Deploy Windows Updates Without Wsus Radio' title='Deploy Windows Updates Without Wsus Radio' />The Enterprise version of Windows 10 is now available, offering the prospect of new features that Microsoft says will help with security and management of PCs and. This guide helps IT professionals plan for and deploy Windows 10 Mobile devices. Windows 1. 0, version 1. Windows 1. 0Applies to. Deploy Windows Updates Without Wsus Radio' title='Deploy Windows Updates Without Wsus Radio' />Windows 1. The Basic level gathers a limited set of information that is critical for understanding the device and its configuration including basic device information, quality related information, app compatibility, and Microsoft Store. When the level is set to Basic, it also includes the Security level information. The Basic level also helps to identify problems that can occur on a particular device hardware or software configuration. For example, it can help determine if crashes are more frequent on devices with a specific amount of memory or that are running a particular driver version. This helps Microsoft fix operating system or app problems. Use this article to learn about diagnostic events, grouped by event area, and the fields within each event. With the introduction of new Windows 10 service branches, you will need to upgrade your Windows 10 devices faster. Use SCCM windows 10 servicing plans. We pushed both kb2889923 and kb2889853 with WSUS to about 300 Machines and kb2889853 installed fine on all of them. A brief description is provided for each field. Every event generated includes common data, which collects device data. You can learn more about Windows functional and diagnostic data through these articles Note. Updated July 2. 01. Weve added new fields to several Appraiser events to prepare for upgrades to the next release of Windows and weve added a brand new event, Census. The Speakers of DEF CON 25. Speaker Index. 0 0ctane 0x00string A AlephNaughtHyrum Anderson Ayoul3 Dor Azouri. Computerworld covers a wide range of technology topics, including software, security, operating systems, mobile, storage, servers and data centers, emerging tech, and. Windows 10, version 1703 basic level Windows diagnostic events and fields. Introduction I hate the WSUS reports built into the console. Theyre slow, and when it comes to doing something useful with the data, its basically impossible. Speech, to collect basic details about speech settings and configuration. Common data extensions. Common Data Extensions. App. The following fields are available exp. Id Associates a flight, such as an OS flight, or an experiment, such as a web site UX experiment, with an event. Id The user. ID as known by the application. The environment from which the event was logged. Id An integer value that represents the app session. This value starts at 0 on the first app launch and increments after each subsequent app launch per boot session. Common Data Extensions. CSThe following fields are available sig A common schema signature that identifies new and modified event schemas. Common Data Extensions. CUETThe following fields are available st. Id Represents the Scenario Entry Point ID. This is a unique GUID for each event in a diagnostic scenario. This used to be Scenario Trigger ID. Id Represents the ETW Activity. Id. Logged via Trace. Logging or directly via ETW. Id Represents the ETW Related Activity. Id. Logged via Trace. Logging or directly via ETW. Represents the ETW Op Code. Represents a bitmask of the ETW Keywords associated with the event. Represents the bitmap that captures various Windows specific flags. Id The composer ID, such as Reference, Desktop, Phone, Holographic, Hub, Io. T Composer. tickets A list of strings that represent entries in the HTTP header of the web request that includes this event. Upload buffer sequence number in the format lt buffer identifier lt sequence number mon Combined monitor and event sequence numbers in the format lt monitor sequence lt event sequence Common Data Extensions. Device. The following fields are available ver Represents the major and minor version of the extension. Id Represents a locally defined unique ID for the device, not the human readable device name. Most likely equal to the value stored at HKLMSoftwareMicrosoftSQMClientMachine. Iddevice. Class Represents the classification of the device, the device family. For example, Desktop, Server, or Mobile. Common Data Extensions. Envelope. The following fields are available ver Represents the major and minor version of the extension. Represents the uniquely qualified name for the event. Represents the event date time in Coordinated Universal Time UTC when the event was generated on the client. This should be in ISO 8. Sample Represents the effective sample rate for this event at the time it was generated by a client. Represents the epoch and seq. Num fields, which help track how many events were fired and how many events were uploaded, and enables identification of data lost during upload and de duplication of events on the ingress server. Num Represents the sequence field used to track absolute order of uploaded events. It is an incrementing identifier for each event added to the upload queue. The Sequence helps track how many events were fired and how many events were uploaded and enables identification of data lost during upload and de duplication of events on the ingress server. Key Represents an ID for applications or other logical groupings of events. Represents a collection of bits that describe how the event should be processed by the Connected User Experience and Telemetry component pipeline. The lowest order byte is the event persistence. The next byte is the event latency. Represents the operating system name. Ver Represents the OS version, and its format is OS dependent. Id Represents a unique identifier of the client application currently loaded in the process producing the event and is used to group events together and understand usage pattern, errors by application. Ver Represents the version number of the application. Used to understand errors by Version, Usage by Version across an app. V Represents the Correlation Vector A single field for tracking partial order of related telemetry events across component boundaries. Common Data Extensions. OSThe following fields are available ver Represents the major and minor version of the extension. Id Represents the experiment ID. The standard for associating a flight, such as an OS flight pre release build, or an experiment, such as a web site UX experiment, with an event is to record the flight experiment IDs in Part A of the common schema. Represents the locale of the operating system. Id An integer value that represents the boot session. This value starts at 0 on first boot after OS install and increments after every reboot. Common Data Extensions. User. The following fields are available ver Represents the major and minor version of the extension. Id Represents a unique user identity that is created locally and added by the client. This is not the users account ID. Common Data Extensions. XBLThe following fields are available nbf Not before timeexp. Id Expiration timesbx XBOX sandbox identifierdty XBOX device typedid XBOX device IDxid A list of base. XBOX User IDs. uts A bit field, with 2 bits being assigned to each user ID listed in xid. This field is omitted if all users are retail accounts. Common Data Extensions. Consent UI Event. This User Account Control UAC telemetry point collects information on elevations that originate from low integrity levels. This occurs when a process running at low integrity level IL requires higher administrator privileges, and therefore requests for elevation via UAC consent. By better understanding the processes requesting these elevations, Microsoft can in turn improve the detection and handling of potentially malicious behavior in this path. The following fields are available event. Type Represents the type of elevation If it succeeded, was cancelled, or was auto approved. Token Represents the flag used to distinguish between administrators and standard users. Name Represents the name of the file requesting elevation from low IL. Reason Represents the distinction between various elevation requests sources appcompat, installer, COM, MSI and so on. Name Represents the name of the file requesting elevation from low IL. State Represents the state of the signature, if it signed, unsigned, OS signed and so on. Name Represents the name of the publisher of the file requesting elevation from low IL. Line Represents the full command line arguments being used to elevate. Windows 1. 0 Enterprise edition What are the key features for businesses The Enterprise version of Windows 1. Microsoft says will help with security and management of PCs and mobiles. While businesses tend to lag far behind consumers when it comes to updating their machines, some analysts are already seeing Volume Licensing customers express interest in upgrading from earlier versions of Windows. What weve been a little surprised at is how aggressive a lot of our customer base is towards Windows 1. Stephen Kleynhans, research VP with analyst house Gartner, said. There are a lot of customers who are coming to us and saying, Wed like to move in early 2. Theyre interested in going ahead with Windows 1. Windows 7 six years ago, which has been a bit of a surprise for us. That eagerness to migrate can, in Kleynhans view, partly be put down to the stress organisations went through in moving from Windows XP when support ended last year. They ended up having to do a lot of work very quickly, really under the gun. Thats always expensive and when you end up making mistakes, thats when things go wrong, he said. A lot of them are aware of that and say, We dont really want to do that again. Next time, lets be a little more organised, lets be a little more proactive, lets not run into that wall, he said, adding that these companies want to move well ahead of support ending for Windows 7 in January 2. The other force driving businesses to make the switch will be the rise of convertible PCs, machines which can switch between being a tablet and a laptop, such as the Microsoft Surface. These devices can take advantage of Windows 1. A lot of enterprises have some internal demand for some of these new cool devices. To meet that you either go with Windows 8, and deal with the whole set of issues that surround it, or you can just go with Windows 1. But not everyone agrees that upgrading will be a priority for businesses. Richard Edwards, principal research analyst for enterprise productivity and mobility at Ovum, said Clearly, theres knowledge of Windows 1. How To Download Adobe Flash Player 11 Windows. IT departments. But weve not heard from any of our enterprise customers just yet that they have plans to roll out Windows 1. Here is a rundown of the key Windows 1. Enterprise edition features that Microsoft is hoping will persuade businesses to make the switch. Windows 1. 0s new enterprise features Enterprise Data Protection Windows 1. Enterprise Data Protection features, which are to be added to Windows 1. Enterprise at a later date, are designed to help prevent the accidental disclosure of sensitive information. The system will use containerisation file techniques to keep personal and enterprise data separate with minimal impact on the way employees work, according to Microsoft. Additional safeguards will protect sensitive data when it is shared. Its encrypting data as it moves around your organisation. If you send an email to the wrong person, with the wrong file attached and it escapes your organisation, its not going to be readable, its going to be encrypted. But someone inside your organisation would have no problem reading it, Gartners Kleynhans said. Microsoft has also highlighted Windows 1. It will also be able to be used with a mobile device management MDM system to protect corporate data inside Office universal apps. Device Guard. This feature allows devices to be restricted to running only trusted software whether its traditional desktop, Windows store or in house apps. It also makes it much less likely, according to Microsoft, that an attacker who seizes control of the Windows kernel will be able to run malicious code. Device Guard uses the new virtualization based security in Windows 1. Enterprise to isolate the Code Integrity service that controls the process from the Microsoft Windows kernel itself, letting the service use signatures defined by enterprise controlled policy to determine what is trustworthy. You can lock the operating system to that piece of hardware, and nothing else could ever boot on that piece of hardware, Gartners Kleynhans said. You can make it so that it would be very hard, if not impossible, to wipe and reload a machine with something else. Microsoft says this whitelisting approach will be effective in stopping malware from being run on machines, particularly software that alters its code to prevent detection by anti virus software. Using technology embedded in the hardware and virtualization to sandbox the Code Integrity service will also help foil exploits that compromise Windows at the kernel level, and which can tamper with traditional virus and malware countermeasures. Device Guard requires various hardware features and software settings UEFI 2. Virtualization Extensions such as Intel VT x, AMD V, and SLAT must be enabled x. Windows IOMMU, such as Intel VT d, AMD Vi TPM 2. BIOS lockdown. HP, Acer, Lenovo, Toshiba, Fujitsu and others will manufacture systems designed for the new Microsoft security controls. Provisioning packages This feature allows Window 1. OS. IT admins can configure provisioning package rules that determine the look of the OS, what apps and certificates should be installed, that enroll devices with an MDM suite, set out user rights and more. The same provisioning package rules can be used to configure multiple machines and can be applied to either a Windows image or running Windows machine via SD card, USB drive or network share. Packages are created using the Imaging and Configuration Designer, part of the new Windows 1. Assessment and Deployment Kit. Microsoft Passport Microsoft Passport provides a system for allowing users to log into Windows 1. PIN. This same scan or PIN can then be used to log into Microsoft, Active Directory or Azure Active Directory accounts, as well as many non Microsoft services that support Fast ID Online authentication including Office. Exchange Online, Salesforce, Citrix, Box and Concur. Microsoft says Passport provides both convenience, in that the user has to remember fewer credentials, and security, because no passwords are used. Credential Guard Credential Guard will offer additional security for login details by storing derived credentials NTLM hashes and Kerberos tickets and the process that manages them in a secured isolated container that uses Hyper V and virtualization based security. It will require UEFI 2. Virtualization Extensions such as Intel VT x, AMD V, and SLAT must be enabled x. Windows IOMMU, such as Intel VT d, AMD Vi TPM 2. BIOS. Deployment features. Sideloading apps Sideloading allows certain Windows Store apps, which firms dont want to publish and make publicly available, to be installed on Windows machines. This practice of sideloading is useful when a firm wants to deploy line of business apps internally. Sideloading is a built in capability with Windows 1. Home, Pro and Enterprise users. If an organisation is developing its own set of corporate apps that it wishes to push out to employees, clearly there is some inherent business value in Windows 1. Ovums Edwards. Mobile Device Management Phones, tablets and other devices running Windows 1. IT. Windows 1. 0 machines can connect to a Mobile Device Management MDM server that will enroll and configure the devices, as well as applying updates and enforcing the latest in house policies governing usage. An MDM package can be used both to manage Windows 1.