Server Virtualization

Download Report

Transcript Server Virtualization 

{ overview}
Windows Server 2008 Vision
Solid Foundation for Business Workloads
Management
Reliability
Web Technologies
Virtualization Technologies
Server Virtualization
Presentation Virtualization
Security Technoligies
Technology
Change
Regulatory
Compliance
Competition
Security
Cost
Reduction
Keep Business
Up & Running
Customer
Connection
End User
Productivity
Business Results
& New Value
Virtualization
Web
Internet Information Services 7.0 – Powerful Web
Application and Services Platform
Manage with Ease - More efficient administration tools
including delegated administration and shared
configuration
Powerful Hosting of Applications and Services Expanded application hosting for .NET, ASP, PHP Web
applications and XML services. Web server extensibility
throughout
Lower Infrastructure Costs - Improved scalability and
enhanced security and reliability with automatic
application sandboxing
Windows Server Virtualization – WS2008
contains everything needed to support machine
virtualization. Hyper-V™ enables IT
organizations to reduce costs, improve server
utilization, and create a more dynamic IT
infrastructure.
Presentation Virtualization - Terminal
Services accelerates and extends application
deployments to any device, improving remote
worker efficiency, while helping keep critical
intellectual property secure and radically
simplifying regulatory compliance
Security
Network Access Protection - helps prevent
unhealthy devices from accessing corporate
resources, NAP enables policy validation, network
restriction, remediation and ongoing compliance to
ensure network health is not compromised.
Read-Only Domain Controller (RODC) - helps
reduce corruption and compromise of the system.
RODC improves security of branch office servers and
reduces risk of stolen information from branch DCs.
Active Directory Rights Management Services helps prevent unauthorized access and use of
documents, data, and e-mail. RMS enables
document owners to identify authorized users and
manage restrictions on usage of documents.
Solid Foundation for Your Business Workloads
Management
Reliability
Server Manager – “One-stop shop” to guide you through installation,
configuration, management, and reporting of server roles and features.
Server Core Installation Option - Minimal installation option for
increased reliability, security, and management
Windows PowerShell™ - Achieve greater control and productivity
using a powerful new command shell and scripting language for
accelerated system administration and task automation
Next Generation Networking - New TCP/IP stack improves scalability,
performance and security.
Power Management – Reduce energy consumption and maintain
server performance through processor power management features.
Failover Clustering – Improved setup, validation, management, and
geo-clustering deployment simplifies implementation of highly-available
failover clusters and helps ensure business continuity.
High Performance Computing – Increase scalability and
performance of HPC workloads and improve management of clustered
file systems.
Dynamic Partitioning - Datacenter and Itanium. Delivers mainframeclass reliability. Increases workload resources, and allows one to hotadd and replace processors and memory without rebooting,
Windows Server 2008 Vision
Solid Foundation for Business Workloads
Management
Reliability
Web Technologies
Virtualization Technologies
Server Virtualization
Presentation Virtualization
Security Technologies
Server Manager
Initial Configuration
Product Installation
New Command-line shell & Scripting Language
Improves productivity & control
Accelerates automation of system admin
Easy-to-use
Works with existing scripts
Partners
Futures
Will ship in Windows
Admin GUIs layered over
PowerShell
One-to-many remote
management using WS-MGMT
Windows Vista set the stage…
700+ new settings, ability to control things we
never could before centrally (i.e. power save
settings, device installation restrictions)
Group policies no longer just a thread in
Winlogon, but instead a separate service
Meticulous step-by-step logging makes GP
troubleshooting light-years easier
Printer/drive mapping via GPO
Powerful new ADMX template format
Server 2008 rocks the house with…
Group Policy Preferences lets you create a
do-it-yourself group policy setting out of,
well, just about anything… with a few mouse
clicks
Built into Windows Server 2008 GPMC
Part of the Desktop Standard acquisition
Remote Server Admin Tools (RSAT)
delivered for Vista
Management “despite” firewalls
Windows Remote Management
Implementation of WS-Management protocol
Based on HTTP/HTTPS connectivity
Baseboard Management Control or WMI
WinRM is started, but no listener is
configured
Foundation of event log consolidation
Windows Remote Shell (WinRS) provides
command shell
WINRS <Server> <Command>
ex: winrs –r:pc1.bigfirm.com ipconfig
{ Managing Windows
Server 2008}
Name
Title
Group
Only a subset of the executable files and DLLs installed
No GUI interface installed, no .NET, no PowerShell (for now)
Nine available Server Roles
Can be managed with remote tools
{ Server Core}
Name
Title
Group
Receive Window Autotuning
Windows Filtering Platform
Automatically senses network
environment and adjusts key
performance settings
Provides filtering capability at
all layers of the TCP/IP protocol
stack
Allows increase of the size of
the TCP/IP send / receive
window
Integrates and provides support
for next-generation firewall
features
Receive Side Scaling
Policy-based Quality of Service
Previous Windows operating
systems limits receive protocol
processing to single CPU
Prioritize or manage the
sending rate for outgoing
network traffic
RSS resolves this issue by
allowing network load from a
network adapter to be balanced
across multiple CPUs
Both DSCP marking and
throttling can be used together
to manage traffic effectively
Satellite
Intercontinental
Fiber
64 KB
128 KB
256 KB
Maximum Throughput (Mpbs)
North
America
512 KB
RTT ms
Policy-based
Firewall
rules
networking
become
Combined
firewall
and more
IPsecintelligent
management
Active Node
Heartbeat
Passive Node
New Validation Wizard
Support for GUID partition table (GPT) disks in cluster storage
Improved cluster setup and migration
Improvements to stability and security – no single point of failure
IPv6 support
Multi-site Clustering
Windows Server 2008 Vision
Solid Foundation for Business Workloads
Management
Reliability
Web Technologies
Virtualization Technologies
Server Virtualization
Presentation Virtualization
Security Technoligies
Cornerstone of the Web Platform Key Benefits
Manage with Ease
Store all Web configuration in a single file
Manage using powerful new GUI tools
Automate management with WMI, PowerShell
or the .NET Framework
Lower Infrastructure Costs
Delegate administration tasks securely
Copy or share configuration across servers
Rapidly diagnose site and application failures
Powerful Hosting of Applications and Services
Customize your server footprint with all new modular
Web server extensibility
Host ASP.NET, ASP, PHP applications and XML Web Services
reliably and with high performance
Powerful new "IIS Manager" admin tool
One tool – configures both IIS and ASP.NET
Works for machine administrator and site owner
Remotes over HTTP, making it firewall friendly
Supports managed extensibility
familiar
tree view
simplified
tasks
feature focused
Shared configuration
Store Configuration on Central File Server
Set user, pass, path in redirection.config
ACL directory for specified user(s)
Share directory using Windows file server
Easily add servers to Web farm
Simply install IIS, copy redirection.config locally
IIS automatically uses shared configuration
Manage Web farm configuration centrally
Make “live” changes to shared configuration file
…or version your shared configuration and update
redirection.config to do rolling upgrades
All configuration tools work with shared configuration
New FastCGI feature for PHP, Ruby, etc
Built-in support for FastCGI applications
Re-uses CGI processes for multiple requests
Optimized for high performance and reliability
25x faster than standard CGI
Performance and reliability tested with PHP
Internet standard, works with other dynamic
languages that support FastCGI including
PHP, Ruby, PERL, etc.
Windows Server 2008 Vision
Solid Foundation for Business Workloads
Management
Reliability
Web Technologies
Virtualization Technologies
Server Virtualization
Presentation Virtualization
Security Technoligies
Enable
Agility
Reduce Total
Cost of
Ownership
Basic
Increase
Availability
Standardized
Rationalized
http://www.microsoft.com/io
Dynamic
A comprehensive set of virtualization products, from the data center to the desktop
Assets – both virtual and physical – are managed from a single platform
A hypervisor-based virtualization
platform enabling consolidation
of multiple physical systems and
providing an integrated physical
and virtual machine management
Challenges
Underutilized hardware
Excessive power consumption
Minimizing planned and
unplanned downtime
Hyper-V along with System Center Virtual Machine Manager enables you to
lower costs, increase availability and progress towards a Dynamic IT
environment
Improved Resource Optimization
Virtualization is a feature of Windows Server 2008
Greater scalability with x64 guest support and SMP support
Centralized virtual machine deployment and management
Increased Reliability and Security
Microkernelized hypervisor has an inherently secure
architecture
Common management, security, driver model
Integrated with Active Directory® support and enables
delegated VM management
VM
VMVM
VMVM
VM
VMVM
VM
VM
VM
VMVMVM
VM
VM
VMVMVM
VM
V
VM
VMVM
M
Better Flexibility and Manageability
Support for Quick Migration and Live Backups
Broad management tool support including SC VMM
Enables rapid provisioning and patch management leveraging
common tools and processes
Functional Area
Key Supporting Features
Performance
Microkernelized hypervisor architecture with a new VSP/VSC architecture
Support for large memory per virtual machine (64 Gb)
SMP support for virtual machines
Automatable Host setup/configuration
Scalability
Support for 32-bit and x64 virtual machines
Broad OS support
Pass through disk access for VMs
Rapid creation and deployment of VMs using P2V, Media, and Templates
Availability
Support for Quick Migration and unplanned downtime
Support for Live Backups and VM checkpoints
Support for clustering and rapid recovery
Integration with management tools for continuous performance monitoring
Manageability
Security
Centralized view of all VMs in the environment and their status
Reports on consolidation candidates, utilization trending, optimization opportunities
Intelligent placement and Physical to Virtual (P2V) conversions
Fully scriptable using PowerShell®
Improved architecture with a minimal footprint hypervisor layer
Hyper-V as a Server Core role
Common security and driver model as Windows Server 2008
Robust networking features including support for VLANs and NAT
Run an application in one location but have
it be displayed and controlled in another
only screen images, keystrokes and mouse
movements are sent over the network.
31
Run an application in one location but have
it be displayed and controlled in another
only screen images, keystrokes and mouse
movements are sent over the network.
32
Remote Worker Efficiency
Quickly connect remote workers with the critical applications they
need from a web page
More securely deliver critical applications and data to mobile
employees without additional VPN infrastructure
Secure Data and Applications
Keeping data safe in the datacenter helps eliminate the risk of
laptop data theft
Centralized tracking helps simplify the burden of regulatory
compliance
Accelerate Application Deployment
Deploy applications to devices that can’t run them natively
PC hardware upgrades aren’t required to deploy new applications
EasyPrint makes printing to a local printer,
well, easy by exploiting XPS
Four Registry entries let you dial up
bandwidth allocation between the UI stuff
(mouse, screen) and data transfer (printing,
file transfer)
WinFX means remoted graphics commands
(which is way more exciting than it sounds)
A multiple level approach
Infrastructure
Applications
Management
Interoperability
Licensing
Create agility
Better utilize
server
resources
Partner
with AMD
and Intel
Accelerate
deployment
Reduce the
cost
of supporting
applications
Turn
applications
into dynamic,
real-time
services
Ease
consolidation
onto virtual
infrastructure
Better utilize
management
resources
Free up
IT spend
Support
heterogeneity
across the
datacenter
License .VHD
XenSource
agreement
Novell
Agreement
Deliver
cost-effective,
flexible and
simplified
licensing
Support
{ TS RemoteApp}
Name
Title
Group
Windows Server 2008 Vision
Solid Foundation for Business Workloads
Management
Reliability
Web Technologies
Virtualization Technologies
Server Virtualization
Presentation Virtualization
Security Technoligies
Security
Development Process
Secure Startup and
shield up at install
Code integrity
Windows service
hardening
Inbound and outbound
firewall
Restart Manager
Compliance
Improved auditing
Network Access
Protection
Event Forwarding
Policy Based Networking
Server and Domain
Isolation
Removable Device
Installation Control
Active Directory Rights
Management Services
Policy-based solution that
Validates whether computers meet
health policies
Limits access for noncompliant computers
Automatically remediates
noncompliant computers
Continuously updates compliant
computers to maintain health state
Standards-based
Plug and Play
Works with most devices
Supports multiple antivirus solutions
Has become the standard for Network Access Control
Intranet
How it works
1 Access requested
Policy Servers
1
e.g.., Patch, AV
Microsoft
NPS
2 Health state sent
to NPS (RADIUS)
3 NPS validates against
health policy
4 If compliant, access
5
granted
If not compliant,
restricted network access
and remediation
2
DCHP,
VPN
Switch/Router
3
Not policy
compliant
5
Restricted
Network
Remediatio
n
Servers
e.g., Patch
Policy
compliant
4
Corporate Network
{ Network Access
Protection}
Name
Title
Group
AD RMS protects access to an
organization’s digital files
AD RMS in Windows Server 2008
includes several new features
Improved installation and
administration experience
Self-enrollment of the AD RMS
cluster
Integration with AD Federation
Services
New AD RMS administrative roles
Information Author
The Recipient
Contoso
Account
Federation
Server
Adatum
Federation Trust
Resource
Federation
Server
Web
Server
AD FS provides an identity
access solution
Deploy federation servers in
multiple organizations to
facilitate business-tobusiness (B2B) transactions
AD FS provides a Webbased, SSO solution
AD FS interoperates with
other security products that
support the Web Services
Architecture
AD FS improved in
Windows Server 2008
RODC
Main Office
Remote Site
Features
Read Only Active Directory Database
Only allowed user passwords are stored on RODC
Unidirectional Replication
Role Separation
Benefits
Increases security for remote Domain Controllers where physical security
cannot be guaranteed
Support
ADFS,DNS, DHCP, FRS V1, DFSR (FRS V2), Group Policy, IAS/VPN,
DFS, SMS, ADSI queries, MOM
Fine-grained password policies means you
can give each group and/or person a
different password policy
New backup tool means bare-metal rebuilds
of a dead DC is a snap
AD snapshots gives ISVs the potential to
build AD recovery tools, auditing and
forensic analysis tools
2008 R2
2008
“Cougar”
2008 RTM
© 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market
conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation.
MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.