Slide presentation from Philly TechFest 2010

1. 5 Compelling Reasons to Upgrade to
Windows Server 2008 R2
Presented by Aaron Harclerode
MCT, MCITP: Enterprise Administrator
Director of Technical Services

2. Windows Server 2008 R2 feature
improvements
Architectural improvements in R2
AD Features in R2
Hyper-V Changes in R2
Remote Access Changes in R2
Branch Office improvements in R2
Powershell 2.0 features
2

3. Architectural improvements in Windows
Server 2008 R2
Self-Healing NTFS*
SMB 2.0*
VHD Native boot
Improved data center power consumption
management
• Core parking
• Adjustment of ACPI “P-states”
• Reduces storage power consumption
3

4. Windows Server 2008 R2 feature
improvements
Architectural improvements in R2
AD Features in R2
Hyper-V Changes in R2
Remote Access Changes in R2
Branch Office improvements in R2
Powershell 2.0 features
4

5. Active Directory features in Windows
Server 2008 R2
AD DS includes the following improvements:
• New domain and forest functional level
• Active Directory Administrative Center
• Active Directory module for Windows PowerShell and Windows
PowerShell cmdlets
• Active Directory Best Practices Analyzer
• Active Directory Recycle Bin
• Active Directory Web Services
• Managed service accounts
• Offline domain join
• Authentication Mechanism Assurance
5

6. Demo
AD Administrative Center
AD Recycle Bin
AD Best Practices Analyzer
6

7. Windows Server 2008 R2 feature
improvements
Architectural improvements in R2
AD Features in R2
Hyper-V Changes in R2
Remote Access Changes in R2
Branch Office improvements in R2
Powershell 2.0 features
7

8. Hyper-V changes in R2
Live Migration Dynamic virtual
machine storage
Improved VHD
performance Hyper-V in Enhanced processor
Windows Server 2008 R2 support &
compatibility
Enhanced networking
support
8

9. Cluster Shared Volumes
CSV is a feature of Failover Clustering that enables multiple nodes to concurrently access
a single shared volume
• Reduced number of disks’ logical unit numbers (LUNs)
• Better use of disk space
• Effortlessly track the paths of VHD files and other files
• Fewer CSVs to create a configuration to support clustered virtual
machines
• No specific hardware requirements
• Increased resiliency
9

10. Reasons for Live Migration
Hardware maintenance of physical host
Updating physical host operating system
Moving virtual machine to a more appropriate
host
10

11. How Live Migration Works
Setting up of Live Migration
Transferring of memory pages from the source node
to the destination node
Moving of the storage handle from the
source to the destination
Resuming of the virtual machine on the
destination server
Cleaning up of network occurs
11

12. Windows Server 2008 R2 feature
improvements
Architectural improvements in R2
AD Features in R2
Hyper-V Changes in R2
Remote Access Changes in R2
Branch Office improvements in R2
Powershell 2.0 features
12

13. Direct Access
Features of DirectAccess
 Connects automatically to corporate network over the public network
 Uses various protocols, including HTTPS, to establish IPv6 connectivity
 Supports selected server access and IPSec authentication
 Supports end-to-end authentication and encryption
 Supports management of remote client computers
 Allows remote users to connect directly to intranet servers
Benefits of DirectAccess
 Always-on connectivity
 Seamless connectivity
 Bidirectional access
 Improved security
 Integrated solution
Direct Access Server
13

14. How Direct Access Works
The DirectAccess client running Windows 7 detects whether it is connected to a network
The client attempts to connect to an intranet Web site that is specified during the
DirectAccess configuration
The client connects to the DirectAccess server using IPv6 and IPSec
The DirectAccess client and server authenticate each other by using computer certificates to
establish the IPSec session
The DirectAccess server verifies that the computer and user are authorized to connect by
using DirectAccess
The client obtains a health certificate from a Health Registration Authority (HRA) prior to
connecting to the DirectAccess server
The DirectAccess server begins forwarding traffic from the DirectAccess client to the intranet
resources to which the user has been granted access.
14

15. Name Resolution Policy Table
NRPT is a table that defines DNS servers for different namespaces and
corresponding security settings. It is used before the adapter’s DNS settings.
Using NRPT:
• DNS servers can be defined for each DNS namespace rather than for each
interface
• DNS queries for specific namespaces can be optionally
secured by using IPsec
15

16. How a network access client determines
the type of network
A network location server (NLS) is an internal network server that hosts an
HTTPS-based URL. DirectAccess clients access the URL to determine whether they are
located on the intranet or not.
START Network change event
Yes Can resolve No
NLS FQDN?
Yes Can No
contact
NLS
Located on Located on public Located on public
intranet network network

17. Client and server requirements
Server-side Client-side
To deploy DirectAccess, the server To deploy DirectAccess, the client
must: must:
• Be joined to an Active Directory • Be joined to an Active Directory
domain domain
• Run Windows Server 2008 R2 • Run Windows 7 Ultimate Edition,
Windows 7 Enterprise Edition, or
• Have two physical network Windows Server 2008 R2
adapters installed
• Have at least two consecutive
static public IPv4 addresses
17

18. Infrastructure requirements
PKI
DNS and domain controller IPSec policies
ICMPv6
ICMPv6 Echo
Group Policy Request traffic
IPv6
Active Directory IPv6 and transition
DirectAccess technologies
Server
18

19. Direct Access Configuration
Steps to configure DirectAccess
• Install Windows Server 2008 R2
• Join the DirectAccess server to an Active Directory domain
• Install the DirectAccess Management feature and configure the DirectAccess server on the perimeter
network
• Enable ports and protocols needed for DirectAccess in the firewall exceptions
• Ensure that you have an IPv4 address available and that you have the ability to have that address published
in your externally-facing DNS server
• If you have disabled IPv6 on clients and servers, enable IPv6
• Create a security group in Active Directory
• Install a Web server on the DirectAccess server
• Designate one of the server network adapters as the Internet-facing interface.
• On the DirectAccess server, ensure that the Internet-facing interface is configured to be either a Public or a
Private interface.
• Add and configure the Certificate Authority server role
19

20. Windows Server 2008 R2 feature
improvements
Architectural improvements in R2
AD Features in R2
Hyper-V Changes in R2
Remote Access Changes in R2
Branch Office improvements in R2
Powershell 2.0 features
20

21. Enhancements for Branch Offices
Networking Enhancements
• BranchCache
• VPN Reconnect
• URL-based Quality of Service (QoS)
• Multiple active firewall profiles
• Transparent caching and background synchronization of offline files
Benefits
• Read-Only DFS replicas
• BitLocker to Go
21

22. Branch Cache
The following are the features of BranchCache:
• Reduces the network utilization on WAN connections between branch
offices and the head office
• Improves the performance of applications that use HTTP, HTTPS, or SMB
• Improves the responsiveness of applications across slow WAN links
• Enables the client to retrieve data from local BranchCache
• Caches only the read requests
• Works seamlessly alongside network security technologies
22

23. Hosted cache vs distributed cache
Hosted Cache
Distributed Cache
Get
Get
Search
Get Search
Get
Get Offer
Get Request
Head office Put
Branch office
23

24. Branch Cache Requirements
Requirements for using Requirements for distributed and
Branch Cache hosted cache modes
• Install the BranchCache feature • In the distributed cache mode,
or the BranchCache for Network no server is required in the
Files feature on the server that is branch office; just Windows 7 or
hosting the content Windows Server 2008 R2 clients
• Configure clients, either by using are required
Group Policy or the netsh • In the hosted cache mode,
command Windows Server 2008 R2 server
must be configured for
BranchCache host in the branch
office
• The BranchCache host server
must have a digital certificate
24

25. Windows Server 2008 R2 feature
improvements
Architectural improvements in R2
AD Features in R2
Hyper-V Changes in R2
Remote Access Changes in R2
Branch Office improvements in R2
Powershell 2.0 features
25

26. Powershell Improvements in R2
Powershell ISE
Remote Management
Powershell Modules
Background Jobs
Transactions
26

27. Powershell Demo
27

28. Relevant courses at Springhouse
10159 – Updating Your Windows Server 2008
Technology Specialist Skills to Windows Server
2008 R2
Microsoft Official Curriculum (MOC) Courses
6419, 6420, 6421, 6422, 6423, 6424, 6425,
6426, 6427, 6428, 6429, 6430
28

29. Q&A
Questions?
Aaron Harclerode
• Aaron.harclerode@springhouse.com
29

30. What is Virtual Desktop Infrastructure
Virtual Desktop Infrastructure (VDI) is a centralized desktop delivery architecture, which allows
to centralize the storage, execution, and management of Windows desktops
Key Benefits of VDI
• Access to data and applications from any device
• Improved data security and compliance
• Simplified management and deployment of applications
• Improved business continuity
• Integrated management of physical, virtual, and session-based desktops
• Centralized data storage and backup
Key Deployment Scenarios of VDI are persistent virtual machines and pooled virtual
machines
30

31. Types of VDI
Personal virtual desktops
Each virtual machine is like a traditional personal
computer, where user data, settings, applications,
and operating systems are stored, and users have
assigned a personal virtual desktop
Pooled virtual desktops
Identically configured virtual machines are in the
pool and users can connect to any of them. After
users log off, all changes are discarded, so user data
must be stored outside the virtual machine
31

32. How VDI works
A user can connect to a virtual machined based on the VDI configured for:
configured for:
1. A user initiates the connection to the personal virtualpool
virtual desktop desktop
2. The user sends the request to the RD Session Host server
running in redirection mode
3. The RD Session Host server forwards the request to the RD
redirects
Connection Broker server
4. The RD Connection Broker server queries whether any existing
verifies AD DS and retrieves
the name of the virtual machine user is assigned to the
session exists for the requesting that account
requesting user account
5. The RD Session Host server redirects the request to the client
5. The RD Connection Broker server sends a request to the RD
computer that initiated the connection
Virtualization Host server to start the virtual machine
6. The client computer connects to the virtual desktop pool
Personalvirtual desktops
Pooled virtual desktops 6. The RD Virtualization Host server returns the IP address of the
FQDN to the RD Connection Broker server desktops
Pooled virtual
7. The RD Session Host server redirects the request to the client
computer that initiated the connection
8. The client computer connects to the personal virtual desktop
32

33. Stay Connected with Springhouse
www.linkedin.com/companies/201280
www.facebook.com/springhouseeducation
www.twitter.com/SpringhouseEduc
Join in the conversation
Philly TechFest hashtag #phtf10

34. Upcoming iLearn Topics
Spend an hour over lunch (12pm – 1pm ET) with a
live presentation and demonstration of topics What's New in Microsoft 5/17/2010
Office 2010
such as:
• SharePoint Document Libraries An Overview of ITIL 5/20/2010
• Project 2007/Project Management Tips & Tricks IIS 7.0 for Developers 6/1/2010
• Windows 7 for IT Pros
• Office 2007 and Office 2010 Project Management Tips 6/14/2010
• and many more and Tricks
Common Tasks with 6/24/2010
Just visit www.Springhouse.com/iLearn to learn more PowerShell
and register for a FREE webcast! Microsoft Excel 2007: 6/28/2010
Tips and Tricks

35. There is no need to travel to take a live,
instructor-led class with Springhouse. You
can stay at home or at your office and join
a class via Springhouse CONNECT, our
Remote Learning System.
• Participate in the live instructor-led classroom
demonstrations and labs
• Interact with the instructor and students, via
high-quality conferencing equipment
• View the Instructor's Presentation, Whiteboard
and Demonstrations
• Get remote hands-on help from the Instructor
during labs and demos
Take ANY class via Springhouse CONNECT. Learn
more at www.Springhouse.com/CONNECT

36. Buy 2 Classes, Get 1 Free! Or Buy 1 Class, Get 2nd for Half Price!
What’s In It For Me? Springhouse is making it easier for you and
• You’ll Gain New Skills! your organization to gain new skills and
• You’ll Save Money! increase productivity while maximizing your
budget.
• You’ll Increase Your Productivity!
For full details of the program visist
How Do I Take Advantage? www.Springhouse.com/Summer-of-Learning
Visit www.Springhouse.com and select any course
scheduled to run between May 31, 2010 and
September 6, 2010.
Enroll in the course using
Promo Code: SUMMER2010
A Springhouse representative will contact you to
register for the other discounted course.

37. Upcoming Windows 7 Migration Clinics
Exton, PA – May 13th Event Overview
Malvern, PA – June 29th
Reston, VA - May 14th This one-day Windows 7 Migration
Richmond, VA – June 2nd & 11th Clinic dives deep into the migration
Washington, DC – June 30th and deployment planning strategies
for Windows 7. Through a series of
in-depth presentations and exercise
For full event details and registration
demonstrations, we will highlight the
visit www.springhouse.com/events new tools and technologies designed
to enable successful Windows 7
migrations and deployments.