Presentation is loading. Please wait.

Presentation is loading. Please wait.

Optimize your Infrastructure Rich, Web based experiences Hardens the OS and Protects Your Environment Better Security and Compliance Tools Network Access.

Published bySuzanna Goodman Modified over 9 years ago

Similar presentations

Presentation on theme: "Optimize your Infrastructure Rich, Web based experiences Hardens the OS and Protects Your Environment Better Security and Compliance Tools Network Access."— Presentation transcript:

1

2 Optimize your Infrastructure Rich, Web based experiences Hardens the OS and Protects Your Environment Better Security and Compliance Tools Network Access Protection Enhanced Scripting and Task Automation Modular and Extensible Platform Integrated Hypervisor Server Consolidation Power Savings Solid Foundation for Your Business Workloads

3 Web Solid Foundation for Enterprise Workloads Virtualization Internet Information Services 7.0 Efficient management and deployment tools Customizable platform with.NET extensibility Windows Media Services Advanced streaming and caching Windows SharePoint Services Powerful document and team collaboration Windows Server Virtualization Hypervisor-based virtualization platform High availability through Failover Clustering Terminal Services Gateway Access internal resources through the firewall Terminal Services RemoteApp Access and run remote applications locally Server Core Minimal installation option for better security and reliability Next Generation Networking New TCP/IP stack for improved scalability and performance Failover Clustering Easy to implement and flexible high availability Server Manager Role-based configuration, management and reporting Windows PowerShell Command shell and scripting language for task automation Windows Deployment Services Fast and efficient imaging of clients and servers Security Read-Only Domain Controller Increased security and delegated management for branch offices Network Access Protection Health validation and compliance checking Federated Rights Management Protected document collaboration ManageabilityManageability Reliability

4 Server Manager Product Installation Initial Configuration

5 New Command-line shell & Scripting Language Resources Improves productivity & control Accelerates automation of system admin Works with existing scripts Ships with Windows Server 2008 Easy for non-programmers Role management in future versions TechNet Script Center MyITForum.com Newsgroup and Web Forum Team Blog and Channel 9 Books from Manning, O’Reilly, Microsoft Press, Sapien Partners

6 Server Management and Windows Powershell

7 Optimized performance without loss Intelligent, automated tuning of TCP receive window size Better packet loss resiliency (e.g. wireless connectivity) Advanced congestion control for better throughput Automatically adjusts for maximum efficiency Faster network transfers, especially across WAN links Optimized use of available network bandwidth Reduced packet loss resulting in fewer retransmits

8 Heartbeat New Validation Wizard Support for GUID partition table (GPT) disks in cluster storage Improved cluster setup and migration Improvements to stability and security – no single point of failure Geographically dispersed clusters Active Node Passive Node

9 Streamlined installation means reduced attack surface Simplified administration through variety of tools Customization and extensibility through.NET Xcopy deployment and shared configuration Event logging and tracing for faster troubleshooting Application and health management for Web services

10 Impact of stolen DC to the Active Directory reduced By default, no users/computers passwords stored on RODC Read-only Partial Attribute Set can prevent application credentials from replicating to RODC Reduced attack surface to the Active Directory for a compromised DC Read-only state with unidirectional replication for AD and FRS/DFSR Each RODC has its own KDC KrbTGT account to provide cryptographic key separation Delegated DCPROMO reduces need for DA to TS into RODC Windows Server 2008 writeable DCs register SRV records on behalf of RODCs to prevent name squatting RODCs are workstation accounts Not members of Enterprise-DC or Domain-DC groups Very limited rights to write in Directory

11 Branch Hub Read Only DC Windows Server 2008 DC 11 22 33 44 55 66 66 11 22 33 44 55 66 User logs on and authenticates RODC: Looks in DB: "I don't have the users secrets" Forwards Request to Windows Server 2008 DC Windows Server 2008 DC authenticates request Returns authentication response and TGT back to the RODC RODC gives TGT to User and RODC will cache credentials RODC

12 Determines whether the computers are compliant with the company’s security policy. Compliant computers are deemed “healthy” Policy Validation Restricts network access to computers based on their health Network Restriction Provides necessary updates to allow the computer to “get healthy.” Once healthy, the network restrictions are removed Remediation Changes to the company’s security policy or to the computers’ health may dynamically result in network restrictions Ongoing Compliance

13 1 Restricted Network MSFT Network Policy Server 3 Policy Servers e.g. MSFT Security Center, SMS, Antigen or 3 rd party Policy compliant DHCP, VPN Switch/Router 2 Windows Vista Client Fix Up Servers e.g. MSFT WSUS, SMS & 3 rd party Corporate Network 5 Not policy compliant 4 Enhanced Security All communications are authenticated, authorized & healthy Defense-in-depth on your terms with DHCP, VPN, IPsec, 802.1X Policy-based access that IT Pros can set and control Customer Benefits

14 Information AuthorThe Recipient AD RMS protects access to an organization’s digital files AD RMS in Windows Server 2008 includes several new features Improved installation and administration experience Self-enrollment of the AD RMS cluster Integration with AD Federation Services New administrative roles

15 Group Policy allows central encryption policy and provides Branch Office protection Provides data protection, even when the system is in unauthorized hands or is running a different or exploiting Operating System Uses a v1.2 TPM or USB flash drive for key storage Full Volume Encryption Key (FVEK) Encryption Policy

16 Windows Server Core New minimal installation option with only “core” components No GUI interface or graphical applications installed Subset of server roles and features available Manage remotely as you would any server

17 Windows Server Core

18 A Comprehensive Set of Virtualization Products, from the Data Center to the Desktop Server Virtualization Application Virtualization Desktop Virtualization Presentation Virtualization Assets – Both Virtual and Physical – Managed from a Single Platform Windows Server 2008 Virtualization

19 Greater scalability and improved performance x64 bit host and guest support SMP support Increased reliability and security Minimal trusted code base Runs as a Server Core role Better flexibility and manageability New UI/Integration with SCVMM VM 1 “Parent” VM 2 “Child” VM 3 “Child” HardwareHardware Windows Server 2003 Virtual Server 2005 R2 VM 2 VM 3

20 Internet Perimeter Network Corporate Network Remote/ Mobile User Terminal Services Gateway Network Policy Server Active Directory DC Tunnels RDP over HTTPs Strips off RDP / HTTPs Terminal Servers and other RDP Hosts RDP traffic passed to TS Internet

21 Terminal Server Run server-based applications locally Centrally manage applications Zero footprint client installation Run server-based applications locally Centrally manage applications Zero footprint client installation RDP 6.0 client required

22 Infrastructure OptimizationApplication Re-PlatformingExtending Core SystemsTraining and SupportSustain & Enhance

23 © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Optimize your Infrastructure Rich, Web based experiences Hardens the OS and Protects Your Environment Better Security and Compliance Tools Network Access."

Similar presentations

Ljubomir Ivaniš CPU d.o.o.

Ljubomir Ivaniš CPU d.o.o.
The System Center Family Microsoft. Mobile Device Manager 2008.

The System Center Family Microsoft. Mobile Device Manager 2008.
1. 2 Branch Office Network Performance Caches content downloaded from file and Web servers Users in the branch can quickly open files stored in the cache.

1. 2 Branch Office Network Performance Caches content downloaded from file and Web servers Users in the branch can quickly open files stored in the cache.
1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.

1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.
Technical Overview Nguyen An Que Technology Specialist Microsoft Vietnam

Technical Overview Nguyen An Que Technology Specialist Microsoft Vietnam
Connect with life Gopikrishna Kannan Program Manager | Microsoft Corporation

Connect with life Gopikrishna Kannan Program Manager | Microsoft Corporation
Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation

Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation
More Control and Flexibility Vitalis Konopelec Technology Solution Professional Microsoft Slovakia s.r.o.

More Control and Flexibility Vitalis Konopelec Technology Solution Professional Microsoft Slovakia s.r.o.
Security and Policy Enforcement Mark Gibson Dave Northey

Security and Policy Enforcement Mark Gibson Dave Northey
Michael Kleef Technology Advisor | Microsoft Australia

Michael Kleef Technology Advisor | Microsoft Australia
Optimizing Client Security by Using Windows Vista.

Optimizing Client Security by Using Windows Vista.
Sudhir Rao Technology Specialist | Microsoft Corporation.

Sudhir Rao Technology Specialist | Microsoft Corporation.
Agenda 9:00 – 9:45 Predstavenie systému Windows Server 2008 9:45 – 11:15 Windows Server 2008 – manažment,viac kontroly nad systémom 11:15 – 11:30 Prestávka.

Agenda 9:00 – 9:45 Predstavenie systému Windows Server :45 – 11:15 Windows Server 2008 – manažment,viac kontroly nad systémom 11:15 – 11:30 Prestávka.
Daniel Petri MVP, Microsoft Infrastructure Manager John Bryce Training November 2007.

Daniel Petri MVP, Microsoft Infrastructure Manager John Bryce Training November 2007.
Executive Overview. PLEASE READ (hidden slide) To deliver this presentation effectively, you need to be familiar with Windows Server 2008 R2 management.

Executive Overview. PLEASE READ (hidden slide) To deliver this presentation effectively, you need to be familiar with Windows Server 2008 R2 management.
Exchange 2010 Overview Name Title Group. What You Tell Us Communication overload Globally distributed customers and partners High cost of communications.

Exchange 2010 Overview Name Title Group. What You Tell Us Communication overload Globally distributed customers and partners High cost of communications.
Windows 7 Windows Server 2008 R2 VirtualizationVirtualization Heterogeneous Server Environment Inventory Linux, Unix & VMware Windows 7 & Server 2008.

Windows 7 Windows Server 2008 R2 VirtualizationVirtualization Heterogeneous Server Environment Inventory Linux, Unix & VMware Windows 7 & Server 2008.
Understanding Active Directory

Understanding Active Directory
Understanding Active Directory

Understanding Active Directory

Similar presentations

Ads by Google