Develop – minimize your dependencies Package – know your dependencies Configure – use intent based configuration Deploy – use modular, componentized.

Slides:



Advertisements
Similar presentations
There is a tsunami of bad heading our way Michael Hayden Four star general Director of the NSA Director of the CIA Director of National Intelligence.
Advertisements

The System Center Family Microsoft. Mobile Device Manager 2008.
The explosion of devices is eroding the standards-based approach to corporate IT. Devices Deploying and managing applications across platforms.
IT:Network:Applications VIRTUAL DESKTOP INFRASTRUCTURE.
© 2010 VMware Inc. All rights reserved Confidential VMware Vision Jarod Martin Senior Solutions Engineer.
Microsoft SharePoint 2013 SharePoint 2013 as a Developer Platform
Know Gain Learn enough about containers to be dangerous insights on where you would use containers what Microsoft is doing with containers.
Sudhir Rao Technology Specialist | Microsoft Corporation.
A Tour of System Center Configuration Manager Adam Duffy Edina Public Schools.
VMware vCenter Server Module 4.
Migrating SQL Server database applications to Windows Azure Virtual Machine Guy BowermanEvgeny Krivosheev DBI333.
Migrating Applications to Windows Azure Virtual Machines Michael Washam Senior Technical Evangelist Microsoft Corporation.
WCA-B324 Get Up!!! YAAAWWWN! App-V 5.0 Get Ready for… Are You Ready?
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
Joey Snow | Senior Technical Evangelist Corey Hynes | Lead Technical Architect.
Deploying and Managing Windows Server 2012
Tim Vander Kooi Systems
PowerShell Desired State Configuration for Securing Systems Jeffrey Snover Distinguished Engineer (MSFT) Hemant Mahawar Senior Program Manager (MSFT) #devconnections.
Verify Hardware Requirements Install Windows Server 2008 R2 Configure Active Directory Install SQL Server 2008 Install SharePoint Server 2010 Configure.
Copyright © 2011 EMC Corporation. All Rights Reserved. MODULE – 6 VIRTUALIZED DATA CENTER – DESKTOP AND APPLICATION 1.
CCAT Troubleshooting Training XenApp April 2012 Citrix Consulting Architecture Team.
WINDOWS AZURE PLATFORM ROADMAP Eric Nelson Slide 1.
Remote Desktop Services in Windows Server 2008 R2.
Stu Fox Datacom Systems Ltd. ON-PREMISES SERVICE PROVIDERMICROSOFT CONSISTENT PLATFORM Modern platform for the world’s apps 1.
Satisfy Your Technical Curiosity Specialists Enterprise Desktop -
Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.
Virtual Machine Management Challenges What are Solution Accelerators? Offline Virtual Machine Servicing Tool Next Steps.
PowerShell Desired State Configuration for Securing Systems Jeffrey Snover Distinguished Engineer (MSFT) Hemant Mahawar Senior Program Manager (MSFT) #devconnections.
* Admin GUIs on servers are poison Optimized for next-gen distributed applications Higher density and Reduced attack surface and servicing.
Windows Azure poDRw_Xi3Aw.
ALL INFORMATION PRESENTED AS WELL AS ALL SESSIONS ARE MICROSOFT CONFIDENTIAL AND UNDER YOUR NON-DISCLOSURE AGREEMENT (NDA) AND\OR TECHNOLOGY PREVIEW.
Bellevue College Cloud Seminars Learn: Cloud services Friday, March 4, 2016 Azure Virtual Machines Fawad Khan.
Copyright © New Signature Who we are: Focused on consistently delivering great customer experiences. What we do: We help you transform your business.
Free, online, technical courses Take a free online course. Microsoft Virtual Academy.
Bellevue College Cloud Workshops Try: Cloud services Friday, May 6, 2016 Azure Virtual Machines (VM) Fawad Khan.
Moving Small Business Server into the Future. STANDARD Workload Optimized DATACENTER Virtualization Optimized Virtualization SKUs ESSENTIALS Small Business,
Nano Server & ContainersNano Server & Containers Better Together Mike Resseler Technical Evangelist Veeam Software Thomas Maurer Cloud Architect itnetX.
C Copyright © 2006, Oracle. All rights reserved. Oracle Secure Backup Additional Installation Topics.
Free, online, technical courses Take a free online course. Microsoft Virtual Academy.
Windows 2012R2 Hyper-V and System Center 2012
Managing Windows Server 2012
Introduction to Windows Server 2008
Volume Licensing Readiness: Level 200
Volume Licensing Readiness: Level 200
Review Windows Server 2016 The Cloud OS optimized for DevOps
Exam In The First Attempt?
Manage and troubleshoot your Windows Server environment remotely
Microsoft Virtual Academy
Windows Server 2016 Platform for Modern Apps Microsoft Build 2016
Manage Nano Server with Windows Server 2016 Hyper-V
Volume Licensing Readiness: Level 200
 Published: October 3, 2016  Languages: English, Spanish, Chinese (Simplified),  Chinese (Traditional), French, German, Japanese, Portuguese (Brazil)
Microsoft Latest Real Exam Study Questions - Microsoft Dumps
Windows Server & Hyper-V Containers Vaggelis Kappas
Download dumps - Microsoft Real Exam Questions Dumps4download
System Center Configuration Manager: What’s New?
11/8/2018 2:35 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or.
Configuring and Deploying Just Enough and Just-In-Time Administration
Develop, package and deploy your apps for Nano Server
Microsoft Ignite NZ October 2016 SKYCITY, Auckland.
11/20/2018 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
System Center Operations Manager 2007 – Technical Overview
Service Template Creation from the Ground Up
Service Template Creation from the Ground Up
Day 2, Session 2 Connecting System Center to the Public Cloud
Microsoft Virtual Academy
Oh no! My W1nd0ws S3rv3r 1s Vladimir Stefanović Oh no! My W1nd0ws S3rv3r 1s
SCCM in hybrid world Predrag Jelesijević Microsoft 7/6/ :17 AM
Presentation transcript:

Develop – minimize your dependencies Package – know your dependencies Configure – use intent based configuration Deploy – use modular, componentized deployments Run – use physical hosts, VMs, or containers Test – use unit tests Secure – don’t let security be an after thought or add-on

In previous releases Windows Server hasn’t had a point of view Variety of artifacts used No clear set of choices or recommendations Windows Server 2016 has a clear point of view Traditional ops model Emerging model with Containers

Architectural Foundation Develop apps using SDK targeting Nano Server Package apps using Windows Server App (WSA) installer Configure apps using DSC Deploy apps and dependencies using Package Management Run apps in physical, VMs, or containers Test apps using Pester Secure apps using Just enough Administration (JEA)

Develop apps using Frameworks on Nano Server Package apps as Container Images pushed to repositories Configure apps using Container Images Deploy container images from repositories Run containers though orchestrators Test apps using your test frameworks Secure apps using multiple containers and JEA

Optimized for next-gen distributed applications Higher density and Reduced attack surface and servicing requirements Next-gen distributed app frameworks Interoperate with existing server applications Containers and next-gen applications Full GUI Specialized workloads Third-party applications RDS experience Server Core Lower maintenance server environment Traditional VM workloads Nano Server Just enough OS

Physical, Virtual, Containers Nano Server Server Core Client (aka Server w/a Desktop Exp) (Aka Full Server) Local Admin Tools Remote Desktop Server

advapi32.dll comctl32.dll comdlg32.dll gdi32.dll kernel32.dll ole32.dll psapi.dll secur32.dll setupapi.dll shell32.dll shlwapi.dll tdh.dll user32.dll version.dll winmm.dll

Container Management System Processes Application Processes System Processes Application Processes

Virtual Machine Specifically Optimized To Run a Container Container Management System Processes Application Processes

Container Management Docker Windows Container Images Hyper-V Container Windows Server Container

Virtual Machine Host Nested Virtual Machine

Layer metadata (json) Layer payload (tar) Layer metadata (json) Layer payload (tar) Layer metadata (json) Layer payload (tar)

Sandbox Layer 1 Sandbox Layer 2

Windows PowerShell Copyright (C) 2016 Microsoft Corporation. All rights reserved. PS C:\> New-Container PS C:\> Get-Container PS C:\> Get-ContainerImage

Develop apps using SDK targeting Nano Server Package apps using Windows Server App (WSA) installer Configure apps using DSC Deploy apps and dependencies using Package Management Run apps in physical, VMs, or containers Test apps using Pester Secure apps using JEA

Develop apps using Frameworks on Nano Server Package apps as Containers or as WSA Configure apps using Containers Deploy apps and dependencies using Containers or packages Run apps in containers Test apps using your test frameworks Secure apps using multiple containers and JEA Call to Action Learn more about Windows containers Give your apps a try in Windows containers Help with PowerShell for Docker Get ready for Technical Preview 5! Continue providing feedback and bug reports Virtualization-Documentation Virtualization-Documentation

End User PackageManagement PowerShell cmdlets PackageManagement Core Discovery Install/Uninstall Inventory PackageManagement Providers Windows Server App (WSA)PowerShellGetWindows ContainerNuGetNanoServerPackage… Package Sources WSA Package Repository…PowerShell GalleryContainer Gallery, DockerNuGet Gallery … …

You’re an Admin Thanks, you’re PWND!! Edward Snowden Age 30 College dropout Michael Hayden Four star general Director of the NSA Director of the CIA Director of National Intelligence

Safe functions required by role Dangerous functions attackers could abuse Just Enough Admin Allows you to perform administrative tasks without being a full administrator On a Server - almost any administrative action requires a user be an administrator Once an administrator, a user can do anything on the server with no oversight A compromised machine or a breached administrator account enables attacker movement to other assets From full admin to role based admin Just Enough Administration (JEA) using PowerShell WMF 5.0

Active Directory Endpoint JEA Endpoints Secure PowerShell configuration Access controls govern who can connect User connects as normal user Commands run-as local admin account Each session is fully logged One or more JEA Toolkits = limited set of CMDlets and parameters that represent a logical role Maintenance Endpoint Auditing Endpoint

PS C:\> Enter-JEAsession Server1 –Name M MM Maintenance Server1> Restart-Service M MM MSSQLSERVER HR Server * Server1> Steal-Secrets * Error: You are not authorized to Steal-Secrets

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.