Windows Server 2003 Seminar Overview
The seminar will take the form of a series of short briefings outlining the main changes and improvements in Windows Server 2003. Where possible, demonstrations will be made to reinforce these features.
The topics covered are as follows:
Easier migrations with the Active Directory Migration Tool.
Ability to rename domains.
Schema improvements, including a customisable Active Directory Partition set, allowing local or selective distribution of Active Directory data.
Powerful new modelling and troubleshooting tools using the Group Policy Management Console.
WMI filtering , allowing administrators to determine whether to apply a GPO to a specific computer or user based on their configuration, role, or other criteria.
More than 200 new policy settings.
Better User Interface for Active Directory object management, including multiple object manipulation and viewing of Effective Permissions.
Software Restriction Policies allow control over which applications users can or cannot run.
Greater interoperability between Active Directory Forests with Cross Forest Authentication and Authorization.
Removal of the need for a Global Catalog to be available during the logon process with Universal Group caching.
Universal Group membership changes are now replicated on a per-member basis, making their use far more practical.
Active Directory can now be installed from removable media, which is ideal for installing or recovering Active Directory in remote offices.
By integrating the .NET Framework into the Windows Server 2003 application development environment, developers are freed from writing "plumbing" code and can instead focus their efforts on delivering real business value.
ASP.NET is integrated with the IIS 6.0 process model and leverages support for multiple application pools. This means that individual ASP.NET applications are isolated and talk directly to the kernel-mode HTTP listener. This leads to a reduced number of process hops and allows ASP.NET applications to leverage kernel-mode file caching.
IIS 6.0 provides an architecture that delivers enhanced application isolation. Administrators can create multiple application pools and assign applications to those pools to provide isolation. Application pools can be monitored and automatically recycled to ensure application availability.
Internet Information Server 6.0
IIS 6.0 provides significantly improved security for Web servers. IIS 6.0 is locked down by default, limiting the attack surface area through aggressive security defaults. In addition, authentication and authorization have been improved.
The IIS 6.0 fault-tolerant process architecture isolates Web sites and applications into self-contained units called application pools. Application pools provide a convenient way to administer a set of Web sites and applications and increase reliability
IIS 6.0 periodically checks the status of an application pool with automatic restart on failure of the Web sites and applications within that application pool, increasing application availability. IIS 6.0 protects the server, and other applications, by automatically disabling Web sites and applications that fail too often within a short amount of time.
IIS 6.0 automatically stops and restarts faulty Web sites and applications based on a flexible set of criteria, including CPU utilization and memory consumption, while queuing requests. IIS 6.0 also maintains the client TCP/IP connection when a worker process is being recycled, isolating Web services client applications from back-end Web application instability.
If an application fails too often within a short amount of time, IIS 6.0 will automatically disable it and return a "503 Service Unavailable" error message to any new or queued requests to the application. Custom actions, for example, a debugging action or administrator notification, can also be triggered. Rapid-fail protection can protect a Web server against denial of service attacks.
Windows Server 2003 introduces a new kernel-mode driver, HTTP protocol stack (HTTP.sys), for HTTP parsing and caching, providing increased scalability and performance.
The Volume Shadow Copy Service gives administrators the ability to quickly create point-in-time copies of data, allowing easier and more reliable backups of important organizational data, even while files are open. VSS significantly reduces a server’s backup window by providing on-disk, point-in-time recoverable data sets.
With Shadow Copies of Shared Folders users can quickly recover deleted or changed files stored on the network without administrator assistance, increasing productivity and reducing administrative costs.
Headless server management provides the ability to install and manage servers without a monitor, VGA display adaptor, keyboard, or mouse.
Companies can move to a security model that ensures all physical access is authenticated and encrypted, based on the 802.1X support in Windows Server 2003
The IPv6 protocol driver provided with Windows Server 2003 is production quality and includes utilities, extensive API support (Windows Sockets, remote procedure call [RPC], and IPHelper), and IPv6-enabled system components such as Microsoft Internet Explorer, Telnet client, FTP client, Microsoft Internet Information Services (IIS) 6.0, file and print sharing, and others
Windows Server 2003 allows a Layer Two Tunneling Protocol (L2TP) over IPSec (L2TP/IPSec) or an IPSec connection to pass through a NAT.
Remote Desktop Connection (the new "Terminal Services Client") is an RDP 5.1 client that features a much improved user interface, enabling users to save connection settings, easily switch between windowed and full screen mode, and to dynamically alter their remote experience to match the available bandwidth.
When connecting to a terminal server using an RDP 5.1 client, many of the local resources are available within the remote session, including the client file system, smart cards, audio (output), serial ports, printers (including network), and the clipboard.
With RDP 5.1, color depth can be selected from 256 colors (8-bit) to True Color (24-bit), and resolution can be set from 640 x 480 up to 1600 x 1200.
Automated System Recovery (ASR) enables bare metal restore of servers and consistent data recovery of servers, including "system state" and hardware configuration information. Using recovery mode, ASR ensures a server can be returned to its original state if a serious failure occurs.
Storage Area Networks are significantly easier to use in Windows Server 2003. Administrators can control the mounting of volumes with the aid of a SAN friendly configuration, a benefit that protects volumes from unintentional access.