effective automated windows lab deployment
play

Effective Automated Windows Lab Deployment Fons Mijnen Vincent van - PowerPoint PPT Presentation

Sep 04, 2022 •11 likes •351 views

Effective Automated Windows Lab Deployment Fons Mijnen Vincent van Dongen February 6, 2017 Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 1 / 33 Problem part 1 IT professionals, students, and

  1. Effective Automated Windows Lab Deployment Fons Mijnen Vincent van Dongen February 6, 2017 Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 1 / 33

  2. Problem part 1 IT professionals, students, and researchers use test labs for a variety of reasons. Many products and techniques exist to automatically deploy Windows systems. However, these tools only deploy Windows systems and don’t configure a realistic test environment Therefore: Manual configuration is required to create a useful testlab. Technical knowledge is required to build a testlab. These deployment tools require a lot of user input Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 2 / 33

  3. Problem part 2 In order to create a realistic testlab, traces of users and systems have to be added to the testlab. Examples of traces of user and systems are: Groups and user account located in the user-database. Random files located in user folders. Mailboxes with email included. Client applications. Log and event files. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 3 / 33

  4. Research Question Main question: Is it possible to automate a fast and easy rollout of a realistic Windows test environment with minimal user interaction? Sub question: What kind of techniques and methods exist to deploy and configure a testlab? What is the most suitable option to automate the deployment and configuration of a testlab? What kind of techniques and methods exists to simulate system and user behavior on machines? What is the most suitable option to automate the simulation of system and user behavior on windows machines? Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 4 / 33

  5. Defining the testlab Figure: Overview of the domain structure of the testlab Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 5 / 33

  6. Defining the testlab Defining the testlab with system requirements Multiple Active Directory Domain Controllers. Active Directory for a user database with users, groups and Organization Units. Email Server, Domain Name Server, Web server, DHCP server, SMB share. Client computer systems with internet access. Traces of user and system behavior. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 6 / 33

  7. Defining the testlab Defining the testlab with functional requirements Relatively fast deployment (less than 12 hours). Minimal user interaction. Definable parameters such as domain names, IP-addresses and users/groups. The total costs should be as low as possible. The total amount of disk space should be as low as possible. Functionality to automatically update Windows servers and clients. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 7 / 33

  8. Background Current techniques to deploy and configure a testlab 1 Configuration management 2 Image deployment 3 Virtual Machine Snapshot 4 Templates Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 8 / 33

  9. Background Current techniques to simulate user and system behavior: 1 Groups and user account located in the user-database. 2 Random files located in user folders. 3 Mailboxes with email included. 4 Client applications. 5 Log and event files. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 9 / 33

  10. Background Conclusion: By using one these techniques and tools its only partially possible to automatically deploy a realistic testlab. Therefore, some requirements cannot be fulfilled Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 10 / 33

  11. New Windows testlab deployment mode Model specification: 1 Deployment of server and OS installation. 2 Server provisioning. 3 Software installation and configuration on servers. 4 Deployment of clients and OS installation. 5 Client provisioning. 6 Software installation and configuration on client. 7 Log file and user behavior emulation. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 11 / 33

  12. New Windows testlab deployment mode Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 12 / 33

  13. proving the model Build a prototype conform to the model and the lab specification Prototype build on a Windows server. Intel(R) Xeon(R) CPU E3-1240L v5 @ 2.10GHz 4 cores 16GB RAM 100GB disk Windows server 2012R2 OS Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 13 / 33

  14. Prototype: underlying architecture Prototype build with Powershell, Windows native scripting Includes many native functions for windows configuration that can be used in the prototype Now windows main focus instead of GUI making sure the prototype is viable in the future [3] [2] Hyper-v used as Hypervisor All remote invocations and commands are called from the Hypervisor server 3 http://searchwindowsserver.techtarget.com/tip/ How-and-why-Microsoft-is-killing-the-GUI-on-Windows-Server 2 https://mva.microsoft.com/en-us/training-courses/ getting-started-with-powershell-3-0-jump-start-8276 Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 14 / 33

  15. Phase 0: lab definition The lab should be defined before deployment. The lab is defined in a XML file. IP range, AD domain(s) and a lab name is defined. For each machine in the lab: A computer name Programs to be installed Windows OS and version Machine Domain Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 15 / 33

  16. Phase 1: Deployment of server and OS installation 1/3 Differencing disks are used to keep disk usage to a minimum. Uses a parent-child relationship where changes are written to the child disk. The parent disk is read only. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 16 / 33

  17. Phase 1: Deployment of server and OS installation 2/3 Sysprep is used to prepare the image for deployment.[1] unattend.xml is used to automate the final installation steps. Sysprep and differencing disks allow for a high level of automation. 1 https://technet.microsoft.com/en-us/library/hh824938.aspx Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 17 / 33

  18. Phase 1: Deployment of server and OS installation 3/3 Images can be automatically added to the library of sysprepped disks Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 18 / 33

  19. Phase 2: Server provisioning Servers get a static IP, computer names and new passwords Servers are contacted trough APIPA address APIPA is a IP range windows uses if a NIC fails to get a DHCP address In the 169.254.0.0/16 range Polls for a DHCP server every 5 minutes Hypervisor server has a 10.0.x.1 address and 169.254.1.x address on the virtual switch Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 19 / 33

  20. Phase 3: Software installation and configuration on servers Windows features can be directly installed with Install-WindowsFeature cmdlet EXE, MSI and other installers can be transferred to the server and then called with Invoke-Command feature Undocumented sandboxing and environment issues make installing some software difficult Environment can be broken out of by scheduling cronjob like tasks to do software installation ISO, IMG and other image files can be mounted to the virtual DVD drive Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 20 / 33

  21. Phase 4: Deployment of client and OS installation Virtually identical to server deployment In order to spread disk I/O load it is done during DC installation Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 21 / 33

  22. Phase 5: Client provisioning Clients are given DHCP addresses instead of static addresses The clients are then given a new name and joined to a domain Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 22 / 33

  23. Phase 6: Software installation on client Installers and versions can be stored in a library. Transferred and installed with Powershell. Allows for multiple clients with different versions of software in a single Lab. Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 23 / 33

  24. Phase 7: Log file and user behavior emulation 1/4 Traces of use are generated by adding random folder, files and file extension to certain places Windows user space (My documents, Desktop, Downloads) SMB shares Home folder Mails in the exchange server are also sent with random content at a random time Log manipulation is very hard in windows, log files are not flat text files Some tools are around for altering logs in older Windows versions [4] Log files will have to be generated in some other way 4 http://www.securityfocus.com/tools/1726 Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 24 / 33

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Overview of Automated Bus Consortium Program Accelerating automated technology for transit

Overview of Automated Bus Consortium Program Accelerating automated technology for transit

Automated Bus Technology Deployment Program Overview of Automated Bus Consortium Program Accelerating automated technology for transit services Automated Bus Technology Deployment Program Summary of Concept Automated small vehicle shuttle

407 views • 24 slides
Automated Vehicles: Technology Development and Deployment Workshop on Governance of Automated

Automated Vehicles: Technology Development and Deployment Workshop on Governance of Automated

Automated Vehicles: Technology Development and Deployment Workshop on Governance of Automated Vehicles June 28, 2017 Anne Marie Lewis, Ph.D. Director of Safety & Technology Policy Alliance of Automobile Manufacturers, Inc. Advanced

339 views • 10 slides
Customization, Deployment and Manufacturing Jessie Labayen Principal Program Manager Agenda

Customization, Deployment and Manufacturing Jessie Labayen Principal Program Manager Agenda

Windows 10 Anniversary Update Customization, Deployment and Manufacturing Jessie Labayen Principal Program Manager Agenda OEM Activation Windows 10 Desktop Manufacturing and Deployment Integrate/ Deploy/ Full Plan Try Test Pilot run

771 views • 52 slides
Conference 2017 Learning to Live with Windows 10 What weve learned at UVic Where the

Conference 2017 Learning to Live with Windows 10 What weve learned at UVic Where the

Conference 2017 Learning to Live with Windows 10 What weve learned at UVic Where the journey started Early adopters of Windows 10 in Fall 2015 Limited deployment in Spring 2016 with version 1511 Moved to Windows 10 on all

368 views • 20 slides
Casper van Donderen Preparing your KDE DP-based application for deployment on Windows OSes 1/7

Casper van Donderen Preparing your KDE DP-based application for deployment on Windows OSes 1/7

Casper van Donderen Preparing your KDE DP-based application for deployment on Windows OSes 1/7 Topics Macros Exports Dependencies Communication Contact info Casper van Donderen Preparing your KDE DP-based application for deployment

392 views • 7 slides
CARTRE : Coordination of Automated Road Transport Deployment in Europe CARTRE and SCOUT are

CARTRE : Coordination of Automated Road Transport Deployment in Europe CARTRE and SCOUT are

CARTRE : Coordination of Automated Road Transport Deployment in Europe CARTRE and SCOUT are funded by Thursday, June 8, 2017 the European Union Horizon 2020 Work Programme CARTRE Project Data Coordination of Automated Road Transport

299 views • 7 slides
Updates on Windows TCP Praveen Balasubramanian pravb@microsoft.com Recap and deployment update

Updates on Windows TCP Praveen Balasubramanian pravb@microsoft.com Recap and deployment update

Updates on Windows TCP Praveen Balasubramanian pravb@microsoft.com Recap and deployment update Recap from Chicago IETF TFO (TCP Fast Open) enabled by default in the Edge browser in Creators Update Experimental support for CUBIC

344 views • 12 slides
Automated Information Collection in Windows NT Networks Dirk Reimers reimers@secunet.de secunet

Automated Information Collection in Windows NT Networks Dirk Reimers reimers@secunet.de secunet

secunet Automated Information Collection in Windows NT Networks Dirk Reimers reimers@secunet.de secunet Overview Motivation Collecting information with automated tools CASTInG NT Technical background Example data

637 views • 35 slides
Automating Boot Camp and Windows Deployment Joe Hall Systems Support and Development Officer

Automating Boot Camp and Windows Deployment Joe Hall Systems Support and Development Officer

Automating Boot Camp and Windows Deployment Joe Hall Systems Support and Development Officer Goldsmiths, University of London Department of Computing slack jhall twitter iamjoehall github joe-hall Is dual-booting the right solution? No!

229 views • 22 slides
System deployment and management System Architecture (software) Windows Server 2012 R2 64bit

System deployment and management System Architecture (software) Windows Server 2012 R2 64bit

System deployment and management System Architecture (software) Windows Server 2012 R2 64bit IIS 8 (full features Installation) ASP.NET 4.5.2 Framework SSL certificate for the domain of the site installed on the platform together

373 views • 4 slides
Windows Not just for houses Windows 1-10 Windows Server Essentially a jacked up windows 8 box

Windows Not just for houses Windows 1-10 Windows Server Essentially a jacked up windows 8 box

Windows Not just for houses Windows 1-10 Windows Server Essentially a jacked up windows 8 box - Still GUI based - Still makes no sense - No start menu :( - (Install classic shell)... trust me... Windows Server What can it do? - Email

1.06k views • 37 slides
Preparation for Deployment of Automated Vehicles in Japan March 27, 2019 Toshihiro Sugi

Preparation for Deployment of Automated Vehicles in Japan March 27, 2019 Toshihiro Sugi

National Police Agency UNECE WP.1 78th Session Preparation for Deployment of Automated Vehicles in Japan March 27, 2019 Toshihiro Sugi National Police Agency of Japan Japans Roadmaps for Introduction of Automated Driving (2018) By 2020

312 views • 8 slides
the deployment of automated vehicles. A UK perspective. Tamara Goriely and Jessica Uguccioni

the deployment of automated vehicles. A UK perspective. Tamara Goriely and Jessica Uguccioni

Reforming national legal frameworks for the deployment of automated vehicles. A UK perspective. Tamara Goriely and Jessica Uguccioni Automated Vehicles Team Law Commission of England and Wales The Law Commission of England and Wales

575 views • 15 slides
IETF 93 Prague T-NOVA: Supporting Network Intent Through Automated Platform Aware VNF Deployment

IETF 93 Prague T-NOVA: Supporting Network Intent Through Automated Platform Aware VNF Deployment

IETF 93 Prague T-NOVA: Supporting Network Intent Through Automated Platform Aware VNF Deployment Akis Kourtis, NCSR Demokritos Scope T-NOVA is an EU-funded project, currently half way NFVaaS NFV Marketplace Purpose of this

414 views • 12 slides
#RP30 Automated Deployment and Scaling of Named Data Networks in Cloud Environments Sean Liao

#RP30 Automated Deployment and Scaling of Named Data Networks in Cloud Environments Sean Liao

#RP30 Automated Deployment and Scaling of Named Data Networks in Cloud Environments Sean Liao Supervisor: Zhiming Zhao 1 Next 20 mins... Some academic(s) arrive to tell us that (once again) they have Fixed the Internet, and (once again) it

737 views • 46 slides
Windows Not Just For Houses Everyone Uses Windows! Versions of Windows 10 There are multiple

Windows Not Just For Houses Everyone Uses Windows! Versions of Windows 10 There are multiple

Windows Not Just For Houses Everyone Uses Windows! Versions of Windows 10 There are multiple different versions of Windows 10 that support different features The version of Windows that we will be using is Enterprise edition This

973 views • 53 slides
1 Agenda 1 2 3 4 2016 Half-year Group Business Outlook 2016 2016 highlights financials

1 Agenda 1 2 3 4 2016 Half-year Group Business Outlook 2016 2016 highlights financials

1 Agenda 1 2 3 4 2016 Half-year Group Business Outlook 2016 2016 highlights financials update 2 Highlights Record interim operating results +3.2 % 2,878 million 1.00 87 % Revenue Cash conversion rate Interim dividend 20.2

827 views • 24 slides
Make the Internet safe with DNS firewall Response Policy Zones (RPZ) SGNOG 7 2019 2 Great

Make the Internet safe with DNS firewall Response Policy Zones (RPZ) SGNOG 7 2019 2 Great

1 Make the Internet safe with DNS firewall Response Policy Zones (RPZ) SGNOG 7 2019 2 Great Asean Fastest Growing Area of Threats Over 200 Billion devices connected worldwide by 2020. Over 13 million active bots recorded for January 2019.

766 views • 38 slides
ACA Webinar Maximizing Display ROI An Update On Auditing Best Practices Hello! I a am m

ACA Webinar Maximizing Display ROI An Update On Auditing Best Practices Hello! I a am m

ACA Webinar Maximizing Display ROI An Update On Auditing Best Practices Hello! I a am m Fearga gal C Conno nnor. I I am the C CEO a and F Found nder o of M Mediaopt ptimise. Founded i in 2011 i in Montr treal al, C Canad

728 views • 55 slides
DIGITAL ADVERTISING TRANSPARENCY, CONTROL, CONSENT March 2018 Technical standard in development

DIGITAL ADVERTISING TRANSPARENCY, CONTROL, CONSENT March 2018 Technical standard in development

DIGITAL ADVERTISING TRANSPARENCY, CONTROL, CONSENT March 2018 Technical standard in development and subject to change. Agenda Issue: EU Regulatory Challenges Solutions Closed Ecosystem Open Framework within an independent and

1.66k views • 25 slides
Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese

Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese

Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese Nikolaos Laoutaris We Web adver)sing fuels the w fuels the web eb 1 The r Th e rise of e of t targeted ed a ads Why Targeted ads? How it

584 views • 42 slides
Windows Server 2003 Windows Server 2008 Windows Server 2012 Hardwar are Innovat ation ion

Windows Server 2003 Windows Server 2008 Windows Server 2012 Hardwar are Innovat ation ion

Windows Server 2003 Windows Server 2008 Windows Server 2012 Hardwar are Innovat ation ion Hardwar are Innovat ation ion X86 Symmetric X64 Servers Multi-Processor Multi-Core Servers (2- (SMP) Servers 4 cores per socket)

504 views • 34 slides
DNSSEC in Windows DNS Server Kumar Ashutosh, Microsoft Windows DNS Server Widely deployed in

DNSSEC in Windows DNS Server Kumar Ashutosh, Microsoft Windows DNS Server Widely deployed in

DNSSEC in Windows DNS Server Kumar Ashutosh, Microsoft Windows DNS Server Widely deployed in enterprises Fair presence in the DNS resolver space Standards compliant and interoperable Secure and scalable DNSSEC in Windows DNS

266 views • 14 slides
all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering

all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering

Identity, Security and Collaboration, all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering Microsoft 365 Enterprise Office 365 Windows 10 Enterprise Mobility Enterprise Enterprise + Security

503 views • 7 slides

More recommend