It's been another long, great day, so this is going to be a quick post focusing on the two exceptional sessions that wrapped up my day.
The first was on how and why you shouldn't run as a local admin in Windows. On one hand this is a topic that has been discussed for years, and frankly, seems like more trouble than most organizations want to take on. Sami Laiho does a great job of walking through the problem, and the solutions to live without local admin rights. I'll admit, I am local admin on my systems, but after that session, my limited finger and my admin finger are ready to change that. (Sorry, but you will have to watch the video to get the joke.) http://channel9.msdn.com/Events/Ignite/2015/BRK2335
The second session was on what's new in OSD for Configuration Manager and MDT. Aaron Czechowski walks though how OSD will evolve from the current state, to the Service Pack coming out next week, to vNext Configuration Manager coming out in the fourth quarter. There is a ton of great content in the session, but what really shined was what is coming to protect admins from getting in trouble with required OSD deployments. Configuration Manager will now identify required OSD deployments as high risk deployments, and enforce controls that prevent a deployment to the All Systems collection, or any collection over 100 devices. The 100 device limit can be customized through the Site Properties, as appropriate for your environment. There is a lot more great stuff coming in the next six months, so watch the video and get ready to upgrade your site! http://channel9.msdn.com/Events/Ignite/2015/BRK3328