Ê Â»m m 2008.pdf · 2011-11-12 · windows server 2008 r2 Ê Â»m m »: [zf¯ ¹z¿ ʸ¿z»:...
TRANSCRIPT
: Windows Server 2008 R2
: :
: :90
:1000
:
:
:
:17800 DVD :4-87-2989-964-978
* *
: 14 16 www.pendarepars.com : 66572335 - :66926578 :09122452348 [email protected]
1 2008) R2(...............................................................................1
....................................................................................................1
Hyper-V...........................................................................................1
BranchCache.........................................................................................................2
..........................................................................................................3
Internet Information Server 7.5.............................................................................4
PowerShell.............................................................................................................4
DirectAccess..........................................................................................................4
File Classification Infrastructure FCI.................................................................5
Remote Desktop Services......................................................................................5
R2...........................................................................................5
R2.....................................................................................6
R2................................................................................6
...............................................................................................7
...........................................................................................................7
...........................................................................................8
.......................................................................................................9
..........................................................10
.................................................................................................10
)(Backup ..............................................................10
(License) (Activation)......................................................11
CAL Per Server CAL Per Device Per User......................11
......................................................................................12
....................................................................................12
R2..............................................................................13
............................................................................................13
2 R2..............................................................................17
R2 ..........................................................................17
................................................................................................17
.............................................................................................19
...............................................................................20
..............................................................................20
(Full Server Installation).........................................................20
(Server Core)........................................................................21
R2.................................................................................................22
R2 ..............................................................27
vi
....................................................................................28
.......................................................................................................29
............................................................................................................30
...........................................................................................................31
..................................................................32
(Roles) (Features)..............................................................32
R2............................................................................................33
..............................................................................................33
...........................................................................................39
..............................................................40
.........................................................................................40
.............................................................................................42
RAID 5..............................................................................................44
(Disk fragmentation)..............................................................46
BitLocker...........................................................................................47
......................................................................................................47
.................................................................47
R2...............................................................................47
(KMS).....................................................................................49
KMS........................................................................................................51
KMS.............................................................................................51
............................................................................................52
(WDS)...............................................................................52
WDS.............................................................................................53
WDS Image......................................................................54
...........................................................................57
...............................................................................................................58
Microsoft Management Console 101....................................................................58
Server Manager..........................................................................................60
PowerShell............................................................................................62
R2...............................................................................62
Event Viewer....................................................................................................62
Services............................................................................................................63
Local Users and Group.....................................................................................63
Storage..............................................................................................................63
Task Scheduler.................................................................................................63
3 R2.............................................................................................67
R2.........................................................................67
vii
Network and Sharing Center................................................................................67
TCP/IP.............................................................................68
DNS.............................................................................................................69
QoS ................................................................................................69
SMB 2.0................................................................................................................69
Windows Firewall................................................................................................70
IPV6.....................................................................................................70
..........................................................................................................71
Network Access Protection..................................................................................71
DirectAccess.........................................................................................................72
Network and Sharing Center......................................................................72
......................................................................................................74
TCP/IP......................................................................75
TCP/IP........................................................................................................75
IP Addresses.........................................................................................................75
IP Address Classes...........................................................................................76
IP Subnetting....................................................................................................76
IP )Private ( )Public(................................................79
IPV6.....................................................................................................80
IPV4 IPV6........................................................................................81
IP..................................................................................................81
Policy-based QoS.................................................................................................82
GPO QoS ...............................................................................84
Routing and Remote Access.....................................................................................91
Routing and Remote Access........................................................................91
Routing and Remote Access VPN............................................93
DNS...............................................................................................96
DNS........................................................................................97
DNS Zones...........................................................................................................98
Global Naming Zones.......................................................................................99
DNS.....................................................................................................100
DNS..............................................................................................101
DNS...........................................................................................102
Server DNS...........................................................................................102
DNS...............................................................................................104
DNS..............................................................................................106
Replicating DNS Zone....................................................................................109
DNS.........................................................................................111
viii
Dynamic DNS Records......................................................................................113
DNS AD..........................................................................................................113
DNS.....................................................................................................113
DNS..................................................................................114
Event Log Debug Logging.........................................................................114
Monitoring............................................................................................115
NSLookup DNScmd....................................................................................115
)Cache(................................................................................115
......................................................................................116
WINS...............................................................................................117
DHCP..........................................................................................118
DHCP.....................................................................................................119
DHCP.......................................................................................................120
DHCP Relay Agents.......................................................................................121
DHCP.....................................................................121
DHCP....................................................................................................122
DHCP.....................................................................................125
..................................................................................125
Ping PathPing NSLookup...................................................126
Network Monitor...................................................................................126
4 ACTIVE DIRECTORY.......................................................................................129
AD........................................................................................................129
Active Directory Recycle Bin.............................................................................130
Offline Domain Join...........................................................................................133
PowerShell...................................................................136
Active Directory Best Practices Analyzer..........................................................136
Active Directory Web Services..........................................................................138
Active Directory Administrative Center.............................................................138
Managed Service Accounts................................................................................138
.................................................................................................139
..............................................................................................139
Active Directory Domain Controllers............................................................139
........................................................................139
.................................................................................139
)Forest ( AD........................................................................140
AD.........................................................................................141
DNS...........................................................................................143
....................................................................................143
ix
.....................................................................................145
AD ...................................................................145
Global Catalog.....................................................................................147
........................................................................................147
(Functional Levels) ...........................................148
Active Directory Domain Services.................................................149
AD......................................................................................................156
Active Directory Users and Computers..............................................................157
........................................................................................161
.........................................................................................................161
.............................................................................................161
..............................................................................................161
.....................................................................162
.........................................................................................................162
...............................................................................................................162
.........................................................................................163
(Built-in)..............................................................................165
.......................................................................................165
..........................................................................................169
...............................................................................170
.........................................................................................170
.......................................................................................................170
)Group Scops(..............................................................................170
)Nesting Groups(...................................................................170
....................................................................................................171
)Organization Units(.......................................................172
OU.....................................................................................................172
OU..........................................................................................172
Group Policy................................................................................................175
Group Policy..........................................................................................175
Group Policy ...............................................................175
GPO........................................................................177
Group Policy..................................................................................177
GPO............................................................................................178
Group Policy.......................................................................................180
GPUPDATE GPRESULT...........................................................................180
RESULTANT SET OF POLICIES ..................................................181
..................................................................................181
x
Active Directory Certificate Services.....................................................................181
AD CS......................................................................................................182
CA.....................................................................................185
CRL......................................................................................185
Active Directory Certificate Services......................................................186
Active Directory Federation Services.....................................................................198
ADFS.......................................................................................................200
ADFS.......................................................................................................202
ADFS AD .................................................203
Web Agent .........................................206
ADFS............................................................................208
ADFS...............................................................................213
Active Directory Lightweight Directory Services..................................................226
AD LDS.....................................................................................226
Active Directory Right Management Services.......................................................230
5 R2................................................................233
................................................................................233
..............................................................................................234
...........................................................................................234
....................................................................................237
....................................................................................................243
(ABE) Access-based Enumeration.................................................................245
................................................................245
DFS.................................................................................................247
DFS Namespaces.....................................................................249
DFS Replication......................................................................254
File Server Resource Manager...............................................................................260
(Quota Management)......................................................................261
(File Screening Management).........................................262
(Storage Reports Management)............................263
)Classification Management(......................................................263
(File Management Tasks)..........................................................264
DFS...............................................................................................264
Windows Search Service........................................................................................265
BranchCache ........................................................................266
....................................................................................267
............................................................................................267
..................................................................................................268
xi
........................................................................268
Group Policy..........................................................272
Line Printer Daemon Service.............................................................................274
Internet Printing..................................................................................................274
Distributed Scan Server......................................................................................274
6 IIS 7.5....................................................................................................................277
IIS 7.5......................................................................................................277
Request Filtering Module...................................................................................278
Best Practice Analyzer.......................................................................................278
PowerShell Module............................................................................................279
(Managed Service Accounts).......................279
IIS 7.5......................................................................................279
IIS 7.5.............................................................................................280
IIS 7.5.......................................................................................286
IIS....................................................................................................286
)Application Pools(.....................................................................286
.....................................................................................................286
Service FTP Publishing IIS 7.5...............................................................289
7 HYPER-V.............................................................................................................293
Hyper-V.............................................................................293
Hyper-V......................................................................................................295
Live Migration....................................................................................................295
.................................................................................................297
)Storage(...............................................................................297
.....................................................................................................297
Hyper-V.......................................................................................................297
)Licensing(................................................................................297
Hyper-V .....................................................................298
........................................................................................................299
Hyper-V............................................................................................300
..........................................................................................301
Hyper-V.............................................................................304
Hyper-V..................................................................307
.............................................................................................307
........................................................................................308
.................................................................................309
VM........................................................................312
.........................................................................................313
xii
.................................................................................315
Add hardware.................................................................................................317
BIOS...............................................................................................................317
Memory..........................................................................................................317
Processor........................................................................................................317
IDE disk controllers........................................................................................318
SCSI Controllers.............................................................................................318
Network adapters............................................................................................318
Comm Ports....................................................................................................318
Diskette Drive.................................................................................................318
Name..............................................................................................................319
Integration Services........................................................................................319
Snapshot file location.....................................................................................319
Automatic start and stop actions.....................................................................319
Live migration Snapshots..................................................319
Live migration....................................................................................................319
Hyper-V Live Migration...................................................320
Snapshots) (......................................................................................320
System Center Virtual Machine Manager 2008 R2.................................321
VMM.....................................................................................................322
8 WIN SERVER 2008 R2 REMOTE DESKTOP SERVICES............................323
RDS................................................................................................................323
RDS............................................................................................................324
Remote Desktop Session Host............................................................................324
Remote Desktop Virtualization Host..................................................................325
RemoteAPP ..............................................................................325
Remote Desktop Connection Broker..................................................................325
Remote Desktop Gateway..................................................................................326
.............................................................326
........................................................................................326
.................................................................................................326
NAP......................................................................................................327
Remote Desktop Web Access.............................................................................327
RemoteApp.................................................................327
......................................................................................................327
...................................................................328
.........................................................................................................328
Remote Desktop...............................................................328
xiii
PowerShell BPA RDS.....................................................................329
RDS.............................................................................................329
RDS................................................................................................330
Remote Desktop Session Host...................................................330
RemoteApp Manager......................................................................................335
Remote Desktop Session Host Configuration................................................338
Remote Desktop Services Manager................................................................341
Remote Desktop Licensing........................................................341
Remote Desktop Web Access....................................................343
Remote Desktop Gateway..........................................................346
Remote Desktop Virtualization Host...................................................351
VDI...............................................................................................351
VDI.............................................................352
RDVH...................................................................................353
RDSB.....................................................................................................355
RDSH RDWA.....................................................................................356
................................................................................361
9 R2.............................................363
)HA(..............................................................................363
Failover Clusters.................................................................................................364
Network Load Balancing Clusters......................................................................365
HA .............................................................................366
PowerShell Failover Cluster...............................................................367
Cluster-Shared Volumes.....................................................................................367
Cluster Validation...............................................................................367
...........................................................................368
.................................................368
HA................................................................................................................368
Failover Clustering ...................................................................369
Failover Cluster........................................................................................370
Failover Clustering...........................................................................372
Failover Clustering............................................................................372
.................................................................................372
....................................................................................................373
...........................................................................................374
...........................................................................................374
Failover Clustering..........................................................................375
.........................................................................................376
xiv
LAN: 192.168.5.0/24..........................................................................................376
...................................................377
Cluster Validation Wizard............................................384
Failover Cluster ............................................................................386
..................................................................388
...................................................................................389
......................................................................392
Failover ....................................................................................394
Failover Cluster.......................................................................................395
Services and Applications..............................................................................395
Nodes..............................................................................................................396
Storage............................................................................................................396
Networks........................................................................................................397
Cluster Events.................................................................................................398
PowerShell Failover Clusters.........................................398
Network Load Balancing..................................................................399
NLB..................................................................................................400
NLB................................................................................................400
NLB..........................................................................................401
NLB.........................................................................406
.............................................................................406
...............................................................................................407
...................................................................................................408
Windows Backup.............................................................................409
........................................................................411
10 R2......................................................................................415
APPLOCKER.........................................................................................................415
AppLocker...........................................................................................417
AppLocker.............................................................................................418
..................................................................................................419
....................................................................................................421
Publisher.................................................................................................422
Path.........................................................................................................424
File hash.................................................................................................425
............................................................................................425
Server Core.............................................................................................................426
BITLOCKER..........................................................................................................428
BitLocker..........................................................................................429
xv
.........................................................................................430
BitLocker.................................................................................................430
.....................................................................................431
1 : .............................................433
2 : ....................................433
3 : ......................................................434
4:GPO .....................................435
Security Configuration Wizard...............................................................................435
Best Practice Analyzer...........................................................................................437
BPA PowerShell.....................................................................................440
) Auditing(....................................................................................................441
.................................................................................................446
EFS........................................................................................447
EFS .................................................................................448
Cipher.exe...........................................................................................................449
File Classification Infrastructure............................................................................449
FCI...........................................................................................................450
FCI.........................................................................................................452
FCI...........................................................................................................455
Read-Only Domain Controller...............................................................................457
Network Policy and Access Services.....................................................................459
NPS.....................................................................................................................460
NAP....................................................................................................................462
Active Directory Recycle Bin.................................................................................466
AD RB.................................................................................................467
AD.................................................................................468
DirectAccess...........................................................................................................470
DirectAccess............................................................................471
DirectAccess.......................................................................................472
DirectAccess......................................................................................473
(Full Intranet Access)...........................................473
...................................................474
(Selected Server Access).....................................474
(End-to-End Access)..................................................474
11 POWERSHELL V2...........................................................................................475
PowerShell...............................................................................................475
PowerShell V2........................................................................................476
PowerShell.....................................................................................................477
xvi
PowerShell.....................................................................478
PowerShell R2....................................................................479
.........................................................................................479
AppLocker............................................................................................488
Failover Cluster.....................................................................................493
Group Policy.........................................................................................498
Server Manager.....................................................................................503
Windows Server Backup.......................................................................505
12 R2.............................................................513
(Performance Monitoring)....................................................................513
.............................................................................................513
Task Manager Resource Monitor.........................................................518
Task Manager.....................................................................................................518
Resource Monitor...............................................................................................520
Event Viewer..........................................................................................................520
.............................................................................521
Forward ......................................................................523
Application and Services Logs...........................................................................526
Data Collector Sets.................................................................................................527
System Data Collector Sets...................................................................528
............................................................................................530
System Center Operations Manager 2007 R2.........................................................531
13 R2 7...................................................................................533
BranchCache............................................................................................533
BranchCache.....................................................................................534
....................................................................................................535
..............................................................................................................536
BranchCache..............................................................................537
BranchCache.................................................................................537
BranchCache...............................................................................................538
DirectAccess............................................................................................551
DirectAccess.....................................................................................552
DirectAccess..........................................................................................552
IPv6.................................................................553
DirectAccess Network Location Server.......................................................554
DirectAccess.................................................................................554
.................................................................................................555
.....................................................................555
xvii
DirectAccess................................................................................556
DirectAccess...............................................................................................556
.................................................557
ISATAP DNS.....................................................................559
CRL DirectAccess...................................................560
DirectAccess Network Location Server..................................566
14 R2........................................................................................573
.............................................................................................................573
DirectAccess.......................................................................................................573
BranchCache......................................................................................................573
VPN..................................................................................................574
DNS......................................................................................575
DNS Security Extensions...................................................................................575
....................................................................576
AD...............................................................................................................576
AD Recycle Bin..................................................................................................576
...............................................................................................577
AD BPA.............................................................................................................579
AD...............................................................................................580
..................................................................................580
Active Directory Administrative Center.............................................................581
Read-only SYSVOL Read-only Domain Controllers.................................582
...................................................................................583
DFSR...................................................................................583
File Classification Infrastructure........................................................................583
...........................................................................................583
.................................................................................................584
IIS................................................................................................................584
Request Filtering Module...................................................................................584
Best Practices Analyzer......................................................................................584
PowerShell................................................................................................584
..................................................................585
.............................................................................................585
.Net Server Core........................................................................585
Hyper-V......................................................................................................585
Live Migration....................................................................................................585
................................................................................................587
................................................................................................587
xviii
Remote Desktop Services............................................................................587
Remote Desktop Session Host............................................................................588
Remote Desktop Virtualization Host..................................................................588
RemoteApp ..................................................................................589
Remote Desktop Connection Broker..................................................................589
Remote Desktop Gateway..................................................................................589
............................................................590
.....................................................................................590
.................................................................................................590
Nap Remediation............................................................................................590
Remote Desktop Web Access.............................................................................590
RemoteApp............................................................................591
FBA................................................................................................................591
...................................................................591
)Single Sign-On(.............................................................................591
.................................................................................592
PowerShell BPA RDS.....................................................................592
..................................................................592
PowerShell Failover Cluster...............................................................592
Cluster Shared Volumes.....................................................................................593
...................................................................................593
.............................................................593
............................................................594
.............................................................................................................594
DNSSEC................................................................................................594
AppLocker..........................................................................................................594
NAP) Network Access Protection(..........................................................594
..................................................................................595
..................................................................................595
..............................................................................596
...................................................................................596
PowerShell..................................................................................................596
Debugger ISE.................................................................................................596
.....................................................................................................596
Transactions........................................................................................................597
...........................................................................................597
1
2008) R2( R2 2008) R2 (
2008 (R1) . R2
7 .
R2 . R2 PowerShell
BranchCache . R2 .
.
R2
IIS Hyper-V PowerShell .
.
Hyper-V
1 )IT ( . .
1 Administrator
Windows Server 2008 R2 2
. (R1) 2008
. 2008
. R2 Live Migration Hyper-V . Live
Migration . CSV1 Hyper-V
.CSV Hyper-V Failover Cluster .CSV Live Migration
7 .
BranchCache
. BranchCache R2 . :BranchCache )hosted ( )Distributed .(
2 . WAN
3 . .
WAN .
. . ) ( 7 .
7 .
1 Cluster Shared Volumes 2 Branch Office 3 Requesting Client
/ 2008 (R2) 3
. .
BranchCache R2 7 .
Microsoft Exchange Server . 2000
. R2 :
Recycle Bin : . 1
.
Active Directory Administrative Center :
. PowerShell
.
PowerShell : PowerShell . R2 75
.
AD BPA2: .AD BPA
.
1 User Account 2 Active Directory Best Practices Analyzer
Windows Server 2008 R2 4
. .
Internet Information Server 7.5
R1 IIS . R2 BPA FTP
1 .
PowerShell
PowerShell . IT .
PowerShell 2 R2 IIS AD Remote Desktop Service .
.
DirectAccess DirectAccess 7
R2 . VPN 7 R2 .
7 7 )
.( (Remote) LAN . 1-1 .
1 Auditing
/ 2008 (R2) 5
1-1 DirectAccess
File Classification Infrastructure FCI
FCI R2 .FCI
.
.FCI . 10
.
Remote Desktop Services R2 Windows Terminal Services Windows Remote
Desktop Services . . 8 .
R2
R2 . . 1-1
.
Windows Server 2008 R2 6
1 -1 R2
R2
. SQL Server 2008 Enterprise . .
R2
. " " "
" . .
. .
R2
IT . . R2
/ 2008 (R2) 7
IT .
. IT . R2 .
Core Parking . Core Parking Cpu
. 2 -1 2 .
R2 10 . .
2-1 1 2
IT .
.Hyper-V R2 .
Solution
Accelerators R2 .
Windows Server 2008 R2 8
IT . Hyper-V R2
.
.
R2 .
IT .DirectAccess R2
1 Return On Investment
ROI
.ROI1
. : https://roianalyst.Alinean.Com/msft/autologin.do?d= 307025591178580657
IT .
.
/ Exchange Unified Messaging Office Communications
Server 2007.
/ 2008 (R2) 9
VPN . DirectAccess VPN .
Network Access Protection R1) RTM ( DirectAccess .
NAP .
BranchCache . WAN .
.
.
. . . . . 3-1
.
3-1 R2
/ 2008 (R2) 11
. (Disaster Recovery)
. . .
(License) (Activation) .
. :
: R2 . R2 .
.
CAL1) :( R2 .CAL Per Server Per Device User .
CAL Per Server CAL Per Device Per User
CAL Per Server . .
. .
CAL Per Device Per User .
. .
1 Client Access License