Embed Doc
Copy Link
Readcast
Collections

CommentGo Back

Download

A read-only domain controller (RODC) is a new type of domain controller in the WindowsServer 2008 operating system. An RODC provides the ability to easily deploy a domaincontroller that hosts a

read-only replica of the domain database/partition

. The Read-OnlyDomain Controller (RODC) is primarily targeted towards branch offices or edge sites, where

physical security cannot be guaranteed

.The RODC brings a

read-only AD database

unidirectional replication

credential caching

and

administrator role separation

and

read-only DNS

Network Access Protection (NAP) is one of the most desired and highly anticipated features of WindowsServer 2008. NAP is a new platform and solution that controls access to network resources based on a clientcomputer’s identity and compliance with corporate governance policy. NAP allows network administrators todefine granular levels of network access based on who a client is, the groups to which the client belongs,and the degree to which that client is compliant with corporate governance policy. If a client is notcompliant, NAP provides a mechanism to automatically bring the client back into compliance and thendynamically increase its level of network access.NAP includes an application programming interface (API) for developers and vendors to create completesolutions for health state validation, limitation of network access or communication, and ongoingcompliance. This paper describes the scenarios for NAP, the components of NAP, and how NAP works for thedifferent enforcement methods included with Windows Server 2008, Windows Vista, and Windows XPService Pack 3.

•

Built for the Web

Windows Server 2008 comes with Internet Information Services 7.0 (IIS7), a Web server and security-enhanced, easy-to-manage platform for developing and reliably hosting Web applications and services. Amajor enhancement to the Windows Web platform, IIS7 includes a componentized architecture for greaterflexibility and control. IIS7 also provides simplified management, powerful diagnostic and troubleshootingcapabilities that save time, and comprehensive extensibility.Internet Information Server IIS7 together with the .NET Framework 3.0 provide a comprehensive platformfor building applications that connect users and data, enabling them to visualize, share, and act oninformation. Additionally, IIS7 plays a central role in unifying Microsoft's Web platform technologies—ASP.NET, Windows Communication Foundation Web services, and Windows SharePoint Services.

•

Virtualization Built In

Microsoft Windows ServerHyper-V, the next-generation hypervisor-based server virtualization technology,allows you to make the best use of your server hardware investments by consolidating multiple server rolesas separate virtual machines running on a single physical machine. You can also efficiently run multipleoperating systems—Windows, Linux and others—in parallel on a single server. With virtualization built intothe Windows Server 2008 operating system and simple licensing policies, it's now easier than ever to takeadvantage of the cost savings of virtualization.Applications can also be efficiently virtualized using Windows Server 2008 centralized application accesstechnologies. Terminal Services Gateway and Terminal Services RemoteApp allow easy remote access tostandard Windows-based programs from anywhere by running them on a terminal server instead of directlyon a client computer—

without

the need for a complicated VPN.

•

Security

Windows Server 2008 is the most secure Windows Server yet. The operating system has been hardened toprotect against failure and several new technologies help prevent unauthorized connections to yournetworks, servers, data, and user accounts. Network Access Protection (NAP) helps ensure that computersthat try to connect to your network comply with your organization's security policy. Technology integrationand several enhancements make Active Directory services a potent unified and integrated Identify andAccess (IDA) solution. And Read-Only Domain Controller (RODC) and BitLocker Drive Encryption allow youto more securely deploy your AD database at branch office locations.

•

A Solid Foundation for Your Business Workloads

Windows Server 2008 provides a solid foundation for all of your server workload and applicationrequirements while being easy to deploy and manage. The all-new Server Manager provides a unifiedmanagement console that simplifies and streamlines server setup, configuration, and ongoing management.Windows PowerShell, a new command-line shell, enables administrators to automate routine systemadministration tasks across multiple servers. Windows Deployment Services provides a simplified, securemeans of rapidly deploying the operating system via network-based installations. And Windows Server 2008Failover Clustering wizards, and full IPv6 support plus consolidated management of Network Load Balancing,make high availability easy to implement even by IT generalists.Finally, the new Server Core installation option of Windows Server 2008 allows for installation of server roleswith only the necessary components and subsystems without a graphical user interface. Fewer roles andfeatures means minimizing disk and service footprints while reducing attack surfaces. It also enables your ITstaff to specialize according to the server roles they need to support.

The 64-bit systems offer direct access to more virtual and physical memory than 32-bit systems and process more data per clock cycle, enabling more scalable, higherperforming computing solutions. There are two 64-bit Windows platforms: x64-based and Itanium-based

Windows Server 2008 Edition Summaries

EditionSummary

Windows Server 2008 is the most robust Windows Server operating system todate. With built-in, enhanced Web and virtualization capabilities, it is designed toincrease the reliability and flexibility of your server infrastructure while helpingsave time and reduce costs. Powerful tools give you greater control over yourservers and streamline configuration and management tasks. Plus, enhancedsecurity features work to harden the operating system to help protect your dataand network and provide a solid, highly-dependable foundation for your business.Windows Server 2008 Enterprise delivers an enterprise-class platform fordeploying business-critical applications. Help improve availability with clusteringand hot-add processor capabilities. Help improve security with consolidatedidentity management features. Reduce infrastructure costs by consolidatingapplications with virtualization licensing rights. Windows Server 2008 Enterpriseprovides the foundation for a highly dynamic, scalable IT infrastructure.Windows Server 2008 Datacenter delivers an enterprise-class platform fordeploying business-critical applications and large-scale virtualization on small andlarge servers. Improve availability with clustering and dynamic hardwarepartitioning capabilities. Reduce infrastructure costs by consolidating applicationswith unlimited virtualization licensing rights. Scale from 2 to 64 processors.Windows Server 2008 Datacenter provides a foundation on which to buildenterprise-class virtualization and scale-up solutions.Designed to be used specifically as a single-purpose Web server, Windows WebServer 2008 delivers on a rock solid foundation of Web infrastructure capabilitiesin the next generation Windows Server 2008. Integrated with the newly re-architected IIS 7.0, ASP.NET, and the Microsoft .NET Framework, Windows WebServer 2008 enables any organization to rapidly deploy Web pages, Web sites,Web applications, and Web services.Windows Server 2008 for Itanium-based Systems is optimized for largedatabases, line of business and custom applications providing high availability andscalability up to 64 processors to meet the needs of demanding and missioncritical solutions.Windows Server 2008 is the most robust Windows Server operating system todate. It is designed to increase the reliability and flexibility of your server