Chris Cools
Member
- Messages
- 12
- Reaction score
- 0
- Points
- 1
Hi everybody,
We are currently planning migration from Altiris Notification Server to SCCM 2012 R2.
In Altiris we only use packages, application model is new in SCCM and we are considering using it. We have a few issues though, and I don't see how app model can solve these for us. I would like to hear from the experts if there are any decent ways to achieve what we want.
Using full app model is possible in theory but too costly for us, it would mean that we have to 'touch' 800+ existing packages we use today (environment: financial company with 40000+ workstations distributed over several countries). So if we are going for the app model it will be an evolution, not a revolution. A hybrid model (packages and applications) will be used at first instance.
We have 'special' packages today which are business-critical and require a fixed sequence of installation. For example, we have applications that first need a certain Java version to be installed, then remove some stuff, install other stuff in a certain sequence, reinstall the previously removed stuff, et cetera...
To do this, we need custom task sequences because the app model doesn't support this kind of setup (I'm newbie so I might be mistaking, hence these questions on this blog). We have been playing around with these and the results are promising, we do have control over the installation.
But this generates a bunch of other problems for us... For example (some are hypothetical but can (and will) occur in our company). I have a few questions for the experts:
1. Is it OK to mix apps and packages in a task sequence?
I think this is no problem, I've seen that working already but feel free to share your thoughts anyway!
)
2. Is it OK to use a package as dependency for an application and vice versa or is this simply not possible?
If possible, I see issues when updates of software is needed. Let's say you have app A with dependencies app B and package C. Let's then say you need to upgrade app A and package C at a certain moment in time. How will this work in real-life since the app can be updated through supersedence but the packages needs a push? Assuming I'm correct about that, as stated before, I am a newbie to SCCM and especially app model.
3. What about supersedence?
It sounds great in theory but in real-life we want to have control over the how and what and when and we need to keep software levels in our company at all times as up to date as possible. We can push packages to workstations via Altiris today and SCCM will have the same capabilities, no doubt about that. But if I'm not mistaking, supersedence will just do its thing whenever the clients is aware of the new application.
How can we guide everything when we want it? And how can we control things? For example, we do not want workstations starting installations randomly, we want to control and execute these things in a planned way.
Furthermore, most applications can install in the background while a user is logged on and working on a workstation. Today we've created a powershell-based messaging framework which notifies the user that an installation will start and he / she can postpone for two hours max or start immediately. But in some cases we need the user to not interfere in any way with the installation (f.e. upgrading an application that is being used by a user thus opened on his workstation). We have created a 'lock-mechanism' for these scenario's which basically means 'user gets notified that his / her workstation will be rebooted and locked - reboot is performed - lock mechanism prevents user to log on again while installation is running'. After installation the workstation boots again to remove the lock and the user can log on again. How can we do this with supersedence (or in general in SCCM)? I'm afraid we will have to create or adapt the lock mechanism for SCCM or am I wrong?
4. Custom task sequences and user-centric model
I think it is kind of stupid that task sequences can't be targeted to users but only to devices. Custom TS is what we need for stuff like the special sequences packages I've described earlier. We have a 'everyone can use every workstation in our network thus personal software is available (for install) on any device the user logs on to'-policy which means that
- primary device has the user's personal software installed
- Altiris Software Portal is available on other workstations and users can request and install personal software in this way
This is however a problem when you can't assign TS to a user. I have created a PS script which will be triggered from an application and basically just checks for the deploymentID of the TS and will trigger it from the local device. Prerequisite is that the TS is deployed to all devices (available, required by 2033 something). Is there a better way to do this? I cam't believe Microsoft doesn't support targeting TS to user collections? I know a TS is normally used for OSD, but it is an ideal tool for 'guided software installations'. App model and dependency groups do not solve our issues with special packages! I can't even set a priority between dependency groups and they are limited to five. I could make every package / application a dependency of the 'previously needs to be installed package / application' I guess but that will become unmanageable quickly. We do have packages today that can be installed stand-alone but at the same time serve as dependency of another package. We don't want the stand-alone installation to start installing a package that we needed to define as dependency just for the sake of installation order.
I know these are a lot of questions at once and I'm sure not everything is explained as it should so it will be difficult for the experts to reach detailed solutions. No worries, that's not what I'm asking, I simply want to discuss the best practices and ideas for situations like the ones described above.
Thanks in advance!
Regards, Chris
We are currently planning migration from Altiris Notification Server to SCCM 2012 R2.
In Altiris we only use packages, application model is new in SCCM and we are considering using it. We have a few issues though, and I don't see how app model can solve these for us. I would like to hear from the experts if there are any decent ways to achieve what we want.
Using full app model is possible in theory but too costly for us, it would mean that we have to 'touch' 800+ existing packages we use today (environment: financial company with 40000+ workstations distributed over several countries). So if we are going for the app model it will be an evolution, not a revolution. A hybrid model (packages and applications) will be used at first instance.
We have 'special' packages today which are business-critical and require a fixed sequence of installation. For example, we have applications that first need a certain Java version to be installed, then remove some stuff, install other stuff in a certain sequence, reinstall the previously removed stuff, et cetera...
To do this, we need custom task sequences because the app model doesn't support this kind of setup (I'm newbie so I might be mistaking, hence these questions on this blog). We have been playing around with these and the results are promising, we do have control over the installation.
But this generates a bunch of other problems for us... For example (some are hypothetical but can (and will) occur in our company). I have a few questions for the experts:
1. Is it OK to mix apps and packages in a task sequence?
I think this is no problem, I've seen that working already but feel free to share your thoughts anyway!
)2. Is it OK to use a package as dependency for an application and vice versa or is this simply not possible?
If possible, I see issues when updates of software is needed. Let's say you have app A with dependencies app B and package C. Let's then say you need to upgrade app A and package C at a certain moment in time. How will this work in real-life since the app can be updated through supersedence but the packages needs a push? Assuming I'm correct about that, as stated before, I am a newbie to SCCM and especially app model.
3. What about supersedence?
It sounds great in theory but in real-life we want to have control over the how and what and when and we need to keep software levels in our company at all times as up to date as possible. We can push packages to workstations via Altiris today and SCCM will have the same capabilities, no doubt about that. But if I'm not mistaking, supersedence will just do its thing whenever the clients is aware of the new application.
How can we guide everything when we want it? And how can we control things? For example, we do not want workstations starting installations randomly, we want to control and execute these things in a planned way.
Furthermore, most applications can install in the background while a user is logged on and working on a workstation. Today we've created a powershell-based messaging framework which notifies the user that an installation will start and he / she can postpone for two hours max or start immediately. But in some cases we need the user to not interfere in any way with the installation (f.e. upgrading an application that is being used by a user thus opened on his workstation). We have created a 'lock-mechanism' for these scenario's which basically means 'user gets notified that his / her workstation will be rebooted and locked - reboot is performed - lock mechanism prevents user to log on again while installation is running'. After installation the workstation boots again to remove the lock and the user can log on again. How can we do this with supersedence (or in general in SCCM)? I'm afraid we will have to create or adapt the lock mechanism for SCCM or am I wrong?
4. Custom task sequences and user-centric model
I think it is kind of stupid that task sequences can't be targeted to users but only to devices. Custom TS is what we need for stuff like the special sequences packages I've described earlier. We have a 'everyone can use every workstation in our network thus personal software is available (for install) on any device the user logs on to'-policy which means that
- primary device has the user's personal software installed
- Altiris Software Portal is available on other workstations and users can request and install personal software in this way
This is however a problem when you can't assign TS to a user. I have created a PS script which will be triggered from an application and basically just checks for the deploymentID of the TS and will trigger it from the local device. Prerequisite is that the TS is deployed to all devices (available, required by 2033 something). Is there a better way to do this? I cam't believe Microsoft doesn't support targeting TS to user collections? I know a TS is normally used for OSD, but it is an ideal tool for 'guided software installations'. App model and dependency groups do not solve our issues with special packages! I can't even set a priority between dependency groups and they are limited to five. I could make every package / application a dependency of the 'previously needs to be installed package / application' I guess but that will become unmanageable quickly. We do have packages today that can be installed stand-alone but at the same time serve as dependency of another package. We don't want the stand-alone installation to start installing a package that we needed to define as dependency just for the sake of installation order.
I know these are a lot of questions at once and I'm sure not everything is explained as it should so it will be difficult for the experts to reach detailed solutions. No worries, that's not what I'm asking, I simply want to discuss the best practices and ideas for situations like the ones described above.
Thanks in advance!
Regards, Chris
