1. INF01 - Windows Server: Data-centre ready?
James O’Neill,
IT Pro Evangelist , Microsoft UK

2. Agenda Background – the world we’re deploying into Server 2008 Control
Server 2008 Flexibility

3. O’Neill’s hypothesis.
Success in a knowledge based business depends on attracting and retaining more than your share of smart people.

4. The future: The Millennial generation*
Learnt to collaborate at school. Expect it at work.
“Why am I better connected at home than work?”
Expect to work flexibly
“Work is something I do: not somewhere I go”
Expect the functions which serve the business to serve them
“The person who picked my Laptop doesn’t have to carry it ”
See a relationships with employers differently.
“Don’t you dare call me a resource”
Demand what other generations wanted but were conditioned not to expect... if they don't get it, they simply leave
Will cause companies to “make internal customer service a way of doing business.”
Ask yourself: Does IT in my company drive people away ?
* For a good, if US focused, background, see

5. I.O. Model classifications – with a millennial spin
11/19/2018 6:36 PM
I.O. Model classifications – with a millennial spin
Managed and
consolidated IT
Infrastructure
with maximum
automation
Fully automated
management,
dynamic resource
Usage , business
linked SLA’s
Managed IT
Infrastructure
with limited
automation
Uncoordinated, manual
infrastructure
Too busy buying and installing
We fight fires
We’re gaining control
Too busy saying “No”
We enable business
Help me get the job done
Help the company
We’re a Strategic asset
More Efficient Cost Center
Business Enabler
Strategic Asset
Cost Center
* Based on the Gartner IT Maturity Model
©2005 Microsoft Corporation. All rights reserved.
This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

6. You may have seen it put like this ...
11/19/2018 6:36 PM
You may have seen it put like this ...
Technology Change
Regulatory Compliance
Competition
Security
Cost Reduction
Keep Business Up & Running
Title: More Pressure on IT than Ever
Talking Points: There are positive pressures and negative pressures on the typical IT infrastructure.
There are positive pressures and there are negative pressures on the typical IT infrastructure.
Positive Pressures: The positive, such as customer connection or end user productivity, usually result in more money and business productivity, while increasing business results and adding new value. The negative, such as cost reduction or regulatory compliance, represent the pressures that require IT groups to act in a reactionary mode.
[BUILD1] Negative Pressures: Our Research indicates that of the $140 billion US spent every year on IT budgets, 70% of those budgets is being spent on administrative costs for IT personnel, reacting to situations that arise, and keeping the IT infrastructure up and running. This is opposed to the mere 30% of those budgets being spent proactively making improvements, automating processes, and adding business value. Windows Server 2008 contains a number of features that makes IT more efficient by providing better management and automation tools so that IT professional are able to keep the systems running and use their time efficiently.
Additional Information:
slide 6
Customer
Connection
End User
Productivity
Business Results & New Value

7. The future 2. Growing green agenda.
IT is Green when this is the alternative

8. Corollary Too much IT effort is expended treading water
Reducing THAT is the key
Satisfying a more demanding work force (and being green)
Being a business asset: if you’re not , how long till you’re out-sourced ?

9. History
NT 3.5 (TCP/IP Focus)
NT 4 (App platform)
W2K(Active Directory)
W2K3 [R2] (Secure Apps)
W2K8 (Managability)

10. Directions for improvement
11/19/2018 6:36 PM
Directions for improvement
Better life for IT
Flexibility
Protection
Control
Spend less time on everyday tasks
Harden the OS & protect your environment
Quickly respond to business needs
Title: Windows Server 2008 Pillars
Talking Points: Windows Server 2008 contains three pillars.
Windows Server 2008 contains three pillars: More Control, Increased Protection, and Greater Flexibility.
More Control: Windows Server 2008 gives IT Professionals more control over their servers and network infrastructure, allowing them to focus on critical business needs. Enhanced scripting capabilities and task automation tools like PowerShell help IT Professionals automate tasks. Role-based installation and management with Server Manager eases the task of managing and securing multiple server roles in an enterprise. The new Server Manager console provides a single source for managing a server's configuration and managing system information. IT staff can install only the roles and features they need, and wizards automate many of the time-consuming tasks of deploying systems. Enhanced system management tools provide information about systems and alert IT staff to potential problems before they occur.
[BUILD1] Increased Protection: Windows Server 2008 hardens the operating system and Increases protection of the network environment to provide a solid foundation for running and building business tasks. Security innovations reduce the attack surface area of the kernel, resulting in a more secure server environment. Windows Service Hardening helps keep systems safer by preventing critical Windows services from being used by abnormal activity in the file system, registry, or network. Security is also greatly enhanced in the Windows Server 2008 operating system by means of: Network Access Protection, Read-Only Domain Controller, PKI enhancements, improved security in Windows Firewall, and next-generation cryptography. NAP is designed to automatically enforce health policies, including software requirements, security update requirements, configuration requirements, and other settings. NAP prevents unhealthy computers from accessing and compromising the network and the systems connected to it.
[BUILD2] Greater Flexibility: Windows Server 2008 is designed to allow administrators to modify their infrastructure to adapt to the changing needs of the business, and still remain agile. Flexibility is enhanced for Web and remote application access with features such as Terminal Services. Windows Server 2008 speeds the deployment and maintenance of IT systems, and aids in the consolidation of servers with Windows Server Virtualization. For organizations that need domain controllers in branch offices, Windows Server 2008 offers a new configuration option: the Read-Only Domain Controller (RODC), which prevents user accounts from being exposed if the Domain Controller is compromised.
Additional Information:
Changes in Functionality to Windows Server Longhorn (January 2007).doc (also called the Book of Longhorn) 
Windows Server Longhorn, Messaging Framework document, updated 1/22/07.
©2004 Microsoft Corporation. All rights reserved.
This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

11. Hypervisor Virtualization
PKI Changes
Bit Locker
Rights Management
Hypervisor Virtualization
Sharepoint
Restartable AD
IIS 7
Deployment Services
Server Manger
Server Core
TS APP
TS Gateway
V 3 .net framework
Clustering
Reliability Monitor
QOS
Powershell
Firewall
MMC 3.0
New Scheduler
AD Auditing
MSMQ 4
Low priority I/O
NAP
Firewall
TCP/IP Changes
Read-only DC
WIN-RM WIN-RS
Server Hardening

12. Spend Less Time on Everyday Tasks
11/19/2018 6:36 PM
Spend Less Time on Everyday Tasks
Enhanced Scripting and Task Automation
More Control
Web Server Management
Windows PowerShell
IIS 7
Policy Based Networking
Title: Spend Less Time on Everyday Tasks
Talking Points: Windows Server 2008 lets IT Professionals spend less time on everyday tasks.
Windows Server 2008 provides more control over your server and network infrastructure, allowing IT Professionals to focus on your most critical business needs. Next, we will discuss some of the areas where Windows Server 2008 provides more control.
[BUILD1] Enhanced Scripting and Task Automation: Reduce time for common IT tasks by automating with a new powerful scripting environment, called Windows PowerShell.
[BUILD2] Web Server Management: Simplify Web server management with advanced and easy-to-use options in Internet Information Services (IIS) 7.0. IIS 7.0 provides powerful customization, diagnostic, and troubleshooting tools.
[BUILD3] Configuration and Role Management: Install and manage only the Windows services that you need with Windows Server 2008 Configuration and Role management. provided by Windows Server Manager and the Server Core installation options. The new Server Manager tool provides a great, out-of-the-box experience for adding, configuring, and managing server roles. Administrators can use the new Server Core installation to install Windows Server 2008 with only the features that the supported server roles require, and without any extra overhead. This limits the roles that the server can perform, but can improve security and reduce management.
[BUILD4] Policy Based Networking: Control access to systems using the enhanced Windows Firewall and policy-based networking tools.
Additional Information:
Changes in Functionality to Windows Server Longhorn (January 2007).doc (also called the Book of Longhorn)
Configuration and Role Management
Windows Server Manager, Server Core
Windows Firewall

13. Managing Windows Server 2008
11/19/2018 6:36 PM
Managing Windows Server 2008
Server Manager
Title: Managing Windows Server 2008
Talking Points: Server Manager is a new feature in Windows Server 2008 that helps implement the Microsoft Dynamic Systems Initiative (DSI) vision—where IT works closely with business to meet the demands of a rapidly changing and adaptable environment. Server Manager is an expanded MMC that allows IT staff to view and manage virtually all of the information and tools that affects a server's productivity.
Windows Server 2008 implements features of the Microsoft Dynamic Systems Initiative (DSI) to help businesses manage the demands of a rapidly changing environment. The System Definition Model (SDM) in Windows Server 2008 supports DSI by facilitating communication between application architects, developers, and infrastructure architects.
Windows Server 2008 eases the task of managing and securing multiple server roles in an enterprise with the new Server Manager console. Server Manager provides a single source for managing a server's identity and system information, displaying server status, identifying problems with server role configuration, and managing all roles installed on the server. Server Manager replaces several features included with Windows Server 2003, including Manage Your Server, Configure Your Server, and Add or Remove Windows Components.Server Manager also eliminates the requirement that administrators run the Security Configuration Wizard before deploying servers; server roles are configured with recommended security settings by default, and are ready to deploy as soon as they are installed and properly configured.
Commands in Server Manager lets administrators install or remove server roles and features, and to augment roles already installed on the server by adding role services.
Windows Server 2008 installation is similar to that of Windows Server 2003, but simplified. The setup process for a Windows Server 2008 is reduced to only three phases:
The operating system setup, which includes the product key activation.
Initial Configuration Tasks, which allows you to easily change the defaults set up for the server by the installation process.
Finally, you can run the Server Manager to easily select the roles designated for this server.
These three components provide a convenient place to do all of the setup and maintenance tasks frequently done by IT administrators.
Product Installation: To install the operating system in Windows Server “Longhorn,,” all the IT staff needs to do is enter some basic information, such as the product key and disk information; the rest of the installation requires no user intervention. There is now a 30-day product activation period to let administrators perform this task when it is convenient. With Server Manager, IT staff no longer needs a stack of manuals to install the operating system. IT Professionals can also easily automate installation using the Windows Deployment Service (WDS).This provides a simplified, secure means of rapidly deploying Windows operating systems to computers by using network-based installation, without the need for an administrator to work directly on each computer, or to install Windows components from CD or DVD media. We will discuss WDS later in this presentation.
[BUILD1] Initial Configuration: The Initial Configuration Tasks window is a new feature in Windows Server "Longhorn..” It’s launched automatically after the operating system installation is complete. This tool helps administrators finish the setup, and configure a new server. It includes many security-related tasks, such as setting the Administrator password, changing the name of the Administrator account, running Windows Updates, and configuring the Windows Firewall. The Add Roles and Add Features options in the Initial Configuration Tasks window allow an administrator to immediately begin adding roles and features to a server.
[BUILD2] Server Manager: When installation is complete, Server Manager appears. Server Manager provides a single source for managing a server's identity and system information, displaying server status and health, identifying problems with server role configuration, and managing all of the roles installed on the server. Server Manager is a “one-stop-shop” designed to guide Information Technology administrators through the process of installing, configuring, and managing server roles and features that are part of Windows Server "Longhorn..” It provides a simplified, centralized server management through a single Server Manager interface and improved control and management using the Server Manager Console.
Benefits of Server Manager: Server Manager makes server administration more efficient by allowing administrators to do the following by using a single tool:
View and make changes to server roles and features installed on the server.
Perform management tasks associated with the operational life cycle of the server, such as starting or stopping services, and managing local user accounts.
Perform management tasks associated with the operational life cycle of roles installed on the server.
Determine server status, identify critical events, and analyze and troubleshoot configuration issues or failures.
Additional Information:
Changes in Functionality in Windows Server Code Name "Longhorn, (also called Book of Longhorn), January 2007
add-201.ppt.
Initial Configuration
Product Installation

14. demo Server Manager 11/19/2018 6:36 PM Title: Server Manager Demo
Talking Points:
Server Manager is a new feature that is included in Windows Server "Longhorn..” Server Manager is designed to guide Information Technology administrators through the process of installing, configuring, and managing server roles and features that are part of Windows Server "Longhorn.”
DEMO:
Open Server Manager.
Show the different nodes Manage Roles
Features Diagnostics Configuration Storage and Backup
3. Click Manage Roles.
4. From Roles Summary, click Add Roles.
5. Check Print Server. Click Next twice.
6. On Role Services, select Internet Printing.
7. The Add Roles Wizard will appear, showing that ASP is required to be installed for Internet Printing to install.
8. Click Add Required Role Services.
9. Click Cancel, and then click Yes.
We have shown how Server Manager is intelligent and knows which services, roles, or features are required when installing.

15. Windows Server Core GUI, CLR, Shell, IE, OE, etc.
11/19/2018 6:36 PM
Windows Server Core
Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems
WSv
AD DS
DHCP
AD LDS
DNS
GUI, CLR, Shell, IE, OE, etc.
Media
File
Print
Title: Windows Server Core
Talking Points: Server Core is a minimal server installation option for Windows Server 2008 that contains a subset of executable files, and five server roles
Server Core is a minimal server installation option for Windows Server 2008 that contains a subset of executable files, and five server roles. In Windows Server "Longhorn,,” one of the biggest improvements involves reducing the attack surface in the server so that only the binaries need to support the role and the base operating systems. This means there are generally fewer processes running. Server Core runs on either 32-bit or 64-bit architectures.
Installed Executable Files: The Server Core installation option installs only a subset of the executable files and supporting dynamic link libraries (DLLs). Specifically, only those features that are required by these five server roles are installed. Server Core’s “thin” management tools configure IP addresses, join domains, and perform other role-related tasks.
Server Core Features: Server Core provides has these benefits.
Reduced software maintenance. Because Server Core installs only what is required to have a manageable DHCP, DNS, file server, domain controller, or Windows Server Virtualization, the server requires less software maintenance, such as installing updates.
Low attack surface. Because there are fewer files installed and running on the server, there are fewer attack vectors exposed to the network, and therefore has less attack surface. In addition, if a security flaw is discovered in a file that is not installed, an update is not required. This significantly reduces risk and increases reliability.
Reduced Management. Because fewer files are installed on a Server Core-based server, there is less to manage.
Less disk space required. Server Core only uses about one gigabyte (GB) of disk space for installation. Server Core uses approximately 100MB of memory.
Fewer patches. In Windows Server 2003, approximately 60% of patches would have applied to a Server Core build. Because Server Core in Windows Server 2008 installs only core functionality, IT staff will have fewer Server Core patches to perform.
[BUILD1] Components Not Installed: Components not installed include Graphical User Interface (GUI), Common Language Runtime (CLR), Windows Explorer user interface (or "shell"), and Internet Explorer, among others. Because there is no GUI interface, administrators must access all of these services through a command shell.
[BUILD2] Server Roles: A server role describes the primary function of the server. Administrators can choose to dedicate an entire computer to one server role, or install multiple server roles on a single computer. Each server role can include one or more role services, best described as sub-elements of a role. There are many server roles in Windows Server 2008 that can be installed and managed using Server Manager. Server Core provides an environment for running the following server roles: Windows Server Virtualization, DHCP server, DNS server, File services, Active Directory Domain Services (AD DS), Active Directory Lightweight Directory Services (AD LDS), Streaming Media Services, and Print Services.
Optional Server Core Features
The Server Core installation of Windows Server 2008 supports the following optional features:
WINS
Failover Clustering
Subsystem for UNIX-based applications
Backup
Multipath I/O
Removable Storage Management
BitLocker Drive Encryption
SNMP
Telnet Client
(S)NTP
[BUILD3] Server Core Can Be Managed Remotely: Server Core can be managed with remote tools which save the IT staff time and allow flexibility in managing Server Core.
Next, we will show a demo of Server Core.
Additional Information:
Changes in Functionality in Windows Server Code Name "Longhorn, (also called Book of Longhorn), January 2007
Only a subset of the executables – fewer roles available
No GUI interface installed
Can be managed with remote tools

16. demo Server Core 11/19/2018 6:36 PM DEMO: Server Core Demo DEMO:
DEMO:
1. From the Desktop of NYC-DC-1, click NYC-SC-1.RDP.
2. Type OCLIST. Show the installed roles. Note that DNS and Active Directory are already installed.
3. Minimize the Remote Desktop Protocol (RDP) Window. Open ServerCore.MMC
4. You can show Computer Management.
5. If you expand Active Directory Users and Computers, you can see you are attached you NYC-SC-1. Click Domain Controllers, and show it in the container.
Server Core

17. Windows PowerShell GUIs are great at one-off tasks
11/19/2018 6:36 PM
Windows PowerShell
GUIs are great at one-off tasks
But make everything a one off
Automation + Audit require Scripting
“Batch” language old and limited
Sees the world as files and Text
Many IT pros scared by real programming
New .net based shell & Scripting Language
Title: Windows PowerShell
Talking Points: Windows PowerShell accelerates automation of system administration.
Windows PowerShell is a new command-line shell and task-based scripting technology that provides comprehensive control and automation of system administration tasks, with the goal of increasing IT productivity. Windows PowerShell includes many system administration utilities, consistent syntax and naming conventions, and improved navigation of common management data, such as the registry, certificate store, or WMI. Windows PowerShell also includes an intuitive scripting language specifically designed for IT administration.
PowerShell is based on the .NET Framework, and takes advantage of the features presented by .NET. This allows IT staff to do such things as create system objects and have access to methods and properties of these objects, to build things like WinForms applications in the shell, or have access to Active Directory or SQL Server™. Even with all of the new features, an organization’s existing tools and scripts, such as PERL, batch files, or Visual Basic® scripts will still work. If an organization is using COM or WMI for automation, those scripts will also continue to work the same as before.
In larger enterprises, management of multiple servers can be automated using Windows PowerShell. Windows PowerShell provides these benefits:
Improve productivity: Allows IT organizations to automate tasks that are manual and time-consuming. It also improves the developer experience by making it easier to add command-line management capabilities, using .NET.
Accelerate automation: Accelerates automation of system administration by enabling administrators to write secure automation scripts.
Works with existing scripts: Is easy to use and works with existing scripts. It improves the administrative experience by enabling IT Pros to write secure automation scripts that can run locally or remotely.
Windows PowerShell Features
Windows PowerShell is an extensible scripting technology that is interactive, programmable, secure, and production-oriented. It provides the following components:
A scripting language
An interactive shell
A way to produce task-oriented commands
A set of domain-independent utility commands
The following is an example of how an administrator might use PowerShell with Exchange. The goal of Windows PowerShell is to simplify an administrator’s view of Exchange using these tasks: recipient management tasks, organization management tasks, server management tasks, and diagnostic tasks. Tasks are further broken into categories based on server role and features:
Roles: Edge/Hub Transport, CAS, Mailbox, UM
Features: AntiSpam, Managed , Transport, Rules, etc.
Windows PowerShell uses the Monad engine, which is a common management platform.
All Exchange Management Console (E12) data access business logic is packaged as cmdlets. The graphical user interface is shielded from Monad by an ADO abstraction layer that makes writing Winforms applications easier. In this model, cmdlets are similar to SQL stored procedures. The unit of operation in Windows PowerShell is a cmdlet .NET class (e.g. remove-server). All Exchange operations are implemented as Monad cmdlets as follows:
 Namespace providers enable groups or families of related cmdlets (that is, namespaces)
File System, Registry, Local Certificate Store, Alias Provider, Environmental Variables, and Variables
Pipelines are composed of classes (cmdlets) passing structured objects
Extended Type System (ETS) simplifies developer experience
Common interfaces for operating on pipeline objects independent of type (for example, .NET, WMI, XML, ADO, ADSI etc)
[BUILD1] Partners
Individuals and organizations seeking to get the most out of Windows Server 2008 can choose from a wide range of offerings from independent software vendors (ISVs), original equipment manufacturers (OEMs), and other vendors outside Microsoft. Some of these partners include:
Fullarmer: FullArmor is adopting Windows PowerShell, Microsoft's new command-line shell and scripting language, to improve control over and accelerate automation of Group Policy settings. Future FullArmor products will enable customers to navigate and modify Group Policy settings directly from the command line and using scripts.
/n Software: The /n software NetCmdlets extend the features of Microsoft Windows PowerShell with a broad range of network management and messaging capabilities.
PowerGadgets: PowerGadgets is a Windows PowerShell snap-in, and lets you easily explore, visualize, and monitor enterprise data from virtually any data source, including traditional databases and text files, with little or no coding involved.
Quest Software: Quest Software has created a graphical user interface for Windows PowerShell—PowerGUI. Quest Software has built PowerShell commands (cmdlets) for Active Directory, and is sponsoring a new independent online community dedicated to Windows PowerShell, PowerGUI.org.
PrimalScript 4: PrimalScript 4.1 introduces support for Microsoft Windows PowerShell. Launched simultaneously with Windows PowerShell itself, the Professional and Enterprise editions provide a visual development environment for Microsoft's next-generation Windows automation platform.
[BUILD2] Futures
Ship in Windows: Windows PowerShell will be included with Windows Server “Longhorn.”
Admin GUIs layered over PowerShell: While many aspects of Windows Server 2008 and other Microsoft applications will be manageable from PowerShell, admin GUIs layered over PowerShell will also be available. For example, Exchange 2007 is completely manageable by means of a Windows PowerShell, an admin GUI is also available to perform some tasks.
One-to-many remote management using WS-MGMT: Microsoft plans for to leverage Web Service Management (WS-MGMT), the remoting protocol recently standardized through the Distributed Management Task Force (DMTF), to provide remote capability.
Additional Information:
MSG305_sharma.ppt, Session2-PowerShell-PACITPro

18. demo PowerShell More Control 11/19/2018 6:36 PM Title: PowerShell Demo
PowerShell: HTML Service Report
Demo:
1. Start PowerShell from the Desktop.
2.Gwmi Win32_Service –computer NYC-DC-1 | where {$_.StartName –ne “LocalSystem”} | ConvertTo-HTML | Out-File C:\Output.htm
3. This command is in a text file on the desktop.
4. Open C:\Output.htm.
Talking Points:
You get an HTML report of all services configured to use an account other than LocalSystem—all in one line.
This is useful for auditing, as well as maintenance; these “one-liners” really demonstrate the Power of the Shell.
You don’t need to be a scripting expert when you can fire off one-liners that do this. And how long would it take to do this manually?
Even in VBScript, you’re looking at a dozen lines of code to pull this off.

19. Quickly Respond to Changing Business Needs
11/19/2018 6:36 PM
Quickly Respond to Changing Business Needs
Greater Flexibility
Application Platform
Virtualization
Windows Server Virtualization
.NET Framework
Title: Quickly Respond to Your Changing Business Needs
Talking Points: Windows Server 2008 can quickly respond to an organization’s changing business needs.
Windows Server 2008 provides greater flexibility through a variety of monitors and tools that let IT Professionals customize the system to meet their business needs. Let’s look at some of these features:
[BUILD1] Virtualization: Windows Server Virtualization (WSv) provides an integrated virtualization solution as part of the operating system. The virtualization role in Windows Server 2008 provides an entirely new deployment and licensing paradigm to enable multiple operating systems to run in a virtual infrastructure separated from the hardware by a slim “hypervisor” of virtualization technology.
[BUILD2] Application Platform: Windows Communication Foundation (WCF) and Windows Workflow Foundation (WF) provide flexible solutions for connected systems and richer experiences. Windows Communication Foundation (WCF) is the Microsoft unified programming model for building service-oriented applications. It enables developers to build secure, reliable, transacted solutions that integrate across platforms and interoperate with existing investments. Windows Workflow Foundation is a programming model, run-time engine, and tools for building workflow functionality into .NET applications. We’ll cover the Application Platform in more detail in the developer section of this presentation.
[BUILD3] Centralized Application Access: Terminal Services Gateway and Terminal Services RemoteApp™ provide centralized application access with integration. Terminal Services Gateway (TS Gateway) is a new server role that enables Internet access to remote computers through firewalls and network address translators. Windows Server 2008 Terminal Services RemoteApp (TS RemoteApp) provides the ability to run both local and remotely-hosted programs on a Windows desktop.
[BUILD4] Branch Office: Increase remote users quality of service in branch offices with reduced management overhead using efficient file replication, offline storage synchronization, and WAN optimization. Security features available in Windows Server 2008 such as BitLocker, Server Core, and the RODC make it easier for administrators to guarantee that both the data and servers at branch offices remain secure.
Additional Information:
Changes in Functionality to Windows Server Longhorn (January 2007).doc (also called the Book of Longhorn) 
Centralized Application Access
Branch Office
Optimized Replication and Administration
Terminal Services Gateway and RemoteApp

20. Windows Deployment Services
11/19/2018 6:36 PM
Windows Deployment Services
WDS
Successor to Remote Installation Services (RIS)
Easily deploy Windows operating system images
Deploy servers as easily as clients
Title: Windows Deployment Services
Talking Points: Windows Deployment Services (WDS) is a suite of components that work together on Windows Server 2008 to provide a simplified, secure means of rapidly deploying Windows operating systems to computers by using network-based installation, without the need for an administrator to work directly on each computer, or install Windows components from CD or DVD media. It contains a number of new or enhanced features that will save IT staff time.
The Windows Deployment Services Process: Windows Deployment Services allow IT staff to rapidly deploy the Windows operating systems to computers by using network-based installation, without the need for an administrator to work directly on each computer, or install Windows components from CD or DVD media. WDS can also be used to quickly repurpose existing computers.
[BUILD1] Windows Deployment Services: Windows Deployment Services, the updated and redesigned version of Remote Installation Services (RIS), is the feature name for a suite of components that work together on Windows Server 2008 to enable the deployment of Windows operating systems, particularly Windows Vista. These components are organized by the following three categories: server, client and management components.
[BUILD2] Server components: These components include a Pre-Boot Execution Environment (PXE) server and Trivial File Transfer Protocol (TFTP) server for network booting a client to load and install an operating system. Also included is a shared folder and image repository that contains boot images, installation images, and files that you need specifically for network boot.
[BUILD3] Client components: These components include a graphical user interface that runs within the Windows Pre-Installation Environment (Windows PE) and communicates with the server components to select and install an operating system image.
[BUILD4] Management components: These components are a set of tools that you use to manage the server, operating system images, and client computer accounts.
[BUILD5] Enhancements to Windows Deployment Services: Windows Deployment Services includes the Windows Deployment Services MMC snap-in, which provides rich management of all Windows Deployment Services features. Windows Deployment Services also provides several enhancements to the RIS feature set. These enhancements support the deployment of the Windows Vista and Windows Server 2008 operating systems. With Windows Deployment Services, IT staff can:
Use the Windows Deployment Services snap-in to create a "capture image" that can create a custom image from a computer that has been prepared with Sysprep.exe
Use the Windows Deployment Services Capture Wizard to create and add an image prepared with Sysprep.exe
Use the Windows Deployment Services snap-in to associate unattended installation files with Windows images
Associate one or more language packs with an image, eliminating your need for unique images for each language your organization supports
Use the Windows Deployment Services snap-in to create a "discover image" for use with computers that do not support PXE boot
Additional Information:
SVR322_Niehaus.ppt
Changes in Functionality to Windows Server Longhorn (January 2007).doc (also called the Book of Longhorn) 
Windows Server 2008
Windows Vista

21. Virtualization Technologies
11/19/2018 6:36 PM
Virtualization Technologies
Server Virtualization
Presentation Virtualization
Hyper-V
Management
Desktop Virtualization
Title: Virtualization Technologies
Talking Points: Microsoft provides greatly expanded virtualization capabilities that enable IT organizations to significantly reduce operating costs, drive up server utilization, and achieve better return on investment (ROI) through full featured virtualization solutions. There are four types of virtualization technologies available from Microsoft, including server, desktop, presentation (using Terminal Server), and application (using SoftGrid). In this slide, we explore the four types of virtualization technologies.
Server-based Virtualization Technologies: Server-based technologies that enable server virtualization include Microsoft Virtual Server 2005 R2 and Windows Server Virtualization (WSv) in Windows Server “Longhorn..” Windows Server virtualization provides a reliable, scalable, and flexible virtualization platform, enabling even very demanding server workloads to run in virtual machines (VMs) that take advantage of centralized management, powerful clustering, and enhanced security. Windows Server virtualization enables "hot-add" of virtual resources to running VMs without downtime. It allows VM partitioning and isolation, reduces the server's attack surface using a virtual machine manager (VMM), and uses Page Sharing to optimize memory. Dynamic VMs in WSV can migrate from one server to another without downtime with Live Migration, run 64-bit or 32-bit operating systems side-by-side, use a variety of operating systems, and use advanced networking features, including VLAN, NAT, and Quarantine.
[BUILD1] Desktop-based Virtualization Technologies: Virtualization at the desktop level is provided by Microsoft Virtual PC IT Professionals can use Virtual PC 2007 to run multiple operating systems at the same time on the same physical computer, and switch between them as easily as switching applications—instantly, with a mouse click. Virtual PC is perfect for any scenario in which IT groups need to support multiple operating systems, whether they are used for tech support, legacy application support, training, or just for consolidating physical computers.
[BUILD2] Presentation Virtualization (using Terminal Services): Terminal Services in Windows Server 2008 provide technologies that enable access, from almost any computing device, to a server running Windows-based programs or the full Windows desktop. Users can connect to a terminal server to run programs and use network resources on that server. With Terminal Services, applications are physically installed and are executing on back-end servers, not the desktop. New core functionality in Terminal Services includes a single sign-on, Remote Desktop Connection 6.0, Plug and Play device redirection for media players and digital cameras, Microsoft Point of Service for .NET device redirection, and Remote Desktop Connection display improvements.
[BUILD3] Application Virtualization (using SoftGrid): Using SoftGrid application technology provides organizations with application virtualization solutions that reduce the TCO of desktop deployments. Application virtualization can be layered on top of other virtualization technologies—network, storage, computer—to create a fully virtual IT environment where all computing resources can be dynamically allocated in real-time based on real-time needs. This is called the SystemGuard™ virtual application environment.
SystemGuard enables each application to bring its own set of configurations and run within a protective run-time "sandbox" on the client, so there is no dependency or effect on the configuration of the machine running them. However, because applications execute locally, they run with full performance, functionality, and access to local services—including cut and paste, OLE, printing, network drives, and attached devices. More detailed information about SoftGrid is provided in a later slide in this deck.
[BUILD4] Management: All assets, both virtual and physical, managed from a single platform.
The Microsoft System Center family of familiar, industry-standard management tools can be used to manage the virtualized environment. System Center Virtual Machine Manager and System Center Operations Manager work together to give virtual machines enhanced security, business continuity, and disaster recovery features. VMs and servers appear along with physical devices in common, familiar management tools.
Additional Information:
Windows Server virtualization Datasheet
Changes in Functionality to Windows Server Longhorn (January 2007).doc (also called the Book of Longhorn)
Application Virtualization

22. Virtualization Investments
11/19/2018 6:36 PM
Virtualization Investments
A Multi-level Approach
Licensing
Infrastructure
Management
Interoperability
Applications
Terminal Services
Deliver cost-effective, flexible and simplified licensing
Royalty Free VHD format
Create agility
Better utilize server resources
Partner with AMD and Intel
Ease consolidation onto virtual infrastructure
Better utilize management resources
Support heterogeneity across the datacenter
OSP (Open Specification Promise) VHD
Accelerate deployment
Reduce the cost of supporting applications
Title: Virtualization Investments
Talking Points: Many software and hardware companies are working to make virtualization possible.
Many software and hardware companies are working to make virtualization possible. Microsoft provides virtualization capabilities across a wide range of Microsoft products. In addition, Microsoft is working with other hardware and software vendors to support virtualization functionality.
[BUILD1] Licensing: Windows Server 2003 R2 and Windows Vista deliver cost-effective, flexible and simplified licensing. Both ISVs and customers can integrate their offerings with Virtual Server for enhanced functionality and manageability. Comprehensive COM management interfaces are published and utilized by management tool vendors. The Microsoft VHD file format is available under royalty-free license, enabling ISVs such as security and management vendors to natively interoperate with Virtual Server. A common VHD file format helps improve security, reliability, and cost efficiency for customers.
[BUILD2] Infrastructure: Virtualization in Microsoft Windows Server 2008 provides agility and helps organizations better utilize server resources. Microsoft provides virtualization from the data center to the desktop. Virtualization offerings include a comprehensive set of Virtualization Technologies (VT), client virtualization (virtual PC), app VT, presentation VT (terminal services), and server virtualization.   
In Windows Server "Longhorn,,” virtualization is provided by the Windows Server Virtualization (WSV) role or by means of Virtual Server 2005 R2 and Virtual PC This agility is achieved using the server virtualization technology engineered for the Windows Server System platform, which increases hardware utilization, and enables IT staff to rapidly configure and deploy new servers. Virtualization delivers the performance necessary to carry out consolidation, migration, and isolation tasks through virtualization technology in an enterprise-ready computing environment. As part of the Windows Server System, virtualization is extensively engineered and tested with Microsoft server operating systems and applications. Virtual Server is a well-supported virtualization solution, both within Microsoft and across the broader ISV community. Active Directory allows the same directory management features to be used for virtual machines as are used for physical computers by providing a centralized repository for hierarchical information about users and computers on the network. Active Directory incorporates significant improvements in management and performance in Windows Server “Longhorn,,” which can be leveraged through Windows Server Virtualization roles or via virtual machines hosted by Virtual Server 2005 R2 and Virtual PC 2007.
[BUILD3] Management: Microsoft System Center Virtual Machine Manager is an enterprise management application for a virtualized data center. It enables increased physical server utilization, centralized management of virtual machine infrastructure, and rapid provisioning of new virtual machines by the administrator and users. Microsoft System Center Virtual Machine Manager provides a tool to ease consolidation of virtual machines and a common place to manage virtual machines. It allows automated configuration, management, and integration of portable virtual machines enable enterprises to deploy and manage legacy and test applications where needed. This better uses management resources and frees up IT staff to spend time on important business-related tasks.
[BUILD4] Interoperability: The Microsoft VHD file format is available under royalty-free license, and enables ISVs, such as security and management vendors, to natively interoperate with Virtual Server. Various open source vendors support heterogeneity across the datacenter. Novell, SuSE and Xen Source use the Open Specification Promise (OSP) VHD. XEN is doing work to enable some Linux distributions to behave well and have high performance on systems with Windows Virtualization by adding para virtualization support to these distributions.
[BUILD5] Applications:
Application Virtualization: Microsoft SoftGrid enables application level virtualization that provides the possibility of dramatically shortening interoperability testing time. When using Microsoft SoftGrid, users and their application environments are no longer machine-specific, and the machines themselves are no longer user-specific, enabling IT to be flexible and responsive to business needs, and significantly reducing the cost of PC management, including application and operating system migrations.
Presentation Virtualization: Terminal Services in Windows Server 2008 is another way to deliver applications without installing software on an end point. Terminal Services provide technologies that enable access, from almost any computing device, to a server running Windows-based programs or the full Windows desktop. Users can connect to a terminal server to run programs and use network resources on that server.
Additional Information:
Inf-207.ppt, An overview of Microsoft vision for virtualization
Inf-305.ppt, Transitioning to Windows Server Virtualization
ITPRODADD-58-Final.ppt

23. Drivers to server virtualization
Datacentres full of under-utilized servers
Efficient to partition today’s servers with virtualization
Green agenda
Reduces direct and indirect energy consumption
Flexibility
Quicker to deploy Virtual Machines than physical ones

24. Windows Server Virtualization
11/19/2018 6:36 PM
Windows Server Virtualization
Greater Scalability and improved performance
SMP & x64 bit guest support
Increased reliability and security
Minimal Trusted Code base
Better flexibility and manageability
New UI
Integration with SCVMM
(Dynamically Add resources)
(Live OS/App Migration )
VM 2 “Child”
VM 3 “Child”
VM 2
VM 3
VM 1 “Parent”
Virtual Server 2005 R2
Title: Windows Server Virtualization
Talking Points: The virtualization role in Windows Server 2008 provides an entirely new deployment and licensing paradigm to enable multiple operating systems to run in a virtual infrastructure separated from the hardware by a slim “hypervisor” of virtualization technology.
Virtualization technology plays an increasingly critical role at all levels of IT, from the desktop through the datacenter. Desktop users launch virtual machines to run guest operating systems required by their vertical applications. Remote users connect to their office desktops from anywhere in the world, taking full advantage of applications, resources, and familiar interfaces, even on machines with different operating systems or system capabilities. Windows Server Virtualization, the next-generation server virtualization technology from Microsoft, available with Windows Server "Longhorn," addresses these challenges. Let’s look at the architecture of virtualization in Windows Server 2008 and at some of its benefits:
Hardware, Hypervisor and Virtual Machines: Virtualization in Windows Server 2008 begins at the hardware level by using the new generation of 64-bit server virtualization-aware processors from AMD and Intel. These “virtual-aware” processors are able to manage some memory and hardware-sharing functions that would otherwise be left to the server's virtualization management software. Virtualization uses a thin-layer of hypervisor code that allows a server to become a parent VM that manages child VMs. The VMs may be running different applications or even different operating systems.
[BUILD1] Disk-based components a VM uses, such as its operating system, programs, internal configuration, and, sometimes, data, are stored in one or more Virtual Hard Disk (VHD) files. The configuration of the VM itself is stored in a separate file, the Virtual Machine Configuration (VMC) file. Together, these two files can be stored in a library, enabling the VM to be cloned or recreated.
[BUILD2] IT Professionals use Microsoft’s System Center or Windows System Center Virtual Machine Manager (SCVMM) to manage the system. VMs and servers appear along with physical devices in common, familiar management tools. IT Professionals can use these management tools to display information on VMs or quickly make changes such as to applying policies across several VMs at once
[BUILD3] Benefits: Windows Server Virtualization provides the following benefits:
Greater Scalability and improved performance: Performance advances relating to the 64-bit processing host and integration with virtualization-aware hardware enable Windows Server Virtualization to run much more demanding workloads than in previous versions. It also gives VMs more resources. 64-bit support enables VMs to run 64-bit operating system versions, and access very large amounts of memory—more than 32GB per VM—enabling more resource-intensive workloads and helping avoid slowdowns due to paging.
[BUILD4] Increased reliability and security: Reliability can be increased by clustering virtual servers across multiple VMs within a single server. Virtualization provides an opportunity to increase security for all virtual machines. Windows Server Virtualization used to enhance security includes:
Enabling virtual machines to take advantage of hardware-level security features, like execute disable bit available in newer server hardware.
Providing strong role-based security (Minimum Trusted Code base) or running a foundation role to prevent exposure of secure virtual machines through shared servers.
Integration of network security features that enable automatic NAT, firewall, and quarantine of VMs.
The ability to dynamically add or remove virtual NICs and take advantage of underlying VLAN security
[BUILD5] Better flexibility and manageability: Virtualization in Windows Server 2008 provides IT Professionals with a wide variety of tools to dynamically add virtual resources. You can dynamically add resources, such as memory, CPU allocation, and network adapters, to virtual machines while they are running without having to take them offline. Live Migration allows IT staff to migrate VMs from one server to another without downtime. The tight integration of System Center Virtual Machine Manager (SCVMM) provides IT staff with a familiar easy-to-use tool to manage VMs.
Additional Information:
Inf-207.ppt, An overview of Microsoft vision for virtualization.
Inf-305.ppt, Transitioning to Windows Server Virtualization
Windows Hypervisor
Windows Server 2003
AMD-V / Intel VT
Hardware
Virtual Hard Disks
(VHD)

25. Terminal Services Gateway
11/19/2018 6:36 PM
Terminal Services Gateway
Perimeter Network
Corporate Network
Internet
Strips off RDP / HTTPs
Tunnels RDP over HTTPs
RDP traffic passed to TS
External Firewall
Internal Firewall
Terminal Servers and other RDP Hosts
Remote/ Mobile User
Terminal Services Gateway
Internet
Title: Terminal Services Gateway (TS Gateway)
Talking Points: Terminal Services Gateway (TS Gateway) is a new server role that enables Internet access to remote computers through firewalls and network address translators.
TS Gateway allows authorized remote users to log on to terminal servers on a corporate network from anywhere over the Internet.
[BUILD1] Connect Over Internet: TS Gateway allows users to connect over the Internet to computers that are configured to allow Remote Desktop connections. With this feature, users can connect to their corporate network from remote places, such as hotels or client sites, by means of the Internet. Remote Desktop connections are available in Windows Server 2003, Windows XP, Windows Vista, and Windows Server Longhorn. TS Gateway allows connections from the Internet by using the Microsoft Remote Desktop Protocol (RDP) over an encrypted HTTP (HTTPS) channel, and routing the connections as needed inside a network. TS Gateway transmits all RDP traffic—that typically would have been sent over port 3389—to port 443, by using an HTTP SSL tunnel. This also means that all traffic between the user's client computer and TS Gateway is encrypted while in transit over the Internet. This also means that user’s client computer will need an SSL certificate to utilize this functionality.
[BUILD2] Move to Perimeter network: Once data is received through an external firewall into the perimeter network, or corporate DMZ, TS Gateway routes traffic to a network policy server or an Active Directory Domain Controller. This will check to see if the user is allowed to cross the gateway, and if they are allowed to contact the computer they’re trying to reach. If the user is validated and allowed in, then all of the encapsulating HTTPS information is stripped off.
[BUILD3] Send Approved Traffic to Corporate LAN: Then the TS Gateway passes the RDP traffic to the destination machines and a security-enhanced connection is established. Other traffic that is approved is routed to the appropriate terminal server.
Additional Information:
Changes in Functionality to Windows Server Longhorn (January 2007).doc (also called the Book of Longhorn) 
and Add-400.ppt
Network Policy Server
Active Directory DC 25

26. demo Terminal Services 11/19/2018 6:36 PM
Title: Terminal Services Demo
Terminal Services Remote Applications
Demo:
NYC-DC-1.WOODGROVEBANK.COM
Click Start, Administrator Tools, Terminal Services RemoteApp.
In the Remote Programs Allows list, show Remote Microsoft Office Word 2007 has been added, and is also available by means of the Web, using TS Web Access.
In the Action pane, show that this is where you would set properties, create an MSI Package, create an RDP Package, Hide/Show, and Allow/Disallow.
NYC-SRV-1.WOODGROVEBANK.COM
On the desktop, double-click WINWORD.RDP. .
Type some text in a Word 2007 document.
Click the Office Button, and then click Save As.
Point out that the application is running from the server, but that the application is connected to the local resources.
Click Cancel.
Close Word.
AND/OR
Start Internet Explorer.
Navigate to
Accept the security warning for ActiveX, if needed.
Start Microsoft Word.
Enter your credentials, if required.

27. Conclusions
Quality of Service depends more on people and process than on features or performance.
The new and enhanced features of Server help to provide better control and flexibility

28. Thank You