July 2007 - Posts
Another thing that has changed with the advent of Windows 2008 us that we no longer have
the old Add/Remove Programs with us(there is something similar, called Programs and Features
yet it is for external applications and the link to turning features on and off lead to Server Manager).
Instead when we want to augment the functionality of a Windows 2008 based server we can either
add ROLES or FEATURES.
A role can be thought of as the main function of a server. Keep in mind that a server can have
several roles(you are not limited to a specific role). Features on the other hand are secondary
functions that can be added to a server.
The distinction might seem a bit confusing at first yet once you look at the different roles and
and features that are available things tend to get clearer.
Roles
Active Directory Certificate Services [AD-Certificate]
Active Directory Domain Services
Active Directory Federation Services
Active Directory Lightweight Directory Services [ADLDS]
Active Directory Rights Management Services
Application Server [Application-Server]
DHCP Server [DHCP]
DNS Server [DNS]
Fax Server [Fax]
File Services
Network Policy and Access Services [NPAS]
Print Services [Print-Services]
Terminal Services [Terminal-Services]
UDDI Services
Web Server (IIS) [Web-Server]
Windows Deployment Services [WDS]
When looking at the top level of the roles hierarchy, you can see that these roles depict major functions of servers.
As an example, the File Server role includes Distributed File System,or in other words DFS is part of the File Server
role.
Features
.NET Framework 3.0 Features [NET-Framework]
BitLocker Drive Encryption [BitLocker]
BITS Server Extensions [BITS]
Connection Manager Administration Kit [CMAK]
Desktop Experience [Desktop-Experience]
Failover Clustering [Failover-Clustering]
Group Policy Management [GPMC]
Internet Printing Client [Internet-Print-Client]
Internet Storage Name Server [ISNS]
LPR Port Monitor [LPR-Port-Monitor]
Message Queuing [MSMQ]
Multipath I/O [Multipath-IO]
Network Load Balancing [NLB]
Peer Name Resolution Protocol [PNRP]
Quality Windows Audio Video Experience [qWave]
Remote Assistance [Remote-Assistance]
Remote Differential Compression [RDC]
Remote Server Administration Tools [RSAT]
Removable Storage Manager [Removable-Storage]
RPC over HTTP Proxy [RPC-over-HTTP-Proxy]
Simple TCP/IP Services [Simple-TCPIP]
SMTP Server [SMTP-Server]
SNMP Services [SNMP-Services]
Storage Manager for SANs [Storage-Mgr-SANS]
Subsystem for UNIX-based Applications [Subsystem-UNIX-Apps]
Telnet Client [Telnet-Client]
Telnet Server [Telnet-Server]
TFTP Client [TFTP-Client]
Windows Internal Database [Windows-Internal-DB]
Windows PowerShell [PowerShell]
Windows Process Activation Service [WAS]
Windows Recovery Disc [Recovery-Disc]
Windows Server Backup Features [Backup-Features]
Windows System Resource Manager [WSRM]
WINS Server [WINS-Server]
Wireless LAN Service [Wireless-Networking]
Features are supporting tools to a major role a server has. Several interesting points to note here,WINS is no
longer considered major(it has been diminishing for a long time and people actually expected it to disappear,yet
it's still here) as it is designated as a feature and not as a role. Another interesting (in my opinion sad) thing to note
is that as with Vista the Telnet client is NOT installed by default.
In my opinion this is a mistake,telnet is used a troubleshooting tool by most network admins,I am guessing that there
is some logic in not installing it by default,I simply can't understand it for now.
On the same note,I have also noticed that Network Monitor is nowhere to be found(maybe I just missed it),and I ask
again:WHY?!?!?!?!?
Ok,so now we know that we have Roles and Features(we will learn about the new ones and discuss new features
added to the familiar ones later on),how do we install them?
There are several ways to install them,yet we will start with the simplest and most intuitive method for a newly installed
server:Initial Configuration Tasks. At the bottom of this screen you are provided with the opportunity to initiate the wizards
used for adding new Roles and Features.
Once you choose to add either a wizard presents the different Roles or Features and you can choose to install them.
Note that while you are using the wizard it will automatically adapt and change according to your choices(add additional screens
if needed) and that you are able to traverse between the screens presented simply by clicking on the lines (that act as hyperlinks).
There are two major advantages to the new method:
-
Adding Roles in this manner,enables the system to check for dependencies. When a role is installed
the wizard ensures that all components needed for the role are installed. This also works the other way around,
meaning, that when an attempt is made to remove a component the wizard makes sure that there are no dependencies
on it.
-
When adding a role using the wizard the role is configured with the recommended security settings so it is no longer needed
to run the Security Configuration Wizard.
Basically Roles and Features are aligned with the modular concept introduced by Windows 2008. You install a foundation, then
you build upon it and you build only what is necessary to carry out a specific task.
An article by Wes Miller about the RDP protocol was published in this months Technet Magazine.
The articles discusses how the RDP protocol evolved and the changes that can be found in the
protocol as implemented in Vista and Windows 2008.
Click here for the article.
Several sites started mentioning hotfixes for Vista that are released to Windows 2008 testers.
The patches are supposed to fix reliability issues, performance issues, standby/resume issues and other
unnamed issues.
There are a couple of very interesting points,as of this moment:
-
Based on benchmarks done by
www.aeroxp.org the patches are very promising.
-
The patches were posted and are obtainable on the Internet. Now keep in mind that we are talking
about Beta patches(not even mentioning legal ramifications) here so beware...
Obviously this can not be seen as a binding roadmap as it relates to future events yet it has some interesting
points. The roadmap comes from a slide used in Steve Ballmer's presentation at the Finanacial Analysts Meeting (2007).
I have seen this posted in several places on the web,one of them is:
http://www.istartedsomething.com/20070727/msft-roadmap-fy08-beyond/
I have just purchased a new wide screen. I am really happy with it as it provides a very clear
and BIG picture. So after installing my new computer (using my new screen) I though that it
was time to give it a run for it's money with a few games I like. To my surprise I found that some games
were not able to use the 16:10 ratio and instead of running smoothly I got a stretched out image.
After searching the web I have found the following website that tries to help:
http://www.widescreengamingforum.com/wiki/index.php?title=Main_Page
WSGFW (in short) will try to provide unofficial (and obviously unsupported) solutions. Worked for my
games...I am still surprised that game companies neglect wide screen users.
I like animals,all forms,shapes colors....you name it. But I guess cats are special. As a friend once said:
The difference between dogs and cats is that after a dog observes human behavior it contemplates
coming to the following conclusion:
1. They provide me with food and water
2.They provide me with shelter
3.They take care of me when I feel sick
They must be Gods.
After a cat observes human behavior it contemplates and comes to the following conclusion:
1. They provide me with food and water
2.They provide me with shelter
3.They take care of me when I feel sick
I must be God.
Anyway,if you have the time take a look at the following site:
http://icanhascheezburger.com/
These two posters, originally published in the July 2007 issue of TechNet Magazine, provide a
strong visual tool to aide in the understanding of various features and components of Windows
Server 2008. One poster focuses exclusively on powerful new Active Directory technologies,
while the other provides a technical look at a variety of new features available in Windows Server
2008 (such as Server Core, Network Access Protection, and more).
With the release of ISABPAV5 comes a new and neat tool (in my opinion)
called BPA2VISIO. It's goal can be perceived from its name, it will use the
information gathered by the BPA and based on that information it will create
a drawing of how ISA sees the network.
Idan Plonsky(ISA Team) provides a short explanation on how to use it on the
ISA team blog:
http://blogs.technet.com/isablog/archive/2007/07/22/using-bpa2visio.aspx
When one of the systems that you manage fails one the best ideas for troubleshooting is
looking at the logs. If the OS you are using is from Microsoft the main location for logs is
the event viewer.
The only problem with logs is that at times they provide very cryptic messages. In order to figure
out what the entry in the log means or what remedies can be used I personally use the following
website:
http://www.eventid.net
A couple of day ago I have noticed a KB article announcing that an "
If your hearts wish is an iPod made of gold,well then you got it!
A company that goes by the name of XEXOO provide iPods made of gold:
http://www.xexoo.com/
http://uk.gizmodo.com/2007/07/20/shuffle_those_feet_with_a_gold.html
Buying a new computer is a happy event. Faster processing times, smoother running graphics
a general feel of joy. You start planning the installation, you customize the environment and then
bad things start to happen.
As we enter the age of simple computing, most applications can be easily installed by running
a setup file then pressing a couple of next buttons and you are done(well there is a short wait
while staring at a progress bar). Now this is very simple if everything succeeds-yet what happens
when the application fails to install?
Specifically what happens if the application fails to install and this happens during the time that you
are staring at the progress bar? Enter frustration. Since there is no meaningful progress indicator(except the bar
which can not be called meaningful) you have no clue as to what is happening to your system during the
installation.
In my humble opinion while striving to simplify(or make computing less scary) we should keep in mind that hiding "complexity"
may be the simple path yet it may not be the best path. I prefer to see meaningful information (scary as it may be)
instead of having to guess what wen wrong or at what position my application failed.
Oh,and yes-I bought a new computer,I am installing it and I have not time to breathe...
As I mentioned in my previous post on the subject, the installation process for Windows 2008 has changed.
It no longer includes the portion that enables you to set the initial configuration for the system.
The following defaults are set:
Administrator password: blank
Computer name: Randomly generated
Domain membership: Workgroup
Windows Update: Off
Network Connections: Obtain IP from DHCP
Windows Firewall: On
Roles Installed (more about these later): None
So, after the installation process completes (or in other words the files are copied to the system) you are given
the chance of setting the initial configuration. The process itself starts out at the logon screen: you are asked to
set the password for the administrator account. Once you do so, you can logon and you are greeted by a wizard/screen
that automatically pops up and enables you to configure your system.
This page is divided into three parts:
1. Provide computer information:
a. Set the Administrator Password
b. Set the time zone
c. Configure networking
d. Provide computer name and domain
2. Update this server:
a. Enable Windows Update and Feedback
b. Download and install updates
3. Customize this server:
a. Add roles
b. Add features
c. Enable Remote Desktop
d. Configure Windows Firewall –Note that the firewall is on by default.
This wizard/page has all that is needed to provide for the initial configuration of a server. It is logically divided
and the three parts reflect the usual order of tasks to be undertaken when a server is configured. Most options on
this wizard/page are self explanatory except two:
1. Add roles- I will describe this feature in a later post, until then keep in mind that Add/Remove Programs is gone.
Components can be added to the server by assigning a role and a role is a main function of a server. The following
roles can be added to a server: DHCP, DNS, Temrinal Services ( a full list will be provided in a later post).
2. Add features- As mentioned above, a role is a main function of a server while features are supporting services. To
name a few: Group Policy Management, Network Load Balancing and a very surprising (in my opinion) appearance of WINS.
It is possible to control the opening of the ‘Initial Configuration Tasks” page at logon using the following registry key:
HKLM>Software>Microsoft>Initial Configuration Tasks
0-Enable opening
1-Disable opening
This new method of installing a server and then configuring it, seemed a bit odd to me at first, yet as time passes and I consider
the function/goal of each part I feel more comfortable with the new method. It may seem a bit awkward at first but in the long run
it makes sense.
The attended installation process of Windows 2008 has been simplified.
Until Windows 2008, the process of installing a Windows system included the basic configuration of the system.
In other words the installer was asked a bunch of question he had to answer and once he was done he had a running
system. The system still needed to be configured but a basic system was up and running.
Windows 2008 changes this, (the installation no longer provides a running system) in order to simplify the installation
process almost all configurative questions have been removed and we are left with the bare necessities. The installation
process (very similar to Vista’s installation process) is comprised of the following questions:
1. Location (locale and time zone)
2. Disk partitioning-note that you do not have to create a partition, you can simply choose empty space and the
installation procedure will configure it for you
3. Product Key-by entering the correct key the correct version of the OS is chosen, if no key is entered the installer is
warned yet he is allowed to choose the version of the installation and he has to provide the key later on.
That’s it.
To Windows veterans this may seem a bit strange, you may be asking yourself, where is the part in which we configure
networking, you may also be asking yourself where do I chose the components I want installed…the answer is that they
have been removed from the installation process for the sake of simplicity.
When you are done with the installation all you get is a system with a very basic installation of Windows 2008 Server. System
configuration has been moved from the installation further down the line. Do not fear though, it has not been moved too far down
the line, you actually configure your server just after you have installed it with two new tools provided by the system (I will write
about them in my next post on the subject).
I am not sure how to treat this change or how I feel about it. On one hand there is no doubt that this change simplifies the installation
process of the OS which in turn allows quicker installations due to it’s “fire and forget” style, yet on the other hand it provides less
flexibility during the installation phase and it makes it seem a lot simpler to deploy a server. In addition to that it also makes it seem simpler
to deploy the OS. You may be asking why does that seem problematic?
Begin rant: The field of IT is being treated with less respect due to the fact that everyone feels that they can get involved with IT,
they understand IT and they can do IT since IT is simple. When all you need to deploy and OS is to click a mouse things
will get a lot worse…
Obviously this isn't the root of all evil yet deploying a server correctly isn't as simple as clicking on a button and in my opinion
the impression that it is as simple as clicking on a button shouldn't be created...after all perception is everything.
Disclaimer- The experiences and the ideas expressed in this post are my personal experiences. If you feel that they are inaccurate
or incorrect feel free to contact me about them.
On July the 10th Microsoft has announced that it will release (officially) Windows Server 2008,
Visual Studio 2008 and SQL Server 2008.
This has also been mentioned on the then Windows Server Division blog:
http://blogs.technet.com/windowsserver/archive/2007/07/10/Launch-set-for-2_2F00_27_2F00_08-_2D00_-news-from-WW-Partner-Conference.aspx
If all goes well, I am hoping to start testing Windows Server 2008. I will be blogging about it, providing
details and reviews of different functions. As an early disclaimer, please keep in mind that the subjects
I will be writing about may change(since I am not using a finalized product) and in addition to that
I will be expressing my personal opinions that may be incorrect or may differ from your own experiences.
If you do find that I have made any errors while describing a specific feature please feel free to contact
so I can amend it.
This tool (from Mark Russinovich and Bryce Cogswell) is basically ADSI Edit on steroids.
It allows you to connect to your AD environment directly thus providing you a "raw" view
of your directory and in turn the ability to change the directory directly(which might cause a lot
of pain since you are working without the net provided by the traditional AD tools).
A feature of this tool that seems extremely useful to me is it's ability to take a snapshot
of a directory (and then another snapshot) and eventually to compare the two snapshots
providing you with a list of what has changed.
The tools ability to filter the results and to provide a very focused view of what has changed
makes this tool very useful even in dynamic environments.
Download the tool from:
http://www.microsoft.com/technet/sysinternals/utilities/adexplorer.mspx
More Posts
Next page »