Presentation is loading. Please wait.

Presentation is loading. Please wait.

Ashwin Palekar Principal Group Program Manager Microsoft Corporation Session Code: WSV208 Scott Roberts Senior Program Manager Lead Network Security Microsoft.

Published byPatricia Adams Modified over 8 years ago

Similar presentations

Presentation on theme: "Ashwin Palekar Principal Group Program Manager Microsoft Corporation Session Code: WSV208 Scott Roberts Senior Program Manager Lead Network Security Microsoft."— Presentation transcript:

1

2 Ashwin Palekar Principal Group Program Manager Microsoft Corporation Session Code: WSV208 Scott Roberts Senior Program Manager Lead Network Security Microsoft Corporation

3 Mobile Workforce Increasingly Porous Perimeter

4 “Re-Perimeterization” How to manage, monitor, and support remote users/machines all the time? How to simplify remote workers’ access “My network is where my buildings are” “My network is where my users and assets are”

5 DirectAccess Server Data Center and Business Critical Resources Local User Enterprise Network Remote User Assume the underlying network is always unsecure Redefine the corporate edge to protect the datacenter Security policies based on identity, not location Industry Trends Internet

6 Windows Server 2008 R2 Addressing Enterprise Needs Addressing User Needs Supporting IT Professionals Work Anywhere Infrastructure using Direct Access Secure & Flexible Application access using Terminal Services

7 DirectAccess Providing seamless, secure access to enterprise resources from anywhere

8 DirectAccess in Action

9 Benefits Of Direct Access Bringing the corporate network to the user Always-on access to corpnet while roaming No explicit user action required – it just works Same user experience on premise and off Simplified remote management of mobile resources as if they were on the LAN Lower total cost of ownership (TCO) with an “always managed” infrastructure Unified secure access across all scenarios and networks Integrated administration of all connectivity mechanisms Healthy, trustable host regardless of network Fine grain per app/server policy control Richer policy control near assets Ability to extend regulatory compliance to roaming assets Incremental deployment path toward IPv6

10 VPN vs. DirectAccess - Value VPNDirectAccess Manageability Granular Security Ease of use Ubiquitous Easy to install

11 DirectAccess Server (Server 2008 R2) DirectAccess Client (Windows 7) Internet Native IPv6 6to46to4 TeredoTeredo IP-HTTPSIP-HTTPS Tunnel over IPv4 UDP, HTTPS, etc. Encrypted IPsec+ESP IPsec Gateway Encrypted IPsec+ESP

12 Enterprise Network DirectAccess Server (Server 2008 R2) Line of Business Applications No IPsec IPsec Gateway IPsec Integrity Only (Auth) IPsec Integrity + Encryption Windows Server 2008 Non-Windows Server

13 DirectAccess Components Runs on Windows 7 Domain-joined Initial configuration done on Corpnet or over VPN Runs on Windows Server 2008 R2 Sits on network edge Single box by default Services can be split up for scalability

14 Direct Access Supporting Technologies Trusted, compliant, healthy machine Windows 7 client Corporate Network Applications & Data NAP (includes Server & Domain Isolation [SDI]) Forefront Client Security Windows Firewall BitLocker + Trusted Platform Module (TPM) IAG SP2 ForefrontUAG DC & DNS (Server 2008 R2)

15 DA Server Compliant Client Data Center and Business Critical Resources NAP / NPS Servers Internet CORPNET User CORPNET Compliant Network CORPNET User IPsec/IPv6 Direct Access Supporting Technologies Non- Compliant Client Forefront Client Security IAG SP2 Unmanaged Client

16 Situation Today Windows 7 Solution Mobile Broadband Internet connectivity via mobile broadband cards is expanding: Inconsistent user experience Additional software required Standard driver model (plug & play experience for built-in and external 3G cards) Mobile Broadband connection experience integrated into standard Windows UI Standard APIs for building customized connection management experience Compatible with DirectAccess and VPN Reconnect

17 Situation Today Windows 7 Solution VPN Reconnect VPN used frequently for remote access to corporate resources Mobile workers reconnect to VPN on every network outage Benefits Better end user experience: seamless and consistent VPN connectivity Reduced support costs The client maintains persistent VPN connection across network outages VPN Client can connect to any VPN Server of choice

18 BranchCache Windows Server 2008 R2 Slow WAN Link Client 1Client 2 Windows 7 Clients Windows Server 2008 Slow WAN Link Client 1Client 2 Vista SP1 Clients Subsequent access from the same client is satisfied from the transparent cache (local machine access) Situation Today Windows 7 Solution

19 Remote Desktop Services

20 Introducing New Names in R2 WS03WS 2008WS 2008 R2 Terminal Services Remote Desktop Services Terminal Server RD Session Host TS Session DirectoryTS Session BrokerRD Connection Broker TS Licensing Server RD Licensing Server TS GatewayRD Gateway TS Web AccessRD Web Access RD Virtualization Host

21 TS & VDI – an integrated solution Hyper-V support for virtual desktops Single discovery, broker & publishing infrastructure SCVMM Support Remote Application Access RemoteApp & Desktop Connections RemoteApp & Desktop & Web Access RD Gateway Security Improvements Full Fidelity RemoteApp & Desktops True multiple monitor support Multimedia Support & Bi direction audio 2D and 3D remoting for DirectX 10.1 (DXGI 1.1) ImprovedNEW!Improved Platform & Management Improvements New API, Connection Broker Extensibility,, Powershell Support, Best Practices Analyze, Full MSI support Platform & Management Improvements New API, Connection Broker Extensibility,, Powershell Support, Best Practices Analyze, Full MSI support WS08 R2 – New and Improved

22 Remote Desktop Connection Broker TS-based Remote Desktop Hyper-V-based Remote Desktop Virtual Machine Management (SCVMM) TS & VDI – An Integrated Solution

23 RemoteApp & Desktop Connections RemoteApp & Desktops icons integrated into start menu etc Icons refreshed & updated automatically RemoteApp & Desktop Connections RemoteApp & Desktops icons integrated into start menu etc Icons refreshed & updated automatically Multimedia Support & Audio Input Experience rich multimedia redirection Use VoIP applications and speech recognition. Multimedia Support & Audio Input Experience rich multimedia redirection Use VoIP applications and speech recognition. True multiple monitor support Use upto 10 monitors of any size or layout with RemoteApp and Desktops All applications behave like users expect – e.g. PowerPoint True multiple monitor support Use upto 10 monitors of any size or layout with RemoteApp and Desktops All applications behave like users expect – e.g. PowerPoint Aero Glass for Remote Desktop Session Host Uses have the same new Windows 7 look and feel when using Remote Desktop Server Aero Glass for Remote Desktop Session Host Uses have the same new Windows 7 look and feel when using Remote Desktop Server RemoteApp™ Language Bar Support Configure applications that use alternate language settings (e.g. right to left languages) from the local language bar RemoteApp™ Language Bar Support Configure applications that use alternate language settings (e.g. right to left languages) from the local language bar Full Fidelity RemoteApp & Desktops

24 TS and VDI – An Integrated Solution Single broker to connect users to sessions or virtual machines, out of the box solution for VDI scenarios with Hyper-V TS and VDI – An Integrated Solution Single broker to connect users to sessions or virtual machines, out of the box solution for VDI scenarios with Hyper-V RemoteApp & Desktop Connections Centrally managed list of applications and desktops (RDS & VDI) Automatically published, refreshed & integrated with Windows 7 RemoteApp & Desktop Connections Centrally managed list of applications and desktops (RDS & VDI) Automatically published, refreshed & integrated with Windows 7 Remote Desktop Web Access Integrated with RemoteApp & Desktop Connection management tools Provides access to applications & desktops from Windows 7, Vista & XP Remote Desktop Web Access Integrated with RemoteApp & Desktop Connection management tools Provides access to applications & desktops from Windows 7, Vista & XP Integrated Single Sign On only a single logon for RemoteApp & Desktop connections Forms based logon for RD Web Access Integrated Single Sign On only a single logon for RemoteApp & Desktop connections Forms based logon for RD Web Access Remote Desktop Gateway Session & Idle timeouts to enforce policy and authorization refresh Pluggable authentication and consent signing Remote Desktop Gateway Session & Idle timeouts to enforce policy and authorization refresh Pluggable authentication and consent signing Remote Application Access

25 Improved Application Compatibility Improved Microsoft Installer (MSI) compatibility Improved Application Compatibility Improved Microsoft Installer (MSI) compatibility Powershell Provider Easily automate and script administrative tasks for remote desktop scenarios Powershell Provider Easily automate and script administrative tasks for remote desktop scenarios Use Profile Cache Quota Removes need to delete profiles at logoff – speeds up logon. Ensures profiles never overrun disk space; least used profiles deleted Use Profile Cache Quota Removes need to delete profiles at logoff – speeds up logon. Ensures profiles never overrun disk space; least used profiles deleted RemoteApp & Desktop Connections Extensibility Can support discovery of any custom application type Ensure common UI and location for discovering connections RemoteApp & Desktop Connections Extensibility Can support discovery of any custom application type Ensure common UI and location for discovering connections Connection Broker Extensibility Orchestration plug-ins – e.g. VM preparation, VM placement Policy plug-ins – e.g. load balancing, security etc Connection Broker Extensibility Orchestration plug-ins – e.g. VM preparation, VM placement Policy plug-ins – e.g. load balancing, security etc Platform & Management Improvements

26 Summary Call-to-action Windows Server 2008 R2 offers great innovation for your Anywhere Access infrastructure Learn more about Direct Access and Remote Desktop Services Get ready deploying Windows Server 2008

27 Related Content VIR307 Windows 2008 R2: Remote Desktop Services: VDI Drilldown - Drilldown into RD Connection Broker and VDI features WSV308 Windows Server 2008 R2: Remote Desktop Services Overview - Overview of Remote Desktop Services & drilldown into RD Session Host VIR305 - Microsoft Remote Desktop Protocol (RDP) Architecture and Improvements. - Drilldown into RDP features Required Slide Speakers, please list the Breakout Sessions, TLC Interactive Theaters and Labs that are related to your session. Required Slide Speakers, please list the Breakout Sessions, TLC Interactive Theaters and Labs that are related to your session.

28 Windows Server Resources Make sure you pick up your copy of Windows Server 2008 R2 RC from the Materials Distribution Counter Learn More about Windows Server 2008 R2: www.microsoft.com/WindowsServer2008R2 Technical Learning Center (Orange Section): Highlighting Windows Server 2008 and R2 technologies Over 15 booths and experts from Microsoft and our partners Over 15 booths and experts from Microsoft and our partners Required Slide Track PMs will supply the content for this slide, which will be inserted during the final scrub. Required Slide Track PMs will supply the content for this slide, which will be inserted during the final scrub.

29 www.microsoft.com/teched Tech·TalksTech·Ed Bloggers Live SimulcastsVirtual Labs http://microsoft.com/technet Evaluation licenses, pre-released products, and MORE! Resources for IT Professionals

30 Complete an evaluation on CommNet and enter to win! Required Slide

31 © 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Ashwin Palekar Principal Group Program Manager Microsoft Corporation Session Code: WSV208 Scott Roberts Senior Program Manager Lead Network Security Microsoft."

Similar presentations

Faith Allington Program Manager Microsoft Corporation WSV322.

Faith Allington Program Manager Microsoft Corporation WSV322.
Tech·Ed North America /6/2017 8:35 AM

Tech·Ed North America /6/2017 8:35 AM
The System Center Family Microsoft. Mobile Device Manager 2008.

The System Center Family Microsoft. Mobile Device Manager 2008.
Remote Desktop Services

Remote Desktop Services
Scott Roberts Lead Program Manager Microsoft Session Code: WSV320.

Scott Roberts Lead Program Manager Microsoft Session Code: WSV320.
Agenda Customer pain points and how data classification can help Ecosystem Windows Server 2008 R2 for file Classification Infrastructure Demos Customer.

Agenda Customer pain points and how data classification can help Ecosystem Windows Server 2008 R2 for file Classification Infrastructure Demos Customer.
Faith Allington Program Manager Microsoft Corporation Session Code: WSV304.

Faith Allington Program Manager Microsoft Corporation Session Code: WSV304.
Microsoft Windows 7 Security Ronen Gottlib, CISSP Information Security Lead Microsoft.

Microsoft Windows 7 Security Ronen Gottlib, CISSP Information Security Lead Microsoft.
Connect with life Gopikrishna Kannan Program Manager | Microsoft Corporation

Connect with life Gopikrishna Kannan Program Manager | Microsoft Corporation
Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation

Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation
Desktop Virtualisation Sarah Mannion Desktop Technical Specialist Microsoft UK

Desktop Virtualisation Sarah Mannion Desktop Technical Specialist Microsoft UK
Jason Leznek, Group Product Manager, Windows Client Justin Graham, Senior Product Manager, Windows Server.

Jason Leznek, Group Product Manager, Windows Client Justin Graham, Senior Product Manager, Windows Server.
 Christa Anderson Program Manager II Microsoft Corporation  Niraj Agarwala Senior Test Lead Microsoft Corporation ES22.

 Christa Anderson Program Manager II Microsoft Corporation  Niraj Agarwala Senior Test Lead Microsoft Corporation ES22.
Sudhir Rao Technology Specialist | Microsoft Corporation.

Sudhir Rao Technology Specialist | Microsoft Corporation.
Vito Konopelec Microsoft Slovakia Building The Optimized Desktop Infrastructure with Windows 7 and Windows Server 2008 R2.

Vito Konopelec Microsoft Slovakia Building The Optimized Desktop Infrastructure with Windows 7 and Windows Server 2008 R2.
Tech·Ed North America /19/2017 7:21 AM

Tech·Ed North America /19/2017 7:21 AM
Ashwin Palekar Group Program Manager Microsoft Corp Session Code: VIR307.

Ashwin Palekar Group Program Manager Microsoft Corp Session Code: VIR307.
Dan Stolts, MCSE, MCITP… Founder/President: Virtualization Group – Boston President: Boston User Groups

Dan Stolts, MCSE, MCITP… Founder/President: Virtualization Group – Boston President: Boston User Groups
TS Licensing RDP Terminal Server TSV Session BrokerTS Gateway Client TS Web Access The terminal server runs applications locally and displays them.

TS Licensing RDP Terminal Server TSV Session BrokerTS Gateway Client TS Web Access The terminal server runs applications locally and displays them.
André Keartland Inobits Consulting WSV206 Agenda Remote Desktop Services… What’s that?! What is new in Windows Server 2008 R2? Demo.

André Keartland Inobits Consulting WSV206 Agenda Remote Desktop Services… What’s that?! What is new in Windows Server 2008 R2? Demo.

Similar presentations

Ads by Google