微软超炫模板课件

,Click to Edit Title Text,Click to edit Master text styles,Second level,Third level,Fourth level,Fifth level,2007 Microsoft Corporation.All rights reserved,Windows Server 2008 Scenarios,Ward Ralston MCSE,CISSP,wardr,Senior Technical Product Manager,Microsoft Corporation,Understand key scenarios for Windows Server 2008,Learn which roles and features enable each scenario,See technologies in action that bring value in each scenario,Session Objectives And Agenda,Remote Infrastructure,Anywhere Application Access,Server Management,Web and Applications Platform,Security and Policy Enforcement,Server Virtualization,High Availability,Windows Server 2008 Scenarios,Scenario:Server Management,Key Technologies,Server Core,Server Manager,Windows PowerShell,Goals,Reduce management and servicing needs,while improving reliability and security,Configure local server through a single interface,Add/remove server roles and features more securely and reliably,View status and perform local management tasks from a single tool,Automate administration of multiple servers with task-based scripting language,Accelerate script authoring,testing and debugging,Perform server management through multiple data stores,New minimal installation option with only“core”components,No GUI interface,Subset of server roles and features available,Manage remotely as you would any server,Server,Manager,Product Installation,Initial Configuration,New Command-line shell&Scripting Language,Resources,Improves productivity&control,Accelerates automation of system admin,Works with existing scripts,Ships with Windows Server 2008,Easy for non-programmers,Role management in future versions,TechNet Script Center,Newsgroup and Web Forum,Team Blog and Channel 9,Books from MS Press,Manning,OReilly,Sapien etc.,Partners,Windows PowerShell,Scenario:Web&Applications Platform,Key Technologies,Internet Information Services 7.0,.NET Framework 3.0,Windows Media Services,Windows SharePoint Services,Goals,Efficiently manage Web server,Web applications and Web services.,Deploy and configure Web applications and services across server farms quickly,Create customized Web platform that is faster,more secure and more reliable,Improve performance&scalability of Web applications and services,Achieve fine control and visibility into utilization of key OS resources,Streamlined installation means reduced attack surface,Simplified administration through variety of tools,Customization and extensibility through.NET,Xcopy deployment and shared configuration,Event logging and tracing for faster troubleshooting,Application and health management for Web services,Managing Your Web with IIS 7.0,Arsenal of Admin Tools,Delegated Management,Secure Remote Management,Shared Config for Web Farms,Better Tools,Intuitive,Task Oriented GUI,.NET Management API,Unified WMI Provider for IIS/ASP.NET,Powerful Command Line Support,Rich Runtime State Information,Automatic Failure Tracing&Logging,Site Owner,Web.config,XML,XCopy Deploy,Administrator,Internet,Manage Remotely,Secure,AppHost.config,XML,SharedConfig,Shared App Hosting,Web Farm,App,Centralized Configuration replicates data across server farms,Two-Tier administration model,Improved Backup and Recovery support,Multi-Stage Recycle Bin,Forms authentication integration,Non-windows based systems,Windows SharePoint Services 3.0,Scenario:Remote Infrastructure,Technologies,Active Directory,Read-Only Domain Controller,Administrative Role Separation,Restartable Active Directory,SYSVOL replication using DFS,BitLocker Drive Encryption,NetIO,Goals,Improve the efficiency of remote office server deployment and administration,Mitigate physical security risks in remote offices,Improve the efficiency of WAN communications,Read-Only Domain Controller,Impact of stolen DC to the Active Directory reduced,By default,no users/computers passwords stored on RODC,Read-only Partial Attribute Set can prevent application credentials from replicating to RODC,Reduced attack surface to the Active Directory for a compromised DC,Read-only state with unidirectional replication for AD and FRS/DFSR,Each RODC has its own KDC KrbTGT account to provide cryptographic key separation,Delegated DCPROMO reduces need for DA to TS into RODC,RODCs are workstation accounts,Not members of Enterprise-DC or Domain-DC groups,Very limited rights to write in Directory,Enhanced Security for remote office DCs,Branch,Hub,Read Only DC,How RODC Works,Windows Server 2008 DC,1,2,3,4,5,6,6,1,2,3,4,5,6,User logs on and authenticates,RODC:Looks in DB:I dont have the users secrets,Forwards Request to Windows Server 2008 DC,Windows Server 2008 DC authenticates request,Returns authentication response and TGT back to the RODC,RODC gives TGT to User and RODC will cache credentials,RODC,Read-Only Domain Controller,No accounts cached(default),Pro:Most secure,still provides fast authentication and policy processing.,Con:No offline access for anyone.WAN required for Logon,Most accounts cached,Pro:Ease of password management.Int