Updated: March 15,1996

Go To TechNet Home Page

Architectural Design and Implementation Plan: MS Systems Management Server-Contents

Introduction
Project Vision and Scope
SMS Test Plan
Architecture/Design Recommendation
Pilot Plan
For More Information
Conclusion
Appendix A: Overview of Microsoft SMS

Introduction

Historically, managing distributed desktop microcomputers in an enterprise has been labor-intensive, time consuming, and expensive in large organizations. Administrators based procurement and upgrade decisions on unreliable inventory information (often gathered manually), helpdesk personnel visited users to resolve problems, and new/upgraded software was distributed in labor-intensive ways that often disrupted end user activities.

By centralizing and automating hardware/software inventory, software distribution, helpdesk support, and access to networked applications, a solution combining Microsoft Windows NT Server (NTS) and Microsoft Systems Management Server (SMS), enables more efficient performance of these operations and enhances the business processes that rely on them.

An SMS solution increases efficiency because:

• Management has specific configuration information on which to base decisions.
• Help desk personnel have specific user configuration information for troubleshooting purposes, and can use it to diagnose and solve problems remotely.
• Software distribution can be automated from a central location.

Automating reduces expenses for large IT organizations in several areas:

• Automated hardware/software inventory collection and management is faster, cheaper, and more accurate, saving time and money, and making possible more precise business decisions.
• Automated and centralized helpdesk support reduces required levels of helpdesk staffing, freeing resources for other work. The "productivity-per-hour" of this smaller helpdesk staff is increased because technicians:
  • Do not have to visit a workstation except to solve hardware failure problems
  • Can easily obtain and update full profiles of each user's configuration
  • Have access to state-of-the-art remote troubleshooting tools
• Automated software distribution drastically reduces installation and configuration costs over manual methods and provides greater control of software assets.

Note

Although this document focuses on developing an SMS, NTS, and Windows NT network solution, it contains important SMS implementation information applicable for any network configuration. For general information on SMS, see Appendix A. For information on deploying SMS on other vendor's networks, please refer to the Systems Management Server Administrator's Guide available as part of your SMS documentation.

Document Contents

Project Vision and Scope

Standardization

SMS helps automate and centralize many support/maintenance functions. Standardization on software across the enterprise should be an integral part of any SMS deployment, because it reduces helpdesk support costs and employee training costs, therefore providing key benefits to the organization and allowing for easier maintenance of the new SMS system. For instance, standardization on Microsoft Windows NT Server helps centralize network administration. Standardization on Microsoft Office Professional reduces helpdesk support requirements while increasing productivity. The enterprise should be standardized on one network operating system, one messaging product, one desktop product suite, one database package, and one client operating system. If enterprise-wide standardization is not an option in your case, see the general guidelines for software distribution in a non standardized later in this document.

Sample default client/server configuration

Client	Operating System: Windows NT Workstation Product suite: Microsoft Office Messaging: Lotus cc:Mail Number of clients: 24,000
Server	Operating System: Windows NT Server Network: Windows NT Network Systems Management Server Corporate database standard: Oracle

Project Objective

Design and implement an enterprise Systems Management Server solution that:

• Reduces IT operating costs significantly
• Increases end user support effectiveness and quality
• Reduces decision making time
• Increases decision making effectiveness

To accomplish these goals, the solution should:

• Automate inventory control of all microcomputer hardware/software.
• Centralize enterprise-wide helpdesk facilities and troubleshooting tools to decrease the support burden.
• Centralize and automate enterprise-wide software distribution to decrease support and maintenance burdens.
• Centralize enterprise-wide management of access to network-resident applications.
• Centralize SMS system management.

Goals

Project success is measured by how much the solution:

• Reduces IT operating costs
• Enhances support/maintenance, making support personnel and end users more productive
• Enhances IT and business unit decision making processes by providing accurate inventory reporting
• Reduces the burden of software installation/configuration management

Milestones

Key milestones of an SMS project are:

• Plan the project--business needs assessment, functional requirements, required resources, team roles, task list timeline, etc.
• Develop and document technical test plan
• Perform testing and document results
• Develop and document architectural design
• Develop and document operational guidelines
• Develop and document pilot plan
• Execute the pilot plan
• Develop and document rollout plan
• Execute the rollout

The SMS Project Team

Project team size can be expected to vary with the size of the project. In general, the team should consist of:

• Project Manager--Responsible for garnering support and supervising the entire project.
• Program Coordinator--Responsible for technical issues.
• Logistics Coordinator--Responsible for hardware requirements, equipment orders, LAN/WAN utilization requirements.
• Design and Development Coordinator--Responsible for the design and configuration of the implementation.
• User Education Coordinator--Responsible for help desk design, training issues, and documentation.
• Testing and Quality Assurance Coordinator--Responsible for writing test plans, initial test implementation monitoring, testing, problem escalation and resolution.

Size and scope of the implementation determine staffing. In small projects, one person may fill more than one of these roles; in large projects, several people may share a role. You can also hire outside consultants to perform many of the roles mentioned above, but it is essential that those consultants be well educated on the internal network architecture.

Assumptions and Constraints

Throughout this paper, at key points in the process, assumptions are listed and the implications of those assumptions (sometimes representing constraints) are listed below them.

Key Assumptions

Throughout a project such as this, the team must understand and accept basic assumptions:

• Design the optimal SMS system. By working without regard to actual or potential limitations such as resources, network bandwidth, etc., the team can build the best solution, then accommodate it to cost, time, resources, and real-world issues such as slow links to smaller sites.
• Build only corporate standards into the SMS design. If necessary, standardize network and client operating systems prior to SMS implementation.
• SMS is a batch-oriented system. Except for real-time helpdesk troubleshooting tools, system-wide activities may take several minutes or hours to be propagated to all servers. However, SMS administrators can manually initiate most SMS activities.
• Determine link speeds between large sites and ensure that the chosen speed is appropriate.

Constraints

Constraints arise from real-world factors such as resources, budget, schedule, and internal organization. It is extremely important to define constraints and any open issues that may arise early in the process because of them. For instance, if one of your IT network architecture experts is expected to become unavailable soon due to other projects, make sure you work this time constraint into the project plan.

Document Contents

SMS Test Plan

This section defines testing stages and identifies key features, functions, and configurations of SMS that require testing in the corporate environment. Test results help planners make design decisions later in the project. A sample testing/validation outline at the end of this section shows the sequences in each test stage.

Preparing to Test

Note

Read the SMS Administrator's Guide and its appendices before you test.

Thorough, iterative testing helps ensure successful implementation. Test results may suggest necessary or desirable changes in architecture or server configurations. Optimal function and performance can be achieved only after testing, analysis, and reconfiguration are completed within each unique computing enterprise. Because of the many variables involved, testing timeframes are difficult to estimate, a factor which must be taken into account when planning.

The section below lists five test plan stages; it is followed by a section that outlines the testing plan. For technical details, see SMS documentation, the SMS software development kit, Microsoft TechNet, SMS training materials, Windows NT documentation, the Windows NT Resource Kit, and SQL Server documentation.

Accurate test results are critical in configuring SMS in a given environment: conduct tests in a controlled, well documented manner and re-run any that yield questionable results. Run tests only on machines that:

• Have no production responsibilities
• Can be wiped clean and reconfigured at any time during testing
• Meet minimum configuration requirements for their roles in the SMS System
• Are on their operating system's hardware compatibility list

Test Plan Stages

Testing must collect accurate results (for a specific corporate computing environment) which are used to develop an architecture and implementation that meet requirements and satisfy initial assumptions.

There are five stages to SMS Testing:

Stage 1

This stage tests basic SMS system functionality in a single-server, dual-client laboratory environment. It includes:

• Installing and configuring NTS, SQL Server, and SMS as needed (site planning, hardware compatibility, administrative account management, installation, configuring, tuning, etc.).
• Configuring and installing clients (automated through SMS and network logon scripts)
• Collecting general inventory
• Tracking inventory history
• Collecting files
• Creating and distributing packages
• Scheduling and executing jobs
• Distributing software
• Controlling program groups
• Checking out help desk facilities
• Creating and running SMS queries
• Establishing SMS machine groups
• Event timing for all processes being tested
• Running SMS Administrator from a Windows NT Workstation
• Extending the default User Information MIF

Stage 2

Stage 2 tests basic functionality in a multi-tier configuration consisting of a central site server, a second-level primary site server, and a third-level secondary site server with two Windows NT clients. It includes:

1. Multi-site configuration (configuring and installing additional servers, adding sub-sites to the central site, establishing appropriate parent-child relationships and interactions between each site, etc.)
2. Basic functionality testing (using multi-tier) as defined in Stage 1
3. Administering multiple sites from the central site server
4. Policy and procedure development and testing (see the Policy/Procedure section below)
5. Microsoft Office or other product suite software distribution to all sites
6. Event timing for all processes being tested
7. Network load testing
8. Testing on a secondary site server that also houses file, print and infrastructure services

Stage 3

This conducts tests at all corporate network link speeds, as determined by corporate network topography research.

Stage 4

This tests migration to the new SMS system, performing all testing defined in Stage 2 in a mixed environment as necessary (Novell, LAN Server, Pathworks, etc.).

Stage 5

This final stage tests the pilot system with a live user base.

Test Plan Outline

Note

Use the following outline as a reference when designing your own testing plan, but keep in mind that needs specific to your environment, even if not discussed here, will need to be included. Also remember that the time required to perform these tests is extremely difficult to estimate.

I. Planning the test environment

1. Plan test site configurations
   1. Naming standards for test environment
      1. NT Server machine names
      2. NT Server domains (establish appropriate trust relationships)
      3. NT Server Logon IDs: users, groups, administrators
      4. SQL administrative accounts, device names, database names
      5. SMS site codes, site names, server names, domains, administrative accounts
   2. Understand network infrastructure
      1. Network topology map
      2. Link speeds between locations
      3. Node distribution (number of users per location)
      4. Existing network traffic loads (peak hours, off hours, available bandwidth, etc.)
      5. Network Operating Systems
      6. Client types (MS-DOS, Windows NT, OS/2, etc.)
   3. Site hierarchy
      1. Simulate central, primary, and secondary sites as needed
      2. Plan location of SQL Servers
2. Hardware requirements
   1. Ensure minimum recommended configurations are met
   2. Ensure components are on the appropriate Microsoft hardware compatibility list
3. Software requirement: ensure client operating system is a supported version
4. Test Lab configuration:
   1. Servers: Configure the Test Lab with a minimum of five SMS servers (one central site, two primary site children of the central site, one primary site child of a second-level primary site, and one secondary site child to a second-level primary site). You can also test child sites for the third-tier primary site. Servers should have at least the required minimum hardware, and all components should be on the SMS hardware compatibility list.
   2. Clients: Configure the Test Lab with at least two clients (per operating system) that can be reconfigured and moved between sites as needed for testing. Simulate various client populations. Ensure that each client is running a supported operating system.
   3. Network: Configure the Test Lab so that testers can change line speeds between sites to simulate real-world configuration (56KB, T1, T3, RAS, etc.). Run each test suite over various line speeds as appropriate.

II. Documenting the tests

1. Record all default settings
   1. Client settings (system files, helpdesk options, etc.)
   2. Server settings (system settings, event polling intervals, etc.)
2. Document test results with default settings
3. Before re-testing, document any system configuration changes you make: they may adversely affect other results. Try to maintain an "experimental control" with default settings that can be tested against the newly configured machine(s). To understand more about effects of configuration changes, see the SMS SDK, Microsoft TechNet, Windows NT Resource Kit, and the SMS, SQL Server and Windows NT documentation.

III. Server Installation: Follow the instructions in the SMS Administrator's Guide to perform this installation. Be sure to record all server settings (Site Code, Site Name, SQL Server name, SMS database name, SQL and SMSAdmin accounts and passwords, etc.).

1. Hardware compatibility testing
   1. CPUs
   2. Network cards
   3. Buses (ISA, EISA, MCA, SCSI, etc.)
   4. Disk subsystems
   5. Memory
   6. Video
   7. BIOS
   8. Cache
   9. Keyboards
   10. Printers
2. Windows NTS installation: Follow the instructions in the Windows NT Administrator's Guide to perform this installation. Record all server settings (for example, server name).
   1. Disk space and RAM requirements
   2. Time to install
   3. Information required during installation
   4. Configuration (naming, domains, TCP/IP addressing, etc.)
   5. Network redirection to Novell, LAN Server, Banyan, etc.
   6. Confirm proper installation (see NTS documentation)
   7. Administrative settings (in the event log, overwrite events as needed)
   8. Performance tuning (see the Windows NT Resource Kit)
   9. Integration with other NT servers (account validation, file/print, etc.)
3. SQL Server installation: Follow the instructions in the SQL Server Administrator's Guide to perform this installation. Record all server settings (for example, server name).
   1. Disk space and RAM requirements
   2. Time to install
   3. Information required during installation
   4. Configuration (naming, caching, SQL devices, etc.)
   5. Administrative settings
   6. Confirm proper installation (see SQL Server documentation)
   7. Performance tuning (see SQL Server performance tuning white paper)
   8. Integration with other SQL servers
   9. SMS/SQL configuration (see SMS documentation)
      1. SQL Admin account for SMSAdmin
      2. SQL devices (SMS database, Transaction Logs)
      3. Configure TEMPDB size
      4. Set number of SQL connections
      5. Configure maximum user connections
      6. Configure memory option
      7. Configure open objects option
      8. Set time
4. SMS Server installation (primary sites): Follow the instructions in the SMS Administrator's Guide to perform this installation. Record all server settings. Note that this testing assumes each server is configured manually (SMS is not used to automatically set up remote servers). Enable tracing as needed.
   1. Disk space and RAM requirements
   2. Time to install
   3. Information required during installation
   4. Configuration (site configuration, naming, etc.)
   5. Administrative settings
   6. Performance tuning
   7. Integration with other SMS servers
5. Confirm proper SMS Server software installation
   1. Check directory structure and files installed
   2. Ensure that all SMS Services are running
      1. SMS Site Hierarchy Manager
      2. SMS Site Configuration Manager
      3. SMS Executive
      4. SMS Inventory Agent for Windows NT
      5. SMS Package Command Manager for Windows NT
      6. Start Network Monitor service (optional)
   3. Check Windows NT Event Viewer for SMS installation errors
   4. Check Windows NT Registry settings
      1. Polling intervals:
         (1)
         (2)
         (3)
         (4)

6. Configuring the Site
   1. Automatically configure workstations?
   2. Automatically detect all logon servers?
   3. Configure inventory collection

IV. Follow the instructions in the SMS Administrator's Guide to perform this installation. Record all client settings.

1. Hardware requirements for each client type (Windows, MAC, OS/2, etc.). Ensure minimum recommended configurations are met and that all components are on the SMS Hardware Compatibility List (CPUs, network cards, buses, video, cache, memory, etc.).
2. Software requirements. Ensure client operating system is supported.
3. Synchronize time with site servers
4. SMS client software installation
   1. Disk space and RAM requirements
   2. Time to install
   3. Information required during installation
5. Confirm proper SMS client software installation
   1. Check directory structure and files installed
   2. Check system file modifications
      1. SYSTEM.INI
         (1) Device=\windows\vuser.386
         (2) TimerCriticalSection=
         (3) NetHeapSize=
      2. WIN.INI
         (1) Load=SMSRUNx.EXE
      3. AUTOEXEC.BAT
         (1) CLIENT.BAT
      4. SMS.INI
         (1) SMS ID

         (2) Domain settings

         (3) Logon server designation

         (4) Help desk options

         (5) Package Command Manager options

         1. CLIENT.BAT

         2. SMSRUNx.INI

   3. Check for network logon script modifications

   4. Check program group configured by SMSRUNxx.EXE

   5. MIF information

   6. Remote control settings

   7. Package Command Manager settings

   Check initial inventory reporting

V. Inventory Collection

1. Test inventory collection
   1. Ensure all Inventory agents/services are running on server
   2. Check/Configure SMSLS.BAT
   3. Check automatic collection initiated by network logon scripts
   4. Check manual collection initiated by SMSLS.BAT (INVDOS.EXE, etc.)
   5. Check client settings in SMSLS.INI (domain, workgroup, etc.)
   6. Check logging of configuration changes to SMS database
      1. Inventory Processor (.RAW files, Delta-MIFs)
      2. Site Reporter
      3. Sender
      4. Despooler
      5. Inventory Data Loader
      6. Alerter
   7. Check/modify timing of each inventory reporting phase
      1. Hardware scan
      2. Software scan
      3. Reporting to first-level primary server
      4. Reporting to higher-level primary servers
      5. Reporting to central site server
      6. Time required for inventory changes to reach central site server from all sub-sites
   8. Test file collection
   9. Custom inventory collection
   10. Change workstation configuration and re-inventory (check inventory history)
   11. Modify Windows NT Registry settings for SMS event timing as appropriate

VI. Test General SMS Administrative Functions

1. Navigating sites and viewing client inventories
2. Creating and running SMS queries
3. Creating and using machine groups
4. Creating and using program groups
5. Creating and using packages
6. Creating and sending jobs
7. Creating actions based on events
8. Creating and using alerts
9. Creating and using site groups
10. Setting site properties
    1. Understand default settings for:
       1. Services
       2. Inventory
       3. Parent site
       4. Domains
       5. Servers
       6. Account
       7. Outboxes
       8. Addresses
       9. Senders
       10. Clients
    2. Change site Properties as needed: set proposed properties and test changes

VII. Help desk Functions

1. Ensure all help desk agents/services are running
2. Server components
   1. Network Monitor
   2. Client must exist in inventory
3. Client components
   1. USERTSR.EXE or USERIPX.EXE
   2. WUSER.EXE (Remote Control Agent)
   3. Enable help desk settings at client
   4. Check network transport protocols (LANA numbers)
   5. Selectively enable helpdesk options if you want to test any level of restricted help desk functionality (for example: No Reboot)
4. Viewing inventory
   1. Make sure machines are in appropriates sites in the hierarchy
   2. Validate current client configuration information
   3. Check collected configuration files
5. Remote diagnostics
   1. Remote real-time viewing (CMOS, Windows resources, etc.)
   2. Remote control
   3. Chat
   4. File transfer
   5. Remote execution
   6. Remote reboot
6. Remote Windows NT administration
   1. User Manager for Domains
   2. Server Manager
   3. Performance Monitor
   4. Event Viewer
7. Network monitor
8. Configuration tuning
9. Clean and rebuild process

VIII. Software Distribution: This testing should use the default load set for primary testing, and any other anticipated software for secondary testing.

1. Packaging software for distribution
   1. Creating the package
      1. Mandatory
      2. Expire after mm/dd/yy
      3. Only if not sent before
      4. Send even if sent before
   2. Package compression
      1. Time to compress specified applications
      2. Size of compressed applications
2. Creating and scheduling jobs
   1. Setting up machine groups for each job target
   2. Enumerating distribution servers for each job
   3. Sending packages to distribution servers
      1. Size of packages being distributed (source files, scripts, MST runtimes if needed, etc.)
      2. Timing of distribution intervals
      3. Time to pass a specific package to a distribution server
3. Custom application script testing
4. Installing software from client Package Command Manager
   1. Client polling interval settings
   2. Executing installation

IX. Program Group Control

1. Creating standard program groups for network-resident applications
2. Creating machine group targets for specific program groups
3. Using common program groups from client

X. Network Load Testing

1. Bytes per client reported for default hw/sw inventory
   1. Reported to first-level primary server
   2. Reported (per site) all the way through to central site server and broken down by site population (small, small-mid, medium, mid-large, large)
2. Bytes reported for custom inventory items
3. Bytes distributed for "standard" software distribution
4. Interaction between SQL and SMS (bytes, frequency)
5. Frequency of each stage of inventory reporting
   1. Polling intervals for each inventory service
   2. Time elapsed from each site tier up to the central site
6. Change line speeds and re-test ALL (56KB, T1, T3)

XI. Secondary Site Configuration and Testing

XII. Event Timing

1. Document defaults for each event
   1. Inventory--identify all events in the dataflow and their default polling intervals
   2. Package distribution--identify all events in the dataflow and their default polling intervals
   3. Program groups--identify all events in the dataflow and their default polling intervals

XIII. Modifying Site Hierarchy

1. Adding sites
2. Removing sites

XIV. Backup and Recovery

1. SMS site server backup and recovery
2. SQL server database backup and recovery

XV. Removing SMS software

1. Server software
2. Client software

XVI. Running SMS Administrator from Windows NT Workstation

1. Installing SMS Administrator
2. Using SMS Administrator from a Windows NT Workstation

XVII. Integration with IBM Netview and PCCCA

XVIII. Policy/Procedure Testing

1. Installation procedures for technicians
   1. Installing a client
   2. Ensuring successful client installation
2. Help desk operator problem resolution procedures
3. Inventory collection
   1. Identify what components to inventory (software, files to collect, etc.)
   2. Set frequency of inventory collection (hardware at every logon, software once per week, etc.)
4. Package distribution policies
   1. Staging rollout to large numbers of users
   2. Scheduling jobs according network link speed and bandwidth utilization
5. Disaster recovery procedures
   1. Recovering servers
   2. Recovering databases

XIX. Integration with other network operating systems

1. Using other network operating systems as distribution servers
   1. Novell NetWare (v3.x and v4.x)
   2. IBM LAN Server (v3.x)
   3. LAN Manager (v2.x)
   4. Banyan Vines (v4.x)
2. Inventorying other NOS servers

XX. Centrally upgrading SMS components

1. Server components
   1. Site servers
   2. Helper servers
   3. Distribution servers
   4. Client components

Document Contents

Architecture/Design Recommendation

This section provides a sample architecture and design recommendation for Microsoft Systems Management Server. More specific recommendations can be based on understanding of business requirements and derived through extensive testing.

Your environment may be vastly different from the enterprise used as an example here, but reading the following sections can help you better understand the importance of a well defined hierarchy to any SMS deployment, and may provide you with valuable "tips" on defining your own hierarchy.

Recommendations are included for:

• SMS site hierarchy
• Network configuration requirements for SMS clients and servers
• SMS database configuration
• Inventory reporting flow
• SMS security
• SMS configuration settings (NT, SQL and SMS settings)
• Physical layout diagram (overlayed maps of the network topology, SMS server topology, client population, and database maps)
• SMS client configuration
• Recommended SMS event timing and polling intervals
• Software distribution
• Help desk support
• Program Group control
• Integration with IBM NetView
• SMS administration and maintenance
• Minimum and recommended hardware/software requirements for SMS clients and servers
• Hardware/software required per site

Each recommendation has a list of assumptions, usually stating reliances between SMS design and the network or an administrative process. Implications of the assumptions are also listed.

IT Environment

To define the corporate IT environment:

• Define the standard operating system.
• Define the standard desktop.
• Define the corporate email standard.
• Define the corporate database standard.
• Define standard desktop hardware and software.
• Define the physical network structure. This includes physical coaxial and twisted pair connections at each site, long distance T3, T1, 56KB, and asynchronous telecommunication links, routers, and hubs.
• Define the network address scheme (TCP/IP, etc.)
• Consider integration with other line-of-business applications such as SAP and PDM, and with other internal IT solutions.

Site Profiles

Sites can range from headquarters facilities to manufacturing sites to engineering facilities to small sales offices, etc. Each site tends to differ from other sites in some ways, and resemble other sites in some ways, so the best way to begin is to classify sites based on variables important to SMS, including:

• Sample site types
  • Building site--A site with a single facility. Each building site contains at least one NT resource domain. Groups of users/machines are managed from this level.
  • Campus site--A site with multiple buildings (or building sites) connected over a high-speed network link. Groups of buildings or building sites are managed at this level.
  • Metropolitan site--A site with multiple building/campus sites in a geographically wide area. Groups of building sites and campus sites are managed at this level.
  • Remote user--a single mobile user that is connected by modem.
• Site size. The number of users at a site that participate in the SMS system. Site sizes are categorized as:
  • TIER 1 - 500 or more users
  • TIER 2 - 100-499 users
  • TIER 3 - 50-99 users
  • TIER 4 - 20-49 users
  • TIER 5 - 5-19 users
• Offices/locations with fewer than five users will be asynchronous and should be treated as individual remote users.
  NOTE Deploying in one region (for example the USA or Canada) can make the project more manageable; research done for one region can make it easier to deploy in multiple regions later.

Network link speed. The speed of external network links (56KB, 128KB, 256KB, T1, T3, etc.) to the central site server.

Network Design Overview

When designing an SMS system, learn about the network structure and work closely with the internal network team to ensure that SMS system design overlays the local resource domain structure. Include corporate network overviews in the project plans.

SMS Site Hierarchy Recommendation

The SMS site hierarchy is arranged geographically, closely following the configuration of your NT Domain whenever possible. All networked PCs in the enterprise are managed by SMS based on their physical location. Each of these machines is assigned to a particular business unit, as defined by the user, for management flexibility. The enterprise can then group and manage distributed hardware/software assets according to location or specific business unit requirements.

A hierarchy of SMS servers is deployed throughout the network. The central site server resides on a dedicated machine in the central data center. The central SMS database, resident on a separate dedicated machine, also resides in the central data center.

Second-level primary site servers exist in major metropolitan areas. Primary sites are named after their metropolitan area (Seattle, Portland, etc.) for easier management.

Inventory reporting and software distribution are managed based on a machine's association with its NT resource domain. In this case, resource domains exist for each site. Each resource domain's primary domain controller is configured as an SMS secondary site server, reporting to its metropolitan-area parent site. All site locations report to and are managed from their nearest metropolitan site.

NOTE

Secondary site servers (at the building-level) usually do not require dedicated SMS servers. Rather, SMS uses file/print resource servers that are already present for other purposes. The only dedicated SMS machines are at the primary site level (metropolitan areas), and the central site and central database machines.

Example: For a 440-site, 24,000-desktop organization, an initial deployment would include nine dedicated servers for SMS. Each resource server would require 2 GB of disk space and 24 MB of RAM above the requirements recommended for each server's primary purpose.

This hierarchy minimizes network traffic across WAN links, keeping most SMS activities within a site's routed subnets, and minimizes cost by using existing resource servers.

SMS metropolitan-area site names are city names; SMS site codes are capitalized 3-letter strings for them. For example:

Site name	Site code
Pittsburgh	PGH
Orlando	ORL
Baltimore	BLT
Houston	HOU
Atlanta	ATL
Charlotte	CHA
Belgium	BEL
Australia	AUS
Middle East	MDE

Each SMS site contains at least one resource domain. In large building sites, collections of resource domains, grouped as SMS domains, can be managed by a single SMS site server, which is the PDC for one of the resource domains it manages. The SMS site server automatically detects all servers configured as BDCs for a resource domain and configures them as SMS collection/distribution points. Metro-area primary site servers are domain controllers in account domains, which allows auto-detection and management of all account domain controllers.

Example: A metropolitan area contains resource domains in locations called xxx, yyy, zzz and so on. The metropolitan primary site server is a domain controller in the xxx resource domain. Secondary site servers exist in each resource domain in the metropolitan area. All PCs in the metropolitan area are reported by their location (resource domain) to the metropolitan site server "Metro_site_name". Logically the hierarchy appears as:

Figure 1: Hierarchy of metropolitan system

Tips

Use all resource domain PDC/BDCs as collection points for inventory and distribution points for software packages. This approach load-balances SMS activities across resource servers, localizes SMS-generated network traffic, and minimizes potential points of failure. From the resource domain PDC (secondary site server) SMS automatically detects the resource domain BDCs, and configures them with the appropriate NT services and SMS directories and files. Account domain controllers house the LOGON.BAT script file that initiates SMS, and the SMSLS.INI that maps each machine to its respective SMS site.

When needed for performance reasons, confine SMS duties to specified resource servers. Any resource server designated as non-SMS should not be configured as a PDC or BDC for any resource domain. For example, high-demand resource servers running imaging applications should contain no SMS server activity, and are managed by the SMS system as clients. NT applications that require a domain controller are either placed in an SMS domain (manually configured by the SMS administrator) or create their own resource domain and are managed as clients.

Dedicated application servers, such as database servers hosting OLTP applications, should not configured as SMS servers.

Also as needed for performance reasons in the future, SMS site server duties can be further distributed among multiple servers by configuring SMS helper servers to run specific SMS services for a site server.

Assumptions in the site hierarchy and their implications:

• Assumption: Primary Sites should be connected to the central site by at least T1-class links.
  Implication: Slower links degrade performance and may require a different design.
• Assumption: The network is implemented with site-specific, meaningfully-named NT resource domains.
  Implication: Non-site-specific resource domains burden design and administration.
• Assumption: No resource domain spans a slow link. Small sites contain their own resource domains.
  Implication: A resource domain with slow links between servers burdens design and administration, and uses more bandwidth during software distribution operations.

Assumption: Existing resource servers are used as SMS collection/distribution points.

Implication: Existing resource servers incur additional burden and require additional system resources (24 MB RAM, 2 GB disk). They must be sized to handle the additional load of SMS.

Network Configuration Recommendations for SMS Clients and Servers

While user accounts are managed by business unit-specific NT account domains, physical client machines belong to (and can be managed by) location-oriented NT resource domains. Resource domains exist for each location, and SMS uses this resource domain distribution to build its site hierarchy, then uses all resource domain PDC/BDCs as collection points for inventory and distribution points for software packages. Account domain controllers detect new networked client machines automatically upon authentication of each user, an approach that evenly balances SMS load activities across resource servers, and greatly reduces "single point of failure" potential.

This approach allows the team to control the SMS rollout process easily, and significantly eases the desktop/network rollout process. By making it possible for SMS to be "turned on" for new client machines only through the logon/authentication process of new NT users, this enables SMS and the new desktop/network to be rolled out simultaneously. New users turn on their new NT workstations for the first time, logon to the new NT network for the first time, and immediately have SMS loaded and their inventory reported for the first time. As more desktops are rolled out, and the SMS system grows, SMS functions as real-time management mechanism for the new environment during migration. Each group of new desktop/network users is manageable almost immediately through SMS.

SMS is activated on workstations by executing SMSLS.BAT from a logon server. Clients execute SMSLS.BAT automatically from a site server upon being validated by the preconfigured account domain controllers. SMSLS.BAT determines if SMS client code is already resident on the client machine, and, if it is, moves on to the inventory collection phase. If SMS is not resident on the machine, SMSLS.BAT initiates the client installation process and collects initial inventory.

To ensure that each client machine runs SMSLS.BAT, a standard network logon script named LOGON.BAT connects clients to SMS servers and executes the SMSLS.BAT file during every user's network logon. Local sites can implement their own logon scripts by creating a LOCAL.BAT file, which is called by the standard network logon script after SMSLS.BAT.

The master LOGON.BAT file resides on (and is managed from) the IT PDC. The NT Replicator Service on this machine is configured to distribute (or export) this standard logon script to all account domain controllers.

When any domain controller performs logon authentication for any client in the enterprise, it always calls LOGON.BAT, an approach that assures that new machines are discovered by the SMS system (as they are added), are mapped to the appropriate site servers, and are never inadvertently excluded from the inventory process.

SMSLS.BAT executes setup routines to install client components and report inventory. One of these routines, SETLS.EXE, checks a configuration file called SMSLS.INI for custom SMS settings. This text file is configured to map each machine's inventory to the resource domain it belongs to, rather than to the account domain where the user logged on (which is the SMS default) because many users will be authenticating across the WAN. Each secondary site server has a secondary site server defined to map directly to its resource domain.

The master SMSLS.INI file resides on (and is managed from) the IT PDC. The NT Replicator Service on this machine should be configured to distribute this file to all account domain controllers.

Note

Users should not connect manually to an SMS server to run SMSLS.BAT: this causes their machine's inventory to be reported through their logon account domain rather than their location-specific resource domain.

Metropolitan-area site servers are the domain controllers in each account domain. Secondary site servers are the domain controllers in the resource domain that makes up their site. For example, the Seattle secondary site server is the PDC/BDC for the Seattle resource domain.

Below is an example network diagram of a metropolitan site called Pittsburgh:

Figure 2: Network diagram of Pittsburgh site

Assumptions in network configuration and their implications:

• Assumption: Primary sites are connected to the central site by at least T1-class link.
  Implication: Slower links degrade performance and may require a different design.
• Assumption: The network are implemented with site-specific, meaningfully-named NT resource domains.
  Implication: Non-site-specific resource domains burden SMS design and administration.
• Assumption: No resource domain spans a slow link. Small sites contain their own resource domains.
  Implication: A resource domain with slow links between servers burdens design and administration, and uses more bandwidth during software distribution.
• Assumption: All user accounts in the enterprise run the standard corporate logon script (LOGON.BAT), ensuring that all workstations participate in the SMS system.
  Implication: A standard logon script must be created and maintained (replicated), and the name must be reserved throughout.
• Assumption: All resource servers are adequately sized to perform their designated resource functions and are configured with additional system resources to accommodate SMS activities (RAM, disk).
  Implication: Additional cost is incurred for each resource server.
• Assumption: Windows NT resource servers scale well to accommodate the additional SMS burden, so performance can be increased by adding system resources instead of new servers.
  Implication: Failure to scale accordingly can result in additional cost for more servers.
• Assumption: No user accounts are authenticated in resource domains.
  Implication: Users who authenticate against a resource domain do not run the standard logon script by default, and may be excluded from SMS inventory.
• Assumption: All workstations in the enterprise map to a valid resource domain.
  Implication: Machines not belonging to a valid resource domain may be excluded from SMS inventory. However, a failsafe measure in SMS system design alerts administrators if a machine is not mapped to a valid resource domain.
• Assumption: Every NT domain in the enterprise "trusts" the valid account domain.
  Implication: All SMS administration is based on a central administrative SMSADMINS group. Failure to acknowledge this group with administrative privileges prohibits local SMS administration.

SMS Database Configuration

SMS servers store inventory information in a relational database management system (RDBMS) Microsoft SQL Server for Windows NT. Each SMS primary site server maps to a SQL database that may reside either on the same Windows NT Server machine, or on a different machine running SQL Server. Inventory from each child-site is reported upward to its parent-site, which continues reporting upward to higher level parent-sites until it reaches the central site database containing the inventory for all of the enterprise.

The SMS database schema is very normalized, comprising approximately 93 tables tied together through a master table of relations. Each computer in the enterprise is stored as its own record in the database and requires approximately 10 KB of storage. Each machine is assigned a unique SMSID which is used as the database's primary key. For example, a database of 24,000 client machines and 500 servers should require approximately 240 MB of storage.

After initial inventory is reported during SMS client installation, only inventory changes are reported to the SQL Server by SMS site servers. The change files are extremely small, so there is negligible network traffic generated for inventory reporting after the initial reporting. By using primary site servers only at the metropolitan-level, the required number of SMS databases is minimized. All inventory data should be housed on a single SQL Server located in the central data center. This machine should have enough disk space for the database and OS, and a redundant disk array should be added to ensure data integrity. The RAM should be able to accommodate multithreading the database transactions from all the site servers. A centralized SQL Server is easily maintained, backed up, etc. Schedule reporting from all site servers to the central site (across the WAN) to occur during off-peak hours.

Alternative: If the central SQL Server performance is degraded by high network traffic or CPU utilization, SQL Servers can be added to the metropolitan-area primary site servers to collect inventory information from their sub-sites and forward it to the central SQL Server. Corresponding SMS servers can redirect their inventory reporting to these databases, which is then forwarded to the central site during off-peak hours.

Assumptions of database configuration and their implications:

1. Assumption: One central SQL Server can handle all SMS transactions for the enterprise.
   Implication: Adding SQL Servers would increase administrative and maintenance burden, and increase cost for additional servers.

• Assumption: Inventory reporting across the WAN is scheduled for off-peak hours.
  Implication: Off-peak reporting minimizes WAN bandwidth use.
• Assumption: SMS database activities can be distributed to primary site locations if the central SQL Server cannot accommodate all database activities.
  Implication: This serves as contingency plan if database performance is degraded.

Inventory Reporting Flow

Workstations post inventory files to any SMS-configured resource server (PDC or BDC) in their resource domain. SMS NT services on the secondary site server collect inventory files from the resource servers and pass them to their parent primary site server, which posts inventory changes to SQL Server, which passes them to its parent primary site.

The inventory reporting flow logically appears as:

Figure 3: Inventory reporting flow logic

Here is a closer look at a single metropolitan area:

Figure 4: Metropolitan site configuration

SMS Security Recommendations

A single SMS Administrator account, called SMSAdmin, is defined in the account domain, which is trusted by every other domain in the enterprise. The SMSAdmin account belongs to the SMSADMINS group, which is added to the Administrators local group on each SMS site server, and to the Domain Administrators global group in each resource domain. Each site server has SMSADMINS added to the "Logon As a Service" user rights list. This approach allows management of any part of the SMS system in the enterprise based on a single user account. This account can be maintained and modified as needed, or additional accounts can be added to SMSADMINS.

In addition to the SMS Administrator account, an account/password is required to logon to a site's database and perform SMS management of that site and its sub-sites. The SQL Server databases for each primary site need an account/password unique to that site, and the SMS administrator must use it to logon to the site's database. This allows authorized IT and business unit personnel to manage the SMS system, but allows only authorized SMS administrators to log into and manage a site.

Once available, workstations should be configured with all remote access options disabled by default so that users must explicitly allow for remote desktop takeover by granting permission to the central administrators.

Assumptions made during security planning and their implications:

1. Assumption: All SMS administrative accounts are managed centrally.
   Implication: Central SMS administrative staff is required.

• Assumption: All SMS administrative accounts use standard corporate administrative account security standards.
  Implication: SMS administrative accounts are managed centrally.
• Assumption: Some SMS administrative accounts will exist to provide partial access to the SMS system as needed (that is, there will be local administrators).
  Implication: Restricted administrative access to the SMS system allows local staff to manage selected aspects of the SMS system, as justified.

SMS Configuration Settings

Design tables similar to the following that detail specific settings required on all machines in the SMS system.

Central Site server

Windows NT server settings	Systems Management server settings
Will be a DC in the valid account domain.	SMS volume must be NTFS.
Create SMSAdmin account in the account domain (full admin rights), add SMSAdmin to SMSADMINS group.	Site code is CSS. Site name is [Corporation Name].
Add SMSADMINS group to "Logon As A Service" user rights.	SQL database server is \\server.
Add Repluser account for NT Replicator Service and add to REPLICATOR group.	Database Name is SMS (caps). SQL Server logon is xxx/xxx.
Contains master LOGON.BAT file in: \winnt35\system32\repl\export\scripts.	Contains master SMSLS.INI file in: \winnt35\system32\repl\export\scripts.
Configure Replicator Service to export \winnt35\system32\repl\export\scripts to all account domain BDCs and PDCs.
Synchronize time with Time Service.
Ensure IT domain is trusted from all other domains.

Primary site servers

Windows NT Server settings	Systems Management Server settings
Should be a domain controller for an account domain.	SMS volume must be NTFS.
Add SMSADMINS group to local Administrators group.	Site code is 3 letters code as described above.
Add SMSADMINS group to "Logon As A Service" user rights.	Site name is city specific.
Synchronize time with CSS (Net Set Time).	SQL database server is \\server.
	SQL database name is SMS. SQL device names are SMSData and SMSLog.

Secondary site servers

Windows NT Server settings	Systems Management Server settings
Should be a PDC or BDC for one of the resource domains it will manage.	SMS volume must be NTFS.
Add SMSADMINS group to local Administrators group.	Site code is 3 bytes: first byte is the first letter of the parent site; other 2 bytes are a sequential number (for example. P01, P02, P03 in Pittsburgh).
Add SMSADMINS group to "Logon As A Service" user rights.	Site name is building specific.
Synchronize time with CSS (Net Set Time).	No direct SQL database (it is reported through parent-site).

Central SQL server

Windows NT Server settings	SQL Server settings
Cannot be a domain controller.	A SQL device called SMSData will house the central database (SMS). A second device will house the SMS log file (SMSLog).
Servername is \\server.	Create SQL devices for each primary site's data and log files.
SQL Admin accounts configured for SMSAdmin.	Set maximum user connections = xxx.
Synchronize time with CSS (Net Set Time).	Configure TEMPDB size = xxx.
	Set number of SQL connections = xxx.
	Configure memory option = xxx.
	Configure open objects option = xxx.

SMS clients - Windows NT Workstation

Windows NT Workstation settings	Systems Management Server client settings
Must be a member of a valid resource domain through Control Panel/Networks setting.	User completes User Information MIF upon initial installation.
Must Logon to Windows NTS "from" a valid account domain to run LOGON.BAT.	Set PCM interval to 240 minutes.
Synchronize time with CSS (Net Set Time).	User may set default remote control options.

SMS clients other than Windows NT Workstation

Windows 3.x settings	Systems Management Server client settings
Must be a member of a valid resource domain through Control Panel/Networks setting.	User completes User Information MIF upon initial installation.
Must Logon to Windows NTS "from" a valid account domain to run LOGON.BAT.	Set PCM interval to 240 minutes.
Synchronize time with CSS (Net Set Time).	User may set default remote control options.
Non-Windows NT clients should check: SYSTEM.INI Device=\windows\vuser.386 TimerCriticalSection= NetHeapSize= WIN.INI Load=SMSRUNx.EXE AUTOEXEC.BAT CLIENT.BAT SMS.INI SMS ID Domain settings Logon server designation Help desk options Package Command Manager options CLIENT.BAT SMSRUNx.INI

Client Configuration

Initial SMS client configuration occurs during a user's first logon/authentication on the new NT network. Account domain controllers that validate user accounts are pre-configured to execute SMSLS.BAT, which installs SMS on the client machine.

SMS creates a directory called \MS\SMS, and copies the necessary files and subdirectories to it, then adds to the Windows Program Manager or Start Menu a program group called Systems Management Server, which contains icons for various SMS components.

During initial installation, the user is prompted to complete a User Information Form (user MIF). This information is stored with the machines' inventory. The default user MIF can be modified to include corporation-specific fields such as Business Unit, Department, and Bay location--fields which allow administrators to manage hardware and software by enterprise organization as well as by geographical location.

The user can change the MIF at any time (for instance, if a machine is moved). Other fields may be added, or custom MIF forms developed, to collect any other information from a user, such as employee ID#, serial numbers of telephones and chairs, etc.

All remote control settings should be disabled by default.

Assumptions made during client configuration and their implications:

1. Assumption: All user accounts in the enterprise run the standard corporate logon script (LOGON.BAT), ensuring that all workstations participate in the SMS system.
   Implication: A standard logon script must be created and maintained (replicated), and the name must be reserved throughout the corporation.

• Assumption: All workstations in the enterprise have a properly configured MIF detailing any custom workstation information (location, business unit, etc.).
  Implication: Upon installation, relocation, or redeployment of SMS on a workstation, a person manually enters information associating the workstation with its business organization, location, primary user, and link to the fixed asset system.
• Assumption: All workstations in the enterprise map to a valid resource domain.
  Implication: Machines not belonging to a valid resource domain may be excluded from SMS inventory. However, a failsafe design measure alerts SMS administrators if a machine is not mapped to a valid resource domain.

Assumption: Once available, workstations are configured with all remote access options disabled by default. User must explicitly allow for remote desktop takeover by granting permission to the central administrators.

• Assumption: End users are trained to use SMS client components.
  Implication: Training must be developed and delivered to educate users about the SMS system (specifically, package command manager, remote desktop takeover).

Recommended SMS Event Timing and Polling Rates

SMS is primarily a store-and-forward management system (with the exception of real-time troubleshooting utilities). Once SMS is installed, SMS activities for clients and servers are based almost exclusively on timed intervals: SMS components "wake up" at specified times to perform duties. This provides a very flexible means of managing network bandwidth use by scheduling network-intensive SMS operations to occur during off-peak network traffic hours (distributing software to site servers across the WAN). The site hierarchy cascades large scale networks geographically, further minimizing network bandwidth utilization by localizing most SMS network activity.

Tuning an SMS system entails configuration of many interdependent timing intervals and polling rates, and as in most things it is important to have appropriate expectations for what SMS can or cannot do. For example, distributing a large software package can easily take several hours. And some changes may take up to 24 hours to be reflected at the central site database.

System tuning always involves tradeoffs and in this case they are between bandwidth and "real-time" management. If all levels of inventory must be reported upwards frequently (and reflected in the central database quickly), then the frequency of timed SMS events must go up and so must bandwidth use. Conversely, if bandwidth use must be minimized, then decrease the frequency of events in order to decrease network traffic.

Start out by protecting network bandwidth by keeping event timing and polling intervals at the system defaults (see table below). If system management requires more immediate response from the SMS system, the SMS administrator can force synchronization by manually "waking up" SMS components immediately. If delayed synchronization hinders everyday management, modify event timing.

In this case, the recommended timed interval for Package Command Manager is 240 minutes rather than the default 60 to limit its 10-second user interruption to three times a day: once at logon in the morning, once around lunchtime, and once at the end of the work day.

SMS Component	Timed Interval
Inventory Agent	24 hr
Site Hierarchy Manager	N/A
Site Configuration Manager	24 hr
Senders	N/A
Inventory Data Loader	N/A
Scheduler	N/A
Despooler	N/A
Package Command Manager	240 min

For more information on using and configuring these components, see Appendix A of the SMS Administrator's Guide.

Assumptions made during event timing and their implications:

1. Assumption: Except for real-time helpdesk troubleshooting tools, the SMS system is batch oriented.
   Implication: Inventory changes, SMS domain configuration changes, software distribution, and changes to standard (replicated) configuration files may take minutes or hours to be propagated throughout the SMS system.

• Assumption: Event times and polling rates are uniform across all enterprise SMS servers.
  Implication: Uniformity yields more predictable performance.
• Assumption: Event times and polling intervals are reviewed periodically during implementation (and throughout the life of the system) and adjusted as needed.
  Implication: SMS administrators monitor system performance and continue tuning.

Software Distribution Recommendations

Standardizing software across the corporation (discussed earlier in this document) is crucial to software distribution in the plan discussed in this paper. If your environment does not permit software standardization, however, see the end of this section for recommendations on planning software distribution in a mixed environment.

Software Distribution in a Standardized Environment

For SMS design purposes, client software should be categorized as standard or nonstandard. Standard is company or business unit-wide software (Windows NT, Microsoft Office, SAP, PDM, or SPRY). Nonstandard is software used by few or not on the Standard list.

Standard software is installed initially from the loadset, with slight variations depending on business unit needs. SMS is needed to distribute standard software in three cases:

• The standard software is upgraded by the manufacturer
• The machine has a technical problem that requires re-installation
• A new machine is installed without the loadset

While standard software is electronically distributed only infrequently, it still should be distributed to each SMS Site server. This provides backup, and can be particularly useful in disaster recovery. Whenever a user requests a standard software load, the SMS administrator can schedule an immediate SMS job to run the installation from the user's local SMS site server, which already has the standard software in uncompressed form. If the user's site server is down, the SMS administrator can redirect the installation to be run from the nearest working site server.

This approach uses more disk space on site-level servers, but can save bandwidth by not transmitting standard software across the WAN to satisfy user requests. It also circumvents the delay (several hours) from the time the SMS administrator creates a new SMS package to the time it arrives and is decompressed on the distribution server: users can install standard software within 15 minutes of requesting it.

Nonstandard software can also be staged on distribution servers if the increased disk usage is justified by the number of users.

Here are some recommendations for staging standard software or distributing a new version to many users:

• Distribute the SMS package to site servers in phases to minimize (or at least stagger) network bandwidth utilization across the WAN.
• Schedule the distribution of these packages for weekend nights to avoid interfering with normal workday network traffic and/or weekday evening backup and maintenance routines.
• When scheduling installation for large numbers of users, schedule the client job distribution to run the standard software installation in staggered phases. For example, once the new standard software exists on each site server, schedule client installation for some users in each metropolitan area each day, to minimize use of network bandwidth and site server CPU time during working hours.

By default, SMS distribution jobs target machines, or groups of machines, for distribution and installation of software. Groups can be created easily by querying the SMS database. For example, query on the machines running Excel 4, then target that group for Excel 5 installation.

Use an SMS "Sharing Package" to target groups of users based on their NT account groups (SAP users, accountants, managers, etc.). A package shares a Windows Program Group to execute a network-resident application, or shares instructions to install an application locally.

Assumptions of software distribution and their implications:

1. Assumption: Initial standard loadset is installed prior to delivery of a new PC.
   Implication: Network bandwidth use is reduced.

• Assumption: All standard software is available through the SMS system.
  Implication: Existing workstations have access.
• Assumption: All standard software is staged to all SMS site servers.
  Implication: Network bandwidth use and distribution delay are minimized.
• Assumption: All SMS site servers have adequate disk resources to house staged standard software.
  Implication: Additional cost for disk space on resource servers, but significant savings by not requiring dedicated SMS servers.
• Assumption: All nonstandard software is managed by SMS on a case-by-case basis.
  Implication: The business justification must consider the cost of SMS administrators creating and managing nonstandard software distribution.
• Assumption: All software distribution across the WAN is scheduled during off-peak hours.
  Implication: This significantly reduces network bandwidth use, but does not accommodate immediate real-time distribution. A contingency plan is needed for emergency (immediate) distribution of nonstandard or new standard software.

General Software Distribution Recommendations

When deciding how to deploy software distribution in your SMS environment:

• Define the Software to be included for distribution in the SMS system
• Determine how new machines will be configured prior to delivery
• Determine the bandwidth issues of deploying software across the WAN vs the LAN
• Determine what loadsets should be on which servers (based on the bandwidth issues defined above)
• Consider which software distribution jobs (upgrades/updates, etc.) should occur during off peak hours

Help Desk Support Overview

SMS Help Desk and Diagnostics utilities provide direct control and monitoring of remote clients running MS-DOS, Windows version 3.1, Windows for Workgroups version 3.11 and Windows 95. The Diagnostic utilities enable you to view a remote client's current configuration; the Help Desk utilities provide direct access to a client.

The Diagnostics are run from within the Personal Computer Properties dialog box of the SMS Administrator, but for security purposes the Help Desk utilities are disabled by default and can be enabled only by a user at the remote client you want to control. SMS supports remote control across a RAS connection and across IPX and IP routed networks.

Remote troubleshooting is not supported across an SNA link nor on clients running Macintosh or Windows NT. In addition, SMS does not support running multiple remote troubleshooting sessions from a single SMS Administrator tool computer.

Requirements for Remote Troubleshooting

Before you can use the remote troubleshooting utilities on an SMS client:

• The remote client must be part of a site inventory
• The SMS Administrator computer and the target client must be configured for remote communications
• The user must be able to enable help desk options
• The client must be running a 386 or greater processor

Diagnostic Utilities include: CMOS Info, Device Drivers, ROM Info, Interrupt Vectors, DOS Memory, Ping Test, Windows Memory, Windows Modules, Windows Tasks, Windows Classes, Global Heap and GDI Heap.

Help Desk utilities include: Remote Control, Remote Reboot, Remote Chat, File Transfer, and Remote Execute

For more information on these utilities, remote troubleshooting, configuring protocol settings, configuring remote support across a router, and setting up help desk options at the target client see Chapter 15 of the SMS Administrator's Guide.

Program Group Control Recommendations

Windows Program Groups are shared by groups of users to launch network-resident applications. All locally-resident applications have a Program Group, and SMS can be used to manage them.

For example, an administrator can use a single SMS Sharing Package to send all members in an NT group called SAPUSERS a Windows Program Group called SAP, which contains icons that launch SAP from a network server. When SAPUSERS members log on (to any machine in the enterprise) the SAP Program Group appears on their desktop. (It does not appear for nonmembers.) Users who roam the network, logging into several machines at different locations, still get the SAP Program Group. If several users alternate using a single machine, the SAP Program Group appears for SAPUSERS members.

Assumptions of program group control and their implications:

1. Assumption: Access to all standard network-resident applications is managed by SMS.
   Implication: This approach provides users access to network-resident business applications regardless of where in the enterprise they logon.

• Assumption: Access to all standard network-resident applications is managed using pre-configured global NT user groups.
  Implication: There must be centralized network management of global NT user groups. Changes to these groups may not be immediately available to the SMS system, based on the delay of propagating the changes to enterprise servers.

SMS Maintenance Recommendations

Proper SMS system design reduces maintenance.

The central SQL database server requires regular backup, but since it resides in the central data center this job can easily be added to a computer operator's regular duties. Perform a full backup each week, with incremental backups throughout the week.

The SMS system itself requires minimal maintenance. It also provides operational stability: if any portion of the system besides the central database goes down, minimal functionality is lost.

• If a site server goes down and the central database stays up, most management functions run uninterrupted. The SMS administrator utility can be run from any Windows NT machine (workstation or server).
• Inventory reporting, while collected locally at every user logon, is made to the central site only once a day. Changes in inventory are infrequent, and it is not critical to maintain up-to-the-minute inventory data. Once a downed-server comes back on-line, it automatically begins collecting inventory again, and is brought back in line with the central database during the next synchonization. In this respect SMS is a "self correcting" management system.
• As long as the central database is running, helpdesk staff can still remotely control users--even users in a site with a downed server.
• Package distribution is load-balanced across many resource domain controllers, so users in a site with a downed server can still execute any jobs that have already been sent, and see an interruption in current jobs only if the downed server is the only distribution server targeted for that package. Otherwise, other distribution servers are used until the downed server is restored. New distribution jobs must wait for the site server to come back on-line.
• Program groups controlled by SMS continue to work if a site server is down, but distribution of new Program Groups must wait for the site server to come back on-line.

The Windows NT Performance Monitor should be used regularly to assess performance of various system components for retuning as needed.

Document Contents

Pilot Plan

Stage3 Alpha testing, as defined in the Test Plan, introduces the recommended SMS design to small groups of users in a controlled manner.

Testing process objectives:

• Further validate the recommended SMS design on the network architecture
• Stress-test the system, gathering more specific performance details for tuning
• Develop specific operational guidelines and maintenance plans for administrators and helpdesk staff

Testing process phases:

• Plan and prepare for test
• Prepare users
• Install necessary components
• Run tests
• Document test results
• Plan operational guidelines for administrators and helpdesk staff
• Refine SMS design as needed based on test results; re-test as necessary
• Complete tests and use results for final design

Plan and Prepare for the Test

The basic assumption for Stage3 testing is that the network design meets the assumptions defined in the SMS design document. Also, the SMS team should have documented details of the network design to work from.

Note

The system tested in these final stages before rollout is not production. Refining the SMS design based on these test results may involve re-installation.

Site Planning

• Configure the central site
• Configure primary sites (3, if possible)
• Configure secondary sites (3, if possible)
• Determine the target number of pilot users (100-200) at one secondary site

Figure 5: SMS Alpha configuration

Network Planning

The new Windows NT network infrastructure must be in place and tested prior to SMS installation. SMS administrative accounts and directory replication are configured and tested first.

Hardware Planning

SMS requires dedicated servers for the central site and the SQL Server. Primary site servers use existing account domain BDCs, but may be moved to dedicated machines depending on performance. All resource domain controllers should be configured with at least 16 MB RAM and 2 GB disk above the minimum hardware requirements anticipated for resource sharing; all servers should be equipped with a chosen standard modem (for backup async site-to-site communications) and have access to a secure dial-out service.

See your SMS documentation for more information on hardware requirements for SMS site servers.

Note

The BDCs already exist in the NT Domain

Resource Planning

Resources needed during testing

Resource	Tasks
Implementation specialist	all
Implementation specialist	all
IT personnel	all
Documentation support personnel	process documentation, helpdesk support

Task Lists and Timing

These are the test system installation tasks:

1. Get the plan approved prior to beginning work on the task list
2. Allocate hardware (see hardware requirements list above)
3. Allocate resources (see resource requirements list above)
4. Put SMS "backend" in place
   1. Configure SMS administrative user accounts and group
   2. Configure and test replication from account domain PDC to all other authenticating domain controllers
   3. Install central SQL server (see checklist for configuration settings)
   4. Install SMS central site server (see checklist for configuration settings)
   5. Install primary site server
   6. Verify operation of all installed components to this point
   7. Install secondary site server (see checklist for configuration settings)
   8. Install other secondary site servers
   9. Stage the standard loadset on site servers; ensure that distribution from central site functions properly
   10. Install and test a select group of client machines (include CSOC, Sys Eng., SAP, NTW, and Win95)
   11. Verify inventory collection
   12. Test package/job distribution to install standard loadset on clients
   13. Test helpdesk operations
   14. Test Program Group Control
   15. Test Network Monitor
5. Install remaining clients at test site
6. Integrate help desk operations (use SMS for everyday support in test site)
7. Develop administrative and helpdesk operational guidelines throughout entire test process
8. Test administrative operations (backup/recovery, database cleaning, etc.)
9. Add secondary sites

Prepare Users

For this test to succeed, users must be working in their production environment. Set up the testing schedule to minimize intrusion and downtime for the user community. Before starting testing, hold a brief session to inform users exactly what to expect, when, and why, and to demonstrate the SMS client software and familiarize them with the test. Set up the test environment so that users launch SMSLS.BAT from within a separate logon script; this makes it possible to disable SMS on users' systems if testing encounters severe problems. Remove SMS from each user's system after testing and before rollout.

Install Necessary Components

Design configuration tables such as the ones below to show how to install the test system. Install the central site first, then the primary sites, then the secondary sites.

Central site server

Windows NT server settings	Systems Management server settings
Must be a DC of the account domain.	SMS volume must be NTFS
Create SMSAdmin account in the account domain (full admin rights), add SMSAdmin to SMSADMINS group.	Site code is CSS. Site name is [Corporation Name].
Add SMSADMINS group to "Logon As A Service" user rights.	SQL database server is \\SMSDB.
Add Repluser account for NT Replicator Service and add to REPLICATOR group.	Database Name is SMS (caps). SQL Server logon is xxx/xxx.
Contains master LOGON.BAT file in: \winnt35\system32\repl\export\scripts.	Contains master SMSLS.INI file in: \winnt35\system32\repl\export\scripts.
Configure Replicator Service to export \winnt35\system32\repl\export\scripts to all IT BDCs and all other account domain controllers
Synchronize time with Time Service.
Ensure IT domain is trusted from all other domains.

Central SQL server

Windows NT Server settings	SQL Server settings
Can be a PDC or BDC for any domain.	A SQL Device called SMS houses the central database (SMS_Data). A second device houses the SMS log file (SMS_Log).
Servername is \\SMSDB.	Create SQL Devices for each primary site server (SMS_{3 digit site code}. Create SMS Devices for each primary site's log file (SMS_{3 digit site code}_Log).
SQL Admin accounts configured for SMSAdmin.	Create databases on corresponding devices for SMS data.
Synchronize time with CSS (Net Set Time).	Set Maximum User Connections = xxx.
	Configure TEMPDB size = xxx.
	Set number of SQL Connections = xxx.
	Configure memory option = xxx.
	Configure open objects option = xxx.

Primary site servers

Windows NT Server settings	Systems Management Server settings
Should be a PDC or BDC for one of the resource domains it will manage.	SMS volume must be NTFS.
Add SMSADMINS group to local Administrators group.	Site code is 3-letter code as described above.
Add SMSADMINS group to "Logon As A Service" user rights.	Site name is city specific.
Synchronize time with CSS (Net Set Time).	SQL database server is \\SMSDB.
	SQL database name is SMS_xxx_Data where xxx is the site code
	SQL log file name is SMS_xxx_Log where xxx is the site code

Secondary site servers

Windows NT Server settings	Systems Management Server settings
Should be a PDC or BDC for one of the resource domains it will manage.	SMS volume must be NTFS.
Add SMSADMINS group to local Administrators group.	Each site code must be unique. If there are many secondary sites, create their 3-letter codes by combining the letter of the parent primary site with a 2-digit number. Assign the 2-digit numbers sequentially
Add SMSADMINS group to "Logon As A Service" user rights.	Site name is building or campus-specific.
Synchronize time with CSS (Net Set Time).	No direct SQL database (it is reported through parent-site).

SMS clients: Windows NT Workstation

Windows NT Workstation settings	Systems Management Server client settings
Must be a member of a valid resource domain through Control Panel/Networks setting.	User completes User Information MIF upon initial installation.
Must Logon to Windows NTW "from" a valid account domain to run LOGON.BAT.	Set PCM interval to 240 minutes.
Synchronize time with CSS (Net Set Time).	User may set default Remote Control options.

SMS clients other than Windows NT Workstation

Windows 3.x settings	Systems Management Server client settings
Must be a member of a valid resource domain through Control Panel/Networks setting.	User completes User Information MIF upon initial installation.
Must Logon "from" a valid account domain to run LOGON.BAT.	Set PCM interval to 240 minutes.
Synchronize time with CSS (Net Set Time)	User may set default Remote Control options.
Non-Windows NT clients should check: SYSTEM.INI Device=\windows\vuser.386 TimerCriticalSection= NetHeapSize= WIN.INI Load=SMSRUNx.EXE AUTOEXEC.BAT CLIENT.BAT SMS.INI SMS ID Domain settings Logon server designation Helpdesk options Package Command Manager options CLIENT.BAT SMSRUNx.INI

Run Tests

Check these functional areas, using the recommendations defined in the SMS document as task lists:

• General inventory collection
• Inventory history tracking
• Package creation and distribution
• Job scheduling and execution
• File collection
• Software distribution
• Program Group control
• Help desk facilities
• Creating and running SMS queries
• Establishing SMS machine groups
• Event timing for all processes being tested
• Running SMS Administrator from a Windows NT Workstation
• Extending the default user Information MIF
• Administering multiple sites from the central site server
• Microsoft Office or other product suite software distribution
• Event timing for all processes
• Network load testing and tuning

Document Test Results

Record all network and SMS configuration settings:

• Client settings include: settings in system configuration files, network configuration settings, SMS options, etc.
• Server settings include: network configuration settings, OS configuration, disk subsystem and memory configurations, SMS polling intervals, site configuration settings, SQL Server database configuration, etc.

Next, document test results with the original settings you recommended. Change network and SMS settings as needed to achieve desired SMS performance. Document configuration changes before re-testing.

NOTE

Configuration changes made for one purpose may adversely affect results in another area. Record default settings so you can reinstall the SMS system if necessary.

Plan Guidelines for Administrators and Help Desk Staff

As testing proceeds, have a documentation specialist write up operational guidelines and procedures for using SMS for help desk support:

• Event timing and polling intervals (anticipated time for all SMS functions)
• Inventory collection guidelines
• Software distribution guidelines
• Help desk guidelines
• Program group control guidelines
• SMS setting modification for performance
• Problem resolution (server down, network down, SMS components not working, etc.)

Also document administrative guidelines, including:

• System configuration guidelines for future clients and servers
• Backup and recovery of the SMS system
• SMS security guidelines
• Moving users and/or sites
• Enabling and disabling SMS client/server components
• Periodic "cleaning" of the inventory database (retiring old machines)
• Problem resolution (server down, network down, SMS components not working, etc.)

Refine Design

Test results can help you refine the SMS design and operational guidelines to optimize client and server performance, and to achieve a well integrated, non-intrusive solution. Focus on minimizing impact on users and optimizing overall system performance.

Complete Testing/Finalize SMS Design

When testing is over, completely uninstall all components of the test system. The "refined" design is now the final SMS design, and should be documented accordingly. Use this final design to develop the rollout plan.

Document Contents

For More Information

These resources can help you to plan and deploy SMS in your enterprise.

Resource	Availability
SMS Administrator's Guide	Included with SMS Documentation
Windows NT Resource Kit	TechNet CD or MS Press
Windows 95 Resource Kit	TechNet CD or MS Press
Systems Management Server and NT Knowledge Bases	TechNet CD or Online Services

Document Contents

Conclusion

This paper has presented an overview of the planning, testing and implementation of a Microsoft Systems Management Server solution for a large enterprise. There are numerous sources of information (listed above) to help you find out more about the general concepts and specific tasks involved in creating an SMS solution. Appendix A, following, has some general information on SMS and what it can offer systems planners and support personnel. If you are interested in learning more about SMS, please contact Microsoft.

Document Contents

Appendix A: Overview of Microsoft SMS

This appendix contains general information on Systems Manager Server features and benefits. It is excerpted from the Microsoft Systems Management Server Reviewer's Guide.

The Business Need

Although businesses today spend large amounts of money to upgrade, maintain, and support software on desktop computers, they sometimes still fight a losing battle. Large businesses try to maintain thousands of desktop PCs that may be located all over the world. Medium-sized businesses often grow until they have a variety of systems distributed over several locations and supported by personnel who cannot keep up. Smaller businesses may see the value of desktop PCs, yet have no resources to maintain or even out-source them.

Data collected by the Gartner Group indicates that the capital cost of acquiring personal computers for a networked environment varies from 10%-18% of the total cost of ownership (depending on the platform) over the five year life cycle of the machines. The following chart shows the typical cost of ownership of a Windows-based personal computer over five years.

TOTAL COST OF ONE PC (5 years)

Capital	$5,670
Support	7,045
Administration	5,832
Operations	22,892
TOTAL	$41,439
Source: Gartner Group, August, 1994

Figure 1: Typical five-year cost of ownership for Windows-based personal computer

The vast majority of the cost is for support, administration, and operations. Microsoft Systems Management Server dramatically reduces the cost of managing distributed desktop PCs because it is the most comprehensive solution available for centralized PC management on any size network--from 10-users to large enterprises. Systems Management Server is a client/server system that enables centralized management of networked computers, removing the need for support personnel to go to desktops to determine configuration, install or upgrade software, or troubleshoot problems.

Systems Management Server offers enhancements for businesses of every size:

• Small businesses can use local service providers for cost-effective PC support and quick response to problems.
• Medium-sized businesses can centralize support staff, rather than having highly technical and expensive technicians at each office.
• Large businesses can save money and time when upgrading thousands of desktops to the next version of the Microsoft Windows operating system, Microsoft Office, or other major software releases.

How is Systems Management Server Unique?

Many currently available solutions can perform some of the desktop PC management services required by IS professionals, but they are limited in functionality and applicability. Systems Management Server, on the other hand, provides:

• Integrated and centralized management--SMS performs software and hardware inventory, software distribution, remote control and troubleshooting, management of shared network applications, metering of network applications, and network protocol analysis for remote diagnostics to every PC on the network--all from one location, all in one package.
• A scaleable solution--SMS works with small to large networks, using its distributed design to balance many management functions. Its flexibility allows you to change network structure without having to re-install a management solution.
• Support for heterogeneous environments--SMS works in most existing environments by supporting the leading client and server operating systems. It also supports these operating systems across the most popular WAN and LAN protocols.
• An open architecture--SMS uses the Desktop Management Interface (DMI), so inventory information stored in the Microsoft SQL Server database can be easily extended. This allows easy access by any ODBC program that can communicate with the database. SMS can also extend its information to any SNMP management product.
• Easy to use--SMS installs management servers from one central location, periodically checks system status, and issues a warning if processes are not running correctly. On the client side, SMS automatically detects every PC on the network, collects inventory, and installs the client management agents--all from one location.

Systems Management for Personal Computers

Systems management on mainframe computers has been available for some time. It consists of managing data, applications, and the operating system, as well as performing tasks such as system scheduling, making sure there is enough capacity, and charging different departments for computer time. Systems management typically is local: everything is inside one computer room, or, in the case of a large company, two or three computer rooms around the world. This approach has allowed for fully automated or "lights out" management.

However, as businesses deploy more and more personal computers, systems management has lagged behind. While some basic issues have remained the same, managing ever growing distributed environments has created new problems. Administrators need effective ways to control software versions, manage users, automate repetitive tasks, and manage different configuration files for every machine. It can be difficult to inventory all the PCs within a large enterprise, and more difficult still to determine their hardware and software. Yet to install or upgrade software throughout the enterprise, support personnel have to make sure that versions are correct for each user and that individual machines are capable of running the new software.

Even with the best planning, things can go wrong. Support personnel need tools to locate and diagnose problems so that machine down time is minimized. Support costs should be reduced by diagnosing and resolving problems from one centralized location. These things need to be accomplished in existing environments, and in the future as business needs change.

Solving these types of business problems is what systems management is all about. Microsoft Systems Management Server offers these advantages:

• A comprehensive solution to manage networked PCs--SMS detects all PCs on the network and automatically collects information about their hardware and software configuration. Once machines are inventoried, the administrator can query the database, automatically distribute and install software remotely, and perform remote troubleshooting on all machines.
• Works with existing systems, today--There usually is no need to replace existing network operating systems, because SMS supports Novell NetWare, IBM LAN Server, Microsoft Windows NT Server, and LAN Manager. Supported client operating systems include: MS-DOS, Windows 3.1, Windows for Workgroups, Windows NT Workstation, Microsoft Windows 95, Macintosh System 7.x, and OS/2 2.x.
• An open scaleable foundation which can easily be extended--SMS provides a solution for many critical management problems. Microsoft is also working to integrate other management solutions into SMS for problems currently outside its scope, by utilizing management tools that are part of Microsoft's operating systems--such as User Manager and Server Manager. Microsoft is working with over 25 systems management companies to provide integrated solutions with their management applications, and is providing a Software Development Kit for independent software vendors (ISVs) and customers who want to extend Systems Management Server to provide a complete management solution for their enterprise.

How Systems Management Differs from Network Management

Traditional network management focuses on the network's physical and logical infrastructure (hubs, bridges, and routers) as well as the transports that connect them. Its applications have to create a graphical map of the network, automatically detect devices, provide warnings, and manage other events from a central location.

Systems management, on the other hand, focuses on the end node and the systems and software running on the PC. Network management is still important, and vendors such as Computer Associates, Digital, Hewlett-Packard, IBM, Legent, and Network Managers complement Systems Management Server with tools that manage network infrastructure. Microsoft is working with a number of vendors to integrate their network management products into the Systems Management Server framework.

Benefits of Systems Management Server

Two types of IS professionals directly benefit from Systems Management Server:

• Computer planners--These are senior IS professionals who plan and implement a corporation's information technology strategy. In end user corporations these people are chief information officers, computer strategists, analysts, and architects. In the channel, they are systems integrators and original equipment manufacturers (OEMs).
• Computer support professionals--These people influence and provide information to computer planners. They include technical support professionals in end user corporations, as well as the press, editors, analysts, OEMs, and resellers.

Adding Value

Many businesses today have deployed Windows 3.1 in their environment with a number of productivity and business applications running on PCs linked to a networked file server (such as Novell NetWare, Microsoft Windows NT Server, LAN Manager, and IBM LAN Server) used for file and print serving. The IS staff must, among other duties, manage configuration files such as the initialization files WIN.INI and SYSTEM.INI. Each machine can easily have more than 20 of these, each with a specific configuration, and the administrator must know their location and contents at all times. Systems Management Server makes it easy to monitor each PC's configuration files from a central location. This can reduce help desk calls by correcting some problems before the user is even aware of them.

New software often costs more to deploy and support than it does to purchase and license. This is especially true when upgrading to major new releases, such as Windows 95 or Office 95. Systems Management Server makes possible automatic, unattended upgrades to any new software package, and allows the administrator to target machines to be upgraded, specify configuration options for machine, schedule the upgrade, and, of course, learn the status of the installation. This drastically reduces costs and problems.

Working with Existing Network Management Systems

Many businesses need to integrate systems management with existing network management solutions, including physical network management. Microsoft is working with a number of companies to integrate Systems Management Server into their network management applications, so that they can reach desktop PCs as well--thus providing a complete, complementary management solution. This form of integration can mean that from within the network management topology map an operator can double-click on an icon to review the full Systems Management Server properties of a machine and can take control of the remote machine and perform all Systems Management Server functions. In addition, important systems management information that is recorded within the Systems Management Server system can be redirected to the network management console when appropriate (for example, if the file server is very low on disk space).

Key Features and Benefits of Systems Management Server

Systems Management Server features benefit computer professionals who deal with the cost and complexity of building, maintaining and managing businesses that use PCs in a distributed network of any size. The table below presents a quick overview of major features and benefits.

Key product feature	Major product benefits
PC and server inventory	Automatically identifies and maintains a central inventory of PCs and servers. Automatically installs the client management agent on the client machine; no need to visit each machine. Performs detailed hardware and software inventory, including historical changes and collected files. Software audit identifies software packages based on an extensible database. Collects any DMTF-compatible hardware characteristics and other administrator-defined inventory information.
Software distribution and installation	Distributes and installs software on individual PCs and servers at remote sites. Allows administrators to drag and drop centrally defined packages on target systems. Automatically installs software on individual PCs at the time specified by the administrator. Installs software on specific servers to be automatically shared by specific users (based on user names or user groups). Allows administrators to define standard desktops that users always receive when they connect to the network, independent of location. Schedules any command on specific PCs using scripting tools such as Microsoft Test. (For example, you can automatically run virus scanning software every Saturday at midnight on all 486 PCs with 500 MB or larger disks.)
Software metering	Tracks software licenses used by installing software on individual PCs. Windows NT Server 3.5x can enforce concurrent use software licenses. Systems Management Server can automatically connect concurrent users to available servers, ensuring that users have access to all licenses across multiple servers. Windows NT Server's Performance Monitor provides detailed graphs and logs of concurrent application usage to help manage license requirements.
Diagnostic and remote control tools	Remotely control screen, keyboard, and mouse. Monitor critical system information, execute programs, or reboot individual MS-DOS or Windows-based PCs in real-time from across the LAN or WAN. Monitor performance and events, and manage users and services of remote Windows NT Workstations and Windows NT Servers.
Network packet decoding	Remotely capture, filter, decode, analyze, edit and replay network protocol packets including TCP suite, IPX/SPX, NetBIOS, AppleTalk suite, NCP, and SMB. Remote capture agents run on any Windows NT Workstation or Windows NT Server.
Security	Control access to each Systems Management Server function. Network Monitor agents support password protection for additional security. Users determine permissions for remote control functions and are alerted when remote control is active.

Benefit: Works with your existing systems
Client operating systems supported	MS-DOS 5.0 and later Windows 3.1 Windows for Workgroups 3.11 Windows NT Workstation 3.1 and 3.5 Windows 95 OS/2 2.x and OS/2 Warp Macintosh System 7.x
Server operating systems supported	Windows NT Server 3.1 and 3.5x LAN Manager 2.1 and later NetWare 3.1x and 4.x LAN Server 3.x and 4.0
Wide area network protocols supported	Any network protocol supported by Windows NT, including TCP/IP and IPX LU 6.2 provided by Microsoft SNA Server Remote access protocols including ISDN, X.25, and asynch
Additional support from third parties	PathWorks servers (available from Digital) UNIX: AIX, HP-UX, OSF/1, Sun OS, Solaris, and Ultrix (available from Digital) VMS (available from Digital)

Benefit: An open foundation that can be extended easily
Large third part support	More than 25 independent software vendors (ISVs) have announced plans to integrate their products with Systems Management Server including: Software recognition technology from Tally Systems Enterprise storage management from Arcada Software metering from Express Systems
Network management products integration	Traditional network management vendors are in the process of integrating their products with Systems Management Server. Examples are: Digital's PolyCenter Manager on NetView, Hewlett-Packard Open View, IBM NetView/6000, Network Manager's NMC Vision, and Compaq's Asset Control.
Support for standard interfaces	Systems Management Server supports other management standards, such as Simple Network Management Protocol (SNMP) and IBM's Netview. The Systems Management Server database can be accessed from any ODBC application, enabling reports of inventory information to be quickly generated. Systems Management Server offers support for the Desktop Management Interface (DMI), created by the Desktop Management Task Force (DMTF).
Services offered by Service Providers	Corporate Software, InfoNet, and Software Spectrum all provide a range of software distribution and management services that integrate with Systems Management Server.

System requirements
Server requirements	Windows NT Server 3.5x 486/66, Pentium, or RISC-based processor supported by Windows NT Server 3.5 20 MB RAM minimum (28 MB is recommended if a server is also running Microsoft SQL Server) 100 MB free disk space (more recommended for larger environments) Access to any CD-ROM drive supported by Windows NT Server 3.5 A single SQL Server 4.21a or 6.0. Additional SQL Servers are optional at remote sites.
Remote management console	Windows NT Workstation 3.1 and 3.5x Windows NT Server 3.1 and 3.5x
Distribution	Any Microsoft authorized reseller or Solution Provider
Warranty period	90 days
Sales support	(800) 227-4679

About the Author

Paul Bethany is a Senior Consultant wtih Microsoft Consulting Services, Philadelphia.

Microsoft Consulting Services offers analysis, design and implementation services for deployment of Microsoft Systems Management Server and other Microsoft BackOffice solutions tailored to meet the needs of your organization. For more information call MCS at 1-800-426-9400 in the US, (905) 712-0333 in Canada, or contact your local Microsoft subsidiary.

Microsoft TechNet
December 1995
Volume 3, Issue 12

Document Contents

Click Here to Search TechNet Web Contents

TechNet CD Overview

Microsoft TechNet Credit Card Order Form At this time we can only support electronic orders in the US and Canada. International ordering information.

Go To TechNet Home Page

©1996 Microsoft Corporation

Go To Microsoft Home Page