Intel ® vPro™ Expert Training 1 Module 2: Overview of Intel® vPro™ Features.

Intel® vPro™ Expert Training 1

Module 2:Overview of Intel® vPro™ Features


Topics covered

• vPro™ architecture overview

Two key engineering features

• vPro functions and features

Remote power and update

Remote inventory

Remote diagnostics and repair

Hardware isolation and recovery

Agent presence checking


Intel® vPro™ Expert Center

• www.intel.com/go/vProexpert

Providing an open dialogue between Intel and the IT community (IT Experts, ISVs, OEMs) on Intel® vPro™ technology.


Intel® Core™2 Duo processor

Mobile Intel® GM965 and PM965 Express Chipset

Intel® Next-Gen Wireless-N

Intel® 82566MM GbE LAN

Intel® AMT v2.5

Built-in manageability & security

Embedded NAC/802.1x Support

Increased connectivity

More performance, same great battery life

AMT Over Wireless

Intel® Core™2 Duo or Core 2 Quad processor (Q1’08)

Intel® Q35 chipset

Intel® 82566DM GbE LAN

Intel® AMT v3.0

Intel AMT Remote Configuration

Embedded NAC/802.1x Support

Support for new WS-MAN & DASH* management standards

Enhanced System Defense filters

Hardware-based trusted boot & virtual appliances

Lower CPU idle & Chipset power2007 Platform

2007 Platform

2007 Platform features & benefits

* DASH 1.0 implementation is “pre-standard”


Innovative Services and Initiatives

Energy efficiency and Energy Star1 specifications

Intel vProprocessor technology

in 2006

Intel vProprocessor technology

in 2007

65 watts (max)

22 watts (idle)

65 watts (max)

8 watts (idle)

Intel® Q965 Express Chipset

31 watts (max)

13 watts (idle)

Intel® Q35 Express Chipset

13 watts (max)

5.5 watts (idle)

1.86GHZ

1066 FSB

2MB cache

Dual Core

Starting at 2.33 GHz

Up to 1333FSB

Up to 12MB cache

Dual Core2

Chipset Power

Performance

Power


Two key vPro engineering features

1. vPro operates outside of the operating system (OS)

Operates irrespective of the OS that you are using

If the OS goes down or is otherwise compromised, vPro is still intact and can be used to repair your box

2. vPro Manageability Engine (ME) operates outside of the central processing unit (CPU)

Is available in all system power states

Is independent of the OS that you are using


vPro platform architecture

Memory Controller

Memory Controller

DDR2

FLASHFLASH

SPI NVM

BIOS

RAM

LANLAN

IO Controller IO Controller

CPU CPU

SW Agents

OS

ME *

NOCFilters

M-Link

• Manageability Engine (ME) integrated in Memory Controller Hub (MCH). Dedicated processor for executing firmware (FW), Available in all system power states

• Flash – Shared flash stores compressed firmware, provides storage accessible in all system power states

• System Memory – Dedicated RAM to run decompressed FW

• Network Outbreak Containment (NOC) Filters – Integrated h/w filters to monitor inbound & outbound traffic

• SW Agents – Agent Presence checks for vital applications, SW services for manageability

Sensors


Mobile caveat for vPro

• Intel® Centrino® with vPro™ technology systems are not manageable in Standby, Hibernate, or Off modes when using Battery Power (DC)

- Design decision to preserve battery life


PCs with Strengthened Security

Encrypted, Remote Power-On and UpdatePush security updates to PCs even if they are powered off

• Secure, remote deployment of patches without user interruption• Reduce time required to deploy patches, reduces vulnerability

Virus DAT file on PC updatedand rebooted if necessary

Encrypted power-offcommand sent to PC

Network

3

4

IT Management Console reviews agent software report in management database for client DAT

version to identify clients requiring update1

2

IT Management Console

Unique encrypted power-oncommand issued by IT console


IT console polls PCs for unique client ID_

PC reports unique client ID back toIT console even if powered down


1

Network

PCs with Superior Manageability

Remote Asset InventoryCount networked PCs even when powered down or the OS is inoperable

• Faster, more accurate than manual audits• Assist compliance with government regulations

2



Hardware and Software Inventory

• Remote hardware inventories assist with upgrade planning or lifecycle management

• Reduce duplicate licensing fees with accurate software inventories


IT console polls PC for hardware IDs and software versions regardless of power state

PC reports hardware IDsand software versions

12

Network

Accurately inventory hardware and software assets

Hardware:

Hard drive: Make, model

Memory: Size, speed

CPU: Type, GHz

Software:

Virus SW: Version

Management SW: Version

OS: Version11



Remote Diagnostics and Repair

• Reduce the number of deskside visits • Rapid response gets users up and running quickly

PC remotely rebooted from standard image on management server

Technician diagnoses problemand repairs issue as appropriate

(remote SW update, local HW install)

3

Network

4

PC unable to boot1

PC sends an alert2


Diagnose, reboot, and repair PCs down-the-wire



Hardware-Based Isolation and Recovery

• Hardware filters add a new level of security to your PC fleet• Isolation helps prevent infected PCs from spreading viruses


PC sends alert3

132 inbound and 32 outbound hardware filters inspecting traffic

4

IT console traffic allowed to pass through filters to remediate PC

Network

HW Filters

X

When virus is found, filter quarantines system by isolating the OS from the network while keeping remediation channel open to the console

2

Filter harmful viruses and isolate infected PCs


Network


Agent Presence Checking

• Security agents in place reduce IT vulnerability


IT management console repairsnon-working security agent

PC alerts IT console that security agent is missing or non-functioning

4

3

2Security agent fails to check in

1Security &

management agent continuously check in with Intel vPro

technology

Agent Present?

Agent Present?

YES NO

Intel®

AMT1

YES NO

Security Agent

Mgmt. Agent

Agent Present?

Agent Present?

YES NO

Intel®

AMT1

YES NO

Security Agent

Mgmt. Agent

Agent Present?

Agent Present?

YES NO

Intel®

AMT1

YES NO

Security Agent

Mgmt. Agent

(((

(((

Keep agents operating correctly


Quick review

• What are the two key features of the vPro system architecture?

• Why are these structural features important?

• What are the five key features/functions of the vPro system?

• How do each of those key features/functions work?

• Where can you get more information?


Intel® vPro™ Expert Center

• www.intel.com/go/vProexpert

Providing an open dialogue between Intel and the IT community (IT Experts, ISVs, OEMs) on Intel® vPro™ technology.


Legal Information

Copyright NoticeCopyright © 2008, Intel Corporation. All rights reserved.

Trademark InformationCentrino, Centrino Inside, Core Inside, Intel, the Intel logo, Intel Core, Intel vPro, and vPro Inside are trademarks of Intel Corporation in the U.S. and other countries.

* Other names and brands may be claimed as the property of others.

1 ENERGY STAR denotes a system level energy specification, defined by the US Environmental Protection Agency, that relies upon all of the components, including processor, chipset, power supply, HDD, graphics controller and memory to meet the specification. For more information see http://www.energystar.gov/index.cfmfuseaction=find_a_product.showProductGroup&pgw_code=CO

2 Q1’08 adds support for Quad Core

17

Intel ® vPro™ Expert Training 1 Module 2: Overview of Intel® vPro™ Features.

Documents

intel vpro technology

intel vpro expert training

vpro intel centrino

intel vpro expert center

vpro manageability engine

pm965 express chipset

vpro technology systems

vpro architecture overview