440 likes | 665 Vues
TechNet Update. Jeff Alexander IT Pro Evangelist Microsoft Australia http://blogs.technet.com/jeffa36. Agenda. Release Cycle Windows Server™ 2003 R2 Principal Scenarios Simplified Branch Server Management Identity and Access Management Efficient Storage Management
 
                
                E N D
TechNet Update Jeff Alexander IT Pro Evangelist Microsoft Australia http://blogs.technet.com/jeffa36
Agenda • Release Cycle • Windows Server™ 2003 R2 • Principal Scenarios • Simplified Branch Server Management • Identity and Access Management • Efficient Storage Management • Robust Application Platform
UNIX Interop • Centralized Backup & Management of File and Print • High Availability • Efficient Publishing & Collaboration Windows SharePoint Services • Web Single Sign-on • B2B/B2C Commerce and Collaboration • Decentralized application directories • UNIX identity management SP1 & x64 • Simple SAN Management for the IT Generalist • File Server Resource Manager • UNIX NFS Connectivity .NET Framework 2.0
Simplified Branch Server Management Identity and Access Management Efficient Storage Management
Simplified Branch Server ManagementBranch office challenges • Wide-Area Network (WAN) • WAN costs can be significant • WAN latency issues • Management costs • Lack of network admins on site in branch offices • Tape backup expensive, unreliable • Tools need to scale to large number of branches • Policy • Delegation • UI
Simplified Branch Server ManagementMicrosoft Branch Server Vision • Replaceable • Ease of deployment & replacement • Admin free • Not require admins in branch sites • Simple configuration from central site • Accelerator • Efficient use of WAN resources – just transfer file deltas • Rely on local cache to handle local requests • Forward to central server when WAN is available • Windows Server 2003 R2 Features
Simplified Branch Server ManagementWindows Server 2003 R2 Features for Branch • Easily manage your infrastructure with centralized management tools • DFS Management Console & Failover with Failback • Print Management Console • Faster Data Replication • DFS: Remote Differential Compression & On-demand replication • Reduce administration costs by eliminating local administration & local back-up
Simplified Branch Server ManagementEnabling Technologies:DFS Namespace • Brand new management UI • Hierarchical view of namespace • New features such as rename links, drag n’ drop • New features in DFS Namespace Service • Failback (Configured by admin at root or link) • Vs. Failover • Prioritization of Target Server referrals • Set priority of servers to which you failback
Simplified Branch Server ManagementEnabling Technologies: Distributed File System Replication (DFS-R) • A robust multi-master file replicator • Efficient, scalable & robust • Key new features: • Core Service: • Efficient and simple state-based synchronization • Remote Differential Compression • Bandwidth Throttling • New management console
Dfsradmin • Powerful administrative tool • Fully scriptable Dfsrdiag • Powerful reporting • Fully scriptable Command Line Tools
Simplified Branch Server ManagementEnabling Technologies: Remote Differential Compression (RDC) • New Microsoft algorithm • Send only minimal deltas when transferring data over the wire • RDC efficiency examples • Change title in a 3.5MB PPT, resync takes just 16K Source: MS Internal
Updated file copy The quick fox jumped The quick fox jumped The quick fox jumped The quick fox jumped MD421 MD411 over the lazy brown dog. over the lazy brown dog. over the lazy brown dog. MD422 over the lazy brown dog. MD412 The dog was so lazy that he didn’t notice The brown dog was MD423 The brown dog was MD413 so lazy that he didn’t notice so lazy that he didn’t notice MD424 the fox jumping over him. MD414 the fox jumping over him. the fox jumping over him. the fox jumping over him. MD425 Enabling TechnologiesRDC – IN DEPTH Receiving Server Sending Server Original file Updated file Request file MD421 … MD425 [use recursion] Fetch new chunks 3, 4 “The brown dog was” “so lazy that he …” Note: Cross-file RDC can use multiple files to suppress replication and is available when at least one member is running R2 Enterprise Edition
Simplified Branch Server ManagementEnabling Technologies:Print Role • New Print Management Console (PMC) in R2 • With PMC, branch servers can easily be print servers because they are remotely manageable on a 1-to-many basis Printers Node Servers Node Enabling Technologies:Print Role
DPM And Windows Server 2003 R2 • If client wants high availability/failover of branch office file servers, we recommend Windows Server 2003 R2. • For centralized backup and fast recovery of branch office files with multiple recovery points, we recommend DPM. • For both high availability/failover and centralized backup capabilities, recommend both Windows Server 2003 R2 and DPM. Key Differentiators
Simplified Branch Server Management Identity and Access Management Efficient Storage Management
Your SUPPLIERS Their APPLICATIONS Your CUSTOMERS Your PARTNERS Their APPLICATIONS Identity and Access ManagementChallenge: Extending access across users, apps, platforms Your EMPLOYEESYour APPLICATIONS Your PLATFORMS Your REMOTE andVIRTUAL EMPLOYEES
Identity and Access Management • Active Directory® Application Mode (ADAM) • Lightweight, domain-independent mode of Active Directory • Interoperability with Domain Mode for authentication • Benefit: Tailor directory services infrastructure • UNIX Identity Management • Server for Network Information Service (NIS) helps integrate Windows and UNIX domains • Password synchronization simplifies password maintenance • Benefit: Efficient multi-platform identity management • Active Directory Federation Services (ADFS)
Exchange Active Directory Windows Integrated Applications File Share Web APPS Active Directory Federation ServicesWindows Integrated Authentication: Great For Intranets Logon to Windows Flexible Authentication • Kerberos • X509 v3/Smartcard/PKI • VPN/802.1x/RADIUS • LDAP • Passport/Digest/Basic (Web) • SSPI/SPNEGO Single Sign-on to: • Windows File/Print servers • Microsoft applications • 390/AS400 (Host Integration Server) • ERP (BizTalk®, SharePoint® ESSO) • 3rd Party Integrated Apps • Web Applications via IIS • Unix/J2EE (Services for Unix, Vintela/Centrify)
Vision for Identity ManagementExtending Access Through Web Services Past Present Future Application Silos • ID for Each System • Internally Focused • Limit to Biz Value Custom Integration • Identity Integration • Internal & External • High cost to value Connected Systems • Identity Federation • Built to Extend • Low cost to value Identity Integration Products and Services Platform Capabilities Web Services Interop
AD IIS Identity and Access ManagementActive Directory Federation Services (ADFS) • Extend value of Active Directory deployments • Web SSO: Extranet authentication and single sign-on • Identity Federation: Distributed web SSO across domains • Promotes IT efficiency, end user productivity, and better security • Works with existing Active Directory deployments • Interoperable with 3rd party security solutions and heterogeneous application platforms Company A Company B
Customers Business Partners Employees ADFS Scenario: Web SSO • User credentials and attributes managed in Active Directory/ADAM at the application • Benefits: • Single sign-on to farm of IISv6 web apps • Stronger authentication via forms, client-side certs • ADAM support: LDAP user store in perimeter • Support for “road warrior” applications • Windows Integrated Auth for internal users • ADFS auth for external users
Identity and Access Management • Key Benefits • Provide more secure web application access to employees, partners and customers, across security boundaries • Enable single sign-on for employees across internal and partner applications • Centrally manage identities across Windows and UNIX systems • Tailor directory services infrastructure to meet varying needs for decentralization or control • Key Enablers • ADFS, ADAM, Unix Identity Management • Web Services Architecture (WS-*) • Other Windows Server tools: • Windows SharePoint Services • Authorization Manager (AzMan)
Simplified Branch Server Management Identity and Access Management Efficient Storage Management
Efficient Storage ManagementThe Challenges of Storage Today • Storage growth estimates: 60-100% per year • Managing storage growth effectively is a challenge • Adding more direct attached storage (DAS) increases complexity • Networked storage solutions can be complex • Few IT professionals are storage experts: • 35% of SMBs have moved from DAS to networked storage already • 40% of SMBs are considering moving to networked storage • Costs of managing storage can be 10x the cost of storage • Process of consolidating File Servers/Storage is involving • Complex and error prone • Potential disruption to end users
Efficient Storage ManagementWindows Server 2003 R2 Storage Management File Server Resource Manager (FSRM) Capacity Management Quota Management Policy Management File Screening Storage Manager for SANs (SMFS) Configuration Management Disk provisioning Disk management
Efficient Storage ManagementFSRM: Administrator Challenges • Capacity Management • Determine existing storage capacity usage • Determine whether usage effectively supports organizational goals • Define and implement storage policies • Adjust the policies as capacity needs grow • Policy Management • No easy way to control the type of data stored on file servers • Unwanted content must be identified manually • Quota Management • User home directories often grow quickly causing space issues • Departmental shares can also grow unexpectedly • Administrators are only aware of storage crises after the fact
Efficient Storage ManagementFSRM: User Scenarios and Benefits • Capacity Management • Identify where storage capacity is used inefficiently • Identify mechanisms to prevent future capacity misuse • Monitor usage patterns and utilization levels • Policy Management • Eliminate non-business files and improve storage utilization • Implement policies to restrict unauthorized files • Promote a culture of accountability • Quota Management • Control the amount of space used for a folder or share • Monitor disk space usage growth per volume, folder, or share • Slow down storage growth
Efficient Storage ManagementFSRM:Capacity Management • Functionality • Predefined and configurable storage capacity reporting • Predefined reports for ease of use • Configurable reports for fine tuning to specific server environments • Multiple report formats • Generate reports • at scheduled intervals • on-demand • Save reports locally or send to via e-mail • Support for clustered configurations
Efficient Storage ManagementFSRM:Policy Management (File Screening) • Functionality • Applies to a folder tree or volume • Screening rules • Based on file groups • Apply to all user files in the folder • File screening settings can be saved in template • Passive and active screening supported • Screening events recorded in audit log • Same set of notification as quotas • File system interoperability • Only NTFS volumes are supported • Usage is tracked in real time • Only volumes with screening configuration are monitored • Screening is based on file name patterns (*.mp3, FY04*) • Self-consistent volume configuration • Cluster support
Efficient Storage ManagementFSRM:Quota Management • Functionality • Quotas limit the size of a directory tree or a volume • Quota applies to all users files in directory • Limit can be soft or hard • File system interoperability • Only NTFS volumes are supported • Usage is tracked in real time, failing I/Os at hard limit • Only volumes with quota configuration are monitored • Quota usage is charged based on disk size • Support for special files • Compressed, sparse, named streams, hard links, reparse points • Multiple notification thresholds at configurable quota utilization levels • Self-consistent volume configuration • Quota settings travel with volume (SAN, hot-pluggable disks) • Cluster support
Efficient Storage ManagementSMFS:SAN Management and Provisioning • Administrator Challenges • Small-midsize market want SAN benefits, but • Existing tools are complex and expensive • Administrators have limited experience with SAN technologies • Want basic functionality enabling the administrator to easily share storage among servers • User scenarios and benefits • Offers basic SAN management functionality, including • Device discovery • LUN creation • Storage allocation • Enables • Shared storage solutions • Clustering
Efficient Storage ManagementSMFS:SAN Management and Provisioning • Basics • Uses Virtual Disk Service (VDS) infrastructure • Allows Windows® administrators to perform basic array and LUN management • Targets small-scale SANs built from simplified hardware • MMC snap-in • Functionality • Discovery of storage arrays on a Fibre Channel or iSCSI SAN, including storage array properties, such as firmware info • Creation, deletion and expansion of storage array LUNs • Specification of LUN options, such as RAID levels • Allocation of LUNs to specific servers on the SAN • Monitor LUNs, including status/health and allocation to servers • Using VDS, integrates • iSCSI, iSNS, MPIO, HBA API • local storage management
Virtual Disk Service basic dynamic Management Application HDS EMC HP Software Providers Hardware Providers Virtual Disk Service (VDS) • LUN Management • Create, Grow, Delete LUN • RAID stacking • Service handlers • Subsystem Discovery • Formatting • Hardware LUN masking • Management enabler
Efficient Storage ManagementSMFS:Technical Details • Uses VDS API to manage storage (hardware providers) • Fibre Channel • iSCSI • “PCI” RAID (DAS) • iSCSI and HBA API connectivity • MPIO for path management Storage Managerfor SANs VDS Provider Provider iSCSI HBAAPI MPIO (managed via VDS) Storage Hardware
Efficient Storage ManagementDistributed File System (DFS) • Key storage technology • Leading file system virtualization product – virtualizes file servers and network-attached storage devices • Provides logical view to physical storage and unified global namespace • Users can connect to share without having to remember server name • Translates logical names to physical shares • Shares can be moved around without affecting clients – share location is transparent to clients
Efficient Storage Management • Key Benefits • Simple SAN provisioning • File quota management, file screening, and file storage reporting • UNIX NFS connectivity • Key Enablers • Simple SAN Management for the IT Generalist • File Server Resource Management • Virtual Disk Services (VDS) 1.1 • UNIX/Windows interoperabilityfor streamlined cross-platformfile server management
Robust Application Platform • Customer Challenges • Customers with heterogeneous systems want to use UNIX applications in Windows environment • Developers want to take advantage of robustness of new development environments • Goal • Compile and run custom UNIX-based applications on computers running Windows server-class operating systems • Integrate with latest developer tools • Features • Subsystem for UNIX Applications (SUA) • Built for Visual Studio® 2005 and .NET Framework 2.0 • UNIX to Windows application portability (Visual Studio & .NET)
Summary • Windows Server 2003 R2 • Principal Scenarios • Simplified Branch Server Management • Identity and Access Management • Efficient Storage Management • Robust Application Platform
Editions and Features * Only one of the replication partners is required to be an Enterprise Edition or Datacenter Edition
Resources • Windows Server 2003 R2 Website http://www.microsoft.com/WindowsServer2003/R2/default.mspx • Windows Server 2003 R2 TechNet Site http://technet2.microsoft.com/windowsserver/en/r2.mspx • TechNet Virtual Labs http://www.microsoft.com/technet/traincert/virtuallab/default.mspx