Improvements related protocols and encryption

The authentication protocol Kerberos now supports AES 128-bit and 256. The new crypto API (CNG) supports elliptic curve cryptography and improved management of certificates. A new protocol is proprietary Microsoft: Secure Socket Tunneling Protocol (SSTP). AuthIP is a new Microsoft proprietary extension of the IKE encryption protocol that is used in IPsec VPN.

The protocol Server Message Block 2.0 in the new TCP / IP provides many improvements in communications, including such better performance when access to file shares over high-latency networks, through the use of authentication and signing of messages with each other.

Improvements related to the client side (Windows Vista)

Launching a search on a Windows 2008 server from a Windows Vista client delegates in practice the application server, which then uses the Windows Search technology and then returns the result to the client. In a network environment containing a print server in Windows 2008, customers can process print jobs locally before sending the print server thereby reducing the server load and increase its availability.

The transfer of events allows the consolidation and transfer logs from Windows Vista clients registered to the center console. The transfer events can be enabled on clients enrolled directly from the central server via the management console events. Files Off-connections are cached locally and are then accessible even if the server is not reachable, and copies are synchronized seamlessly when the client and server are reconnected.

Miscellaneous Improvements

The Windows Deployment Services replaces services Automated Deployment Services and Remote Installation Services. Windows Deployment Services (WDS) supports and enhances the functionality of multicasting when deploying images of operating systems. Internet Information Services 7 provides increased security, the ability to deploy via xCopy, which is an improved diagnostic tools, and delegated administration. An optional component “Desktop Experience” offers the same user interface Windows Aero Windows Vista, for both local users as remote users connected via the Remote Desktop client.

Study: From Wikipedia, the free encyclopedia. The text is available under the Creative Commons.

Core Enhancements OS

• The operating system is now entirely made up of several components.
• The latest hot have been improved, a feature that enables updates not related to the kernel to be applied without requiring a restart.
• Starting from devices compatible EFI (Extensible Firmware Interface) on 64-bit is now supported.
• The dynamic hardware partitioning is supported.
• Adding hot processor and memory is now supported when the hardware is compatible. The same goes for hot replacement of processors and memory modules on any compatible hardware.

Improvements in Active Directory

A new mode of Active Directory called “Read-Only Domain Controller (RODC) is intended for use in locations where the domain controllers can be housed in local low-security access. The RODC contains a non-editable copy of the Active Directory, and redirects all attempts to write to a full domain controller, it also replicates all accounts except for sensitive accounts.

RODC mode credentials are not cached by default. Moreover, only the domain controller hosting the PDC emulator role requires Windows Server 2008, local administrators can log on to the RODC to perform maintenance operations without requiring administrator privileges domain. The Active Directory can be restarted, it can stop and restart ADDS from the Management Console (MMC), or the command line without having to restart the domain controller.

This reduces downtime due to maintenance operations and reduces pre-requisite of the role of domain controller with Server Core. ADDS is implemented as a Service Domain Controller in Windows Server 2008.

Improvements related to security policies

All improvements related to security policies provided by Windows Vista are also present in Windows Server 2008. The console management strategies (GPMC) is now integrated by default in the system. GPOs (Group Policy Objects) are indexed to enable search functionality and can also be discussed.

Security policies backbone is include Network Access Protection Network Access Protection (NAP), improved branch management and enhanced collaboration between users. Strategies can be created to provide a better quality of service for certain applications or services that require prioritization of use of bandwidth between clients and servers.

The management of passwords within a single domain is now granular (possibility accounts for administrators to implement strategies password affecting different groups or single users), whereas previously the political Password was unique for the area.

Improvements related to disk management and storage of files

It is now possible to resize hard disk partitions without having to stop the server, including system partitions (Note: This only applies to simple volume and cluster (spanned volumes). The aggregate volume (striped volume) can not be extended or truncated). The Shadow Copy feature now works at the block level which allows it to perform backups on optical media, network shares and the Windows Recovery Environment (Windows Recovery Environment).

Improvements were also made to DFS (Distributed File System) replication of the SYSVOL folder is based on DFS-R, members of a replication can be replicated folders with read-only. The DFS namespace is an area now supports more than 5 000 applications including the target folder in the namespace. Several improvements have been made to the system failover cluster (cluster of high availability). The role of Internet Storage Naming Server (iSNS) allows recording, removing and querying centralized iSCSI drives.

Continued…

Windows PowerShell

Windows Server 2008 is the first operating system that integrates Windows PowerShell, the new extensible shell command line from Microsoft that includes features of scripting technology (task-based scripting technology). PowerShell is based on object-oriented programming and version 2.0 of Microsoft. NET, and includes over 120 system administration tools with a naming convention and syntax consistent, and integrated capability to operate with data management standards such as the Windows registry, certificate stores, or Windows Management Instrumentation (WMI). The PowerShell scripting language designed specifically for government IT, and can be used in place of cmd.exe and Windows Script Host.

Self-healing NTFS

In earlier versions of Windows, if the operating system detects a corruption in the file system to an NTFS volume, it marks the volume as “unfit” to correct errors on the volume, it was be disconnected. With the Auto-healing NTFS, an NTFS repair process is initiated in the background and performs a targeted repair of damaged structures, leaving only the damaged files or folders as offline and not the entire volume necessitated the discontinuation of server.

Hypervisor Virtual System: Hyper-V

Hyper-V is a hypervisor virtual system, forming a central part of virtualization strategy at Microsoft. It allows servers to virtualize layer Kernel operating system. It can be seen as partitioning a single physical server into several smaller sets of computers. Hyper-V will include the ability to operate as a host hypervisor virtualization Xen, enabling operating systems with the function to be enabled Xen virtualized. This feature will not initially integrated into Windows Server 2008, but will be made available three months after the worldwide release of Windows Server 2008. It will only be available on 64-bit versions of Windows Server 2008.

Windows System Resource Manager (WSRM)

Windows System Resource Manager (WSRM) is integrated into Windows Server 2008. It offers the possibility to manage system resources and can be used to control how many resources a process or user is able to use, based on business priorities. Process Matching Criteria, whose name is explicit (literally: Criterion reference process) model or process owner, enforce restrictions on use of resources by a process that meets the criteria. CPU time, bandwidth, number of processors and memory allocation to a process can be restricted. Restrictions may be imposed only on certain dates and times.

Server Manager for Windows Server 2008

Server Manager is a new management tool for Windows Server 2008. It is a combination of features and Manage Your Server Wizard Configuring Security in Windows Server 2003. Server Manager (Server Manager) is an improvement of the dialog Configure my server that runs by default at startup of Windows Server 2003 machines. However, it is not only a starting point for setting up a new role on the server, but a tool that gathers all operations that an administrator would perform on the server, such as a method of generating remote deployment, add more roles to a server, etc.. Server Manager is in the form of a consolidated set of tools as a portal and contains status of each role. It is not currently possible to use Server Manager remotely, but a client console is provided.

Other new features or features improved to meet:

Continued…

Active Directory Roles

Active Directory now includes identity services, licenses and digital rights management. Until Windows Server 2003 Active Directory enabled network administrators to centrally manage the computers interconnected to define strategies for a set or group of users, and centrally deploy new applications to multiple computers.

The basic role of Active Directory has been known as Active Directory Domain Services (AD DS). A number of new services were added, such as Active Directory Federation Services (AD FS), Active Directory Lightweight Directory Services (AD LDS - originally known as the Active Directory Application Mode or ADAM), Active Directory Certificate Services (AD CS), and the Active Directory Rights Management Services (AD RMS).

Services Certificate of Identity and allow administrators to manage user accounts and digital certificates that allow them access to certain services and systems. Federation management services enable companies to share authentication data with partners and trusted client, allowing a consultant to use his own user account and password to log onto the network client. Identity Integration Feature Pack is included with Active Directory Metadirectory Services (ADMS). Each of these services represents a server role.

Terminal Services

Windows Server 2008 brings major improvements to Terminal Services. Terminal Services is now compatible with protocol in Remote Desktop 6.0 Remote Desktop Protocol 6.0. The most notable improvement is the ability to share an application via a desktop connection remotely, instead of the entire desktop. This feature is called Terminal Services Remote Programs.

Other novelties include Terminal Services, Gateway Terminal Services (Terminal Services Gateway) and web access to Terminal Services (Terminal Services Web Access - complete web interface). Using Terminal Services Gateway, authorized computers can connect securely to a Terminal Server or a remote desktop from the Internet through the use of remote desktop via HTTPS without recourse to the drafting Screening of a VPN connection.

There is no need to open additional ports on the firewall for RDP is encapsulated in HTTPS access. Terminal Services Web Access enables administrators to provide access to Terminal Services sessions via a web interface. TS Web Access comes with an editable Webpart for IIS and SharePoint, which displays the available applications and connections to the user.

Using TS Gateway and TS Remote Programs, the complete access performed via HTTP (S) and the remote applications appear transparent manner to the user as if they were used locally. Several applications can be executed in the same session which does not need additional licenses per user. Terminal Services Easy Print does not require the installation of printer drivers on the server by the administrator, but securing the redirection and availability of all user interfaces for printers that allows use in remote sessions.

The Terminal Services sessions are created in parallel and not in series - the new session model can initiate 4 sessions in parallel, or more if the server has more than 4 processors.

Continued…

Microsoft Windows Server 2008

Microsoft Windows Server 2008 is the latest Microsoft operating system oriented server. It is the successor to Windows Server 2003. The international release of the product in turn was held February 27, 2008. Like Windows Vista, Windows Server 2008 is based on the kernel (core) Windows NT version 6.0. This product has been known by the codename “Windows Server Longhorn” until May 16, 2007, when Bill Gates announced its official title (Windows Server 2008) during his keynote session of WinHEC.

Features of MS Windows Server 2008

Windows Server 2008 is based on the same code base as Windows Vista, therefore they share both the same architecture and same features. Since the code base is common, Windows Server 2008 contains by default the most technical features, security, management and administrative features new to Windows Vista such as the rewritten networking stack (native IPv6, wireless connectivity native , improved security and speed), improved deployment, retrieval and installation based on a source image, improved diagnostics, monitoring, event logging and reporting, providing new features security such as BitLocker and ASLR; improved Windows Firewall with secure default configuration;

. NET Framework 3.0, specifically Windows Communication Foundation (WCF), Microsoft Message Queuing and Windows Workflow Foundation, improving also the nucleus of the memory management and file system. Processors and memory components are defined as Plug and Play devices, to enable “hot-plug” (Hot Plug) thereof. This allows system resources to be partitioned dynamically using Dynamic Hardware Partitioning Module (literally: “Management of Dynamic Partitioning”), each with its own partition of memory, processor and host bridge I / O independent of each other.

Core Server

It is probably the feature most significant Windows Server 2008 is the possibility of installation called Server Core. Server Core installation is reduced to a minimum layer where no Windows Explorer is installed. The configuration and maintenance are performed entirely through the user interface of Windows command line, or by connecting remotely to the machine using a Microsoft Management Console (Microsoft Management Console). However, Notepad and some components of the control panel such as the locale, are still available.

The Core Server does not. NET Framework, Internet Explorer or any other functions unrelated to the core functionality. A Server Core machine can be configured for several basic roles: Domain Controller / Active Directory Domain Services, ADLDS (ADAM), DNS Server, DHCP server, file server, print server, Windows Media Server, Terminal Services Easy Print , TS Remote Programs, and TS Gateway, IIS 7 and Windows Server Virtual Server Virtualization. This role is expected to be made available no later than 180 days after the worldwide release of Windows Server 2008.

Continued…

Windows Storage Server 2003

Windows Storage Server 2003 member of the series of Windows Server 2003 operating system specializes in storage spaces attached (Network Attached Storage - NAS). It is optimized for use of sharing files and printers and also in the architectures of network storage (Storage Area Network - SAN). This edition is only available through the reseller through the purchase of specific equipment (OEMs). Unlike other editions of Windows Server 2003 that provide functionality for sharing files and printers, Windows Storage Server 2003 does not require CALs.

Equipment NAS Windows Storage Server 2003 may be without head, which means they have no screen, keyboard and mouse, and are administered remotely. Of such equipment is connected to any existing IP network and storage spaces are made available to all users. Windows Storage Server 2003 can use RAID technology clusters to provide data redundancy, fault tolerance, and high performance. Several NAS servers can be configured cluster and thus appear as a single storage location. This allows very high performance and maintain the storage service available even if one member servers fails.

Windows Storage Server 2003 can also be used to create a storage area network (Storage Area Network), in which data is transferred in blocks and not files, thus providing more granularity to the data can be transferred. This provides greater performance for databases and transactional applications. Windows Storage Server 2003 also allows the NAS to be connected to a SAN.

Windows Storage Server 2003 R2 is due to Windows Storage Server 2003 and provides optimized performance file servers, the Single Instance Storage (SIS), and search functionality based on an index.

Single Instance Storage (SIS) analyzes storage volumes to find duplicate files, duplicates and moves these to a common storage SIS. The files on the volumes are replaced by a link to the SIS file. This replacement reduces the amount of storage space needed up to 70%.

Windows Storage Server R2 provides a search engine full text based on an index with the indexing engine is native to Windows server. The search engine updated speeds up indexed searches on network shares. Storage Server R2 also offers the possibility to apply filters to search several standard file formats such as. Zip, AutoCAD, XML, MP3 and. Html, and all formats of Microsoft Office files.

Windows Storage Server 2003 R2 includes native support for Windows SharePoint Services and Microsoft Office SharePoint Portal Server 2003 and adds snap Storage Management Console Microsoft Management Console. It can be used to centrally manage storage volumes, including DFS shares from a Windows Storage Server R2.

Windows Storage Server R2 can be used as a mount point with the iSCSI standard and enterprise editions of Windows Storage Server R2, incorporating WinTarget iSCSI technology that Microsoft acquired in 2006 via the software Stringbean. There is additional functionality available to purchase via OEM partners as “iSCSI Feature Pack, or it is incorporated into some versions of WSS configured by OEMs.

Features Storage Server 2003

• Distributed File System (en) (DFS) DFS is used to aggregate several network shares and make them available as a single virtual file.
• Support for SAN and iSCSI: Computers can connect to a storage server through the LAN without needing a dedicated fiber channel network. As a Storage Area Network can be created through the LAN. iSCSI uses the SCSI protocol to transfer data as a block of bytes rather than as files. This increases the performance of network storage in some scenarios, such as servers, databases.
• Virtual Disc Service: This feature enables devices NAS, RAID and SAN in sharing their view, and manage them as normal drives.
• JBOD systems: using VDS systems JBOD (Just a bunch of discs) can manage a set of storage equipment as a single equipment. It is not necessary that the storage unit is the same manufacturer and same model.
• Software and Hardware RAID: Windows Storage Server 2003 has native support for RAID in hardware implementation. In case the hardware does not support the RAID functionality, it can use software RAID functionality. In this case, all transactions are processed by the operating system.
• Multi Path IO (MPIO): this allows an alternative access to input / output for the cases where primary access is down.

Windows Home Server Edition

Windows Home Server is an operating system based on Microsoft Windows Server 2003 with Service Pack 2. Announced January 7th, 2007 at the Consumer Electronics Show conference and Bill Gates, Windows Home Server is intended to be a solution for households with multiple PCs networked to provide functions of file sharing, automated backups, and access to distance.

Study: From Wikipedia, the free encyclopedia. The text is available under the Creative Commons.