2010_10_MSPTraining_WindowsServer2008R2_SlideDeck

8/7/2019 2010_10_MSPTraining_WindowsServer2008R2_SlideDeck

1/35

1

Training Workshop for MSPs


2/35

Ni dung

Tng quan v Active Directory

Tng quan v Windows Server 2008 R2

Imagine Cup IT Challenge

Hi & Tr li

2


3/35

Tng quan Active Directory

Mhnh WorkGroup


4/35

Tng quan Active Directory (tt)

DIRECTORY SERVICE
http://technetvietnam.net/cfs-file.ashx/__key/CommunityServer.Blogs.Components.WeblogFiles/kyphong/1_5F00_329D9B09.png


5/35

Tng quan Active Directory (tt)

Mhnh Active Directory

cnbn

DEVICES(PRINTER,

SCANNER, FAX )

SERVERS (WEB,DATABASE,

FILES)

EXTERNAL USERS

WORKSTATION

USERS & USERS GROUP


6/35

Kh nng Active Directory

Qun ly d liu tp trungKha nngm rng

Qun ly

Tch hp Domain Name System (DNS)

Qun ly cu hnh ngi dng qua Policyng b d liu thng tin

Bo mt, chng thc va y quyn ti khon

Tngthch vi cac directory services khac


7/35

Kin trc Database Active DirectoryKin trc t chc Active Directory


8/35

Kin trc Database Active DirectoryACTIVE DIRECTORY SCHEMA

AD Schema l database, nh ngha va lu tr object

trong AD

Schema class objects va schema Attribute objects.


9/35

Kin trc t chc Active Directory

Kin trc LogicalKin trc Physical


10/35

Logical Structure

Domains, OUs, trees v forest
http://technetvietnam.net/cfs-file.ashx/__key/CommunityServer.Blogs.Components.WeblogFiles/kyphong/relationship_5F00_5843B79D.png


11/35

Physical Structure

Sites

Domain Controllers
http://technetvietnam.net/cfs-file.ashx/__key/CommunityServer.Blogs.Components.WeblogFiles/kyphong/Untitled_5F00_36579372.png


12/35

The Active DirectoryRoadmap

Windows

Server 2000

Windows

Server 2003

Windows

Server 2008

WindowsServer2008R2


13/35

ADDS trn Windows Server 2008


14/35

Tng quan v Windows Server2008 R2

Management WebVirtualization

IIS 7

.NET on Server Core

Integrated IIS7 Extensions

Hyper-V in Server2008 R2

Live Migration

Boot from VHD

Terminal Services & VDI

Solid Foundation for Enterprise Workloads

Power Management

PowerShell 2.0

AD Administrative Center

Best Practices Analyzer

Microsoft Confidential

Better Together with Windows 7Scalability and Reliability

Direct Access

BranchCache

Enhanced Group Policies

BitLocker on Removable Drives

>64 Core Support

Componentization

DHCP Failover

DNSSEC


15/35

c xy dng hon ton trn kin trc ca Hyper-V

Nhng ci tin

H tr 32 logical processors trn my tnh

Second Level Translation (SLAT) S dng b x l mi lmtng hiu sut v gim bt thi gian hot tng

Hot Add/Remove Storage - Thm v g b VHD disks angchy m khng cn reboot

Boot from VHD Cho php cc VHD lm vic trn cc phncng vt l

Cng c hot ng server, dynamic data center, v ccVirtualized Desktop (VDI)

o ha vi Hyper-V


16/35

Tng quan

Live-migration giaVMs servers khnglm mt i cc dch v Thuntin trong vic chia s cc Clustered Shared Volumes

Li ch Khnglm rtktni mng

Lm tng kh nng d phng Enables dynamic IT environment

Tin hnh SCVMM cung cp thm vic qun l v son Live Migration

thng qua cc policy Di chuyn Quick to Live Migration:

Chuyn sang VMs: No Chuyn sang Storage infrastructure: No Chuyn sang Network Infrastructure: No

Update ln Hyper-V 2.0 : Yes

Live Migration


17/35

Terminal Services

Ci tinTS v VDI mt gii php tch hpKh nng tri nghim

Tch hp multimedia, VoIP i, aero glass khi remote, h tr mu n 32bits

Kt ni RemoteApp & Desktop (RAD)

Cc ng dng c tch hp trn start menu vdesktopTng kh nng qun l vi Management Tool

Gim s phc tp, gip cho vic ci t ng dng d dng hn qua TSPowershell

Nn tngCung cp kh nng kh nng m rng cho cc gii php khc nhau


18/35

Windows Server 2008 ngin v t ng ha vic qun l, m rngvic qun l thng qua cc script

Ci tin

Remoteable Server Manager UI

PowerShell 2.0

Best Practices Analyzer tchhp trong Server Manager

Ddng di tr roles tWS03/WS08 ln Windows Server 2008 R2

Kha nngqun ly trong WindowsServer 2008R2


19/35

Power Management

Tng kh nng Windows Server 2008 Power ProcessorManagement (PPM)

Ci tin

Core parking gim tiu th nng lng

iu chnh ngun khi khng lm vic qua cc policy New Logo Program vi Power Additional Qualifier


20/35

Ci tin Command-line shell & Scripting Language

Tch hp

Ci tin vic qun l v iu khinT ng ha cng vic qun tr

D s dngLm vic vi Script

Active Directory

IISPower Management

One-to-many remote managements dng WS-MGMT

Tnh nng mi

Graphical PowerShellPortability

New cmdlets

PowerShell 2.0


21/35

Citin trong Active Directory server role New forest functional level

PowerShell management

Microsoft System Center Management Pack

Active Directory Administrative Center Recycle Bin

Offline domain join

Managed service accounts

Active Directory Federated Services m bo kh nng chngthc

Qun l AD & Identity


22/35


23/35

ASP.NET on Server Core

Integrated PowerShell Provider

Integrated FTP and WebDAV

New IIS Manager Modules

Configuration Logging & Tracing

Extended Protection & Security

Ci tin IIS7.0


24/35

Internet Information Services

More Reliable More Control More Secure More Choice

Increased availability

through dynamic request

handling, improved

caching and powerful

troubleshooting tools

Simplified, distributed

management through set

of customizable

administrative tools with

easier application

deployment for developers

Improved security and

server protection through

reduced server footprint

and enhanced publishing

and request filtering

capabilities

Flexible platform with

enhanced support for

multiple application

development platforms

and media content delivery

Scalable WebInfrastructure

Dynamic Caching andCompression

Powerful Diagnostic Tools

Centralized WebManagement

Delegated RemoteManagement

Easy Application and ServerDeployment

Enhanced ServerProtection

Secure Content Publishing

Improved AccessProtection

Built-in ASP.NET and PHPSupport

Modular & Extensible WebServer

Integrated Media Platform


25/35

Khi ng ln nht v y cc lung cng vic sdng cc my ch a li bng mt my ch n WSS08 Xl song song cc lung cng vic Htr hn 64 vi xl trong 1 HDH Gimton b vi Hyper-V v ci thin hiu nng lu tr

ThnhphnCi tin trong Server Core .NET framework trn Server core Htr nhiu roles v vai tr ca chng(vd vic b sung ASP.net

trong IIS)

PowerShell scripting trong Server Core

Tin cy v n nh


26/35

DHCP Failover Primary/Secondary DHCP servers ng b thng tin Secondary server cung cp thng tinDHCP trogn qutrnh primary

server hot ng tr li

DNS Security (DNSSEC) Ngn chn cc cuc tn cng t chi dch v Xcnhn vic phn gii tn v zone transfers t cc ngun tin cy S dng PKI infrastructure bo mt DNS resource records

Tin cy v n nh


27/35


28/35

Tng physical processor v tinguyn b nhChy c quyn trn b vi x l 64-bitH tr n 256 li logical processorWindows Server 2008 Hyper-V h trn 32 li physical processor

Tng ti nguyn virtual processorMi my o h tr n 4 logical coresH tr Second-Level AddressTranslation (SLAT) v CPU Core Parking

Hiu sut VXL v dung lng bnh


29/35

Storage AreaNetwork

Multi-path performanceoptimization

iSCSI Performance Enhancements

Kh nng lu tr


30/35

Sphbincavic truy cptxa Truy cp bt c ni no cho Windows 7 v

Windows Server 2008 Snsng, ktninnh, khngcnphnmmring

bitcakhchhng S dng cng ngh mng c trong Windows

Server 2008

Khngcyucuringbitno cho vicktnimngcng ty

Thc y chnh sch da trn truy cp mng Cho php qun l my tnh bn, bt k v tr ca

khch hng.

Lm vic mi ni vi DirectAccess


31/35

IPv6 Devices IPv4 Devices

DirectAccess

Server

Windows 7Client

Native IPv6with IPSec

IPv6 TransitionServices

Supports variety ofremote network

protocols

DirectAccess

DirectAccess providestransparent, secured access

to intranet resourceswithout a VPN

Allows desktopmanagement of

DirectAccess clients

Allows IPSec encryption andauthentication

Supports directconnectivity to IPv6-

based intranet resources

Support IPv4 via 6to4transition services orNAT-PTIT desktop

management

AD Group Policy,NAP, software

updates

Internet


32/35

WINDOWS SERVER 2008Gii phap hin ti

ng dng v d liu qua WANchm n cc VP chi nhnh

Lm chm hiu sut kt ni ngidng

Ci thin hiu sut mng l tn kmv kh khn thc hin

Ni dung Caches truyn ti t filev Web servers

Users trong vn phng chi nhnhc th nhanh chng m cc tp tin

c lu tr trong b nh

Gii phng bng thng mng chos dng khc

Remote Offices & BranchCache

S dng tnh nng BranchCache trong Windows Server 2008 v Windows 7, n gin cc kt nivo mng v tng kh nng truyn ti file. Tit kim 43 % bng thng hn WAN


33/35

RDS mrng bao gm VDI n gin vic publish v truy cp

Htr cho vic qun l ca Client Tchhp vi Windows 7 Feeds Start menu, system tray v control panel RemoteApp & Desktop Web Access

Tngkh nng tri nghim vimultimedia,multi-monitor, Aero....

Phc v Virtual Desktop


34/35

BitLocker Drive Encryption

Operating System Volume Contains:

Encrypted OS Encrypted Page File

Encrypted Temp Files

Encrypted Data

Encrypted Hibernation File

Wheres the Encryption Key? SRK (Storage Root Key) contained in TPM SRK encrypts the VMK (Volume Master Key).

VMK encrypts FVEK (Full Volume EncryptionKey) used for the actual data encryption.

FVEK and VMK are stored encrypted on theOperating System Volume

Windows Server 2008 R2Active Directory


35/35

Nng cao kh nng qun l

Truy cp mi ni

Bo m an ninh v thi hnh cc chnh sch

o ha

Nhng ci tin v Web

Mt nn tng n nh v ng tin cy

Tng kt

2010_10_MSPTraining_WindowsServer2008R2_SlideDeck

Documents

Transcript of 2010_10_MSPTraining_WindowsServer2008R2_SlideDeck