1 / 31

Windows Server 2008 Core

Windows Server 2008 Core . Eyal Malach Senior Instructor - Hi-Tech College Infrastructure Consultant - Calanit Carmon Email: Eyalm@calanit.com. Session Objectives and Agenda. Why server core ? Server Core Overview Server Core Benefits Deploying and Configuring Server Core locally

moke
Download Presentation

Windows Server 2008 Core

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Windows Server 2008 Core Eyal Malach Senior Instructor - Hi-Tech College Infrastructure Consultant - Calanit Carmon Email: Eyalm@calanit.com

  2. Session Objectives and Agenda • Why server core ? • Server Core Overview • Server Core Benefits • Deploying and Configuring Server Core locally • Remote Management of Server Core • Q & A • SUMMARY

  3. Why Server Core? • Windows Server is frequently deployed to support a single role or a fixed workload • However, you must deploy and service all of Windows Server • Value Proposition and challenges • Reduce the attack and servicing surface area • Servers optimized by role are easier to manage and maintain • Increased reliability and security • Less installed and less running

  4. Server Core Overview • Server Core is: • A minimal installation option for Windows Server 2008 • Command Line interface, no GUI Shell

  5. Server Core Overview (cont.) • Server Core includes • A set of server roles • DHCP, File, Print, AD, AD LDS, Media Services, DNS, and IIS • The following optional features: • WINS, Failover Clustering, Subsystem for UNIX-based applications, Backup, Multipath IO, Removable Storage Management, Bitlocker Drive Encryption, SNMP, Telnet Client, QoS • Server Core also include Hyper-V

  6. Server Core Benefits Minimal Server Installation Easier to Secure, Manage, and Maintain Supports Unattended Installation Supports Key Infrastructure Roles

  7. Server Core Benefits (cont.) Reduced software maintenance Reduced attack surface Reduced management Less disk space required

  8. Server Core Benefits (cont.) Save as time Save as money !!! Give as Security and peace of mind

  9. Deploying Server Core • Manual installation using Setup • Unattended installation using • Setup Unattended • New WDS and MDT • Only a clean install is supported no Upgrades • Cannot upgrade from a previous version of Windows Server • Cannot upgrade from Server Core to full Server with the GUI shell • Cannot upgrade from full Server with the GUI shell to Server Core

  10. Managing Server Core • Local management • Command Prompt and command line tools • Limited GUI tools (Notepad, Regedit, Task Manager, Intl.cpl and Timedate.cpl)

  11. Configuring Server Core • Set admin password • Set static IP address • Join existing domain • Activate the Server • Configure the firewall • Installing Roles and Features How do I start ?

  12. Local management Basic configurationInstalling and configuring server roles

  13. Managing Server Core • Remote Management • Terminal Server • WS-Management and Windows Remote Shell for remote command execution • MMC Snap-ins • Power Shell • Third Party Management Tools

  14. Enabling Terminal Services • Command Line • Remote Admin mode • Cscript scregedit.wsf /ar 0 • Allow pre-Vista/Windows Server 2008 clients • Cscript scregedit.wsf /cs 0 • You can also use Group Policy • Not necessary to have the full desktop for only CMD.exe • You can configure only cmd.exe in RemoteApp Terminal server 2008

  15. Managing with Windows Remote Shell • Windows Remote Management (WinRM) • WS-Management - secure firewall friendly mgmt protocol • Windows Remote Shell (WinRS) • Requires Windows Vista or Windows Server 2008 • Only command line tools or scripts without UI can be executed • Prompts are problematic, full interactive mode not supported • For example, “press any key”

  16. Configuring WinRM on Server Core • The Server side of WS-Management • From the command line • WinRM quickconfig • Can also be configured using Group Policy • The client side of WS-Management • WinRS –r:ServerName cmd

  17. Managing Server Core using MMC • Once Server Core is installed and roles are installed • Server Core can be fully managed remotely using MMC • No need to use the command line

  18. Server Role Snap-ins for Remote Management • Server Role MMCs are not installed by default in full Server installations • Remote Server Administration Tools (RSAT) makes these available • RSAT for Windows Vista is finally available • Server Role installation opens appropriate Firewall ports for remote management

  19. Using Remote Desktop to manage the server remotely Using WinRM to manage the server remotelyUsing MMC to manage the server remotely

  20. Configuring the Firewall on Server Core • Use netsh advfirewall • To view current profile • To see rules and current configuration • To enable a rule • Use the Windows Firewall with Advanced Security MMC snap-in • Must first enable firewall remote management firewall rule on the Server Core installation • Netsh advfirewall firewall set rule group=“Windows Firewall Remote Management” new enable=yes

  21. Which Rules for Which MMC? • There isn’t a rule group for every MMC snap-in • There is overlap between the rules • Some MMC snap-ins require additional configuration

  22. Some MMCs Require Additional Configuration • Device Manager • Must enable the "Allow remote access to the PnP interface" policy • Disk Management • Enable the “remote volume management” firewall group • Start the Virtual Disk Service (VDS) • IPSec Mgmt • Cscript \windows\system32\scregedit /im 1

  23. PowerShell • Not supported locally on Server Core • Can use PowerShell to remotely manage Server Core via WMI • The IIS 7 PowerShell cmdlets are all WMI based • To remotely use WMI through PowerShell • Get-WMIObject <wmi class> -computername <server> • To obtain a list of WMI Classes • Get-WMIObject –list –computername <server>

  24. Creating a DC • DCPromo is used to install/remove the associated Active Directory Domain Services • Must be run in unattended mode • Specify the configuration via an unattended file • The Active Directory Domain Services Installation Wizard running on the full server can be used to create a suitable unattended

  25. Configuring the firewall in Server CoreInstalling active directory on Server CoreUsing CoreConfigurator

  26. summary • Why server core ? • Server Core Overview • Server Core Benefits • Deploying and Configuring Server Core locally • Remote Management of Server Core • Your next step

  27. כדאי למלא משוב! • איך ממלאים? • בעקבות מייל שישלח בסיום כל יום, • ב-Business Center במתחם HP, • בעמדות האינטרנט במלונות הילטון ודן מילאת משוב? מגיעה לך חולצת Live It! מלאת משוב בשלושת ימי הכנס? יש לך הזדמנות לזכות בכרטיס טיסה לתאילנד מתנת סוכנות BTC, מכשיר בלאק ג'ק מתנת סמסונג, מכשיר HTC מתנת ניופאן, מדיה סנטר מתנת DataSafe ועוד...

  28. Thank you very much for participating Eyal Malach Senior Instructor - Hi-Tech College Infrastructure Consultant - Calanit Carmon Email: Eyalm@calanit.com

  29. © 2007 Microsoft Corporation. All rights reserved.This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS SUMMARY.

More Related