MICROSOFT
WINDOWS SERVER® 2008
Presented by: Lê Thanh Tú
Date: 23 – 05 – 2008


Agenda
 History of Microsoft Windows Server® 2008.
 Editions of Microsoft Windows Server® 2008.
 New technologies in Microsoft Windows Server® 2008.
 Identity and Access.
 Security and Policy Enforcement.
 Hyper-V.
 Presentation Virtualization with Terminal Services.
 Web Technology – Internet Information Services 7.0.
 Better Together with Windows Vista.
 Server Management.
 Server Core.
 Higher Availability.
 Storage and Print Solutions.
01/18/18

www.hoasen.edu.vn

2


History Of MS Windows Server® 2008
 It was known as Windows Server Codename "Longhorn" until
May 16, 2007, when Microsoft chairman, Bill Gates announced
its official title: Windows Server® 2008.

No.

01/18/18

Version

Released Date

1

Beta 1

July 27th, 2005

2

Beta 2

May 23rd, 2006

3

Beta 3

April 25th, 2007

4

Release Candidate 0


September 24th, 2007

5

Release Candidate 1

December 5th, 2007

6

Released to manufacturing

February 4th, 2008

7

Official version

February 27th, 2008

www.hoasen.edu.vn

3


Editions Of MS Windows Server® 2008
 Microsoft Windows Server® 2008 is available with nine editions.
No.

01/18/18


Edition

1

Windows Web Server® 2008.

2

Windows Server® 2008, Standard.

3

Windows Server® 2008, Enterprise.

4

Windows Server® 2008, Datacenter.

5

Windows Server® 2008, Standard without Hyper-V.

6

Windows Server® 2008, Enterprise without Hyper-V.

7

Windows Server® 2008, Datacenter without Hyper-V.


8

Windows Server® 2008, For Itanium-Based Systems.

9

Windows HPC Server® 2008.

www.hoasen.edu.vn

4


Windows Server® 2008, Web Edition
 Enables any organization to rapidly Web pages, Web sites, Web
applications, and Web services with the newly re-architected IIS
7.0, ASP.Net, and MS .Net Framework.
 Hardware supports:
 RAM: 4GB on 32 bits and 32GB on 64 bits systems.
 CPU: 4.

 Supported instance:
 Only one physical (or virtual).

 Not supports:






01/18/18

Hyper-V.
Hot swap (RAM, CPU).
Failover clustering service.
Terminal server.
Network Access Protection.
www.hoasen.edu.vn

5


Windows Server® 2008, Standard Edition
 With built-in, enhanced Web and virtualization capabilities. It is
designed to increase the reliability and flexibility of your server.
 Hardware supports:
 RAM: 4GB on 32 bits and 32GB on 64 bits systems.
 CPU: 4.

 Supported instance:
 One physical plus one virutal instance.

 Supported services:
 Hyper -V.
 Terminal Service (Maximum 250 connections).
 Network Access Protection (limited capability).

 Not supports:
 Hot swap (RAM, CPU).

 Failover clustering service.
01/18/18

www.hoasen.edu.vn

6


Windows Server® 2008, Enterprise Edition
 Delivers an enterprise-class platform for deploying businesscritical applications and improves security with consolidated
identity management features.
 Hardware supports:
 RAM: 64GB on 32 bits and 2TB on 64 bits systems.
 CPU: 8.

 Supported instance:
 One physical plus and 4 virutal instances.

 Supported services:
Hyper -V.
Cluster (up to 16 nodes).
Terminal Service.
Network Access Protection.
 Not supports: Hot swap (RAM, CPU).





01/18/18


www.hoasen.edu.vn

7


Windows Server® 2008, Datacenter Edition
 Delivers an enterprise-class platform for deploying businesscritical applications and large-scale virtualization on small and
large servers. Improve availability with clustering and dynamic
hardware partitioning capabilities.
 Hardware supports:
 RAM: 64GB on 32 bits and 2TB on 64 bits systems.
 CPU: 64.
 Hot swap (RAM, CPU).

 Supported instance:
 Unlimited.
 Supported services:
 Hyper -V.
 Terminal Service.
 Network Access Protection.
01/18/18

www.hoasen.edu.vn

8


Compare Of Editions
New/Updated Features


E

D

S

W

I

Internet Information Services 7.0
Hyper-V
Network Access Protection
AD Right Management Services
TS Gateway and RemoteApp
Server Manager
Windows Deployement Services
Server Core
Available.
Not Available.
01/18/18

www.hoasen.edu.vn

9


Demonstration Of Installing
 System Requirements.

 Processor: Minimum 1GHz (32 bits) or 1.4GHz (64 bits).
Recommended 2GHz or faster.
 RAM: Minimum 512MB. Recommended 2GB or greater.
 Available Disk Space: Minimum 10GB. Recommended 40GB.

 Install Windows Server® 2008.
 Change Server name.
 Change TCP/IP Settings.

 Install Windows Server® 2008 Server Core.
 Change Server name.
 Change TCP/IP Settings.

 Install Windows Server® 2008 from WDS.
01/18/18

www.hoasen.edu.vn

10


New Technologies
 Beside updates the existing services in Windows Server® 2003,
Microsoft Windows Server® 2008 has many new technologies.
 Some salient features, which are:
 Identity and Access.
 Security and Policy Enforcement.
 Presentation Virtualization with Terminal Services.
 Web Technology – Internet Information Services 7.0.
 Better Together with Windows Vista.

 Server Management.
 Server Core.
 Virtualization and consolidation.
 Higher Availability.
 Storage and Print Solutions.
01/18/18

www.hoasen.edu.vn

11


Identity and Access
 Designed to:
 Help organizations manage user identities and associated access
privileges.
 Help businesses boost productivity, reduce IT costs, and eliminate
the complexity of identity and access management.

 These solutions fall into 5 distinct areas:
 Directory Services.
 Strong Authentication.
 Federated Identities.
 Information Protection.
 Identity Lifecycle Management.

01/18/18

www.hoasen.edu.vn


12


IA – Directory Services
 Active Directory Services.
 Auditing.
 Fine-Grained passwords.
 Read-Only Domain Controller.
 Restartable Active Directory Domain Services.
 Database mounting tool.

 Active Directory Lightweight Directory Services.
 Install from Media Generation.
 Dynamic List of LDIF files.
 Recursive Linked-Attribute Queries.

 Active Directory Certificate Services.
 Enrollment Agent templates.
 Simple Certificate Enrollment Protocol and Online Responder.
 Enterprise PKI.
01/18/18

www.hoasen.edu.vn

13


IA – Directory Services (Cont.)
 Active Directory Federation Services.
 Availability As an Integrated Server Role.

 Integration with Microsoft Office SharePoint Server 2007.
 Integration with Active Directory Rights Management Services.
 Improved Administration.

 Active Directory Rights Management Services.
 Application Support.
 Persistent Protection.
 Usage Policy Templates.
 AD RMS Software Development Kit.

 Additional Active Directory Improvements.
 Better management with Server Manager and dcpromo command.
 Answer File Creation.
01/18/18

www.hoasen.edu.vn

14


Directory Services – Demonstration
 Deployment Scenario.
 Install Active Directory Services.
1. Install Primary DC.
2. Install Additional DC.
3. Install RODC.
4. Install AD LDS.
5. Install AD FS.
6. Install AD RMS.


 New features demonstration.
1. Audit configuration.
2. Restart Active Directory Domain Services.
3. Using AD Database mounting tool.
4. Dynamic List of LDIF files.
01/18/18

www.hoasen.edu.vn

15


IA – Strong Authentication
 Cryptography API: Next Generation.
 Implements the National Security Agency's Suite B protocols.

 Granular Administration Model.
 V3 Certificate Templates.
 Enterprise-Wide Public Key Infrastructure (PKI) management.
 Simplify PKI management with PKIView.

 Support for the Latest Standards.
 Online Certificate Status Protocol (OCSP).
 Issuing Distribution Point Extension (IDP CRL).
 Simple Certificate Enrollment Protocol (SCEP).
01/18/18

www.hoasen.edu.vn

16



IA – Information Protection
 Federated Collaboration.
 FRMS = AD FS + AD RMS.
 Compatible with Microsoft Office SharePoint Server 2007.
 Supports down-level AD RMS clients.

 Common Management Theme.
 Using MMC.

 Windows BitLocker Drive Encryption.
 Full drive encryption and the integrity checking using Trusted
Platform Module (TPM) 1.2.

01/18/18

www.hoasen.edu.vn

17


Security and Policy Enforcement
Windows Server® 2008 includes several additional security and
policy enhancements for protecting the network, which are:
Network Policy and Access Services.
 Highly secure wireless and wired network.
 SSTP – New remote access solutions.
 Central network policy management with RADIUS server and Proxy.


Network Access Protection.
Windows Firewall with Advanced Security.

01/18/18

www.hoasen.edu.vn

18


SSTP – New VPN Protocol
 Secure Socket Tunneling Protocol.
 Allow traffic to pass through firewalls that block PPTP and L2TP/IPsec
traffic.
 Encapsulate PPP traffic over the SSL channel of the HTTPS protocol.
 Support strong authentication methods such as EAP-TLS

NIIT Hoasen Network

01/18/18

www.hoasen.edu.vn

19


Network Access Protection
 Network Access Protection.
 Help ensure the ongoing health of desktop computers.
 Enforce health requirements for roaming laptops.

 Verify the health and policy compliance of unmanaged computers.
 Determine the health and restrict access of visiting laptops.

NIIT Hoasen Network

01/18/18

www.hoasen.edu.vn

20


Windows Firewall with Advanced Security

Types of Network Traffic
Network Detection using NLA

 Filter the network traffic based on pre-defined rule sets.
 Inbound rule.
 Outbound rule.
 Connection rule.

 Allowed network traffic can be protected by using authentication
or encryption.
 Can be managed by using Group Policy.
01/18/18

www.hoasen.edu.vn

21



SPE – Demonstration
 Deployment Scenario.
 Network Policy and Access Services.
1. Deploy NAP.
2. Wireless network security.
3. Deploy Remote access with VPN.
4. Deploy RADIUS Server.

 Using Windows Firewall with Advanced security.
1. Manage Inbound rules.
2. Manage Outbound rules.
3. Manage Connection Security rules.
4. Monitoring.

 Deployment Notes.
01/18/18

www.hoasen.edu.vn

22


Virtualization with Terminal Services
 Provides:
 Applications on demand.
 More secure access.

 Enhancements to Terminal Services in Windows Server® 2008:

 Terminal Services RemoteApp.
 Terminal Services Gateway.
 Terminal Services Web Access.
 Terminal Services Session Broker.
 Terminal Services Easy Print.

 Core Scenarios for Terminal Services:
 Remote Access to Applications.
 Securing Applications and Data (Regulatory Compliance).
 Merger Integration or Outsourcing.
 Flexible Office Users.
01/18/18

www.hoasen.edu.vn

23


Terminal Services – Demonstration

01/18/18

www.hoasen.edu.vn

24


Internet Information Service 7.0
 IIS 7.0:
 Provides


a

security-enhanced,

easy-to-manage

platform

for

developing and reliably hosting Web applications and services.
 Is a unified Web platform that integrates IIS, ASP.Net, Windows
Communication Foundation, and Windows SharePoint Services.

 Enhancements in the IIS 7.0 Web Server Role:
 Modular Architecture.
 Comprehensive Extensibility APIs.
 Unified, Distributable Configuration Model.
 Efficient Administration Tools.
 Powerful Diagnostic Capabilities.

01/18/18

www.hoasen.edu.vn

25