Category Archives: Server 2003

We Know You Don’t WannaCry

By now you likely know that WannaCry is a malicious widely distributed ransomware variant that is wreaking havoc over enterprise IT. The most important thing to know is that Microsoft has issued patches for nearly every flavor of the Windows operating system (including Windows XP) to prevent any further attacks.

Since AV (even next-gen AV) and other security tools have not been very effective at mitigating the WannaCry threat, our advice to our customers is to ensure you have a complete inventory of every Windows instance and its respective patch level. This will enable you to identify which Windows instances in your environment are still vulnerable so you could focus your energies on finding and patching them.

To help you accomplish this, we’re offering Lakeside customers several complimentary dashboards that can help you identify Windows instances that are at risk of being infected by WannaCry or other security threats:

  • Security Patch Details: We’ve developed a new kit, Patch Summary Kit, that provides details on security patches based on operating system. It also provides details for a specific patch if you know the patch’s KB or definition. The details include if the security patch was installed in a system and which patch it was. This kit provides clear and precise data to help users remain safe.
  • Risk Score: SysTrack provides a risk score in Risk Visualizer. The risk score is an uncapped integer that takes into account all potential ways a system may be vulnerable. Risk Visualizer allows you to view the risk scores of all systems in your environment to easily identify systems of concern. A higher risk score implies that your system is at greater risk of attack.

You can use the table below in conjunction with the Patch Summary kit to check whether a security patch has been applied to systems with the corresponding OS. An example of this feature is shown in a screenshot taken of the kit.

Operating System (Version Number) Security Patch KB
Windows XP KB4012598
Windows Vista KB4012598
Windows Server 2008 KB4012598
Windows 7 KB4012212
Windows Server 2008 R2 KB4012212
Windows 8 KB4012598
Windows 8.1 KB4012213
Windows Server 2012 KB4012214
Windows Server 2012 R2 KB4012213
Windows 10 (1511) KB4013198
Windows 10 (1607) KB4012606
Windows Server 2016 KB4013429

Our goal at Lakeside is to help keep our customers’ end users productive. We hope that by providing these risk management and compliance dashboards, we can help IT departments continue to improve organizational digital experience.

Microsoft Guest Blog: SysTrack and Windows Modernization Planning

Hi, I’m Divy Sharma with Microsoft Services, and I’ve been working with Lakeside Software’s SysTrack product for quite some time. SysTrack has proved to be extremely valuable for Data Center Modernization assessments and now for Windows 10 planning. Personally I’ve had the most experience helping customers understand their enterprise infrastructure and application portfolios, and assisting them with the complex process of determining what platforms and pathways forward are available to them to optimize their core infrastructure.

Legacy data center systems and workloads are a massive problem in the enterprise. Because these systems have a tendency to evolve naturally over time without centrally structured planning it can be difficult to determine some of the basic needs these systems are addressing. The key for all of the decisions necessary to migrate workloads and users is context. This requires answers to questions such as: What application connections are necessary? What resource consumption do we expect for applications? What kind of user experience do people get today? How many backend dependencies does this application require?

These questions led us to conclude that we really needed a robust way of collecting detailed, continuous operating metrics and usage details to understand how best to help our customers with their pathway forward. With numerous black box servers, unknown assets, and supporting systems distributed geographically across numerous physical locations it would be a difficult proposition to get a complete inventory, much less understand the characteristics of the existing workload and plan how to migrate it. With some of the existing tools in our portfolio we were able to get pieces of the information we needed, but what was missing was the actual activity and capacity analysis for forecasting costs and understanding the purpose of the systems. This is where SysTrack reporting filled in the gaps for us.

The addition of the Kits concept has greatly streamlined the process of gearing up for a DCM project; because the DCM content that was co-developed with Lakeside is made up of a large number of reports and dashboard content this makes reporting of the data as straightforward as the collection.

With Windows 10, Microsoft has started providing the next level of enterprise productivity, security, manageability and advanced threat detection. Solutions such as Enterprise Mobility Suite (EMS) offer leading-edge capabilities for identity management, device management, application management and provides enterprise-grade security. Additionally, new Windows 10 features such as Device Guard, Enterprise Data Protection and Microsoft Passport disrupts modern cyber-threats with revolutionary security. I have found SysTrack extremely valuable in assessing an organization’s current state of readiness for adopting these features. We have been able to get answers to questions such as – which devices are ready for Windows 10 migrations, which devices have TPM chips for using Windows 10’s advanced features, which devices are capable of supporting virtualization through Hyper-V to protect system memory and kernel-mode apps/drivers from malicious tampering, what is the device profile (desktops/laptops/tablets/touch-enabled devices/VDIs), and, what desktop/web applications are used in the enterprise, by whom, how often and what’s the performance portfolio of these workloads.

I really like the fact that SysTrack can work either as an on-premise solution or purely via Azure cloud. It can work on machines on your Active Directory Domain or on BYOD devices that contingent staff may bring in. It can easily help develop a workload’s profile – CPU loads, memory utilization, disk I/Os, network interaction with other servers – all with minimal impact to host performance. Moreover, it can help aggregate data over thousands of devices, laying a strong foundation to develop data-driven models for multiple scenarios, such as, Windows 10 deployment planning, Application Workload Assessment and Migration planning, Azure migration assessment and cost planning, etc.

For us the real mark of success is what happens after the migration is completed, and this is where the SysTrack data makes the largest difference. Previously it was difficult to really come up with a proof point to demonstrate that the user experience in the environment is quantitatively better than what end users used to get. With the comprehensive reporting in tools like Enterprise Visualizer it’s now possible to connect the starting user experience before the improvements with the steady state experience after all of the optimization and workload migration has taken place, proving success.

Really this gets to the heart of a broader key for ensuring that end users get the best possible experience: point of interaction telemetry. As IT’s role evolves it’s critical to have measures in place to track the performance of the various services that make up the EUC environment. By allowing SysTrack to track things like Office 365 adoption, system performance, and application consumption it’s now possible to track delivered services in a unified way. This makes Lakeside an ideal partner as Microsoft grows its incredible portfolio of traditional and cloud based services. Windows 10 in many ways is the start of a transformation for Microsoft’s offerings, and I think the more service driven direction for IT in the enterprise will benefit from it and Azure offerings tremendously.

Keep an eye out for more posts on Windows modernization and how Microsoft can help deliver the best possible end user experience to your environment.

Microsoft Kits – Windows 10 Optimization and Data Center Modernization

With the launch of Windows 10 imminent, and the end of support for Windows Server 2003 official, we’ve launched two SysTrack Kits targeted at helping enterprise environments characterize and modernize their Windows desktops and servers. They each focus on different aspects of executing those transformational exercises as well as steady state monitoring for the EUC estate and data center.

Making Windows 10 a Painless Transition

First, the Windows 10 Kit comes along with the official launch of the Windows 10 Migration MarketPlace report. This provides two ways to explore your environment’s readiness for a move to a more modern EUC OS experience, and also has some interesting stats on current usage. It starts with an analysis of key information like your system fits with the core upgrade requirements and the current age of your existing hardware.

Windows 10 ReadinessThe Windows 10 Readiness Summary provides an overview of how many systems in the environment are ready for a migration at the moment.

Taking advantage of a targeted hardware refresh to avoid unnecessary over-expenditure can make the investment to update the enterprise computing environment much lower. It can also help expose where existing users may have difficulty with older hardware, helping to make the case that updating their devices can have a concrete impact and help increase their productivity.

Planning the EUC Software Portfolio

An OS migration also provides a great opportunity to rationalize the software portfolio in use in the environment. This begins by first taking a full inventory of all of the applications distributed throughout the environment, something that’s easily done in existing SysTrack tools. The next step then requires analysis of user interaction and demand for that software, and this is where Kits can provide easier ways of visualizing that data. In a previous post on motivations and strategy for Windows 10 Migrations the concept of using user interaction as a method of prioritizing what software is most key for the enterprise was discussed. The Windows 10 Optimization kit includes an application focus time planning dashboard that helps find the key applications in use enterprise wide.

Application Focus PlanningThe Application Focus Planning dashboard shows how many users are fully covered for their core application needs with a small set of key applications.

The key is finding packages that have the maximum impact, basically items that constitute the core of what most people use on a day-to-day basis. By finding the shortlist of key applications it’s possible to uncover users that can be easy and early migration targets, those “fully handled” with the core portfolio. Try the Application Focus Planning dashboard out for an example of how to use this day.

Understanding the Data Center

The second Windows modernization kit is based around understanding activity, configuration, and system demands in the data center. This includes things like enabled features and roles, SQL instance provisioning, IIS inventory, and even application connectivity requirements.

Application ConnectionsA summary of the application connections in the environment. 

There’s also a set of pre-configured inventory reports targeted at providing a thorough overview of all of the important characteristics of legacy systems.

DCM Reporting ContentThe DCM Kit contains a complete set of exportable inventory and provisioning reports.

Operational Management

Of course, after the migration it’s essential to accomplish two key goals: demonstrating the success of the modernization by showing the end user experience improvements and maintaining the service quality of the environment. With both kits there are several operational tracking dashboards that are intended to provide the insight to track user impacting problems.

Alarm BreakoutThis dashboard provides a live refreshing breakout of the active alarms on each system in a selected group.

Keep watching for more Kits updates. We’ve got even more coming soon, and we’ll keep you posted here.