Archive for June, 2009
Monitoring a VMware enviroment with vWire
0vWire is a a new virtualization management tool that is designed to integrate both monitoring and automation to prevent and resolve problems before they cause downtime.
vWire is built around three key principles: Monitor, Correlate, Act:
* vWire will monitor the health of the virtual infrastructure, including the same level of visibility available in the physical environment.
* vWire will correlate change and configuration data with event data and, in a later release, performance data.
* Finally, vWire gives administrators the ability to act upon events and objects with automation tools like PowerShell.
vWire integrates into the Virtual Infrastructure Client (and the vSphere Client) for ease of use.
With vWire you can monitor the following types of data:
- Configuration data While VirtualCenter is great for setting individual properties, vWire adds the capability to analyze the myriad of configuration properties to determine if they are correct and consistent, and if the configuration can support important capabilities like Dynamic Resource Scheduling (DRS), which leverages VMotion, and High Availability (HA).
- Critical event data. vWire alerts you to critical event issues that are not visible in VirtualCenter, such as:
- LUN path failures
- Inaccessible LUNs
- HA failover events
- Network link failures
- SCSI or HBA resets
- VMs failing to power on
- Change data.When problems occur, the first question virtualization professionals ask is, “What changed?” vWire records a history of changes and displays them in a scrolling timeline, so you can immediately see if a recent change might have caused the problem. VirtualCenter does not capture change history data.
- Actions When issues arise, vWire can take multiple actions including running PowerShell scripts either manually or automatically to respond. You can use the scripts shipped with vWire, can write your own, or can download them for free from the vWire community. VirtualCenter does not provide this functionality.
VMware vSphere
0From a co-worker I got a nice presentation, about the big thing in the IT world 
.VMware vSphere!!vSphere is a new release of ESX Server, you can also call it ESX Server 4.0. VMware named it vSphere reffering to cloud computing , so I will use that name, or the people I know who are involved with VMware, are spanking me 
.
He send me an excellent presentation about vSphere.I really like it, and hope my readers also do. Any comments are welcome.Thanks Sander .It’s a presentation from the 2009 May 19th meeting courtesy of Tom MacKay at the VMUG.
Active Directory Rights Management Services
0I recently got my first 2008 training (6416B: Updating your Network Infrastructure and Active Directory Technology Skills to Windows Server 2008), from Arhur Goudswaard, again. A really great Microsoft Trainer . On of the new things in Windows Server 2008, I really like is Active Directory Rights Management Services(AD RMS).
Active Directory Rights Management Services(AD RMS) is a technology that is a form of selective functionality denial used for limiting the uses of documents such as corporate e-mail, Word documents, and web pages.Companies can use this technology to encrypt information stored in such document formats, and through server-based policies, prevent the protected content from being decrypted except by specified people or groups, in certain environments, under certain conditions, and for certain periods of time. Specific operations like printing, copying, editing, forwarding, and deleting can be allowed or disallowed by content authors for individual pieces of content, and RMS administrators can deploy RMS templates that group these rights together into predefined rights that can be applied en masse.
The RM server debuted in Windows Server 2003, with client API libraries made available for Windows XP and Windows 2000 as well. Windows Vista and Windows Server 2008 also supports Rights Management Services. In Windows Server 2008, Windows Rights Management Services has been renamed to Active Directory Rights Management Services, reflecting a higher level of integration with Active Directory.
An AD RMS system includes a Windows Server 2008 R2-based server running the Active Directory Rights Management Services (AD RMS) server role that handles certificates and licensing, a database server, and the AD RMS client. The latest version of the AD RMS client is included as part of the Windows 7 and Windows Vista operating systems. The deployment of an AD RMS system provides the following benefits to an organization:
Safeguard sensitive information. Applications such as word processors, e-mail clients, and line-of-business applications can be AD RMS-enabled to help safeguard sensitive information Users can define who can open, modify, print, forward, or take other actions with the information. Organizations can create custom usage policy templates such as “confidential – read only” that can be applied directly to the information.
Persistent protection. AD RMS augments existing perimeter-based security solutions, such as firewalls and access control lists (ACLs), for better information protection by locking the usage rights within the document itself, controlling how information is used even after it has been opened by intended recipients.
Flexible and customizable technology. Independent software vendors (ISVs) and developers can AD RMS-enable any application or enable other servers, such as content management systems or portal servers running on Windows or other operating systems, to work with AD RMS to help safeguard sensitive information. ISVs are enabled to integrate information protection into server-based solutions such as document and records management, e-mail gateways and archival systems, automated workflows, and content inspection.
I think this a great new improvement in security for organisations working with highly confidential information. Some documents are so sensitive, that we all need to do our upmost best to secure them as much as we can. With AD RMS we get steps closer to achieving this.
Below you can view a good Youtube video, about the best practices for deploying AD RMS in an organisation.
[youtube=http://www.youtube.com/watch?v=edUMSlglJdo]
PowerShell: Command to gather eventlogs from mutiple computers
0I have created a command in PowerShell which can gather the eventid’s from multiple servers:
gc computers.txt | %{Get-WinEvent -ComputerName $_ -LogName Security -MaxEvents 100} | Format-List -Property Message, ID, MachineName, UserID | out-File C:Temp.txt
It reads from the file computers.txt the computers where the script connects to (can also be the localhost) in this case it gathers the events from the Security event log, but you can also add there the Application and System logs. The maxevents gathers the 100 latest events from these servers, which you can adjust to a size you like. It then creates an table, with the eventid, message, machinename and userid. But there a lot more property’s you can gather, just play with it (as I did, and you will find out soon).It then is being redirected to a file C:Temp, which is a list of the latest 100 events, again you can adjust the location of this file (of course you need permissions to write the file there).If you have any questions, you can post a comment to this blog-post, and I will try to answer your question a.s.a.p
Here, I found also a nice free book about Windows PowerShell. This book is created by Microsoft Technology Advisor Frank Koch. You can find this book here:
Free Windows PowerShell book
Windows Server 2008 R2
2This blog post will be about the new Windows Server 2008 R2,especially the new-features of Windows Server 2008 R2.
What is Windows Server 2008 R2? As per Microsoft: Windows Server 2008 R2 will be the next version of the Windows Server operating system from Microsoft. Building on the features and capabilities of the current Windows Server 2008 release version, Windows Server 2008 R2 allows you to create solutions that are easier to plan, deploy, and manage than previous versions of Windows Server. Scheduled for release during Q4 2009.
Microsoft introduced Windows Server 2008 R2 at the 2008 Professional Developers Conference as the server variant of Windows 7. A reviewer guide published by the company describes several areas of improvement, including the inclusion of a number of new virtualization capabilities including Live Migration and Cluster Shared Volumes using Failover Clustering and Hyper-V, reduced power consumption, a new set of management tools, new Active Directory capabilities such as a “recycle bin” for deleted AD objects, new IIS version 7.5 that includes new FTP server, DNSSEC support, and an increase in the number of supported processing cores from 64 to 256. One of the most notable changes is that 32-bit processors (32bit Intel/AMD x86 architecture) are no longer supported, leaving users only with AMD64/Intel EM64T and Intel Itanium architecture support in Windows 2008 R2 editions.For the file server role, file classification capability has been added, which lets classification properties be applied to them – either manually or automatically based on location. Based on the classification properties, tasks can be performed on them – such as built in ones like copying/moving them to specific locations or custom ones such as running a specific script. A file can have multiple properties.[25]nt tools, new Active Directory capabilities such as a “recycle bin” for deleted AD objects, new IIS version 7.5 that includes new FTP server, DNSSEC support, and an increase in the number of supported processing cores from 64 to 256. One of the most notable changes is that 32-bit processors (32bit Intel/AMD x86 architecture) are no longer supported, leaving users only with AMD64/Intel EM64T and Intel Itanium architecture support in Windows 2008 R2 editions.For the file server role, file classification capability has been added, which lets classification properties be applied to them – either manually or automatically based on location. Based on the classification properties, tasks can be performed on them – such as built in ones like copying/moving them to specific locations or custom ones such as running a specific script. A file can have multiple properties.
Why should I upgrade (10 reasons):
#1. Powerful Hardware and Scaling Features
Windows Server 2008 R2 was designed to perform as well or better for the same hardware base as Windows Server 2008. In addition, R2 is the first Windows Server operating system to move solely to a 64-bit architecture.
Windows Server 2008 R2 also has several CPU-specific enhancements. First, this version expands CPU support to enable customers to run with up to 256 logical processors. R2 also supports Second Level Translation (SLAT), which enables R2 to take advantage of the Enhanced Page Tables feature found in the latest AMD CPUs as well as the similar Nested Page Tables feature found in Intel’s latest processors. The combination enables R2 servers to run with much improved memory management.
Components of Windows Server 2008 R2 have received hardware boosts as well. Hyper-V in Windows Server 2008 R2 can now access up to 64 logical CPUs on host computers. This capability not only takes advantage of new multicore systems, it also means greater virtual machine consolidation ratios per physical host.
#2. Reduced Power Consumption
Windows Server 2008 introduced a ‘balanced’ power policy, which monitors the utilization level of the processors on the server and dynamically adjusts the processor performance states to limit power to the needs of the workload. Windows Server 2008 R2 enhances this power saving feature by adding more
granular abilities to manage and monitor server and server CPU power consumption, as well as extending this ability to the desktop via new power-oriented Group Policy settings.
Active Directory® Domain Services Group Policy in Windows Server 2008 already gave administrators a certain amount of control over power management on client PCs. These capabilities are enhanced in Windows Server 2008 R2 and Windows® 7 to provide even more precise control in more deployment scenarios for even greater potential savings.
#3. Hyper-V™ in Windows Server 2008 R2
Windows Server 2008 R2 also holds the much-anticipated update to Microsoft’s virtualization technology, Hyper-V™. The new Hyper-V™ was designed to augment both existing virtual machine management as well as to address specific IT challenges, especially around server migration.
Hyper-V™ is an enabling technology for one of Windows Server 2008 R2’s marquee features, Live Migration. With Hyper-V version 1.0, Windows Server 2008 was capable of Quick Migration, which could move VMs between physical hosts with only a few seconds of down-time. Still, those few seconds were enough to cause difficulties in certain scenarios, especially those includling client connections to VM-hosted servers. With Live Migration, moves between physical targets happen in milliseconds, which means migration operations become invisible to connected users.
Customers employing System Center Virtual Machine Manager for Hyper-V will also enjoy additional management and orchestration scenarios, including a new VM-oriented Performance and Resource Optimization feature and updated support for managing failover clusters.
The new Hyper-V™ also has core performance enhancements, including the previously mentioned ability to take advantage of up to 64 logical processors and to beef up that CPU performance with host support for Second Level Translation (SLAT). Finally, VMs can also add and remove storage without requiring a reboot and also boot from VHD as well.
#4. Increased Desktop Management Efficiencies
Much of the interest in virtualization solutions is in the server world. However, equally exciting advances are being made in presentation virtualization, where processing happens on a server optimized for capacity and availability while graphics, keyboard, mouse, and other user I/O functions are handled at the user’s desktop.
Windows Server 2008 R2 contains enhanced Virtual Desktop Integration (VDI) technology, which extends the functionality of Terminal Services to deliver certain business programs to their employee’s remote desktops. With VDI, programs that Remote Desktop Services sends to a computer are now available on the Start menu right alongside programs that are locally installed. This approach provides improved desktop virtualization and better application virtualization.
Desktop virtualization will benefit from features including improved personalization management, a near-invisible integration of virtualized desktops and applications in Windows 7, better audio and graphics performance, a seriously cool Web access update and more. VDI provides more efficient use of virtualized resources and better integration with local peripheral hardware as well as powerful new virtual management features.
#5. Easier and More Efficient Server Management
Although increasing the capabilities of your server operating system is always a good thing, the perceived downside has always been additional complexity and workload for day-to-day server managers. Windows Server 2008 R2 specifically addresses this problem with lots of work evident across all of its management-oriented consoles. Features in these tools include:
· Improved data center power consumption and management, as evidenced earlier
· Improved remote administration, including a remotely-installable Server Manager
· Improved identity management features via the updated and simplified Active Directory Domain Services and Active Directory Federated Services
· And perhaps the most important new management feature is…
#6. PowerShell 2.0
Windows Server 2008 introduced PowerShell, a powerful command-line-based feature that enables administrators to automate repetitive administration tasks by using command-let (cmdlet) scripts. A series of core cmdlets were pre-installed with Windows Server 2008 along with the basic tools required for administrators to create their own cmdlets.
Windows Server 2008 R2 introduces PowerShell 2.0, which significantly enhances the earlier version with the inclusion of more than 240 new pre-built cmdlets as well as a new graphical user interface (GUI) that adds professional-level development features for creating new cmdlets. The new GUI includes colored syntaxing, new production script debugging capabilities, and new testing tools.
#7. Ubiquitous Remote Access
Today’s mobile workforce is increasing the demand on IT to provide remote access to corporate resources. However, managing remote computers is an ongoing challenge, with low wide are network (WAN) bandwidth and sporadic connection and re-connection processes interfering with lengthier desktop management tasks such as Group Policy changes and up-to-date patching.
Windows Server 2008 R2 introduces a new type of connectivity called DirectAccess—a powerful way for remote users to seamlessly access corporate resources without requiring a traditional VPN connection and client software. Using technologies that shipped in Windows Server 2008, Microsoft has added simple management wizards that enable administrators to configure SSTP and IPv6 across both R2 and Windows 7 clients to enable the basic DirectAccess connection, and then augment that connection with additional R2 management and security tools, including management policies and NAP.
With DirectAccess, every user is considered remote all of the time. Users are no longer required to distinguish between local and remote connections. DirectAccess handles all of these distinctions in the background. IT professionals retain precise access control and full perimeter security, helping to ease both desktop security and management headaches on both sides of the connection.
#8. Improved Branch Office Performance and Management
Many branch office IT architectures have relatively low bandwidth. Slow WAN links impact the productivity of branch office employees waiting to access content from the main office, and costs for branch office bandwidth allocation can amount to as much as 33 % of overall corporate IT spending. To address this challenge, Windows Server 2008 R2 introduces a feature called BranchCache™, which reduces WAN utilization and improves the responsiveness of network applications.
With BranchCache, clients who request access to data on the organization’s network are sent directions to the file on the local (branch office) network if the file has ever been requested there before. If the file is stored locally, those clients get immediate high-speed access. Such files can be stored either on a local BranchCache server for larger branch offices or simply on local Windows 7 PCs.
#9. Simplified Management for SMBs
With Windows Server 2008 R2, Microsoft is focusing more attention at the SMB and mid-market customer. This new focus provides these customers with a rich landscape of Microsoft product offerings, from Small Business Server up to Windows Essential Business Server and now Windows Server 2008 Standard. All SKUs are being outfitted with new management tools to make SMB IT Pro life easier.
Active Directory’s new Active Directory Administration Center is one example—all those disparate management GUIs now hosted ina single interface and all based on PowerShell. Additionally, there are the Best Practice Analyzers, which Microsoft has extended to every server role to keep all your server configs in sync with the latest know-how.
And last but not least, there’s the new Windows Server Backup utility. Long a second-class citizen, this updated, in-the-box backup app has been significantly upgraded to include more granular support for designing backup jobs, including support for system state operations; and, it’s been optimized to run both faster and to use less disk space.
#10. The Strongest Web and Application Server To Date
Windows Server 2008 R2 includes many updates that make it the best Windows Server application platform yet, but one of the most important is the new Internet Information Services 7.5 (IIS 7.5).
The updated Web server includes features that streamline management by extending IIS Manager, implementing the IIS PowerShell Provider and taking advantage of .NET on Server Core. IIS 7.5 also integrates new support and troubleshooting features, including configuration logging and a dedicated Best Practice Analyzer. Last, we’ve integrated several of the most popular optional extensions associated with Windows Server 2008, including URLScan 3.0 (now known as the Request Filter Module).
Source: Windows Server 2008 R2 : Resources
Nice powerpoint presentation about Windows Server 2008 R2 : Windows Server 2008 R2 Overview
