Windows Server 2008 R2 Streamlined Management

Mir RosenbergProgram ManagerMicrosoftWSV327

Wassim FayedProgram Manager

Session Objectives and Takeaways

GoalsDiscuss the three pillars for Windows manageability in Windows Server 2008 R2 (WS08 R2)Demonstrate core manageability enhancements in WS08 R2

Key TakeawaysAdvancements in the core management technologies streamline common tasks and enable new scenariosDeep integration between technologies reduces duplication, simplifies the administrative experience, and creates a streamlined management platform

Services

Management Framework

Managed Components

UI Toolkits

Automation Environment

Management Protocols

M-UXServer

Manager

ISEConsole

Custom

BITS Wsman WMI

PowerShell Engine

BITSRobust content distributionAsynchronous and scriptableOptimum network utilization

Wsman and WMIStandards basedRemotable and ubiquitousOS or bare hardware

Windows PowerShellIntuitive command shellPowerful scripting languageUniversal execution environment

Rich User InterfacesTask orientedUser customizable3rd party extensible

OS, Applications and Devices

Au

tom

ati

on

Pla

tform

Rig

ht

UX

What is WMI

The Windows service that implements the CIM modelCommon Information Model standardized by DMTF Defines a model for management objects

Provides a COM API to define and access management objectsMany Windows components and 3rd-party applications supply a WMI provider PowerShell simplifies discovery and manipulation of WMI objects

What is WSManDMTF standard network protocol “Web Services - Management”

Defines client and server rolesDefines a small set of verbs to access management objectsExtensible

WSMan cmdlets allow access to any device that complies with CIM and WSMan standardsThe WinRM service in Windows implements the server role of the WSMan protocolMicrosoft extensions to WSMan enable PowerShell remoting (1-1, 1-many, many-1)

What Is PowerShell

The Microsoft Management Automation EnvironmentSurfaces a revolutionary Scripting LanguageProvides a Platform and Extension APIShips a set of Interactive Shells and basic CommandsAdapts many different Type and Data systems for admins

Supports a great ecosystem of administrators and partners

Automation PlatformCurrent Customer Pain

Functional gaps in Automation Environmentdifficult for non-developers to create PowerShell solutionsno remoting supportdifficult to leverage power of WMI – hard to scriptno PowerShell support on Server Core

No standards based managementlacking automation for managing systems or devices remotely

Lack of automation support for delegated admin and service scenarios

no secure and scalable way to delegate administration

Enterprises network bandwidth usage not manageable No simple way to enable secure bidirectional file transfer

Automation PlatformWassim FayedProgram ManagerMicrosoft

demo

Managing Remotely Using the Automation PlatformAutomation Platform WS08 R2 Enhancements

Ubiquitous remoting and execution environmentlocal or remoteOn single or multiple machineas jobs on eventsin delegated and restricted or unrestricted environmentsusing various Authentication mechanisms

Kerberos, NTLM, Basic, Negotiate, CredSSP

New WMI PowerShell cmdlets for common IT Pro tasksinvoking methods and eventingrecursive search using –Recurse switchbackground jobs abilities using the –AsJob switch

Managing Remotely Using WSManPowerShell client calls the WSMan client APIsWSMan securely sends and receives SOAP messagesWSMan service calls into the PowerShell pluginCommands are executed in their own host process within the specified PowerShell Session

WSM

an L

isten

er P

roce

ss(P

ower

Shel

l Plu

gin)

WSManHostProcess

Management System

PowerShellClient

WSManClient

ManagedServer

PSSession

PowerShell Provider

WSMan Provider

Proxy

HTTP/HTTPS(WS-Man)

Restricted Admin Environmentdemo

Wassim FayedProgram ManagerMicrosoft

Managing Hosted Services Using WSMan

PowerShell client calls the WSMan client APIsWSMan securely sends and receives SOAP messagesWSMan listener is hosted inside the service processCommands are executed in their own restricted PowerShell Sessions

Hosted ServiceProcess

DelegatedAdmin

PowerShellClient

WSManClient

HostedService

PowerShell Provider

WSMan Provider

Proxy

WSM

an L

isten

er P

roce

ss(P

ower

Shel

l Plu

gin)

RunpacePSSessions

HTTP/HTTPS(WS-Man)

Managing Hosted ServicesAutomation Platform WS08 R2 Enhancements

Support delegated administration and hosted service scenarios

Ability to control who can run what whereHosting PowerShell over WSMan in IIS

supports Live ID, custom authorization, and quotasenables dynamic creation of customized automation environments

Managing Hardware With WSMAN

SMASH/DASH profiles define modules to administerDASH: Power-on, power-off, configure BIOS, upgrade firmwareSMASH: hypervisor, disk volumes

WSMAN’s remote profile discovery lets you see profiles supported by a given host

In-box WSMAN cmdlets enable access to DASH/SMASH capabilities

Profile Discovery and DASHdemo

Wassim FayedProgram ManagerMicrosoft

H/W Management with WSMANAutomation Platform WS08 R2 Enhancements

Improved standards supportHeterogeneous and OOB H/W management (SMASH/DASH) using Ws-Man PowerShell cmdletsDMTF Profile discovery - supports Interop namespace and cross namespace association traversal

Community scripts to make the most common tasks easy

What Is BITS?The Windows service that uploads and downloads large files using HTTP or SMB protocols

Origin: Created for WU/MU downloads (600M+ clients)Robust: resumes after network errors & rebootsPolite: “background” mode cedes network and CPU to other appsPolite: basic queuing and prioritiesNew PowerShell cmdlets

Leveraged by WSUS, SCCM, SCVMM, Zune Catalog, Outlook

Optimized Content Distribution Leveraging BranchCache

Server-side

1. Content is chunked into segments (32MB) and segments into blocks (64KB)

2. Hashes (2000:1 size ratio) computed and sent back to the requesting client

Client-side

3. Client sends an HTTP request; HTTP adds an accept-encoding header specific to BranchCache

4. Server authorizes client and sends back hashes associated with the content

5. Client looks up hashes in the branch; downloads from an R2 hosted cache server or other clients

Peer Client1

Peer Client2

BranchCache Enabled WS08 R2 Server

App

BITS

BranchCache

App

BITS

BranchCache

Optimized Content DistributionWassim FayedProgram ManagerMicrosoft

demo

Content Distribution Automation Platform WS08 R2 Enhancements

Optimized content distributionEnables authenticated, authorized and secure shared file caching (leveraging BranchCache)

WSUS and SCCM will leverage platform in their solutionsAllows management of bandwidth usage limits based on transfer priority, business calendar and maintenance windows Added a “BITS Compact Server” to the server SKUsNew BITS cmdlets to replace Bitsadmin.exe functionality

Management Solutions

Built on top of the automation platformScriptable using PowerShellRemotable using PowerShell remoting

WS08 R2 solutions:Integrated Scripting EnvironmentServer Management

server managerbest practices analyzerserver migration

Active Directory Administration Center

Integrated Scripting EnvironmentCurrent Customer Pain

Primitive and disconnected scripting experienceNotepad + console. No syntax coloringNo debugger

No international support at the command lineInternational Exchange administrators were unable to manage mailboxes from the command line60% of Microsoft’s customer base is international

Barrier to EntryBlank black screen

Integrated Scripting EnvironmentWS08 R2 Enhancements

ISE is an integrated environment forscript authoring, debugging, and executionempowering IT Pros with full access to the automation platform

Key decisions were driven bylowering the barrier to entry for IT Pro accustomed to GUIenabling international support at the command lineproviding a rich on-the-box scripting experiencelaying the foundation for community effort and future expansion (Object Model)

Core Featuressyntax coloring, F1 context-sensitive help, multiple tabbed files, visual debugger, 8 independent sessions, full Unicode and right-to-left language support

Integrated Scripting EnvironmentMir RosenbergProgram ManagerMicrosoft

demo

Server ManagementCurrent Customer Pain

Server Managerserver manager provides integrated management solution but local-onlymust use individual tools via Remote Server Admin Tools (RSAT)

Best Practice Configurationlimited guidance available to optimize role configurationno consistent way to analyze current configuration

Server Migrationin-place upgrade is often impractical due to the extended downtime required and inability to roll back if neededmigration documentation and tools are not consistently available or easy to find

Server ManagementWS08 R2 Enhancements

Server Manager Remotingserver manager included in RSATfrom W7 Client or WS08 R2 Server customer can use Server Manager to manage their servers

Best Practices AnalyzerBPA Infrastructure built into Windows, integrated into Server Manager and exposed via PowerShell cmdletsbest Practices compliance coverage for top Server Roles

ADCS, ADDS, DNS, RDS, IISnew and updated Best Practices guidance available through Windows Update

Server ManagementWS08 R2 Enhancements

Server MigrationTechNet Migration portal – all documentation is in one placemigration guides for AD, DNS, DHCP, File, Print, BranchCachemigration cmdlets to assist with server role, OS settings, data and share migrationsupported source servers:

WS03, WS08, WS08 R2

Right UX: New UI ModelCurrent customer pain

data-oriented not task-orientednot scalable for large volume of datapoor query capabilities10 year old UI experience

WS08 R2 solutionnew UX library (M-UX) providing uniform controls, layered on top of the automation platform. improved object search and queryimproved filter / sort capabilitiesoptimized for common tasksexamples:

WS08 R2 Active Directory Administration Center (replaces ADUC)streamlined multi-domain OU browser

New UI Model - How It Works

Management UI(e.g.: AD

Administration Center)

Automation Platform

(e.g. AD cmdlets)

M-UX Library

Domain Object Model(AD)

• UI is layered on top of the automation platform ensuring it can be automated

• Management UI is built on WPF and leverages a new Management UX Library (M-UX)

• Investing in a library of controls specific to management UX allows us to:

• Innovate – focus on tough UX problems, e.g., interacting with large configuration namespaces

• Standardize – increase functional consistency level and richness across solutions, (e.g., lists should be searchable /query-able)

• Scale – update more antiquated management tools to improve overall manageability

Active Directory Administration CenterMir RosenbergProgram ManagerMicrosoft

demo

WS08 R2 EnhancementsSummary

Automation platformautomation environment improvementsinvestment in standardsdelegated administration and hosted scenarios optimized content delivery

Management solutionsintegrated scripting environmentserver manager remoting best practice analyzersserver migration

question & answer

www.microsoft.com/teched

Sessions On-Demand & Community

http://microsoft.com/technet

Resources for IT Professionals

http://microsoft.com/msdn

Resources for Developers

www.microsoft.com/learningMicrosoft Certification and Training Resources

www.microsoft.com/learning

Microsoft Certification & Training Resources

Resources

Related Content

Breakout SessionsWSV321 - Server Management Improvements in WS08 R2WSV201 - Best Practices Analyzer in Windows Server 2008 R2 WSV327 - Streamlined Management in WS08 R2WCL314 - Windows PowerShell for the Windows 7 Enterprise ClientWSV325 - Windows PowerShell – Tips from the Experts

Hands-on LabsWSV08-HOL - Introduction to Windows PowerShell FundamentalsWSV03-HOL - Advanced PowerShell ScriptingWSV19-HOL - Windows Server 2008 R2: Server Management and PowerShell v2

TLC PavillionCome visit us at the Windows Management Technologies booth!

Windows Server ResourcesMake sure you pick up your copy of Windows Server 2008 R2 RC from the Materials Distribution Counter

Learn More about Windows Server 2008 R2: www.microsoft.com/WindowsServer2008R2

Technical Learning Center (Orange Section): Highlighting Windows Server 2008 and R2 technologies•Over 15 booths and experts from Microsoft and our partners

Complete an evaluation on CommNet and enter to win!

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS,

IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.