Deploy, configure, and remotely manage Nano Server INF212 Benjamin Armstrong
Agenda What we hear from customers Our journey Managing Nano Server 4/20/2018 Agenda What we hear from customers Our journey Managing Nano Server Deploying Nano Server Preliminary results Roadmap Next steps © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Voice of the Customer Reboots impact my business Why do I have to reboot because of a patch to a component I never use? When a reboot is required, the systems need to be back in service ASAP Server images are too big Large images take a long time to install and configure Transferring images consumes too much network bandwidth Storing images requires too much disk space Infrastructure requires too many resources If the OS consumes fewer resources, I can increase my VM density Higher VM density lowers my costs and increases my efficiency & margins
Microsoft Ignite 2015 4/20/2018 3:27 AM Security Impact Data Breaches At U.S. Office Of Personnel Management Were Preventable, Investigation Finds FDIC covered up likely hack of system, investigation finds © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
I want just the components I need and nothing more 4/20/2018 3:27 AM I want just the components I need and nothing more © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Our Server Journey
Our Cloud Journey Microsoft Azure Cloud Platform System (CPS) 4/20/2018 3:27 AM Our Cloud Journey Microsoft Azure Patches and reboots interrupt service delivery (large # of servers) * (large OS resource utilization) = high COGS Provisioning large host images competes for network resources Cloud Platform System (CPS) Cloud-in-a-box running on 1-4 racks running Windows Server & System Center Lengthy setup time creates brittle and complex deployments Patches and reboots result in service disruption and downtime © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
I need servers that are optimized for the cloud 4/20/2018 3:27 AM I need servers that are optimized for the cloud © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Nano Server installation option Just enough OS 4/20/2018 Nano Server installation option Just enough OS Provides higher density, reduced attack surface and servicing requirements Ideal for cloud inspired infrastructure Smaller image size, smaller attack surface, faster boot time Ideal for next generation app development Built for containers and cloud-native apps Full developer experience with Windows SDK and Visual Studio Third-party applications RDS experience Full GUI Specialized workloads Existing VM workloads Server Core Lower maintenance server environment Containers and modern applications Nano Server Just Enough OS © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Nano Server: Next Step in our Cloud Journey TechReady 23 4/20/2018 3:27 AM Nano Server: Next Step in our Cloud Journey Just enough OS (JeOS) model Server Roles and Optional Features live outside of Nano Server Standalone packages that install like applications Key Roles & Features Hyper-V, SoFS, Clustering, IIS, and DNS Server Windows Defender, TPM, SIL, PowerShell DSC .NET Core and ASP.NET Core Full Windows Server driver support INF-based driver installation support Offline installation support for PnP drivers SC VMM and OM agents © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Nano Server: Cloud Application Platform Born-in-the-cloud application support Subset of Win32 .NET Core and ASP.NET Core PowerShell Desired State Configuration (DSC) PackageManagement (aka OneGet) Popular open source application frameworks Available as OS everywhere Host OS for physical hardware Guest OS in a VM Windows Server Containers Hyper-V Containers
Deploying and Configuring Nano Server
Nano Server in Windows Server 2016 An installation option, like Server Core Not listed in Setup because image must be customized with drivers Separate folder on the Windows Server media
Nano Server Roles and Features Nano Server folder has a Packages sub-folder
Nano Server Quick Start PowerShell Module and Scripts included in NanoServer\NanoServerImageGenerator folder to build a customized image NanoServerImageGenerator.psm1 NanoServerImageGenerator.psd1 Convert-WindowsImage.ps1 Use cmdlets to generate a Nano Server image for physical host or virtual machine New-NanoServerImage Edit-NanoServerImage Get-NanoServerPackage Get-NanoServerOptionalFeature
Nano Server Configuration Required The right drivers for physical hardware or VM Administrator password Deployment Type Edition Optional Add server roles or features Computer name IP address Domain join VHD/VHDX size Unattend and/or Setupcomplete Servicing Package Remote WinRM access Debug and/or Enable Emergency Management Services (EMS)
Configuration Setting New-NanoServerImage Switch Drivers for physical hardware or VM [-DriverPath <string[]>] Administrator password -AdministratorPassword <securestring> Deployment Type [-DeploymentType] {Host | Guest} Edition [-Edition] {Standard | Datacenter} Add server roles or features [-Package <string[]>] Computer name [-ComputerName <string>] IP address [-InterfaceNameOrIndex <string>] [-Ipv6Address <string>] [-Ipv6Dns <string[]>] [-Ipv4Address <string>] [-Ipv4SubnetMask <string>] [-Ipv4Gateway <string>] [-Ipv4Dns <string[]>] Domain join [-DomainName <string>] [-DomainBlobPath <string>] [-ReuseDomainNode] VHD/VHDX size [-MaxSize <uint64>] Unattend and/or Setupcomplete [-UnattendPath <string>] [-SetupCompleteCommand <string[]>] Servicing Package [-ServicingPackagePath <string[]>] Remote WinRM access [-EnableRemoteManagementPort] Debug and/or Enable Emergency Management Services (EMS) [-DebugMethod {Serial | Net | 1394 | USB}] [-EnableEMS] [-EMSPort <byte>] [-EMSBaudRate <uint32>]
Installing Drivers For the leanest image, install just the drivers your hardware requires Nano Server includes a package of all drivers in Server Core Microsoft-NanoServer-OEM-Drivers-Package.cab To run Nano Server as a VM, create a Guest image This installs the Guest package with the guest drivers
Nano Server Image Builder
Demo Building a Nano Server image
Installing Roles & Features from Package Repository NanoServerPackage provider for the PackageManagement (OneGet) PowerShell module Install-PackageProvider NanoServerPackage Import-PackageProvider NanoServerPackage You can then search for, download, and install Nano Server roles and features from the repository Find-NanoServerPackage Save-NanoServerPackage Install-NanoServerPackage
Installing Agents and Tools on Nano Server No MSI support in Nano Server Use Copy-Item -ToSession or custom PowerShell script to copy files to Nano Server Windows Server App (WSA) installer provides app support Install Uninstall Inventory WSA added to Server Core and Server with Desktop Experience for Windows Server 2016 RTM
Managing Nano Server
Nano Server - Management Eliminate the need to ever sit in front of a server Configuration via PowerShell Desired State Configuration (DSC) Remote management & automation via PowerShell Core and WMI Integrate into DevOps toolchains
Remotely Managing Nano Server Server Manager Hyper-V Manager Failover Cluster Manager PerfMon, Event Viewer, etc. PowerShell Core Server Management Tools (SMT)
Nano Server – PowerShell Core Refactored to run on CoreCLR Full PowerShell language compatibility & remoting Invoke-Command, New-PSSession, Enter-PSSession, etc. Most core engine components Support for all cmdlet types: C#, Script, and CIM Limited set of cmdlets initially
Demo PowerShell Core
Server management tools (SMT) TechReady 23 4/20/2018 3:27 AM Server management tools (SMT) Web-based remote management tools offered via Azure Includes replacements for Local-only tools, including Task Manager, Device Manager, Sconfig Commonly used MMC snapins: Registry Editor, Firewall, etc Based on WMI and PowerShell Manages Nano Server, Server Core, Server with Desktop Experience © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Public preview available to customers today Tools supported include: TechReady 23 4/20/2018 3:27 AM SMT Current Status Public preview available to customers today Tools supported include: File Explorer Certificate Manager Event Viewer Device Manager Firewall Local Administrators Roles and Features Supports WS2016, 2012R2, 2012 Network Settings PowerShell console Processes Registry Editing Services Windows Update Storage © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Setup & Boot Event Collection Microsoft Ignite 2015 4/20/2018 3:27 AM Setup & Boot Event Collection Broader Environment Visibility Greater Visibility Remotely view debug errors, events from your deployment process, boot loader, OS, and services Troubleshoot issues without requiring physical access Physical Machines Virtual Machines ETW Messages Simple Setup Works on both physical and virtual machines Requires little additional infrastructure and can be set up using PowerShell or an unattend file ETW Collector Service ETL Files Lower MTTR Access to data is real-time and can be correlated with other diagnostic data to identify problems faster Analysis Tools © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Nano Server Recovery Console Provides local access to network configuration and settings Computer name Domain or workgroup name Network information Firewall rules Reset WinRM VM Host on a Hyper-V Host
Demo Recovery Console
Recap: Nano Server Management Microsoft Ignite 2015 4/20/2018 3:27 AM Recap: Nano Server Management DevOps mindset: "Treat servers like cattle, not pets" Goal: Eliminate the need to ever sit in front of a server Remote graphical and web-based management tools Remote management and automation via PowerShell & WMI © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Results
Security Improvements 47 30 98 73 28 12
Resource Utilization Improvements 26 306 139 21 108 61
Deployment Improvements 5.42 6.3 300 35 .46 .48
TechReady 23 4/20/2018 3:27 AM “ We’ve used it to increase VM density; instead of eight VMs per host, we’ve pushed it to 12 or 14 VMs on the same hardware,” Morimoto says. “The use of Nano Server alone has reduced our operations overhead by 70 percent. “ Rand Morimoto CEO Convergent Computing © 2016 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Servicing Model
LTSB servicing model This is the traditional servicing model Windows Server has always used Two Windows Server 2016 installation options use this model 5 + 5 years of servicing Security and quality fixes only No new features or functionality Server with Desktop Experience Server Core
Current Branch for Business (CBB) Nano Server will be CBB only What does this change? Nano Server will not have an LTSB with Windows Server 2016 and therefore not have 5+5 years of servicing Nano Server installations will have to move forward to future CBB releases of Nano Server to continue to be serviced Licensing Nano Server will require Software Assurance (SA) What doesn’t this change? The quality, features, and functionality of Nano Server Installation of new CBBs are always controlled by administrators, no forced upgrades
Windows Server Servicing Future CBBs and LTSBs CBB4 Servicing for a CBB ends after the release of the 2nd future CBB CBB3 Features CBB2 Server with Desktop Experience and Server Core Nano Server CBB1 WS 2016 LTSB WS 2012R2 LTSB WS 2012 Time
Roadmap Nano Server is the future nucleus of Windows Server Target for cloud services and born-in-the-cloud applications New foundation for all server components Provides a Just Enough OS model for all applications Not everything will run on Nano Server Server Core provides compatibility for existing Enterprise applications Born-in-the-Cloud Applications Existing Enterprise Applications Cloud Frameworks Server Core Nano Server Physical Virtual Container
Call to Action Deploy Nano Server for your Hosts, Guests, and Containers Nano Server Deployment Guide https://msdn.microsoft.com/en-us/library/mt126167.aspx Nano Server Blog https://blogs.technet.microsoft.com/nanoserver/ Channel9 Nano Server Channel https://channel9.msdn.com/Series/Nano-Server-Team Give us feedback and let us know where you encounter difficulties https://social.technet.microsoft.com/Forums/en-US/home?forum=NanoServer nanoserver@microsoft.com http://windowsserver.uservoice.com/forums/295068-nano-server Remote Management https://blogs.technet.microsoft.com/servermanagement/2016/08/17/deploy-setup-server-management-tools/ Feedback http://windowsserver.uservoice.com/forums/295071-remote-management-tools
Continue your Ignite learning path 4/20/2018 3:27 AM Continue your Ignite learning path Visit Channel 9 to access a wide range of Microsoft training and event recordings https://channel9.msdn.com/ Head to the TechNet Eval Centre to download trials of the latest Microsoft products http://Microsoft.com/en-us/evalcenter/ Visit Microsoft Virtual Academy for free online training visit https://www.microsoftvirtualacademy.com © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Win a Spark After Dark drone pilot pass by completing your session evaluation ASAP #MSAUIGNITE
Thank you Chat with me in the Speaker Lounge Find me @VirtualPCGuy 4/20/2018 3:27 AM Thank you Chat with me in the Speaker Lounge Find me @VirtualPCGuy © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.