SCCM Tutorial In this article, we will understand products that help manage an organization’s infrastructure from inception to retiring the physical/virtual machines. There are various products that handle individual functionalities and all of these are handled from one suite for intercommunication amongst them. Following are the topics that we are going to cover in this article in detail.
|In this SCCM tutorial, you'll learn|
Microsoft System Center Configuration Manager (SCCM) is a Windows product that enables administrators to manage security and deployment of applications, devices that are part of an Enterprise. System Center is the family or suite of management tools from Microsoft. Organizations would rather purchase System Center Configuration Manager than purchasing a component in the System Center for updating or patching their systems
|If you want to enrich your career and become a professional in SCCM, then Enrol Our "SCCM Online Training" This course will help you to achieve excellence in this domain.|
Now we will know the step by step procedure on how System Center Configuration Manager (SCCM) works:
These are the basic steps to explain how SCCM works, and a lot more additional steps need to be considered in the background. But the core components used in the software distribution (Application packages, Distribution points, SCCM agents, servers) are the same for any infrastructure.
|Related Article: SCCM Interview Questions And Answers|
Let us dive into the SCCM concepts one by one.
There are many products that constitute System Center, and the whole suite complements each other with their functionalities. Based on the licenses that are purchased, organizations can work along with more than one of these products or tools within their Enterprise. With each successful release, more and more functionalities and capabilities are added which help each other. Let us now take a look at each of these products individually to see their functionality set:
System Center Configuration Manager (SCCM) comes with the ability to imagine and installing the base operating system on a system based on the configuration provided. Once an operating system is installed, SCCM kicks in to update or patch the system. It keeps track of the system inventory and remote control capabilities. It enables IT, administrators, to keep up with the system configuration of all the machines based on a single and common organizational configuration.
SCCM is the product that lays down the base configuration of a system and keeps it updated and patched. System Center Operations Manager then takes over the responsibility of monitoring the health of the system along with all other applications installed on that specific system. There are a specific set of rules that track down the normal functioning of the system, and if there are any deviations, the necessary personnel is notified of the changes.
Data Protection Manager (DPM) comes in handy when SCOM reports any faults on a physical machine. DPM helps in recovery from the backups that it holds. DPM takes backups of the server file system, SharePoint data, exchange databases, SQL databases on a standard schedule. This helps in recovering a system by full data recovery which is either corrupted or damaged.
There is a shift of an organization’s physical systems to virtual systems for development, maintenance, and production, and hence comes to a tool that handles all the life cycle-related activities for the virtual machines - System Center Virtual Machine Manager (VMM).
If there is an instance where a physical or a virtual system is about to fail, SCOM can trigger the automatic creation of a new session using SCCM and Hyper-V to build a new virtual system. VMM also helps in transferring the operating system, application, and data to a virtual machine in an automated Physical To Virtual (P2V) process.
Most of the tools from the System Center suite of products revolve around IT-related tasks such as patching, imaging, monitoring, backups - there are other organizational needs such as managing processes and change control.
System Center Service Manager (SCSM) is an incident management and change control system that integrates with SCCM and the like seamlessly. It helps in logging all the issues identified with these tools and gathers all the details around the issue for a one-point reference to the Desk personnel or the Support personnel.
With the growing needs of an organization, there is always a need to upgrade the infrastructure for an organization. System Center Capacity Planner helps in identifying and testing performance demands from the current setup and plan for future requirements aptly. Based on the current requirement, it helps in identifying the relative requirements on the hardware to meet the performance demands for your organization.
Organizations run on Servers and Clients for their related operations, but with the advent of smartphones with equal computing power, mobile devices also have joined the bandwagon for operations carried out in organizations.
System Center Mobile Device Manager (MDM) joins hands with System Center Configuration Manager (SCCM) to handle all the life cycle stages from inception to completion for all mobile devices and in simple words, MDM is to mobile devices what SCCM is for servers. Provisioning, monitoring, updating, securing, wiping the devices are all the activities that can be done with MDM.
Not every organization might have a dedicated IT wing to handle all the system, server related stuff (organizations with less than 500 users or 50 servers). Microsoft provides System Center Essentials which enables management functions related to tracking inventory, patching and updating these systems, monitoring, deploying newer software. All of these can be done from just this single tool, helping them to scale on their system administration capabilities.
In this section, let us try and understand the major features that are provided by System Center Configuration Manager (SCCM).
Installation of the core Operating System is the very first step that needs to be done to initiate the life-cycle for a server altogether. SCCM provides all the tools an organization requires for Operating system deployment - either via the imaged installation or as a scripted method of installation.
When the installation of the Operating system is completed successfully, SCCM initiates patching and updating these systems. Most of the organizations rely on the free service (Windows Server Update Services) to patch and update the systems but SCCM leverages everything that WSUS provides and over that, provides the IT administrators active patching and updating in addition to WSUS. The active update system enforces updates, forces systems to be patched or updated, and later rebooted following the IT guidelines published by organizations.
Once a system has been created with the Operating system that is required and later updated, patched, such systems need to be kept on track of further timely updates or patches. SCCM includes the tools that are required to keep track of the hardware, software assets of the system that it is managing altogether.
If a user or a system encounters an issue that might require further assistance of an IT administrator, there is a provision to take remote access to the system to analyze the problem. SCCM has a remote control process that allows an IT administrator or a support engineer to access the system remotely.
Installing the core operating system on a physical/virtual machine is one part and the other part is the additional software that is required on a system. SCCM provides a tool that allows to the installation of a simple plugin or a complex suite of applications with unique application configurations. This is a one-of-a-kind functionality that makes it more suitable for organizations where certain IT guidelines can be implemented without halting anything.
This is the other feature that follows the IT guidelines outlaid by an organization where the standard configuration of a system cannot be altered. This ensures that the system has the same software setup, updates, drivers, and configuration settings across all the systems. Desired Configuration Management (DCM) tool within SCCM ensures the stringent audit constraints are met and compliance is maintained.
This is a significant component of the SCCM tool which enables devices like remote systems or mobile devices to be accessed remotely without specifically bringing them into the VPN network for any maintenance requirements. This can now happen via an Internet Client and a PKI (Public Key Infrastructure) certificate installed on the system. With these prerequisites, SCCM will be able to connect to that device anywhere in the world automatically to inventory, patch, update, monitor the system.
SCCM provides out-of-the-box integration with a report generation tool that generates reports based on the requirements outlaid by the IT administrators. These reports may vary based on the requirement like reports of systems that have missed the patches or updates, reports of standard configuration, inventory reports, etc.
If you are well aware of the SCCM tool altogether, then you would be able to appreciate what has been developed and released in the new releases. If you are not aware of the tool anyway, then the following few points should be good enough to appreciate what is available in the latest releases. Let us take a closer look at the following points then:
IT consumerization is the fact of the day and resistance against this will not allow an organization to scale further. With more and more devices being available in the market, there is always an expectation to support all of these.
As SCCM has always been about systems management, considering the changing landscape, the user has been given all the attention that it requires. This allows them to gain more control over the software that is installed. An example of this is the definition of the user's working hours and based on these timings, the upgrades and patches are applied to the system.
There can be more than one device tagged to a single user, meaning that there can be more than one primary user for every device that is being worked upon. These relationships are handled using the User Device Affinity (UDA).
Users can manage their own systems using a new interface called the Software Center. This is more like a shopping cart approach where users search and find what they want to request for installations. Based on the applications, few might be installed right away, and few others require administrative approvals.
Based on the recent trends amongst the products in the industry (in general), there is a growing adoption towards role-based security. This has now been introduced in SCCM 2012 and is controlled by Role-Based Access Control (RBAC) hiding the elements that the user doesn’t have access to. The tasks are grouped into security roles administratively. There are few roles provided with the tool and, in addition to that, business-specific roles and scopes will be added later.
The multilayer approach helps you leverage the power of the cloud, and at the same time protecting on-premise clients from any possible potential threats from the internet. SCCM 2012 comes with a new console altogether. This no longer relies on Microsoft Management Console (MMC). Take a look at the following:
System Center Mobile Device Manager (MDM) 2008 wasn’t exactly a success but its functionality was rebuilt into SCCM 2012. Support for iPhone, Android, and Windows phones was covered through the Exchange Active-Sync connector.
In this article, we have tried to understand the business problem that Software Center Configuration Manager (SCCM) tries to resolve. We have understood the systems management in an enterprise and how SCCM resolves this problem with the features that it provides. We have then discussed the System Center suite of products and its features, along with it, we have also taken a closer look at the major features provided by SCCM. We have also seen the business use cases where SCCM finds its usage. We have also discussed the new features that are provided in the latest releases of SCCM. Hope you have found all the details that you were looking for, in this article.
Ravindra Savaram is a Content Lead at Mindmajix.com. His passion lies in writing articles on the most popular IT platforms including Machine learning, DevOps, Data Science, Artificial Intelligence, RPA, Deep Learning, and so on. You can stay up to date on all these technologies by following him on LinkedIn and Twitter.