understanding of what the users are looking for and how well that message is landing David any other thoughts on this one? DAVE BACKMAN: Yeah on the communications piece, make sure, I think that you create a closed feedback mechanism, certainly with pilot users and even the broader deployment, you’ll be communicating up to the user population and base as far as what new tools and features and capabilities are about ready to hit their desk, but also provide the users a feedback mechanism back in you because with any deployment and a process, running a process, it should be a continual improvement process And without that feedback loop coming back from the end user population, you don’t really get a good insight into what’s working well, what’s not working well, what are things you need to do to improve? And, the other thing I think from just a change management perspective, don’t underestimate the ability of your users to actually accept and build consume a bunch of change at once I’m constantly impressed at how much change end users can actually accomplish in a deployment So, and think about it, right? I’ve got 1 billion devices out in the world chances are they’re already running the version that you’re getting ready to deploy So they’re, actually looking for and excited about the new capabilities and features because they’re probably actually already running them at home JAMES BELL: Great thanks, Dave Yeah, absolutely some good insight there Let’s shift to Modernization Preparation And typically if we’ve already planned to modernize our environment, we will have input those tasks into the deployment planning process or the deployment preparation process So we’ve know what the update and where we need to be But what I wanted to focus on with this slide just talking through how improvements can help you as part of the prepare phase So if you’ve gone through a level of application testing or validation to make sure that everything’s going to work, and then you’ve gone through the process of updating all of your infrastructure, it may or may not take a long time for those things to occur So what you may want to think about as you look to find efficiencies in the process

is operating a few of those approaches that you’ve been using And we wanted to recommend some of those here one was around the Testing automation So there’s a number of Testing automation solutions for applications And if you have critical apps where you know what you need to test and what the expected outcome would be, you’re running those tests There is an opportunity to take some of the manual effort out of that and run these tests in automated fashion so that you can reduce that time Consolidating applications there’s always one thing that we recommend There’s no point having seven different applications that do the same thing Sometimes that scope sort of expands organically within the business and likely do it under control try and figure out where these things are Keeping on top of those sort of things can also save you money But focusing on one can help with the process of testing and getting you to a point where you can deploy quicker Also Application transformation now I’ve seen a number of customers that still have applications that remain on premises, and they need to really think about how those updates to Windows 10 will affect that application by doing some transformational activities on those apps and moving them to the cloud We can take away a lot of that compatibility challenge and reduce the need to do as much testing And you can have more confidence in the platform itself Needless to say shifting to modern management is something that will obviously provide benefit and for those of you on configuration manager, I’m sure you know, that you can connect that with Microsoft Intune, that’s kind of our end point manager solution, and you can start to transition workloads from the on prem environment to the cloud And you can do that in a way that’s comfortable for you, whether that’s through piloting a workload or actually transitioning that workload Windows are paid for businesses One of those tools that you can take advantage of not only in CM, but in engine and that’ll really help in providing a different experience and leverage that data driven servicing that we’ve been talking about through the series, and that’ll really help in reducing the different costs associated with going through this process as well And Dave, any additional thoughts? DAVE BACKMAN: Yeah, actually I do have a couple of comments which is actually going to roll us right into kind of what’s next from a prepare phase One of the things that James was talking about was modern management And modern management in these days and times of the remote worker and moving into a hybrid work scenario You know, the COVID pandemic has really been a, forcing function for a digital transformation for many organizations And what we’re finding is that shift to modern is an absolute must for most organizations If you’re going to get to the point where it can actually manage both your on-prem users, once people start to return back to workforce, as well as managing the off-prem or the remote workers or the hybrid workforce Certainly is key to move into their modern management The other thing that I like to call out around modernization is, you know, really simplify what’s happening on the endpoint You know, organizations leverage a lot of third party end point solutions but if you’ve got the opportunity to go native, go native and eliminate some of those So I’m going to be talking about kind of the Microsoft Endpoint Manager coming up as part of what’s next And as part of that you know, Endpoint Manager really becomes that single pane of glass for your organization to be able to manage both the on-prem SCCM, as well as the off-prem and cloud management solutions like Intune So it really gives you a single control plan that brings both of those worlds together and allows you to manage both Windows and 365 and mobility as well So MEM is a great solution if you hadn’t looked at it And it’s relatively important as we talk about bringing not only in tune and config-man and together, but it also brings together other solutions that we’ve already been talking about So it is a single point of management for Desktop Analytics So it’ll surface all of those goodies that you need to be aware of when you’re getting ready to deploy, certainly you manage autopilot And the other thing that you can actually manage via MEM these days, and it’s been recently released is the Endpoint Analytics solution, which ties directly with the new, productivity solution from an end user perspective So I talk about going native, where you can and simplifying endpoint management, the productivity score will actually surface things like

boot times It’ll surface things like log in time So you can see if I’ve, you know, hey, I’ve got seven security end point solutions running on my device You know, it’ll surface things like, you know, Hey, it’s going to suck up 35% of my resources on that end point It is increasing the boot time for a machine by, you know, two minutes And it’s causing the login for a user to increase by a minute You start adding that up across the state and the user population, a hundred thousand people logging in at least once a day, you start to see what kind of savings and increase in the end user productivity you can start achieving So certainly if you haven’t assessed and looked at Microsoft Endpoint Manager, it’s a great opportunity to get your feet wet and get you to kind of where that single management plan is going to be to be able to manage both the on prem as well as the off-prem James any other comments? JAMES BELL: No, I think you’ve covered it pretty well Dave I mean, I really liked the way that we’ve made it pretty simple to transition, you know, between the two major products as well So it doesn’t really matter where you are in your journey and you’ve got the ability either now or in the future, transition of workloads and really make it seamless And if you couple that with all of the other devices and new state, you really got a single pane of glass to make that happen So yeah, that’s it DAVE BACKMAN: Great thanks James So let’s close out I think James did a fantastic job in framing up what the prepare phase is all about within the servicing framework Again, the framework does work for M365 It works for Windows It works for just about every solution that we’ve got out there So while it’s somewhat focused on Windows today, it does have applicable approaches for the rest of the estate and the rest of the Microsoft stack So appreciate everybody joining the call today Hopefully you walked away with some good nuggets and then as part of some of those good nuggets, I’ve given you a servicing resource page, that’s got a good dozen links that we’ll get you out to all the latest and greatest content that we’ve published recently, especially around kind of the business continuity and what it makes and what it takes to be successful in servicing all of your Microsoft estate So with that again, appreciate everybody joining and you guys have a great day Thanks