Skip navigation

One of the advantages that is brought with SCCM SP1 having integrated support with vPro is the ability to leverage vPro Power On command with Advertisements. What this allows you to do is power up a vPro client that is currently turned off and executive a desired task sequence or software distribution package. So in a scenario where you want to patch your clients at 2:00 am in the morning, you can leveraging vPro and SCCM SP1 to wake your clients up, patch them, and shutdown them back down. This gives you the option of shutting down your vPro clients (to save power) without sacrificing ideal patching / software upgrade times at night (which may be less impactful to your end users) and then gracefully shut them back down again when the patching is complete.

 

 

 

 

 

In a limited fashion, Wake On LAN (WOL) has given us this option in the past. However unlike WOL, Intel vPro Technology allows you to securely and reliability power up a client without the challenges and potential security issues that comes with the transitional WOL Magic Packet. The following abstract has a pretty good explanation of the differences between WOL and vPro Power On.

 

 

 

 

 

 

 

 

To configure SCCM SP1 to use the vPro Power Up commands, you will need to drill down to "Site Database" -> "Site Management" and select properties from the right click menu on your site server. Once the "Site Properties" window appears, click on the Wake On LAN Tab. After ensuring that the "Enable Wake On LAN for this site" is Checked, you will notice three additional configurable options:

 

  • Use power on commands if the computer supports this technology; otherwise, use wake-up packets


  • Use power on commands only


  • Use wake-up packets only


 

 

 

 

 

 

The reference to "use power on commands" is Microsoft's definition of leveraging vPro Power Management. So to use vPro Power Management for client power on during an advertisements, you will need to ensure that either "Use power on commands if the computer supports this technology; otherwise, use wake-up packets" or "Use power on commands only" is selected. Since you are likely to have a mix of vPro and non-vPro clients in your environment, it is recommended that you use the "Use power on commands if the computer supports this technology; otherwise, use wake-up packets" option.

 

 

 

 

 

 

 

 

To allow for easy use of both vPro Power Control and WOL within SCCM SP1, Microsoft decided to bundle both options under "Wake on LAN". So when you are leverage vPro Power Up control on Advertisement, you just need to specify use to Wake on LAN (WOL) and depending on the configuration in the "Site Properties: Wake On LAN Tab" it will use vPro Power or the traditional Legacy WOL packet.

 

 

 

 

 

 

 

 

To create an advisement that leverages vPro Power up command...

 

  1. Right Click on the Collection you want the advertisement for and select "Advertise Task Sequence".


  2. When the "New Advertisement Wizard" window appears, enter in the Name of the Advertisement and a comment.


  3. Select the desired "Task Sequence" you have created (To create a Task Sequence, please reference the following article: http://technet.microsoft.com/en-us/library/bb693631.aspx). Click "Next" to Proceed.


  4. On the Schedule Screen, specify your Advertisement Start & Expires (if required) dates.


  5. To allow the "Enable Wake on LAN" option to be selected, you must first specify a "Mandatory Assignments". Click the new icon and define a schedule or immediate action and click "OK".


  6. Once the "Mandatory Assignments" has been defined, check the "Enable Wake on LAN". Select other option and priority as necessary and click "Next".


  7. Select the desired "Distribution Points" options and click "Next".


  8. Select the desired "Interaction" options and click "Next".


  9. Select the desired "Security" options and click "Next".


  10. When the "Summary" Appears, confirm and click "Next".


 

 

 

 

The advertisement with vPro Power Up control has now been configured. Based on the Mandatory Assignments specified, you should see the vPro Client power on and execute the task sequence. For more details on how to create Advertisements within SCCM SP1, please visit Microsoft Web site.

 

 

 

 

 

 

--Matt Royer

 

 

 

 

 

 

 

 

 

 

 

Wow, what a question to come up with. It is pretty broad. What is it used for? To have that cool sticker planted on your laptop or on your desktop? Is it a status issue? The first blog I posted did tell a little about vPro. It is a tiny little processor, no bigger than an aspirin pill, if you saw on the floor you would just throw it away, more likely, it would be lodged in your foot. That tiny little piece is so vital to what would take us to the future of virtual technology because of the remote management capabilities.

 

 

 

 

 

 

Imagine this:

 

 

 

 

 

 

*I have a friend who lives in, oh I don't know, Timbuktu and he comes over here to visit me here in Folsom. He realized he needed to get a file from his computer. Well, if he has the vPro processor in his computer and I, of course, have one in mine, he will be able to get what he needs from his computer virtually. You think to yourself: what a simple but complicated idea. It's complicated because you think, how does it do that? I don't have to go anywhere and I would be able to fix a computers software from my house. *</stro</p>

 

 

 

 

 

 

 

 

 

 

If the operating system is unresponsive, the power is off, and even if the hardware has failed, with vPro you are able to fix, protect, and get anything from your computer. That would save companies money, and who doesn't like to save money. They wouldn't have to fly a technician out to fix a computer. The technicians would have an opportunity to fix more than just one or two PC's. They can sit at their office and fix multiple PC's.

 

 

 

 

 

 

There is one thing I can't wrap my brain around you can work on the system when it's powered off? That was one thing that perplexed me from the last blog. Everyone knows you need power for any electric to work or for it to read anything, assuming everyone does know that. Well, I guess that not true if your system has vPro. It has a remote power up item on it. Amazingly, it can turn on a pc or laptop. But for this to only work is if the system is plugged into a wired LAN (Local Area Networks, they are special grades of twisted pair wires and network adapters connect the devices) and is connected to an AC power source then it will be able to be tapped into.

 

 

 

 

 

 

Crazy concept huh?!?!

 

 

 

 

 

 

Why would I personally use it since I am not a business? Well simple, convenience. If I am a busy person and I needed something from my computer at home and I am on my business laptop I can just do a couple of clicks and I have it. Or, in one instance, you are on a business trip and your family at home (surprisingly) screwed up the house computer and they can't get anything that they want off of it. You manage to be 1000 miles away but fix all the problems in an hour and you are the hero!! This little chip could be saving you a lot of money and time.

 

 

 

 

 

 

Next blog- HMMM...So many possibilities!! Stay tuned

 

 

 

 

 

 

-Sophia "the Intern" Stalliviere

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

    • Note to self* would that mean it's also a "green product" because it would cut down on cost for gas since I wouldn't have to travel anywhere to fix something? I guess that might have to wait to be a whole other blog.

 

 

On Wednesday, April 30th, Brad Anderson, General Manager of Microsoft Management and Services Division, demonstrated the capabilities of Intel vPro technology with System Center Configuration Manager 2007 in his keynote at MMS 2008. Brad, along with Dave Randall, Microsoft Program Manager for System Center Configuration Manager, showed off the secure power control capabilities of Intel vPro technology by shutting off a collection of 20 PCs with Intel vPro technology during Brad's keynote. Further, Dave went through a remote diagnosis and repair scenario from System Center Configuration Manager 2007 SP1 using Intel vPro technology's Serial Over LAN (SOL) capability. View this Intel vPro technology demonstration from the MMS 2008 keynote below.

 

 

 

To see more videos from MMS 2008, go to http://www.intel.com/go/mms/.

Hank and I decided to take a road trip to Denver today to attend the latest event. Hank is writing up a blog that we will be updating as well.  http://communities.intel.com/openport/blogs/server/2008/06/26/live-from-intel-premier-it-professional-eventdenver  check out his blog. 

 

If you are interested in a play by play.. I'm using twitter @ http://twitter.com/JoshProStar.

 

Here's the booth's that are here.

 

I talked w/ Dave, Intel IT guy.

 

 

Some enterprises may find that they want to take advantage of both Microsoft System Center Configuration Manager 2007 (SP1) and System Center Operation Manager 2007 in their environment. Each independently have the ability to provision and manage vPro clients (natively from SCCM and through the Intel SCOM MP for SCOM), but is there a way so that both can manage the same vPro clients? YES, there is!

 

 

 

 

 

The way it works is that SCCM owns the provisioning (setting up certification, ACL, base configuration) and then both SCCM and SCOM w/ Intel SCOM MP can invoke vPro Use Cases. To get SCCM and SCOM w/ Intel AMT Management Pack to work together with vPro, here are the high level steps:

 

 

  1. If you have not already installed Microsoft SCCM SP1, Microsoft SCOM 2007, and the Intel SCOM MP, following the standard install documentation.

  2. Create a domain account that the Intel SCOM MP Service will run under. Once created, ensure you set the Log-in Account for the Intel SCOM MP Service to run under that account.

  3. Within SCCM under the Component Configuration -&gt; AMT Settings -&gt; AMT User Account Setting, add the domain account you created to run the Intel SCOM MP service under. Ensure you give that account sufficient access to perform the desired vPro function.

  4. Within SCOM Intel Management Pack, navigate to the "Intel AMT Management Pack Settings". Under Security Settings, set Kerberos to be used and check the "TLS Enable" check box. Under the CA Certificate, ensure to specify the file location of an export of the Root CA cert (This should be the same CA that SCCM is using to issue AMT client certificates). Once complete, make sure you restart the Intel SCOM MP Service.

  5. Now that base configuration is done, provision your vPro Client normally through SCCM. If you have already provisioned the vPro Client, ensure you "update management controller" so that new ACL is pushed to the vPro Clients. Once provisioned, you should be able to invoke vPro Use Case through SCCM Collection Based power control or the Out of Band Console without issue.

  6. Within SCOM, configure the IP range that includes all vPro Clients to be monitored by the Intel SCOM Management Pack. After the vPro Clients are discovered, you should be able to invoke vPro Usage from within SCOM as well.

 

 

 

 

--Matt Royer

As noted in a previous blog, Microsoft SCCM SP1 natively supports vPro hardware that is running firmware version 3.2.1 or higher. Although SCCM SP1 can support vPro firmware versions less than 3.2.1 by leveraging the Intel WS-MAN Translator, it is advised that you upgrade your OEM vPro Client to the latest supported firmware. Dell, HP, and Lenovo have release the 3.2.1 ME firmware for their vPro platforms and the firmware for those platforms can be downloaded from the following locations:

 

 

 

 

 

As a clarifying note, if you have a vPro Clients that are currently running on vPro firmware 2.x, you are not able to upgrade them to the 3.x version and will be required to use the Intel WS-MAN Translator to provision and manage those systems within SCCM SP1.

 

 

 

 

 

 

--Matt Royer

Tell us about your vPro deployment* and receive something from our goody drawer! We have shirts, radios, backpacks, and more!

 

We want to hear about your unassisted activation. We are interested to know how many machines were involved in your deployment, which provisioning model you went with, and the implemented use cases. Contact Michele Gartner

with the details.

 

 

*Offer valid for individuals deploying vPro without the use of an IT outsource, system integrator, or Intel engineer on site.

Sophia the intern doing my first blog, where I was asked to learn and communicate to you guys in a multi-part series about a product that is made by Intel called vPro.

 

  • what it is?

  • what it is used for?

  • why I should personally use vPro?

  • what is it meant to do?

  • what benefits do I get out of having vPro?

  • why the v in vPro?

 

To boil it down, I just want to know all about it?!?

 

 

 

 

 

To start my journey, I researched vPro, gathered feedback about vPro in both questions and comments, which gave me the first few topics to study and write about in my blog series. My goal in the series is simple - become an expert about vPro, and share my journey with you along the way. I want to know so much about it, that my head is going to explode. I plan to try to accomplish this in about 9 weeks.

 

 

 

 

 

 

On this particular blog, I am going to figure out what vPro is... What did I do to figure this out? I did what every college student does, I Googled it - how easy! Well, it stated me in a good direction, but at the same time it hurt me by having so much information I didn't even know where to start. Yet, I started to figure out the definition of vPro.

 

 

 

 

 

 

Intel described it in their website as:

 

 

 

 

 

 

Remotely manage both wired and wireless PCs from the same IT console for increased security and simplified system management.

 

 

 

 

 

 

A new generation of notebook and desktop PCs enables proactive security, enhanced maintenance, and improved remote management:

 

 

  • Intel® Centrino® with vProTM technology-based notebooks

  • Intel® CoreTM2 processor with vProTM technology-based desktop PCs

 

These PCs deliver down-the-wire security and manageability capabilities- even if hardware (such as a hard drive) has failed, the operating system (OS) is unresponsive, software agents are disabled, the desktop PC is powered off, or the notebook's management agents have been disabled. Desktop PCs also include support for virtual appliances that allow IT managers to isolate and protect critical security and management applications in a more secure, trusted environment. In addition, the new generation of notebook and desktop systems delivers significantly improved 64-bit performance for compute-intensive tasks -including fully integrated 64-bit graphics support - all in a power-efficient package that is Microsoft Windows Vista* ready.

 

 

 

 

 

This looks all pretty easy to understand, so far, but in future entries I plan to dissect this verbiage, and maybe be able to put it into thoughts that even I can understand. I want to also dive into vPro's future. The following verbiage look like great candidates for more clarity and understanding:

 

 

  • Simplified system management (is it really simple?)

  • Proactive security (what makes it proactive?)

  • Enhanced maintenance (how do you enhance it?)

  • Improved remote management (does this mean my boss can manage me from home? Yikes!!!)

  • Down-the-wire security & manageability (down what wire?)

  • Virtual appliances (virtual refrigerators and toasters?!?)

  • Really - this stuff works when the computer is powered off?!?

  • Trusted environment (I have found the environment at Intel to be very trusting J).

 

 

 

 

For this entry I just wanted a platform on where to start. As I said previously, and I really do mean it, I encourage feedback on what direction I should go with this project or even points of view on what I am writing. I am a big girl, I can take it - give me your ideas on topics and I will do my best to figure them out!!!

 

 

 

 

 

 

Stay with me - chapter 2 coming soon with more clarity (I hope)!

 

 

 

 

 

 

-Sophia "The Intern" Stalliviere

 

 

BriForum by Sophia "the intern" Stalliviere

 

 

 

 

 

I recently started with Intel as a summer intern, coming from Washington State University (go cougars), and had the privilege of doing something very unique for an Intern - going on a business trip! Last week I went to the BriForum, I didn't have any idea what I got myself into when I went, however, I found it to be a great experience. I think of myself as technically savvy person, but at a show where they have a multi-part series on the "excruciating details" of the logon process challenged my level of tech savvy! To be immersed in the detailed language of computers at this event was both very scary and very exciting at the same time. At this forum there were many people, representing different parts of the world - connected by one thing: the future of computers. Now when I say future, we aren't talking about just computers doing the same things faster, smaller, and cheaper; but we are talking about the changes that will come from the virtual execution world. A world where the application you run may be running on the device your using right now to view this blog, or it may be executing in a number of other places, but viewed just like you are doing right now, with manageability, security, and flexibility at the heart of the solution.

 

 

 

 

 

 

My Intel manager, Jason Davidson hosted one of the sessions, as well as sponsored the food for the BriForum party (details about the party will be on my personal page J). He decided to have a discussion on . In his session he did something a little bit different than the other sessions. Instead of telling everyone his thoughts about his subject, he had questions up on the projection screen and the panel discussed the questions. The panel consisted of Jason Davidson, Brian Madden, Brian Duckering, and Ron Oglesby. All of them had different views on the topic which made it very energizing and intriguing. The audience got into it by asking questions and also waited till after the sessions to approach the speakers on the topic.

 

 

 

 

 

 

Another session that I attended was the "[VDI Product Smackdown and Discussion|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=373|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=373]," which was hosted by Brian Madden. He talked about the different VDI components and his thoughts about each of them. He went into detail about Citrix Xendesktop, Qumranent, Quest, Ericom, and VMware. Other sessions were "[Optimizing and Understanding Citrix over WAN connections|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=358|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=358]", "[Streaming Smackdown|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=339|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=339]", "[Provisioning Servers in the Real World|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=357|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=357]", "[The Future of Client Computing|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=371|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=371]", and "[Customizing Citrix XenApp Web5.0|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=372|http://www.briforum.com/BriForum-2008-Chicago/session.asp?id=372]."

 

 

 

 

 

 

The sessions were really great, and I learned a bunch. I also found the networking with people at the event to be one of my strong points and was able to learn about many end-user experiences and products. Jason and I went to each of the demos and I observed him talking to each of the companies about their roles in this forum. Then, in turn, we talked about our roles with Intel. We put the word out about the Emerging Compute Model Forum. Many of the people are interested in looking around the site.

 

 

 

 

 

 

All in all the trip was great...and a great start of my internship!

 

 

Given the new exciting capabilities in Intel vPro technology around hardware assisted manageability and security, our IT customers have mentioned that this new technology makes them feel much more powerful - like a superhero! See the video below to see what superhero Intel vPro technology made them feel like.

 

 

 

To see more videos from MMS 2008, go to http://www.intel.com/go/mms/

If you have not read Part 1 in this article series, please refer to it as this is a continuation of the story begun there:

 

http://juice.altiris.com/article/4367/altiris-and-intel-vpro-use-cases-part-1-the-setup

 

 

 

 

 

 

Antivirus is a must for any IT infrastructure. Without it productivity is quickly reduced as viruses run rampant in the environment. Keeping Antivirus installed and up to date is vital to ensure continuity of business services. In Part 2 the IT team for Mighty Modern Marketing is put up to the challenge of protecting their network from viral attacks. Using Symantec End Point Protection, Altiris and the Intel vPro technology, they work to ensure that the viral attack and subsequent virus attempts fall ineffective.

 

 

 

 

Mighty Modern Marketing HQ - Boston, Massachusetts

The commuter rail stretched out across the Charles River, but Jessica Langley didn't notice. Her eyes remained fixed upon the screen of her smartphone, scrolling through the emails that continued to pour in. The subject lines all contained the same word. Her shoulders hunched, feeling like a tremendous weight settled on them. She closed her eyes briefly, rubbing at them with her left hand, the PDA held forlornly in the right.

 

When she opened her eyes the word jumped up at her.

 

 

Virus.

 

 

This wasn't the first time this had happened at Mighty Modern Marketing. Viruses routinely showed up as email links or attachments, and it didn't matter how often she or Tevita sent out stern emails reminding people to leave email attachments and links alone unless they were expecting them. People continued to click that link to see the latest movie trailer, or to run the fun and exciting application their aunt or long-lost friend mysteriously sent them from out of the blue.

 

 

This time was worse. She'd painted a large red X on her by pushing the Intel vPro technology, and now it seemed everyone stared at her when anything ill befell the network.

 

 

She jumped to her feet the moment the train stopped, snatching up her purse and bolting for the nearest door. As she ran down the platform towards the exit of North Station, others gave her curious looks. She smiled briefly. Normally people ran towards the train to avoid missing it. She often saw them frantically running in high-heels or other dress shoes towards a departing train when the work day was over. Who wanted to run into work?

 

 

As she staggered into the main lobby at work, glad for the cool air that greeted her, she vowed to start exercising. She hurried through the building.

 

 

"I'm glad you're here early," Tevita said in his deep voice as she fell into her chair. "We're in trouble."

 

 

"I noticed," she said in-between deep breaths. "What's the situation?"

 

 

"I'm not sure, but somehow a virus was planted on a new system as it came online. It appears deliberate."

 

 

"But... we have Symantec End Point Protection (SEP). It should keep everything out..."

 

 

Tevita smiled, though his eyes shifted to his own monitor, his shoulders shrugging uncomfortably. "Yes... about that. You see, the base image hasn't been updated yet to include that..."

 

 

Jessica stared at him.

 

 

He waved a hand at her. "I know, no need to look at me like that. That's what I've been doing; recreating the image so it's there from the get-go."

 

 

She tried not to groan. "So how widespread is it?"

 

 

He laughed, though no humor made it into his tones. "All over the place. They used a vulnerability in one of Bobby's applets to spread it. Of course the first thing it did was disable the antivirus. If SEP had been installed it has protection against... Anyway, those systems without SEP are all hit."

 

 

Tevita's eyes glanced up, and widened. Jessica whirled to see Bobby walking up, his hands shoved in his jean pockets. He stared at the floor, his mouth moving as if he counted his steps.

 

 

"Bobby?" she inquired.

 

 

He looked up, looking like a boy lost out in the desert.

 

 

"It got through my firewall!" he exclaimed, extracting his hands so he could ball his fingers into fists. "It shouldn't have been able to do that. I can't even use IM."

 

 

Tevita gestured to an empty chair. "Have a seat."

 

 

Bobby slumped into the chair. "Whoever sent us this thing knew what they were doing," he said with a scowl. "The cursed thing used UNC to move about the network. Only someone with intimate knowledge of our network could do that. It has to be New Nifty Networks!"

 

 

"Do you really think...?" Tevita began.

 

 

"Bobby," Jessica said quickly. "Have you fixed the vulnerability?"

 

 

"How can I?" he lamented. "It jumped from computer to computer, and with mine infected I quickly turned it off. I need your to help me get that virus off so I can patch the applet."

 

 

Tevita smiled. "You actually walked over here."

 

 

Bobby looked up, his frown deepening. "Yeah? So?"

 

 

"It's unprecedented... You usually stay in your cave, even during power outages. Does it make you nervous to enter the world of real people?"

 

 

A flush bloomed on Bobby's sunken cheeks. "Not everyone's as social as you."

 

 

"You should stop by more often so..."

 

 

"So you can ridicule me?" he retorted.

 

 

"Guys," Jessica said, rolling her eyes. "Focus here. Bobby, do you have one of the new vPro systems?"

 

 

"Yes, of course," he responded, "I always get the latest hardware from procurement."

 

 

"Hey, why don't I see any of it?" Tevita blurted.

 

 

Jessica ignored him. "Good," she responded to Bobby as she turned back to her computer. She launched the Altiris Console. "If you have one, it should already be provisioned. Let's check the All Provisioned Computers collection... is this yours?"

 

 

"No, my computer is named Superman."

 

 

Tevita laughed, and Bobby managed to turn an even more alarming shade of red. Jessica kept her expression passive despite the twitch in her lips from a potential laugh. The computer name Superman showed in the list, and she double-clicked on it. She clicked on the Real-Time tab, entered her credentials, and loaded the Hardware Management page under the Real-Time System Manager, Administrative Tasks folders.

 

 

"I have a boot ISO of Symantec's Antivirus scan," Jessica explained as the hardware management page loaded. "I'll just turn on your machine but use IDE Redirect (IDER) to load the antivirus disk. We'll wipe the virus, and turn the system off."

 

 

"That's great," Bobby said as he shrugged his bony shoulders," except the minute you bring it back up the virus will propagate again."

 

 

Jessica smiled. "Not if I invoke a Network Filter."

 

 

"What's that?" Tevita asked, as if on cue.

 

 

"Tevita, we've covered this. It's the Intel System Defense. You know, block all traffic except to certain ports and IP Addresses. If you want to read up on it I'll email you the URL. (http://69.93.2.147/article/2645/hold-mf-utilizing-intel-vpro-amt-technology-task-server-part-5-system-defense-tasks)."

 

 

"System Defense!" Bobby exclaimed. "I read up on that technology. I created a script that provides a text interface where you can specify which ports you want to allow. I call the API's provided by Intel's SDK. It's great stuff."

 

 

"RTSM and Task Server already have it configured to only use communication to them," Jessica said, trying not to smile.

 

 

"Oh." Bobby cleared his throat as he pushed himself up onto his feet. "That sounds good. Do you need me to stick around...?"

 

 

She gave him a grin. "Just for a minute while I do this."

 

 

Bobby sat back down, but leaned forward, staring at her monitor. Tevita slid over, looking on with interest. She said a quick silent prayer that it would all work like she theorized it would.

 

 

She choose the ‘Power on' radial option, and under the Redirection options checked the ‘Perform boot from' checkbox. She also checked the ‘Display task progress and remotely control computer' option. Under the device drop down she left it at CD image, and then click ‘browse' and located the Symantec ISO. She lastly clicked ‘Run Task Now'.

 

 

A new window popped up, showing the computer boot. It loaded the CD and a textual menu showed up giving her scan options. She initiated the scan.

 

 

"Looks like it's working," Tevita said.

 

 

Bobby nodded. "I had my doubts since I've been unable to ever get Wake-On-LAN to work across my router..."

 

 

"Wake-On-LAN packets don't get by any of our switches are routers," the Tongan responded. "I believe you're the one who recommended the network security scheme we use."

 

 

"I know, but Altiris did have an Altiris Agent mechanism to try and deal with it, but I couldn't get it to work in my environment. This vPro stuff sure made that easy. I didn't have to touch the router."

 

 

"That's the point," Jessica said with just a hint of exasperation in her voice. "Were both of you sleeping when I gave my presentation on vPro last month?"

 

 

Tevita smiled, tugging at his collar. "Have I ever mentioned I don't like PowerPoint?"

 

 

"Only twice daily. But I showed demos... oh who am I kidding? That's the last time I supply lunch before a presentation."

 

 

The two men exchanged glances with sheepish grins, and then focused back on the screen. She looked back to the scan. It finished quickly, showing the virus as detected and quarantined. She closed the remote window and clicked on the Network Filtering node under Administrative Tasks in the Real-Time Console. She checked the ‘Override default solution settings' checkbox and changed the radial selection to ‘Filter network traffic other than to and from the Notification Server'. She clicked Apply. When the page finished refreshing it contained the message, "Machine was successfully moved into quarantine".

 

 

"Alright Bobby. I'll use the Power Control to boot your machine up so you can Patch your applet and install SEP. You head back and get it done ASAP. Once it's patched I'm going to mass-remediate all the vPro systems doing the same actions we just did except on a mass scale with Task Server."

 

 

Bobby jumped to his feet. "Sounds good. IM me if you need anything..."

 

 

"Except IM won't make it through the Network Filter," she responded dryly.

 

 

"Ah... yes. Well... you know where I am."

 

 

"Quick question, how long will it take you?"

 

 

"Less than an hour."

 

 

As Bobby walked away Tevita smiled hugely, some of his natural humor finally flowing back into his features. "He's a real gem."

 

 

"You should cut him some slack," she scolded.

 

 

"Bobby? I'm holding back, really I am. It's just too much of a temptation. He's classic nerd. But he is a master at what he does, so I'll be sure to keep it friendly."

 

 

"I'm reassured," she said, rolling her eyes for the third time that day. She then gave him a sly smile.

 

 

"What?" he said, his smile drooping. "You have that look."

 

 

"Regardless of blame, even though you should have updated the image weeks ago to include Symantec Endpoint Protection so I blame you for this mess, I need you to create a CD out of the Antivirus boot ISO and load SEP on a flash drive so you can manually remediate those systems without vPro."

 

 

Tevita swallowed. "Hey, we've had a pretty busy workload..."

 

 

She softened her look. "I know, sorry. Anyway... when you get to each system, yank the network cable, use the ISO to clean the virus, then load SEP, and then put the cable back in. I'd even suggest making several copies so you can do a handful at a time. And here's a printout of all non-vPro systems."

 

 

Tevita took the printout and nodded. "I'm on it."

 

 

Jessica focused back on the Altiris Console after Tevita left clutching ten copies of the ISO and SEP installer. She browsed under Manage, Jobs, Tasks and Jobs, right-clicked on Jobs, and choose ‘New Folder'. She right-clicked on the new folder and choose ‘New &gt; Task/Job'. In the resulting window she choose ‘Server Job' under the ‘Jobs' folder. The first element popped up a message from a VB script stating that an emergency procedure would fire in 60 seconds, and instructing the user to save all data. Her second task was a ‘Boot Redirection Task' that booted up a modified ISO that automatically ran the scan and took any appropriate actions against detected threats. The third task invoked the Network Filter, allowing only NS and Task Server communication capability with the system. For the fourth Task she located the SEP install Tevita had made with Altiris Software Delivery Solution and put it into a Task Server Deliver Software Task. Finally she created the fifth and sixth tasks that removed the filter and invoked a reboot to finish the process.

 

 

She saved the job and selected her own system to test it.

 

 

"Mrs. Langley," a familiar voice prompted. Normally she caught movement in the mirror mounted on her flat panel monitor when someone walked up to her, but she'd been so focused that this time she started almost violently in surprise, whirling around in her chair.

 

 

Edgar Watts stood behind her, his hands conspicuously empty of printouts. Her first impulse was to point to her screen and tell him she had a plan with vPro to take care of the virus in a timely manner.

 

 

She rose to her feet, trying to place a polite and not strained smile on her face. "Hello Mr. Watts."

 

 

"Since my computer is down, I've been using my laptop to research the impact of viruses to corporations, specifically impacts to finances."

 

 

He frowned, briefly rubbing a forefinger along his jaw. He didn't immediately continue, his vexed expression seeming to say he was seeing those numbers again and loathing what he saw.

 

 

"We're working on it," she said, trying not to sound defensive.

 

 

"I know," he responded. "I'm astounded at the amount of this company's hard-heard cash flow flowing down the drain."

 

 

"We'll have your and all vPro enabled systems up within the hour," she said, forcing that smile to remain on her face."

 

 

"One hour?" he responded, looking down at his watch as his brow drew low over his eyes, almost like a thundercloud.

 

 

She braced for some kind of outburst, feeling sour in the pit of her stomach. It seemed like her stomach wanted to remain clenched, and she couldn't relax the muscles in her shoulders. What more could she do? She often woke in the middle of the night, her sleep-clouded mind immediately whirling through all the issues she needed to address immediately. She needed to prove vPro, identify and eliminate any threat from their nefarious competitor, keep Edgar's expense-cutting knives away from her department, and still find enough time to enjoy time with her husband. Lying awake at night, trying to will herself to sleep, got old fast. Two days ago her husband had recommended quitting.

 

 

That seemed wrong. She'd never given up on anything in the past, and she didn't want to give up on this now, especially when all of Mighty Modern Marketing needed her at this critical time.

 

 

When Edgar looked back up from his watch he smiled, a rare sight that stilled her thoughts, her breath catching in her throat.

 

 

"All vPro capable systems, you say?" he asked.

 

 

"Yes sir," she responded after a moment of stunned silence.

 

 

"I came down to wish you luck, but perhaps you don't need that luck after all. Good day, Jessica."

 

 

He turned around and walked away, and she stood and stared at him. She almost chuckled, but she still felt too emotionally invested and she just might break down and tear up. She slowly sat back down, staring at the Altiris Console. With renewed vigor she tested her job, made a few tweaks to the command-line of the rollout job, and then brought up a Run Now window, selecting All Provisioned Systems. Her mouse hovered over the Run Now button.

 

 

"Come on Bobby," she whispered. The few minutes before the IM popped up declaring "Applet is patched" seemed like an eternity.

 

 

She clicked the Run Now button.

 

 

She got up and took a quick water break, grabbing a drink and throwing it down as if a shot in a drinking contest. She didn't want to return to her desk. What if it failed on most systems, especially the executive team's? What if she hadn't accounted for different hardware platforms in her job? What if?

 

 

She squared her shoulders, throwing off the ‘what if' game. She walked resolutely back to her desk and sat down, refreshing the job.

 

 

Ninety percent success rate brought a smile to her lips.

 

 

For the next few hours she used RTSM to connect to and patch those systems where the Task Server job failed for whatever reason. Most she could figure out the issue by using RTSM, aided by the article, http://69.93.2.147/article/4075/troubleshooting-altiris-manageability-toolkit-vpro-technology-part-5-real-time-console-, since RTCI was the component that executed most Task Server and RTSM commands against AMT.

 

 

Toward the end of the business day she leaned back. All vPro capable systems, a good 75% of the environment, was patched. Just as she shut down her computer Tevita showed up. His natural good humor managed to put a smile on his face. His long-sleeved dress shirt had the sleeves rolled up, his tie loose and top button of his collar undone. Sweat glistened on his forehead, remnants of computer dust bunnies streaked on his hands and forearms.

 

 

"Hi!" she said, unable to keep from smiling in amusement at him.

 

 

"Let me guess," he said, his smile twisting a little, "you've managed to patch all vPro systems."

 

 

"Yes," she responded, putting her purse back down on her desk. "How's the other systems coming?"

 

 

"I'm... uh... half done."

 

 

She nodded, picking up her phone. "Tevita, give me just a moment. Hi, Rob? I'm fine, though it looks like I'll be here a while. It's mostly under control, but we have a few more systems to fix. I know, I'm sorry. I'll see you later tonight, honey. Love you too, bye."

 

 

"What are you doing?" Tevita asked, frowning.

 

 

"We need to finish up, right?"

 

 

"Well... yes. But you don't really have to..."

 

 

"I'm thinking your wife wants to see you at least some time tonight. I'll take the third floor, you finish up the second, and the last one done has to bring donuts tomorrow."

 

 

Tevita looked relieved. "Deal. Thanks, Jessica."

 

 

Bobby walked up, a laptop case in his hands. "I'm heading out. Thanks for getting me back up so fast."

 

 

Jessica turned to him, her smile growing. "Bobby, we need your help," she said without preamble. "We have a few more systems to remediate..."

 

 

Bobby shook his head, his expression tightening. "No way, I have a Halo 3 party..."

 

 

"Bobby, you can't abandon us..."

 

 

Bobby looked down at the case in his hands. "Ah nuts! You don't know what this does to me. I'll lose my leader spot..."

 

 

"You'll make it up," Tevita said confidently. "If we get this done quickly imagine how impressed they'll be when you join late and still take the top spot."

 

 

Bobby's stricken look abated. "Yes. Yes, that would be impressive. Ok, I'll help."

 

 

Hours later Jessica left the building, running towards North Station to catch one of the late trains home, her shoulders feeling much lighter than when she'd rode in.

 

 

 

 

End Part II

Having minimized the damage of the first attack, the IT staff will continue to prepare in anticipation of more cyber attacks.

I've created three videos to cover every step required to install and configure SCCM SP1 to work with Intel AMT platforms. The videos are best viewed at 1024x768 video resolution (click the video to enlarge). Enjoy!

 

SCCM SP1 Pre-Installation video

 

 

SCCM SP1 Installation video

 

 

SCCM SP1 Configuration and Provisioning video

 

 

Here's a new ROI analysis document about the State of Indiana. They are using vPro systems for remote services and power management. If I read this right, they reduced their energy costs by an incredible 45%!!

 

Check it out:

 

ROI Analysis: Reducing 856,000 Pounds of CO2 Emissions through Remote Services and Off-Hours Power Management

Awhile back I picked up on an article around the first eco certified computers from Lenovo.   First ECO Certified Computer - Interesting Article

 

Well the machine was ordered, arrived & hooked up in the lab.

 

 

The next question is, how can we take this ECO-certified computer & match up a Power Management solution to show that we can save $$'s in the "Managed Power" space.   This is our next step in the lab.

Upon testing Intel's new AMT Reflector tool I was greeted with a cryptic error message. When attempting to connect to the server, the client failed with error code -4 (The AMT device is unprovisioned or provisioned in Enterprise Mode). But first, my setup. My test configuration consists of two Intel whitebox machines, each with Windows XP SP2 installed, AMT configured and provisioned in small-medium business mode running AMT 3.0. The entire network is isolated (no outside internet) and is administered by a DHCP server running on Windows Server 2003.

 

 

The left machine (hostname: gbit-vpro-01) is running the server application and the right machine (hostname: gbit-vpro-02) is attempting to run the client application (although both machines should be able to run either component). The right machine is provisioned in SMB mode, which is confirmed by accessing it through SyAM Provisioning Server

 

 

 

 

 

 

This is further confirmed by remoting into the client machine's BIOS:

 

 

 

 

 

 

 

 

 

 

 

 

No Luck

The listen and communication ports have been configured correctly. The server app is started, and begins listening. When I attempt to start the client application, I receive a notification:

 

 

I'm at a loss, because all other signs indicate that I am correctly provisioned in SMB mode. I tried unprovisioning and resetting to factory defaults and then setting up the ME from scratch.

 

And now it gets stranger...

When I attempt to run the reflector client on the same machine as the server (after reconfiguring the ports for localhost listening), I get some strange behavior.

 

  1. The server is run, configured, and started

  2. The client program is started. At this point, there is no response (no windows opens, no error, etc). But when the server is stopped, the same error message as before appears (and if the client was started multiple times while the server was running, the messages will stack.)

  3. Lastly, the server reports that multiple connections have been made. It records hundreds of in-packets, but 0 out-pakcets.

I've provided all the relevant information I can think of that would affect this usage situation. If anyone can think of a reason why this would not work in our specific network, please let me know. Overall, I'm interested by the potential of this tool, but disappointed by its non-functionality.

Introduction

I wanted to try something different with this article series. Since I'm an amateur author I thought I'd put that skill to use. Here's the attempt!

 

 

 

 

 

What would you do if highly skilled hackers hired by a competitor infiltrated your environment, planting information siphoning viruses? What would you do if those same hackers began systematically bringing down vital computers used by executives and other high-profile workers. What can you do? These questions are posed to the Players, a fictional group of IT professionals working for Mighty Modern Marketing. This article series will follow their trials and exploits as they face a myriad of threats and issues attempting to derail their position as leader in their particular market.

 

 

 

 

 

 

Part 1 introduces the key players in the story. All characters, events, and organizations in this story are fictitious, and any resemblance of characters, events, or organizations to real-life entities are purely coincidental.

 

 

 

 

 

 

NOTE: Part 1 primarily sets the stage for the use cases. Each subsequent part will cover functionality available through Altiris and Intel vPro technology

 

 

 

 

Mighty Modern Marketing HQ - Boston, Massachusetts

Jessica Langley used her badge to activate the door, and walked through. The warm air from the sunny streets of Boston gave way to the cool air inside the Mighty Modern Marketing main offices. She offered a greeting smile to the receptionist, who waved back, and quickly made her way past the rows of cubicles housing the Sales Support team. Most doors contained generous windows, allowing natural light and a wide view of the occupants, but the door she approached held no window, with a heavier doorknob and another badge reader set to the side. She swiped her badge and entered the IT center.

 

Right away she noticed a stooped man sitting in her chair. His thinning hair matched the sallow pallor of his skin, his gray eyes deeply lined with a perpetual frown, and he looked down at a stack of loose papers, his crooked finger tracing over the numbers thereon. He wore a brown suit from another decade, his tie plastered with paisleys.

 

 

"Hello Edgar," she greeted, trying to put a genuine smile on her face and failing, He looked up, squinting at her.

 

 

"Jessica," he said in a high-reedy voice. "I trust you have some time for me this morning?"

 

 

"Of course. You are the CFO."

 

 

"Well, yes." He shuffled through the papers. "I wanted to discuss the recent increase in your budget for asset acquirement."

 

 

"Okay," she said warily as he stood. Even standing he peered up at her. She quickly sat down in her chair to avoid the impression of her standing over him.

 

 

"I see an increase in price for each system we purchase, yet the base price for each system is the same. Care to explain?"

 

 

She nodded, swallowing. She thought he'd understood it all when she'd proposed the increase. For such a small man he exuded consternation like a hurricane, and she felt the full force of it as he stared at her, his right foot tapping as if counting up the dollars flitting away even as he stood talking with her.

 

 

"Of course. We're replacing our old equipment with new Intel vPro capable systems."

 

 

"vPro? Is that another of your cursed acronyms?"

 

 

"Yes. Well, no. I'm not sure. It does have a nice ring..."

 

 

"What is it?"

 

 

She swallowed again. She wondered if Edgar even had one small sliver of humor in his body or if he'd missed the humor allotment when born.

 

 

She cleared her throat. "vPro enables me to quickly, reliably, and remotely resolve a variety of issues. The feature set is impressive..."

 

 

"Jessica, I'm not interested in that. What I'm interested in is what value does it have for us?"

 

 

"The ROI? Sorry, I mean return on investment?"

 

 

He frowned. "I know what ROI means..."

 

 

"Of course," she responded hastily. "Potentially we can save hundreds per system by avoiding costly desk-side visits for remediation of issues, to mention one common cost-saving feature."

 

 

He nodded, but by the expression on his face she thought he meant to shake his head.

 

 

"It's all theory. I just don't see it yet on the books. The books don't lie, Jessica."

 

 

"I know, but we're just ramping up. The plan..."

 

 

"Let me be clear about this. I almost told the ordering rep to nix the vPro technology, but your explanation of the benefits stopped me, for now. You show me the value of this in the next few weeks or we're abandoning it. Understood?"

 

 

She wanted to stand up and tell him what she thought of that idea, that she knew the value was there. She also wanted to kick him in the shins, admittedly a childish impulse, but instead she simply pasted a smile on her face, nodding. When she knew she wouldn't growl at him, she added, "I understand."

 

 

Edgar nodded. "Good." He stood and turned, but stopped and added, "Have a good day," like an afterthought. He walked away, clutching his papers tightly.

 

 

She slumped when he passed out of sight, reaching up to rub at her temples where the start of a headache already tightened.

 

 

"Boy did Edgar look riled!" a deep booming voice said, a laugh hovering in his tones.

 

 

She looked up to see Tevita standing next to her. The Tongan stood like a solid oak, his broad shoulders and strong features exuding humor. She thought, not for the first time, that Edgar's allotment of humor must have been sent to Tevita instead.

 

 

"He's just crunching the numbers again," Jessica responded.

 

 

"I know. He asked me all about the vPro stuff."

 

 

She sat up straighter, her stomach clenching. "What did you tell him?"

 

 

"Don't look so worried. I actually just said it was your baby, and that he should ask you about it."

 

 

"Oh. Okay. I think... that's okay."

 

 

"You're welcome."

 

 

"He indicated he wanted to pull the technology."

 

 

"Uh-oh."

 

 

"I have a few weeks to prove myself."

 

 

Tevita smiled, though with not quite as much bluster. "Jessica, you're putting yourself out on a limb. The demos all look slick, but demos always do, right? You're sort of rocking the boat."

 

 

She frowned. "Tevita, I know you're trying to help, but I know this is what we need to do."

 

 

"No worries. Just let me know if you need any help. Oh, that reminds me. The Banner applet Bobby put together is acting wonky again. Can you let him know? It appears to be a server issue."

 

 

She nodded, and he smiled, walking over to sit down in his seat. She turned and looked at her computer. She hadn't even logged in yet and already she'd had two confrontations. She sighed as she signed in, opening her email. She read a few, but finally echoed her previous sigh and climbed to her feet. She walked over to another door that led to the server room.

 

 

The loud rumble of cooling fans filled the air until it felt like she had water in her ears. The rows of servers gleamed black, the soft glow of green indicator lights softening the severe edges. She walked past these, around a corner to another door leading to a small office tucked in the corner. She walked in, looking down at the top of Bobby Baxter's mop of unruly sandy-brown hair. His thick glasses perched on his skinny nose, his eyes squinting at the row of four LCD monitors in front of him. He sat in a plush chair like a throne, his skinny arms hovering over the mouse and keyboard.

 

 

"Bobby," she prompted.

 

 

He turned, a frown bending down his lips. "Jessica? What... Why can't you just use the Instant Messenger? Use the IM!"

 

 

"I like to stretch my legs," she retorted. "Did you know the banner app is acting up again?"

 

 

He hunched his shoulders, looking very much like a sulking child. "Yes, yes. I know. So you needn't have made the trip. I was just looking through the code."

 

 

"Well... this isn't the only reason I came over."

 

 

He minimized an application filled with source code, pushing his keyboard under his desk, the tray making a rather harsh grinding noise, and swiveled around to face her fully. He folded his arms, looking like she'd caught him pirating music.

 

 

"What?" he said warily.

 

 

"I need your recommendation for a service provider for the Intel vPro stuff. You hinted earlier that you thought you found the right one."

 

 

His petulant expression morphed quickly into a thoughtful one. "vPro, yes. I installed a few applications, like SMS, but then I noticed Altiris already has a solution for it. Since we own Altiris, I figured why not use what we already have in place? I already installed the modules into the Notification Server, so you can get at it. I'm impressed, I have to say."

 

 

Somehow having Bobby say those words caused the tension to drain out of her. "I'm glad to hear it."

 

 

"The Solution name is Out of Band Management. It has all the pieces for Provisioning vPro so you can get at the functionality."

 

 

"I appreciate it."

 

 

His frown returned. "A few simple sentences in IM would have sufficed. Did you dye your hair red?"

 

 

"What? No, I've told you before. It's natural."

 

 

"It looks nice."

 

 

He turned around, shrugging uncomfortably, and pulled out his keyboard. She opened her mouth to say goodbye when Bobby's phone rang. He squinted at the LCD, and his eyes widened.

 

 

"It's Mr. Johnson, the CEO!" he declared. He picked up the handset. "Hello? Hello, Mr. Johnson, how are you? Yes, this is he. Yes, she's here too. A meeting? Yes, of course. We'll be right there. Bye."

 

 

He turned to her as he hung up the phone, his expression slack. "An important meeting in the Executive Conference room! We better hurry."

 

 

Dim light glowed from white panels in the conference room, shadows gathered in the corners and under the large oval table. Tevita already sat at the table, his hands behind his head as he stretched out, his eyes focused on a projection screen lit against the far wall. Edgar sat next to him, an unusual deep frown that far surpassed his previous demeanor marring his features. For once the usual stack of papers he clutched lay untouched on the conference table. Bobby moved past her, sitting next to Edgar, and she finally moved in to sit next to Tevita.

 

 

"I'm glad you could all make it on such short notice," a rich, resonate voice declared. Jessica jumped, unaware that someone stood in the shadows next to the glowing projection screen. She managed to clamp down on the squeak that tried to escape her mouth.

 

 

Mr. Johnson stood like a pillar of strength and courage. Though wrapped in shadows, she couldn't miss the sleek suit, a gold watch gleaming in the light from the screen. He wore sunglasses, and she realized she'd never seen him without them. His perfectly sculpted hair framed his head perfectly, as if he stood in a business fashion magazine. He wore a light smile on his face, that asked for her trust and confidence even in the dim light of the room.

 

 

He stepped in front of the projection screen, like a hero emerging from a long battle in the night. "I have always been grateful for the work that all of you do to keep our IT infrastructure up and running. I think you can agree that most of us take you for granted, especially Edgar. Since you are strictly a cost center, he is very keen on monitoring the expenses generated by your team."

 

 

With a warm chuckle he stepped to the side back into the shadows, lifting a remote. The projection screen flickered, and a graph appeared.

 

 

"This," Mr. Johnson said in his rich voice, "represents the cost of your department. And this," he said, his voice rising dramatically, "is the additional budget afforded you at the start of the latest budget cycle."

 

 

The screen showed an increase. It wasn't dramatic, but the numbers fit. Jessica swallowed.

 

 

"This increase appeared for two reasons," he continued. "Security and continuity . It is vital that we step up on our ability to protect our infrastructure and intellectual property. To be more specific, you're probably aware that New Nifty Networks is trying to cross over into the internet marketing business, and will become our primary competition here in the Boston area. That by itself isn't significant, but the owner of Nifty is Jake Willis."

 

 

Edgar, who'd been looking at the surface of the table with an expression between anxiety and anger, perked up. "Jack Willis? You can't be serious!" he blurted.

 

 

Jessica glanced at Tevita and Bobby, but both shrugged back at her.

 

 

"I am serious," Mr. Johnson answered. "I attended Yale with him a decade ago. He got kicked out for cheating in a competition. I won't go into details, but wanted to stress that his manner of cheating was not only against school rules, but crossed the line into illegal activities. Now that he's eyeing our business, I'm afraid we may see much of the same."

 

 

She tried to swallow but found that her throat had grown dry.

 

 

Tevita raised his hand. "Mr. Johnson? What kind of illegal stuff?"

 

 

"Electronic hacking, forgery, and, believe it or not, assault in the form of intimidation."

 

 

"You're pulling our legs."

 

 

Edgar shook his head, reaching up to rub at his eyes. "No, he's not."

 

 

Jessica managed to find her tongue. "He wouldn't do those things here, would he?"

 

 

Mr. Johnson smiled, a trifle sadly. "That's too much to hope for. He's a lot more careful now, but he will resort to the same tactics. Cyber attacks, hacks, data theft, you name it, and he'll try it. Bobby, Jessica, and Tevita, you are our first line of defense. Be ready."

 

 

She wanted to say something, but the room filled with silence until the buzz of the projector pressed against her ears. Tevita wore a smile as if he expected the CEO to laugh and say "Just kidding!" Bobby looked thoughtful, his arms folded tightly against his stomach, and Jessica wouldn't be surprised to find a picture of Edgar's expression next to the dictionary entry for "Disgruntled". She rubbed her arms, trying to warm them from the unusual chill in the conference room.

 

 

"Any questions at this time?" Mr. Johnson inquired.

 

 

After the meeting Jessica hardly remembered walking back to her cube. She sat there for several minutes starting at her email inbox. She finally turned when a noise caught her attention.

 

 

Tevita stood, his muscled arms folded and an unusually thoughtful expression on his face. "I wish today was April Fools," he commented with a quick laugh.

 

 

"It's absurd."

 

 

"Not really. Most major corporations face those types of threats all the time."

 

 

"Tevita, no offense, but most hackers don't add assault to their tactics!"

 

 

"I'm not worried."

 

 

She eyed him. "Of course not. You're six-foot-nine and weight a solid two-hundred eighty pounds."

 

 

He smiled. "You're what, six foot? You're not a shrimp yourself, plus your husband knows karate, right? No? Well, I'm not worried about you. It's Bobby I'm worried about."

 

 

She shook her head viciously. "I'm not exactly muscled... What are we saying? This is ridiculous. It's the computer attacks we need to worry about. Let's get moving. I just have no idea where to start."

 

 

"What about the vPro stuff? I seem to remember a lot of security-related stuff there."

 

 

She straightened in her chair. "You're absolutely right. Bobby indicated he'd installed vPro management components into Altiris."

 

 

Tevita brought a chair over. "Altiris. Why didn't you tell me they had solutions? I might hve been more supportive of vPro."

 

 

Jessica pulled up the Altiris Console, her mind racing through the possibilities.

 

 

 

 

END Part 1

This ends Part 1. In Part 2 the first method or attack against the Mighty Modern Marketing's IT Infrastructure commences while the players scramble to defend their network and business.

As you saw in my last blog this show was on SCS 5.0 to see what’s coming in SCS' next version? SCS 5.0 is just around the corner and the vPEC team had our guests Shai Kavas and Chaim Rand join us. This version of SCS includes major usability and scalability improvements and contain some very exciting new features. Some of these cool features are results of feedbacks we got from our partners and… from YOU – our end customers. Check out this show right here!

 


Chaim Rand and Shai Kavas joined our favorite hair-colored host, Josh Hilliker...

TODAY: What’s coming in SCS next version? SCS 5.0 is just around the corner and the vPEC team has our guests Shai Kavas and Chaim Rand joining us. This version of SCS includes major usability and scalability improvements and contain some very exciting new features. Some of these cool features are results of feedbacks we got from our partners and… from YOU – our end customers. Wanna know more? Stay tuned to our show!

 

Date / Time: 6/16/2008 9:30 AM     Call-in Number: (347) 326-9831

http://www.blogtalkradio.com/openport

 

Questions, comments, or concerns? Feel free to contact me.

 

Michele, Tim & I got together to talk about Activating vPro, the tools & the wiki's that help folks. This video was an output of us getting together.

 

</object></embed>

A recent trip I took, I had the opportunity to visit the St. Agnes academy in Houston Texas.  They have been using a product by Symantec called SVS Pro to deliver a online portal to the students which integrates into the classes and seemlessly offers the books and applications needed for the students to learn in a whole new way!  I was able to get the perspective of sevearl students, a math teacher (whom I hear is one of the students favorites), as well as a great technical talk from Jason Hymes the director of Technology. 

 

 

Here is the video it runs approximatly 5 minutes. 

 

 

The url for the school is: http://www.st-agnes.org/ (if you have kids and live in that area, it looks like a great place to send your children).

Intel® AMT Reflector is a software tool designed to allow local management of Intel® AMT Mangement Engine functionality from the local operating system. Removing the need to reboot to verify and change the Intel® AMT host computer name or un-provision Intel® AMT on the computer. This functionality improves debug and factory operations in activating and building Intel® AMT based client environments. This release completes DOPD SW Engineering's original functionality plan for the tool and is therefore marked as a production level release.

 

This release has the following updates from the Beta release:

 

· Added a timestamp to Intel® AMT events in the logs generated by the client-side applications.

· Fixed the XML logfile format so that it will be properly recognized by external applications that support the XML file format.

· Fixed the issue where some commands may not succeed on the first call for some Intel(R) AMT systems.

· Fixed the "Browse" button functionality in the Intel(R) AMT Reflector Server configuration window.

· The Intel® AMT Reflector Server now logs the client FQDN for each event.

· Removed the View Log window from the Intel® AMT Reflector Client application.

· Improved the error handling of the Intel® AMT Reflector Client application.

 

Download the tool here

 

Here's a 5 minute video overview of the tool's capabilities (Click here to view video on YouTube) :

 

Check out Intel® vPro™ Technology Use Cases: Ways to use Intel vPro Technology in your environment to learn what vPro can do in your environment. This is a growing list of use case documents - I'll add to it as more become available.

Added some info to the Order an Intel® vPro™ Technology "Activation-Ready" PC or WS document. I fine-tuned the Panasonic notebook info to include the exact model number and also added Acer notebooks.

 

Anyone interested in info on a specific OEM? Please let me know.

Here's a video I created to show step by step how to provisioning Intel Active Management Technology in basic mode. Check it out!

 

**Please Note:

Basic was previously called SMB mode. Standard and Advanced were referred to as Enterprise mode. See Michele's Understanding Provisioning Models - Basic, Standard, & Advanced for explanation.

 


 

Wondering about the different types of provisioning models? A new matrix was just published that defines the three provisioning models: Basic, Standard, and Advanced.

 

This naming convention replaces the terms SMB and Enterprise modes. Why? SMB was confusing because it refers to Small-Medium Business - when in actuality, there are enterprise-sized companies that have activated in SMB/Basic mode and SMB-sized companies that have activated in Enterprise/Standard/Advanced mode.

 

Check it out:  Understanding Provisioning Models - Basic, Standard, & Advanced

Check out the recent post on Altiris Juice for Kerberos authentication to Intel vPro systems.

 

The article provides background, how-to, known issues, and future considerations.

 

http://juice.altiris.com/node/4492

New documents for Altiris were just posted - Check them out!

 

Best Practices and Troubleshooting of Intel® vPro™ Technology with the Altiris® Agent

 

Altiris use case: Remote Diagnostics and Repair

 

Altiris and Intel(R) vPro(TM) Technology over Wireless

 

More are coming soon - come back for Altiris docs on provisioning, asset tracking, and network filters.

By default, the Intel WS-MAN Translator has logging turned off.  To turn logging on, browse to "C:\Program Files\Intel Corporation\Intel WS-Management Translator\" directory and open "wstrans.exe.config" file with a text editor.  Within the wstrans.exe.config file, browse to the the system.diagnostics section.  You can change the values of the switches from "off" to "verbose".

 

 

 

 

 

&lt;system.diagnostics&gt;

 

 

&lt;switches&gt;

     &lt;add name="Intel.Wstrans" value="verbose" /&gt;
     &lt;add name="Intel.Wstrans.Eoi" value="verbose" /&gt;
     &lt;add name="Intel.Wstrans.WsMan" value="verbose" /&gt;

&lt;/switches&gt;

&lt;/system.diagnostics&gt;

 

 

 

 

 

After you make the changes, you will be required to restart the Intel WS-MAN translator service for the changes to take effect.  After which, the Intel WS-MAN Translator will report actions and errors in the "C:\Program Files\Intel Corporation\Intel WS-Management Translator\wstrans.log".

 

 

 

 

 

The wstrans.log has been formatted to allow easy readablity via Microsoft SMS Trace utility which is included in the Microsoft System Center Configuration Manager 2007 Toolkit.

 

 

 

 

 

Matt Royer

 

 

Here is a closer look at the install and configuration of the Intel WS-MAN translator for Microsoft SCCM SP1. The included video should be used as a reference only and not a replacement for the steps defined in the following documentation.

 

High Level Installation steps & reference documentation:

 

 

 

 

 

 

 

 

 

 

 

Matt Royer

Hi all, wanted to follow-up on a recent post from Josh Hilliker about Verdiem and PC power management.

 

For those of you who don't know us, I'll give you some background on what we do. We have a solution called SURVEYOR (just released v5.0 last month!), which essentially helps companies to save money on their energy bills through allowing IT departments to centrally manage their networked PCs and move them into lower power states when they are not in use. As an additional benefit, companies who use SURVEYOR are able to indirectly reduce the amount of CO2 they produce.

 

We do this through a client-server software model which allows the clients to report time and state data back to the server. In turn, the software will create power profiles for groups of users and then set power policies around those particular groups' usage patterns. For example, User Group A generally works at their machines from 8am to 5pm Monday-Friday. Your IT department could set a policy to have that group of machines go into sleep mode at 5:30 every evening Monday-Friday and wake up again at 7:30 in the morning Monday-Friday. We've also got the tools in place to enable Wake-on-LAN, so your IT department will be able to wake machines on demand and install the necessary patches and updates.

 

 

If you're interested in learning more about us, you can always visit blocked::[http://www.verdiem.com/] or go to blocked::[http://www.greenmypcs.com/] to get a free green IT kit. You should also check out our Power Alley Blog.

 

 

I know this is a lot of information to digest, so I definitely encourage you to respond with any questions/comments you might have.

 

 

We're excited to be a part of this community, and look forward to talking with you!

 

 

If you did..  download here.. 

 

http://www.blogtalkradio.com/openport/2008/06/02/Intel-vPro-Expert-Center-Topic-TBD

 

We talked about the Activation zone and our favorite tools..   Check it out..  don't forget you can join the live call and ask questions in chat. 

 

Also Jeff gave me a challenge..   Build a LEGO vPro Machine..    so.. Game ON!!

The Intel WS-MAN translator is a crucial component for providing vPro legacy (less than firmware 3.2.1) support within Microsoft SCCM SP1.  The beta of the WS-MAN Translator has been released and can be downloaded from the following location:[http://softwarecommunity.intel.com/articles/eng/3840.htm]

 

 

 

 

 

The installation and configuration of the WS-MAN Translator is a fairly straight forward process and can be broken up in three key steps: Configuring ISS Certificate, WS-MAN Install & Configuration, and Enabling support for Intel WS-MAN translator within SCCM.

 

 

 

 

 

 

 

 

 

High Level Installation steps & reference documentation:

 

 

 

 

 

 

 

 

 

 

For additional information on the WS-MAN Translator, please visit the FAQ

 

 

 

 

 

 

 

Note: The Intel WS-MAN Translator is current in Beta status and not considered a released product at this time.

 

 

 

 

 

 

 

 

 

Matt Royer

 

 

Filter Blog

By date: By tag: