J
Justin
Nina DiBoy said:Justin wrote:
I read up on it a bit more and it just sounds like they are pooling
together their system admin tools and adding some consolidation and
improvements. I noticed they included SMS. I still run an ancient SMS
2.0 system at work, LOL.
They've expanded since then. They are gearing everything toward reporting.
For example we now have a single machine that houses SQL2005 which holds
data for WSUS 3.0, Forefront and System Center Essentials. The two later
apps use MOM as an agent for reporting data. One agent gives you everything
you need. Simply add a new management pack to MOM and BAM! You're
receiving new info on whatever has the agent.
The end result is if I deploy a Forefront policy to a machine (in my case do
nothing but setup a new machine), the forefront client installs on it.
After about an hour of that machine being on the floor I have reports that
tell me what's installed, what updates it needs, what does it need in
general, is it secure, what's wrong with it....
In addition, every day I receive an email (from which I can drill down into)
that tells me what is going on with my entire network. Where the problems
are and what's going on. The amount of info is so massive I'm still fine
tuning the reporting.
A perfect example is an issue I addressed today. Even though malware has a
hard time installing on my machines there can still be an attempt. The
average person probably thinks "So what? An attempt is no big deal, don't
bother me until something actually installs". Wouldn't that be too little
too late? Well, this report tells me that John Doe has attempted to install
malware at a high rate. I can pull up a report on just him that shows me a
history (so far way back to beginning, not sure how far it will go in total)
and I can see that his machine is attempting to install various "baddies" on
a regular basis. It was time to have a talk with Mr. Doe and explain safe
browsing techniques. He's only going to be "so lucky" for so long before
his time runs out.
Also, what the heck was he doing at all these sites while he should be
working? Employees at my company get a warning from me first. Then I email
supervisors if the problem persists. I find I'm more well received via that
route.