One Marketing Template
Download
Report
Transcript One Marketing Template
Charlie Russel
INFRASTRUCTURE
Datacenter
Rising number of organizations suffer from breaches
1
2
1
3
2
3
3
Microsoft’s approach
So what is a ‘Shielded VM’?
“The data and state of a shielded VM are protected
against inspection, theft and tampering from both
malware and datacenter administrators1.”
1
fabric admins, storage admins, server admins, network admins
Shielded Virtual Machines
Virtual Secure Mode
Host Guardian Service
Attestation Protocol
• Providing kernel code integrity protections for Linux
guest operating systems
• Works with:
• PowerShell to enable:
Set-VMFirmware “Ubuntu”
-SecureBootTemplate
MicrosoftUEFICertificateAuthority
• Bridge the boundary between Hyper-V host and guest VM in a
secure way to issue PS cmdlets and run scripts easily.
•
•
•
•
No need to configure PS Remoting
Or Network Connectivity.
Just need the guest credentials
Can only connect to particular guest from that host.
Enter-PSSession -VMName VMName
Invoke-Command -VMName VMName -ScriptBlock { Fancy Script }
What is Software Defined Storage (SDS) ?
SSD SSD SSD
•
•
•
•
•
•
•
•
•
•
•
•
Site 1
Site 2
Replication
Block-level, volume-based
Synchronous & asynchronous
SMB 3.1.1 transport
Flexibility
Any Windows data volume
Any fixed disk storage
Any storage fabric
Management
Failover Cluster Manager
Windows PowerShell & WMI
Azure Site Recovery
End to end MS Storage Stack
• This is not DFSR
• This is not DFSR!
• Replicating storage blocks underneath the CSVFS, NTFS, or
ReFS volume
• Don’t care if files are in use
• Write IOs are all that matter to Storage Replica
• Network latency
• Network Bandwidth
• Log volume performance and size
• Network latency
• Network bandwidth
• Log volume performance and size
Capability
Windows Server 2012 R2
Windows Server 2016
Volume Sizing
To scale, distribute files across multiple Use the size you need, up to 64TB
volumes, no larger than 8-10TB
Optimization
Single job per volume
Single CPU and Single I/O Queue
Multi-threaded per volume
All files optimized in parallel
Auto load balancing of input queues
and resources
Backup Support
Manual configuration per volume and
per node using PowerShell
Setting is an integrated usage type
through UI, or with PowerShell
?
• Reboots impact my business
• Server images are too big
• Infrastructure requires too many resources
• Nano Server: A new headless, 64-bit only,
deployment option for Windows Server
• Deep refactoring with cloud emphasis
• Extend the Server Core pattern
• Zero-footprint model
• Key Roles & Features
• Full Windows Server driver support
• Antimalware Built-in
• System Center and App Insights agents to follow
• Nano Server is an
installation option
• Available within the
Windows Server
Technical Preview
1
Mount the Technical Preview ISO, and, assuming the drive letter for the mounted image is D:\, run the following:
Copy "D:\NanoServer" "C:\NanoServer" -Recurse
2
Make a new folder called DISM. From the Sources folder on the distribution media, copy these files to the DISM
folder: api*downlevel*.dll, *dism*, *provider*
3
Generate a VHD from NanoServer.wim by using Convert-WindowsImage.ps1 from TechNet Script Center.
Convert-WindowsImage.ps1 –WIM ‘C:\NanoServer\NanoServer.wim’ –VHD
‘C:\NanoServer\NanoServer.vhd’ –VHDformat VHD -Edition 1
4
Mount the image, to add drivers/packages:
Mount-DiskImage –ImagePath C:\NanoServer\NanoServer.vhd’
5
Mount the image, to add drivers/packages: (it will choose the next drive letter, in our case E:\)
Mount-DiskImage –ImagePath C:\NanoServer\NanoServer.vhd’
6
Add the driver packages relevant to your deployment:
Add-WindowsPackage –Path E:\ –PackagePath C:\NanoServer\Packages\MicrosoftNanoServer-Guest-Package.cab
7
Dismount the image, ready to add as a VHD to a new VM:
Dismount-DiskImage –ImagePath ‘C:\VHD\NanoServer.vhd’
• For the leanest image, install just the
drivers your hardware requires.
• Nano Server includes a package of all
drivers in Server Core
• Packages are provided for:
• To complete the configuration,
you need: computer name and
administrator password.
• Simplest way is with an
Unattend.xml file.
• Can include Domain-Join
information.
1
From an elevated command prompt, run:
2
Then apply the unattend.xml file:
dism\dism /Mount-Image /ImageFile:.\NanoServer.vhd /Index:1 /MountDir:.\mountdir
dism\dism /image:.\mountdir /Apply-Unattend:.\unattend.xml
3
Create a “Panther” folder (used by Windows systems for storing files during setup. Copy the Unattend.xml file to
it, and then unmount the VHD with these commands:
4
To have IP information displayed on first boot, use a SetupComplete.cmd file (created with Notepad, containing
the string “ipconfig”:
md .\mountdir\windows\panther
copy .\unattend.xml .\mountdir\windows\panther
dism\dism /Unmount-Image /MountDir:.\mountdir /Commit
dism\dism /Mount-Image /ImageFile:.\NanoServer.vhd /Index:1 /MountDir:.\mountdir
md .\mountdir\Windows\Setup
md .\mountdir\Windows\Setup\Scripts
copy .\SetupComplete.cmd .\mountdir\Windows\Setup\Scripts
dism\dism /Unmount-Image /MountDir:.\mountdir /Commit
Also see: http://blogs.technet.com/b/nanoserver/archive/2015/05/19/how-to-display-ipconfig-on-nano-server-every-time-itboots.aspx
•
•
•
•
•
•
•
•
•
•
•
Remote Graphical
& Web Tools
PowerShell
Remoting
VM and Container
Management
Deployment &
Monitoring
Partners &
Frameworks
Server Manager
Azure Portal tools
Task manager
Registry editor
File explorer
Server
configuration
Event viewer
Disk manager
Device & driver
management
Performance
Users & groups
• Core PowerShell
engine, language,
and cmdlets
• Windows Server
cmdlets (network,
storage, etc.)
• PowerShell DSC
• Remote file
transfer
• Remote script
authoring &
debugging
• PowerShell Web
Access
• Hyper-V Manager
• Hyper-V cmdlets
• PowerShell Direct
over PSRP
• CimSession
support
• Docker
• SCVMM agent &
console
• 3rd party agents
& consoles
• DISM online &
VHD support
• Unattended setup
• Visual Studio
integration
• DSC Local Config
Manager
• Setup & boot
eventing
• SCOM agent
• VSO App Insights
• Azure Op Insights
• Chef integration
• .NET Core and
CoreCLR
• ASP.NET 5
• Python, PHP,
Ruby, Node.js
• PowerShell
Classes
• PS Script Analyzer
• PowerShell
Gallery
• PowerShellGet
• 2 Key Steps:
•
Set-Item WSMan:\localhost\Client\TrustedHosts "<IP address of Nano Server>“
$ip = “<IP address of Nano Server>”
$user = “$ip\Administrator”
Enter-PSSession -ComputerName $ip -Credential $user
Exit-PSSession
30
25
23
12
11
26
25
23
10
20
20
8
15
15
10
10
6
6
8
9
4
3
5
5
2
2
0
0
Nano Server
Server Core
Full Server
0
Nano Server
Server Core
Full Server
Nano Server
* Analysis based on all patches released in 2014
Server Core
Full Server
}
}
}
Container Run-Time
Container Images
Image Repository
Applications
Linux
Application
Frameworks
}
https://hub.docker.com
• Workload Characteristics
𝑓 𝑥
• Deployment Characteristics
Distributed
Compute
Databases
Tasks
Scale Out
Web
Nano Server
Server Core
Highly Optimized
Highly Compatible
“Born in the cloud”
applications
Traditional Applications
Version
Monad Manifesto
Server
Server 2000
Key Feature
Vision and
prototype
Version
Monad Manifesto
Server
Server 2000
PowerShell 1.0
Server 2008
Key Feature
Vision and
prototype
.Net Cmdlets*
* .Net Cmdlets, Interactive shell, language, object pipeline & utilities,
namespaces, debugger, security, adaptive type system, Help
Version
Monad Manifesto
Server
Server 2000
PowerShell 1.0
PowerShell 2.0
Server 2008
Server 2008 R2
Key Feature
Vision and
prototype
.Net Cmdlets
Remoting*
* Remoting, Script cmdlets, comment-based help, modules, transactions,
data language, splatting, try-catch, block comments, script I18N,
background jobs, eventing, PowerShell_ISE, Out-Gridview
Version
Monad Manifesto
Server
Server 2000
PowerShell 1.0
PowerShell 2.0
PowerShell 3.0
Server 2008
Server 2008 R2
Server 2012
Key Feature
Vision and
prototype
.Net Cmdlets
Remoting
Coverage*
* Coverage, CDXML, workflow, updateable Help, singleton/collections fix, delegates,
constrained & simplified language, module autoloading, DLR & AST,
web and JSON support, scheduled/WMI/workflow jobs, robust remoting,
RunAs and constrained runspaces, PSWeb services, POWA, snippets,
intelliSense, Show-Comand, WINPE, Explorer Integration
Version
Monad Manifesto
Server
Server 2000
PowerShell 1.0
PowerShell 2.0
PowerShell 3.0
PowerShell 4.0
Server 2008
Server 2008 R2
Server 2012
Server 2012 R2
Key Feature
Vision and
prototype
.Net Cmdlets
Remoting
Coverage
Desired State
Config*
DSC, Save-Help, Where() & Foreach() methods, workflow debugging,
lots of fixes and incremental improvements
Version
Monad Manifesto
Server
Server 2000
PowerShell 1.0
PowerShell 2.0
PowerShell 3.0
PowerShell 4.0
PowerShell 5.0
Server 2008
Server 2008 R2
Server 2012
Server 2012 R2
Server 2016
Key Feature
Vision and
prototype
.Net Cmdlets
Remoting
Coverage
Desired State Config
DevOps*
* DSC++, package manager, Azure extension agent, script analyzer, classes, using,
security++, information stream, CMS, parse by example, Pester, PSReadline,
remote debugging/file copy/script editing, network switches, OData
Scripting Security & Protection
New Modules
PSReadLine (tab completion++)
NetworkSwitchManager (network switches)
PnpDevice (devices and drivers)
Pester (unit test framework)
ODataUtils (generate cmdlets from OData)
Community & Development
New Utility Cmdlets
PSScriptAnalyzer (scripting best practices)
PowerShellGet (find and install modules)
PowerShell Gallery (module repository)
PackageManagement (package manager)
Side-by-side module versioning
Classes, lexical scoping, and 'using' keyword
Remote Management
Remote script debugging
Remote script editing in ISE
Host process attach and debug
File copy over PowerShell sessions
PowerShell remoting over VMBus
https://technet.microsoft.com/library/hh857339.aspx
• Acts as a Windows PowerShell gateway, providing a web-based
Windows PowerShell console that is targeted at a remote computer
• Run Windows PowerShell commands
and scripts from a Windows
PowerShell console in
a web browser
• Broad support for popular browsers.
• Built for tablets and mobile devices.
• Robust Session Connectivity
Simplifies configuration
Prevents configuration drift
Flexible deployment options
Enables continuous
deployment
• Modules available from PS
Gallery
•
•
•
•
• But what can it do for me?
TechNet Virtual Labs
Deep technical content and
free product evaluations
Hands-on deep technical labs
Free, online,
technical courses
Download Microsoft software
trials today.
Find Hand On Labs.
Take a free online course.
Technet.microsoft.com/evalcenter
Technet.microsoft.com/virtuallabs
microsoftvirtualacademy.com
Charlie Russel
[email protected]
http://blogs.msmvps.com/russel