Corey Hynes Ward Ralston Agenda What Microsoft heard from customers Builtin security Azureinspired infrastructure Hybrid application platform Next steps Image credit flickrcomphotos28481088N008379766356 ID: 674319
Download Presentation The PPT/PDF document "Introducing Windows Server 2016" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
Introducing Windows Server 2016
Corey Hynes
Ward RalstonSlide2
Agenda
What Microsoft heard from customers
Built-in security
Azure-inspired infrastructure
Hybrid application platform
Next steps
Image credit: flickr.com/photos/28481088@N00/8379766356/ (Color modified)Slide3
Security
Software-defined Datacenter
Application Platform
Increasing breaches incidents
Identity is target of attacks
Complex to secure virtual environments
Lack of integration between solutions
Hard to deploy and operate
Low footprint server
No integration between Dev and Ops
Fast and lightweight OS
Hard to plan for public cloud
What we heard from customersSlide4
The cloud-ready server operating system that delivers new layers of security and Azure-innovation for the applications and infrastructure that power your business.
Built-in
Security
Azure-inspired Infrastructure
Hybrid
Application Platform
Protection to Identity
Secure the virtualization platform
Built-in layers of security
Affordable & Enterprise ready
Learnings from hyper-scale datacenter
Built-in SDDC capabilities
Support for containers
Built-purpose OS
Azure Hybrid Use
Benefiit
for SA eases transition to Cloud
Windows Server 2016Slide5
Built-in
Security
Azure-inspired Infrastructure
Hybrid
Application Platform
Protection to Identity
Secure the virtualization platform
Built-in layers of security
Affordable & Enterprise ready
Learnings from hyper-scale datacenter
Built-in SDDC capabilities
Support for containers
Built-purpose OS
AHUB eases transition to Cloud
Increase the security of your applications and data. Windows Server 2016 introduces layers of security to control privileged access, protect virtual machines, and harden the platform against emerging threats.
Windows Server 2016
The cloud-ready server operating system that delivers new layers of security and Azure-innovation for the applications and infrastructure that power your business.Slide6
Protection to credentials
Just Enough and
Just in Time Administration
Ben
Mary
John
Admin
Credential Guard
Prevents
Pass the Hash
and
Pass the Ticket
attacks by protecting stored credentials through Virtualization based Security
Just Enough Administration
Limits administrative privileges to the bare-minimum required set of actions (limited in space)
Just in Time Administration
Provide privileged access through a workflow that is audited and limited in time
JEA + JIT = limited in time & capability
Capability
Time
Typical administrator
Capability and time needed
Domain
AdminSlide7
Protection to the OS in any cloud
Code Integrity
Ensure that only permitted binaries can be executed from the moment the OS is booted
Windows Defender
Actively protects from known malware without impacting workloads
Control Flow Guard
Protects against unknown vulnerabilities by blocking common attack vectorsSlide8
Protection to virtual machines
Shielded VMs
Use BitLocker to encrypt the disk and state of virtual machines protecting secrets from compromised admins & malware
Host Guardian Service
Attests to host health releasing the keys required to boot or migrate a Shielded VM only to healthy hosts
Generation 2 VMs
Supports virtualized equivalents of hardware security technologies (e.g. TPMs) enabling BitLocker encryption for Shielded VMs
*Configuration dependent
HYPER-V
Virtual machine
HYPER-V
Shielded
virtual machine
COMPUTER ROOM
BUILDING PERIMETER
Physical machine
Server
Administrator
S
torage
administrator
Network
administrator
Backup
operator
Virtualization-host
administrator
Virtual machine
administrator
ü
û
ü
ü
ü
ü
ü
ü
ü
û
û
û
û
û
û
û
û
û
*Slide9
Built-in security
Shielded Virtual Machines
Host Guardian Service
Secure Boot for Windows & Linux
Nano Server Hyper-V Host
Virtualization-based Security (VBS)Hyper-V ContainersContainers in Shielded VMs
Credential Guard
Justin Time Administration
Just Enough Administration
Control Flow Guard
Code Integrity
Windows Defender
Enhanced Threat DetectionSlide10
Windows Server 2016
Windows Server 2016 delivers a flexible and cost-efficient platform for your datacenter, using the same compute, storage and network virtualization features that power the Azure public cloud.
Built-in
Security
Azure-inspired Infrastructure
Hybrid
Application Platform
Protection to Identity
Secure the virtualization platform
Built-in layers of security
Affordable & Enterprise ready
Learnings from hyper-scale datacenter
Built-in SDDC capabilities
Support for containers
Built-purpose OS
AHUB eases transition to CloudSlide11
Confidently virtualize anything
Rolling Cluster Upgrades
Upgrade your fabric to Windows Server 2016, without downtime to workloads running on Hyper-V virtual machines.
Linux support
Deploy applications on multiple platforms with best-in-class support
Hot-add and remove
Make changes in Network, Disk and Storage without downtime to workloadSlide12
Flexible workload placement
Network Controller
Improve network management with centralized control of network policies using the same network controller found in Microsoft Azure
Distributed Firewall
Control network flows in the fabric with access control lists structured around application connectivity needs, not workload placement
Load Balancer
Make applications highly available and responsive with a built-in load balancer made from the technology that runs AzureSlide13
High performance storage, fraction of the cost
Storage Spaces Direct
Use standard servers with local storage to build highly available and scalable software-defined storage
Storage Replica
Create affordable business continuity and disaster recovery among datacenters
Storage QoS
Prevent noisy neighbors from impacting high priority workloads with a Storage QoS policy
File share
Volume
Virtual disk
Storage Servers
Storage pool
Enclosure
Physical disks
FSSlide14
Azure-inspired infrastructure
Storage Spaces Direct
Storage Spaces Replica
ReFS
Stretched Clusters
Storage QoS
Storage Health MonitoringRolling Cluster UpgradePowerShell 5.0
Mixed Mode Cluster
Hot-add & remove
Linux support
Guest Clustering
Azure Witness for cluster
StorSimple
VM Storage Resiliency
Server Management Tools
Azure Consistent Storage
Network Controller
Azure-based Data Plane
Load Balancer
Distributed Firewall
Multi-tenant Gateway
NVGRE, VXLAN, OVSDBSlide15
Built-in
Security
Azure-inspired Infrastructure
Hybrid
Application Platform
Protection to Identity
Secure the virtualization platform
Built-in layers of security
Affordable & Enterprise ready
Learnings from hyper-scale datacenter
Built-in SDDC capabilities
Support for containers
Built-purpose OS
AHUB eases transition to Cloud
Windows Server 2016
Windows Server 2016 delivers new ways to deploy and run your applications – whether on-premises or in Microsoft Azure – using new capabilities such as Windows containers and the Nano Server lightweight operating system deployment optionSlide16
Nano Server deployment option
Just enough OS
Optimized for next generation of applications, provides higher density, reduced attack surface and servicing requirements
Key roles & features
Support for Hyper-V, Storage, Cluster, IIS, DNS,
.Net Core,
ASP.Net CoreFull developer experience
Windows SDK & Visual Studio target Nano Server. Full remote debugging experience
Containers and next-gen applications
Full GUI
Specialized workloads
Third-party applications
RDS experience
Server Core
Lower maintenance server environment
Traditional VM workloads
Nano Server
Just enough OSSlide17
Windows Server and Hyper-V Containers
Windows Server Container
Bring the agility and density of containers to the Windows ecosystem, enabling agile application development and deployment
Hyper-V Container
Offer a unique additional level of isolation for sensitive applications with no additional coding required
Windows Server Container
Hyper-V ContainerSlide18
Hybrid application platform
Windows Server Containers
Hyper-V Containers
Docker integration and support
PowerShell 5.0
PowerShell DSC
Internet Information Services 10
Azure Service Fabric for Windows Server
Visual Studio Core
.Net
Core
Nano Server deployment optionSlide19
Built-in
Security
Azure-inspired Infrastructure
Hybrid
Application Platform
Protection to Identity
Secure the virtualization platform
Built-in layers of security
Affordable & Enterprise ready
Learnings from Azure
Built-in SDDC capabilities
Support to containers
Built-purpose OS
AHUB eases transition to Cloud
Recap: Windows Server 2016Slide20
Next steps
Try Windows Server 2016 Technical Preview:
https://www.microsoft.com/en-us/evalcenter/evaluate-windows-server-technical-preview
Check out Windows Server 2016 page:http://www.microsoft.com/windowsserver2016Windows Server Blog:http://blogs.technet.microsoft.com/windowsserver