74593bindex.fm Page 335 Friday, January 11, 2008 9:25 AM
Index
A overview of, 69–70 ABOUT_command, PowerShell, 188 policies and system management. See policies, access management, new features, 205 Active Directory ACLs (access control lists) read-only domain controllers, 81–82 Active Directory auditing, 73 restartable AD Domain Service, 87–88 iSCSI using, 64 roles, 79–84 security settings for, 218 TS Remote App deployment using, 275 system ACLs, 73, 204 Windows Deployment Services requiring, ACPI (Advanced Configuration and Power 49–51 Interface) 2.0, 11 AD CS (Active Directory Certificate Services), 80, ACT (Application Compatibility Toolkit) 5.0 82–83 deployment with, 41 AD DS (Active Directory Domain Service) overview of, 36–38 creating domain controller, 76–77 using shimming engines, 311 integrated authorization with, 79–80 actions, specifying Task Scheduler, 174–175 restartable, 87–88 Activate Server wizard, 287–288 TS Web Access with, 281 Active Directory. See AD (Active Directory) AD DS Installation wizard, 76–79 Active Directory Application Mode (ADAM), 84 AD FS (Active Directory Federation Services), 82 Active Directory Certificate Services (AD CS), 82 AD RMS (Active Directory Rights Management Active Directory Domain Services detail panel, Services), 223–224 Server Manager, 157–158 ADAM (Active Directory Application Mode), 81 Active Directory Federation Services (AD FS), 82 Add Features wizard, 241, 247–249 Active Directory Rights Management Services (AD Add Print Driver wizard, 233 RMS), 223–224 Add Printer wizard, 230 Active Directory Schema snap-in, installing, 79 Add Role Services wizard, 226–227 Active/Active standards, 66 Add Roles Wizard, 254–255, 301–302 ActiveX, 6 Administration API, IIS web services, 303 AD (Active Directory), 69–86COPYRIGHTEDAdministrative MATERIAL Template (ADMX) files, 93–94 directory auditing, 72–76 ADMX (Administrative Template) files, 93–94 distribution and replication, 71–72 Advanced Configuration and Power Interface 2.0 DLLs in Server Core installation, 311 (ACPI), 11 domain topologies, 85–87 Aero, 6 landscape, 71 aliases, PowerShell, 189–190, 197–199 objects and schema, 70–71 Allchin, Jim, 70 AMD-V (AMD-Virtualization), 16
74593bindex.fm Page 336 Friday, January 11, 2008 9:25 AM
336 AMERICAN AIRLINE SABRE RESERVATION SYSTEM • BOOT CONFIGURATION DATA (BCD)
American Airline SABRE reservation system, TS Gateway connections, 282 260–261 TS Gateway Service, 283 answer files TS Session Broker, 286 defined, 23 Authorization Manager, 81–83 installing Server Core with, 315 automated system deployment overview of, 35–36 Business Desktop Deployment, 42–47 in server deployments, 23–25 Microsoft Solutions Framework, 47–49 APPCMD.EXE command, IIS, 306–307 overview of, 40 AppleTalk protocol, 224 tools for, 41 Application Compatibility team, BDD, 42 automation, Group Policy settings, 93 Application Compatibility Toolkit. See ACT Avalon, 6 (Application Compatibility Toolkit) 5.0 Application Management team, BDD, 43 Application Pool Defaults dialog box, IIS, 292 B APPLICATIONHOST.CONFIG, IIS, 293 B+ Tree system, 126 application-specific integrated circuits (ASICs), backup, with SyncToy, 126 240 backup domain controllers (BDCs), 71–72, 82 architecture bandwidth, 268 Next Generation TCP/IP Stack, 54–57 bandwidth throttling, QoS policy, 120–121 Terminal Server 2008, 266 bare metal deployment, 23–25 Windows Server 2008. See Windows Server BartPE builder, 26 2008 architecture BCD (Boot Configuration Data), 12, 27 archiving, Server Core installation, 316 BCDEDIT command, 27, 41, 150 ASICs (application-specific integrated circuits), BDCs (backup domain controllers), 71–72, 85 240 BDD (Business Desktop Deployment), 42–47 asterisk symbol (*), PowerShell, 187–188 deployment scenarios, 45–47 attributes, LDAP directory, 70 Microsoft Solutions Framework for, 47–49 Audit Policy, Security Configuration Wizard, overview of, 42–43 213–214 team resources, 43–45 auditing, Active Directory, 72–76 Windows Automated Installation Kit 3.01 authentication required by, 29 AD roles, 79–84 BDD Document Explorer, 42, 45 CHAP, 203–204 BDD Solution Accelerator, 47–49 IIS, 301–302 BDD Workbench, 41–42 network connection security, 217 BDE (BitLocker Drive Encryption), 128–129 SSTP server, 56 binding order, for protocols, 59 authorization BIOS, of thin clients, 263–264 IIS 7.0 and, 301 BitLocker, 41, 128–129 integrated, 79–81 BitLocker Drive Encryption (BDE), 128–129 MMC enhancements, 155 BizTalk Initiative, 259 security features for, 205 Boot Configuration Data (BCD), 12, 27
74593bindex.fm Page 337 Friday, January 11, 2008 9:25 AM
BOOT SYSTEM • CONFIGURATION PARTITION 337
boot system CLR (Common Runtime Language), 6, 181 Delayed Auto-Start service for, 11 cluster DLLs, Server Core installation, 312 improvements to, 12 clusters performing remotely with WDS, 49–51 fail-over, 245–249 setting order for virtual machines, 258 NLB, 242–245 BOOTFIX tool, 27 Windows Server Virtualization and, 253 BOOT.INI file, 12, 27 CMD.EXE, PowerShell syntax vs., 179, 187 BOOT.SDI file, 27 cmdlets, PowerShell BOOTSECT tool, 27 built-in, 191–199 Business Desktop Deployment. See BDD (Business getting help with, 185–186 Desktop Deployment) overview of, 186–187 syntax, 188 viewing snap-ins, 184 C CNG (Crypto Next Generation) CryptoAPI, 128 caching modules, IIS, 296 Code Signing Certificates, RemoteApp, 279–280 Cairo project, 7 Collector Service, Windows Event, 171 Calendar, Windows System Resource Manager, COM (Component Object Model), 7 236–239 COM+ (Component Object Model+), 6 CardSpace, 9 command prompt management, Server Core CAs (certificate authorities), Kerberos, 79–80 enabling remote desktop connections, 318–319 case sensitivity, PowerShell commands, 183 MMC management, 325–326 certificate authority (CA), and Kerberos, 79–80 overview of, 316–318 Certificate Services, 80, 82–83 setting up print server, 324 certificates, RemoteApp, 279–280 command-line utilities CHANGE USER / INSTALL command, 275 configuring web services in IIS, 303 CHAP (Challenge-Handshake Authentication PowerShell. See PowerShell Protocol), 64–65, 203–204 Server Core Management, 326–333 CHDSK Server Manager, 147–152 journaling using, 128 Common Language Infrastructure (CLI), 6 Self-Healing NTFS using, 129 Common Runtime Language (CLR), 6, 181 volume management using, 132 compatibility Citrix, 262–265 client support. See client support ClearType, 273 down-level, 222–223 CLI (Common Language Infrastructure), 6 installing domain controllers, 77 client support, 221–233 PowerShell, 179 down-level compatibility, 222–223 using ACT. See ACT (Application Macintosh interoperability, 224–225 Compatibility Toolkit) 5.0 mobile clients, 223–224 Component Object Model (COM), 7 network printing, 229–233 Component Object Model+ (COM+), 6 Unix interoperability, 225–228 compression modules, IIS, 296 Windows Server 2008 and Vista together, Computer Imaging team, BDD, 43 221–222 Configuration partition, AD database, 72
74593bindex.fm Page 338 Friday, January 11, 2008 9:25 AM
338 CONFIGURATION STORE • DISTRIBUTED SERVICES
configuration store, IIS, 293 Desktop Composition, 272 CONFIG.XML migration file, 39–40 desktop connections, remote, 318–319 Connect to Computer dialog box, WSRM, 235–236 Desktop Experience, 272–273 connections Desktop Standard, 104 configuring remote, 276 Device Installation Restrictions, 128–129 enabling remote, 318–319 device management policies, 126–128 TS Gateway, 281–283 Device Manager, 159 content modules, IIS, 295–296 device-specific modules (DSM), 66 context switching, 2 DFS (Distributed File System) Control panel Preference settings, Group Policy, creating shares with Provision a Shared Folder 108–109 wizard, 138 Core team, BDD, 42 overview of, 142–144 counters, Performance Monitor, 162–163 replicating Group Policy Templates, 97 Create a Shared Folder wizard, 249 DFSCMD command, 142 Create Cluster wizard, 247 DHCP DLLs, Server Core installation, 311 Create Windows Installer Package command, 275 DHCPv6, 61 credential caching, 85 dial-up, security settings, 217 Crypto Next Generation (CNG) CryptoAPI, 128 Differentiated Services Code Point (DSCP), QoS CSCRIPT command, 324–325 policy, 121 CSE (client-side extensions), Group Policy Digital Equipment Corporation (DEC), 1–2 Preferences, 104 digital signatures custom views new features, 11 Event Viewer, 171–172 PowerShell execution policies, 200 Server Manager, 157 RemoteApp security, 279–280 Cutler, David, 2 Direct3D, Avalon support for, 6 directories auditing in Active Directory, 72–76 D features of LDAP, 70 DAP (Directory Access Protocol), 70 metadirectories, 81 Data Execution Prevention (DEP), 155 Directory Access Protocol (DAP), 70 data protection, 205 Directory Services, 70 DCOM (Distributed Component Object Model) Directory Tree, 70 rights, 176 Disk Management utility, 126–128, 165–166 DCOMCONFIG.EXE command, 176 disk space requirements, 20 DCPROMO command, 76–77 DISKPART utility, 22–23, 27 DEC( Digital Equipment Corporation), 1–2 display data prioritization, 268–269 Delayed Auto-Start, kernel, 11 display resolutions, Terminal Server, 270–271 delegation, IIS, 306 Distributed Component Object Model (DCOM), denial-of-service (DOS) attacks, NLBS and, 244 176 DEP (Data Execution Prevention), 155 Distributed File Service. See DFS (Distributed File Deployment team, BDD, 43 System) Desired Configuration Monitoring team, BDD, 43 distributed services, PowerShell, 181–182
74593bindex.fm Page 339 Friday, January 11, 2008 9:25 AM
DISTRIBUTION • FILE SERVER RESOURCE MANAGER (FSRM) 339
distribution, Active Directory, 71–72 encryption, NTFS full-volume, 128–129 DLLs (dynamic link libraries), 11, 311–313 Enhanced Key Usage (EKU), SSTP server, 56 DNs (Distinguished Names), 70–71 enlightened guests DNS (Domain Name System) defined, 221 Active Directory and, 71 using VMM with, 252 configuring network settings, 320 XPS print architecture and, 229 DLLs, Server Core installation, 311 environmental subsystem, Windows 2000/NT, 5 installing domain controllers, 77–78 error handling, PowerShell, 188 read-only, 84 ETW (Event Tracing for Windows) supporting IPv6, 53 HTTP events, 62–63 TS Session Broker requiring, 286 Next Generation TCP/IP Stack architecture, 55 domain controllers, creating, 76–79 troubleshooting fail-over clusters, 247 Domain partition, AD database, 72 Event Viewer domain topologies, Active Directory, 85–87 custom views, 171–172 DoS (denial-of-service) attacks, NLBS and, 244 examining Security log, 73–76 down-level clients, 222–223 overview of, 166–168 drivers subscriptions, 169–171 adding and removing print, 233 troubleshooting with, 168–169 HTTP enhancements to, 62 Execute Disable (XD), 252 multipath I/O added as set of, 65–66 execution policies, PowerShell, 184, 199 drives Executive Services, Windows 2000/NT, 4–5 PowerShell, 190 Extensible Firmware Interface (EFI), 12, 128 Properties dialog box for, 132 Extensible Markup Language (XML), 39–40 requirements, 20 DRVLOAD utility, 23, 27 DSCP (Differentiated Services Code Point), QoS F policies, 121 F5 Networks, BIG-IP, 240 DSI (Dynamic Systems Initiative), 259–260 failback, MPIO, 67 DSM (device-specific modules), 66 fail-over clusters, 245–249 dynamic link libraries (DLLs), 11, 311–313 fat (monolithic) hypervisors, 251 Dynamic Systems Initiative (DSI), 259–260 fat (thick) client terminal services model, 264–265 fault tolerance. See FT (fault tolerance) fault tolerance, NTFS, 127–128 E FCL (.NET Framework Class Library), 188 EFI (Extensible Firmware Interface), 12, 128 FDISK, 126 EFS (Encrypting File System), 128 Features Summary panel, Server Manager, 156 EKU (Enhanced Key Usage), SSTP server, 56 Fibre Channel, 63 “embrace and extend” model, 181 File Replication Service (FRS), 97, 142 emulation, 12 file screens, 137, 140–142 Encrypting File System (EFS), 128 File Server Resource Manager (FSRM), 131–132
74593bindex.fm Page 340 Friday, January 11, 2008 9:25 AM
340 FILE SYSTEMS • GROUP POLICY OBJECT EDITOR (GPOE)
file systems, file services role GPC (Group Policy Container), 97 Distributed File System, 142–144 GPMC (Group Policy Management Console) File Server Resource Manager, 130–131 Group Policy Preferences as part of, 104 Microsoft Services for Network File System, installing Group Policy Management for, 145 97–98 overview of, 130 launching, 98–100 Small Message Block, 144 GPOE (Group Policy Object Editor), 100–101 volume management. See volume GPOs (Group Policy Objects) management creating with SCW, 205 Windows Server 2003 File Services, 142 deploying printers as result of, 232–233 file systems, Windows NT, 125–130 Group Policy engine and, 94–97 filtered attribute sets, and RODC, 81–82 linking and controlling with WMI filters, filters, printer, 232 101–103 font smoothing, for remote clients, 273 overview of, 92 Forefront tool, DSI, 260 setting quota policy as, 138 forests, Active Directory, 71, 77–78 GPOVault, 104 Forwarded Events log, Event Viewer, 167–171 GPTs (Group Policy Templates), 97 FRS (File Replication Service), 97, 142 graphics standards, 6 FSRM (File Server Resource Manager), 131–132 graphics terminals, 263 FT (fault tolerance), 239–249 green screen applications, 260–261 fail-over clusters, 245–249 Group Policies Network Load Balancing and NLBS, 240–245 defined, 71 overview of, 239–240 enabling single-sign on with, 269 TCP Offload Engine and network Group Policy engine, 94–97 performance, 240 Group Policy Preferences vs., 104 Network Access Protection policy, 124–126 Network Location Awareness, 124 G new/updated settings for, 109–113 GET-COMMAND, PowerShell, 185–186 overview of, 92–94 GET-EXECUTIONPOLICY, PowerShell, 199 policy scopes, 101–103 GET-HELP ABOUT_*, Power Shell, 188 Group Policies, management tools, 97–103 GET-MEMBER cmdlet, Power Shell, 188 Group Policy Mangement Console, 98–100 GET-PROCESS command, Power Shell, 189–190 Group Policy Object Editor, 100–101 GET-PSDRIVE cmdlet, 190 installing Group Policy Management feature, GET-SERVICE command, Power Shell, 189 97–98 gifted child, 221 Local Group Policy Objects, 103 global deployment settings, RemoteApps policy scopes, 101–103 programs, 279 Group Policy Container (GPC), 97 Global Server Load Balancing (GSLB), 241 Group Policy Management Console (GPMC), 103, Global Traffic Management, 241 104 Globally Unique Identifier (GUID), 71 Group Policy Modeling Wizard, 103 GlobalNames zone, 53 Group Policy Object Editor (GPOE), 100–101
74593bindex.fm Page 341 Friday, January 11, 2008 9:25 AM
GROUP POLICY OBJECTS • INITIAL CONFIGURATION TASKS (ICT) CONSOLE 341
Group Policy Objects. See GPOs (Group Policy I Objects) IA-32 (Intel Architecture), 2 Group Policy Preferences, 104–109 IBM, 1 Group Policy Templates (GPTs), 97 ICA (Independent Computing Architecture) GSLB (Global Server Load Balancing), 241 protocol, 263 GUID (Globally Unique Identifier), 71 ICMP (Internet Control Message Protocol), 124 ICT (Initial Configuration Tasks) console, 152–154 IDA (Identity and Access), Active Directory, 69 H Identity and Access (IDA), Active Directory, 69 HA (high availability), 239–249 Identity Lifecycle Manager (ILM), 83 fail-over clusters, 245–249 identity management fault tolerance vs., 239 improvements to, 205 Network Load Balancing and NLBS, 240–245 for Unix, 225–227 overview of, 239–240 IECE (Internet Explorer Compatibility Evaluator), TCP Offload Engine and network 37 performance, 240 IIS (Internet Information Services), 289–308 HAL (Hardware Abstraction Layer), 4, 11 configuration store, 293 hard limit, quota management, 139 core changes to, 289–290 hardware, new features, 11 IIS Services Manager, 303–308 Hardware Abstraction Layer (HAL), 4, 11 install and setup, 302–303 health policy, 284 modular APIs, 291 Health Policy Server (HPS), 285 modules, 293–301 Health Registration Authority (HRA), 285 security, 301–302 heap manager, 10, 11 Windows Process Activation Service, 291–293 Help ILM (Identity Lifecycle Manager), 83 command-line, 326 images PowerShell, 185, 187–188 deploying use PXE, 27 high availability. See HA (high availability) system. See system images High Availability wizard, 248–249 IMAGEX command HOSTNAME command, 321 creating WIM files/system images, 28–29, 33 HPS (Health Policy Server), 285 deployment with, 41 HRA (Health Registration Authority), 285 Windows Automated Installation Kit 3.01, 30 HTTP (HyperText Transfer Protocol) Windows PE boot disc, 27 driver enhancements, 62–63 Independent Computing Architecture (ICA) HTTP Server API 2.0, 62 protocol, 263 HTTPS, SSTP using, 56 Indexing Service, Windows Server 2003, 142 HTTP.SYS kernel-mode driver, 62 Indigo, 6 hybrid images, 34 InfoCard, 9 hybrid kernel, Windows OS as, 4 Infrastructure Remediation team, BDD, 44 Hyper-V (hypervisors) Initial Configuration Tasks (ICT) console, 152–154 Virtual Server 2007 using, 251–254 and virtualization, 12–16
74593bindex.fm Page 342 Friday, January 11, 2008 9:25 AM
342 INSTALLATION • LINE-OF-BUSINESS (LOB) APPLICATIONS
installation enhancements, 60–61 DLLs, Server Core, 311–313 integration in fail-over clusters, 247 Lite Touch vs. Zero Touch, 50–51 Next Generation TCP/IP Stack architecture, 54 PowerShell, 182–186 SSTP using, 56 Server Core, 314–316 TCP/IP configuration, 58 Setup installation tool, 41 transitioning to with Teredo, 61–62 stand-alone server, 20–23 iSCSI (Internet SCSI), 64–65 Web Server (IIS) role, 302–303 iSCSI Initiator, 64–65 Windows Automated Installation Kit 3.01, ISO files, creating, 31–32 30–32 Windows Preinstallation Environment, 25–28 integral subsystem, Windows 2000/NT, 5 J Integration Services, Windows Virtual Machine, journaling, 128 259 Intel Architecture (IA-32), 2 Intel Boot Initiative, 12 K Intel VT (Intel Virtualization Technology), 16 Kerberos authentication, 79–80, 204 Internet Control Message Protocol (ICMP), 124 kernel Internet Explorer Compatibility Evaluator modifications, 10–11 (IECE), 37 overview of, 9–10 Internet Explorer, Group Policy settings, 92 Windows NT, 3–4 Internet Printing Protocol (IPP), 232 Kidder, Tracy, 1 Internet Protocol security (IPsec), 64–65, 215–217 KTM (Kernel Transaction Manager), 129 Internet SCSI (iSCSI), 64–65 interoperability Macintosh, 224–225 L overview of, 181 LDAP (Lightweight Directory Access Protocol), Unix, 225–228 70–71 Inter-Process Communication (IPC), 4, 7 LDS (Lightweight Directory Services), 79–80 inventory agents, ACT, 37 LGPO (Local Group Policy Objects), 103 Inventory Collector, ACT, 37 libraries, managing, 33–36 IP addresses, for NLB clusters, 242–243 licenses IPC (Inter-Process Communication), 4, 7 Terminal Server, 287–288 IPP (Internet Printing Protocol), 232 virtualization changing Microsoft model IPsec (Internet Protocol security), 64–65, 215–217 for, 16 IPv4 addresses Windows Server Virtualization, 253 Next Generation TCP/IP Stack architecture, 54 Lightweight Directory Access Protocol (LDAP), SSTP using, 56 70–71 TCP/IP configuration, 58 Lightweight Directory Services (LDS), 79–80 transitioning to IPv6 using Teredo, 61–62 Line Printer Daemon (LPD) service, 232 IPv6 addresses line-of-business (LoB) applications, and single DNS upgraded to support, 53 sign-on, 269
74593bindex.fm Page 343 Friday, January 11, 2008 9:25 AM
LINKS • MODULES 343
links, to GPOs, 101–103 MFT (master file table), NTFS Disk Management, Lite Touch Installations (LTI), 50–51 126–127 Load Weight parameter, NLB clusters, 244 microkernel (thin) hypervisors, 251–252 LOADSTATE command, User State Migration Tool, Microsoft, relationship with Citrix, 262–263 38–39 Microsoft Cluster Service (MSCS), 240, 245–249 LoB (line-of-business) applications, and single Microsoft Compatibility Exchange, ACT, 36–37 sign-on, 269 Microsoft Hyper-V, 12–16 Local Group Policy Objects (LGPO), 103 Microsoft Identity Integration Server (MIIS), 81 $LogFile, NTFS, 127–128 Microsoft Identity Lifecycle Manager, 260 logical unit number (LUN) masking, 246 Microsoft Intermediate Language (MSIL), 6 login, Server Core, 316–317 Microsoft Management Console (MMC), 155, LOGMAN.EXE command, 55 325–326 logs Microsoft Metadirectory Services (MMS), 81 Event Viewer, 167–169 Microsoft .NET Framework 3.0 (WinFX), 6 HTTP driver enhancements, 62 Microsoft Office 2007 Resource Kit (ORK), 47 IIS, 296–297 Microsoft Office, deploying with BDD, 46–47 LPD (Line Printer Daemon) service, 232 Microsoft Operations Framework (MOF), 48–49 LTI (Lite Touch Installations), 50–51 Microsoft Remote Desktop Connection Client for LUN (logical unit number) masking, 246 Mac 2.0 (Mac RDP client), 224–225 Microsoft Security Central website, 204 Microsoft Services for Network File System M (MSNFS), 145 Mac RDP Client (Microsoft Remote Desktop Microsoft Services for NFS (Network File System), Connection Client for Mac 2.0), 224–225 225 Macintosh interoperability, 224–225 Microsoft Shell (MSH), 179 MAN command, Unix, 185 Microsoft Solutions Framework (MSF), 47–49 Manage Your Server tool, 152–153 Microsoft Virtual PC 2007, 250–251, 260 managed support modules, IIS, 297–299 Microsoft Virtual Server 2007, 251 master file table (MFT), NTFS Disk Management, Microsoft Windows. See Windows 126–127 migrating user data, 38–40 memory MIIS (Microsoft Identity Integration Server), 81 improvements to, 11–12 MinWin component, 28 kernel modifications, 10 MMC (Microsoft Management Console), 155, requirements, 20 325–326 for virtual machines, 253 MMS (Microsoft Metadirectory Services), 81 MEMTEST utility, 27 mobile clients, 223–224 metadata, Active Directory, 71 modular APIs, IIS, 291 metadirectories, Active Directory, 81 modules, IIS MFGAPP.XML migration file, 40 caching, 296 MFGSYS.XML migration file, 40 compression, 296 MFGUSER.XML migration file, 40 content, 295–296 defined, 293
74593bindex.fm Page 344 Friday, January 11, 2008 9:25 AM
344 MOF (MICROSOFT OPERATIONS FRAMEWORK) • NETWORK SECURITY
HTTP, 294 NAS (network-attached storage), 225 logging and diagnostic, 296–297 NATs (network or IP masquerading), and Teredo, managed support, 297–299 61–62 management tools for, 299–300 navigation, PowerShell, 189 modular APIs, 291 NDIS (Network Driver Interface Specification) 6.0, overview of, 289–290 53–57 security, 294–295 NDP (Neighbor Discovery Protocol), 61 MOF (Microsoft Operations Framework), 48–49 Neighbor Discovery Protocol (NDP), 61 Monad Shell, 179 .NET Framework monitors accessing in PowerShell, 188 requirements, 20 as proprietary Microsoft standard, 181 Terminal Server and, 270–271 XPS using, 229 monolithic (fat) hypervisors, 251 .NET Framework Class Library (FCL), 188 MPIO Properties dialog box, installing multipath NETDOM RENAME COMPUTER, 321 I/O, 66 NETSCH FIREWALL SET SERVICE MSCS (Microsoft Cluster Service), 240, 245–249 FILEANDPRINT ENABLE command, 324 MSF (Microsoft Solutions Framework), 47–49 NETSH HTTP command, 62 MSH (Microsoft Shell), 179 Network Access Protection policies. See NAP MSIL (Microsoft Intermediate Language), 6 (Network Access Protection) policies MSNFS (Microsoft Services for Network File Network Class Libraries, 6 System), 145 Network Driver Interface Specification (NDIS) 6.0, multimaster replication, 85–86 54–55 multipath I/O, 65–67 Network File System (NFS), 134–136, 145 multithreading, 3 Network Information Service (NIS), Unix, 225 Network layer, Next Generation TCP/IP stack, 54 Network Load Balancing (NLB), 66, 240–245 N Network Load Balancing Server (NLBS), 241–245 N10 (N-Ten), 2 Network Location Awareness, 124 namespaces network or IP masquerading (NAT), and Teredo, creating DFS, 138, 143–144 61–62 IPv6, 60 Network Policy Server (NPS), TS Gateway, 285 LDAP defining, 71 network printing, 229–233 naming conventions, servers, 321 adding printer, 230 NAP (Network Access Protection) policies overview of, 229 defined, 205 Print Services role, 230–233 enabling mobile devices on, 223–224 XPS print architecture, 229 managing Vista clients on Windows Server network provider order, 59–60 2008, 221–222 network security overview of, 124–126 connections, 217–218 TS Gateway connections, 281–283 improvements to, 204–205 TS Gateway deployment, 284–285 using Security Configuration Wizard, 209–211
74593bindex.fm Page 345 Friday, January 11, 2008 9:25 AM
NETWORK SERVICES • ONLINE REFERENCES 345
network services, 53–67 O multipath I/O, 65–67 Object Linking and Embedding (OLE), 6 Next Generation TCP/IP Stack. See Next Object Linking and Embedding (OLE) Generation TCP/IP Stack Automation, 6 storage networking, 63–65 object-oriented file system, development of, 7 Network test, fail-over clusters, 247 objects, Active Directory, 70–71 network-attached storage (NAS), 225 OCLIST command, 322–323, 324–325 networking DLLs, Server Core installation, OCSETUP command 311–312 deployment with, 41 New Virtual Machine Wizard, 256–257 print server setup, 324–325 Next Generation TCP/IP Stack, 53–63 Server Core roles, 322–324 architecture, 54–57 OCT (Office Customization Tool), 47 HTTP driver enhancements, 62–63 Office 2007 setup, with BDD, 47 managing Vista clients, 222 Office Customization Tool (OCT), 47 overview of, 53 The Old New Thing: Practical Development TCP/IP configuration, 57–60 Throughout the Evolution of Windows (Chen), 2 Teredo technology, 61–62 OLE (Object Linking and Embedding), 6 using IPv6, 60–61 OLE (Object Linking and Embedding) NFS (Network File System), 134–136, 145 Automation, 6 NIS (Network Information Service), Unix, 225–227 online references NLB (Network Load Balancing), 66, 240–245 APPCMD.EXE command, IIS, 306–307 NLBS (Network Load Balancing Server), 241–245 Application Compatibility Toolkit, 36–37 No Execute (NX), AMD-V processors, 252 BartPE builder, 26 nodes, LDAP directory, 70 DCPROMO switches, 76 NoExplorerForGetFileName, Server Core, 310 Dynamic Systems Initiative, 260 Non-Uniform Memory Architecture (NUMA), Encrypting File System, 128 11–12 IIS information portal, 290 NPS (Network Policy Server), TS Gateway, 285 IPv6 addressing, 58 NTDLL.DLL, 13 Kerberos protocol, 80 NTDLR.EXE, 12 Microsoft Management Console, 155 NTDS (NT Directory Services), 70 Microsoft Operations Framework, 48 NTFS (Windows NT File System), 125–130 Microsoft relationship with Citrix, 263 Disk Management, 126–128 Microsoft Security Central website, 204 full-volume encryption, 128–129 Microsoft Solutions Framework, 47 permissions, 134 Microsoft Virtual PC 2007, 251 Self-Healing NTFS, 129 Network Access Protection, 285 Transactional NTFS, 129–130 OCT for Office 2007, 47 versions of, 125 Parallels, 14 Windows Server 2008 using, 125 PowerShell installation, 182 NTOSKRNL.EXR, 13 PowerShell scripts, 200–201 NUMA (Non-Uniform Memory Architecture), Preboot Execution Environment, 27 11–12 public certification authorities, 279 NX (No Execute), AMD-V processors, 252 74593bindex.fm Page 346 Friday, January 11, 2008 9:25 AM
346 OOBE (OUT OF BOX EXPERIENCE) • POINT-TO-POINT PROTOCOL OVER ETHERNET (PPPOE)
RDL Launcher for Mac RDP Client, 225 Out of Box Experience (OOBE), 152 RDP 6.0 for Terminal Server, 267 Overview and Summary section, Event Viewer, RequestFilterModule, 301 168–169 SoftGrid Application Virtualization products, 260 SpinRite, 129 P SyncToy backup utility, 126 PACER.SYS, QoS policy, 122 TCP Offload Engine, 240 packet shaping, QoS policy, 120 TS Gateway Server setup guide, 285 PacketShaper, 121 Type 2 hypervisor, 14 Parallels, 14 Unified Extensible Firmware Interface parameters, for NLB clusters, 244 (UEFI), 12 Password Synchronization, 226 User State Migration Tool, 40 passwords Virtual Server R2 SPI, 251 RODC credential caching using, 85 Windows Aero interface, 272 static, 320 Windows Automated Installation Kit 3.01, 30 patch protection, 11, 36–37 Windows CardSpace, 9 paths, prioritized, 66 Windows Communication Foundation, 9 PCPROMO command, 72 Windows Group Policies, 92 PDCs (primary domain controllers), 71–72, 85 Windows Preinstallation Environment, 25 PEIMG.EXE command Windows Presentation Foundation, 9 defined, 29 Windows Rally, 230 deployment with, 41 Windows Server 2008 requirements, 20 Windows PE boot disc, 27 WMI Control components, 176 PerfMon, 162–163 WMI provider, 307–308 performance counters, HTTP, 63 OOBE (Out of Box Experience), 152 performance enhancements OPC (Open Packaging Conventions), XPS and, 229 fault tolerance. See FT (fault tolerance) Open Packaging Conventions (OPC), XPS and, 229 high availability. See HA (high availability) operating systems Terminal Server, 265, 268 compatibility when installing domain virtualization and scaling. See virtualization controllers, 77 and scaling deployment scenarios, 24–25 Windows System Resource Manager, 235–239 Operational log, viewing policy events, 95 Performance Monitor, 162–163, 181 Operations Readiness team, BDD, 44 PING, 124 organizational units (OUs), Active Directory, 71 pipelines, PowerShell, 187 ORK (Microsoft Office 2007 Resource Kit), 47 PKIs (Public Key Infrastructures), 79–80 OSCDIMG command PKMGR, 41 creating ISO file with, 31–32 Plug and Play (PnP), 11 switches, 31 PMC (Process Match Criteria), 161 Windows PE boot disc, 27 PnP (Plug and Play), 11 OUs (organizational units), Active Directory, 71 PNPUTIL, 41 Point-to-Point Protocol over Ethernet (PPPoE), 217 74593bindex.fm Page 347 Friday, January 11, 2008 9:25 AM
POINT-TO-POINT PROTOCOL (PPP) • PXE (PREBOOT EXECUTION ENVIRONMENT) 347
Point-to-Point Protocol (PPP), and SSTP, 56 PPPoE (Point-to-Point Protocol over Ethernet), 217 policies Preboot Execution Environment. See PXE (Preboot audit, setting in SCW, 213–214 Execution Environment) creating custom, 161 precedence, Active Directory, 96 creating with SCW, 206–207 Preferences, Group Policy, 104–109 managing Terminal Server with WSRM, 271 Presentation Server, Citrix, 263 Windows Firewall with Advanced Security, primary domain controllers (PDCs), 71–72, 82 215 PRINTBRM command, 232 Windows System Resource Manager, 236–239 Printer Driver Installation Delegation policy, 128 policies, Active Directory, 91–124 printing, 229–233 device management, 126–128 installing printers from MMC, 326 enhancements to, 91–92 Print Management Console, 230–232 Group Policies, 92–94 print server setup, 324–325 Group Policy engine, 94–97 Print Services role, 230–233 Local Group Policy Objects, 97–98 Printer Migration, 230, 232 management tools, 97–103 Process Match Criteria (PMC), 161 Network Access Protection, 104–106 processes, 2–3 Network Location Awareness, 123–124 processor requirements, 20 new settings, 109–113 properties overview of, 87 drives, 132 policy scopes, 101–103 file screen, 141 Quality of Service, 120–123 quota, 139–140 User Account Control, 128–130 RemoteApp, 277–278 Portable Operating System Interface (POSIX) Windows System Resource Manager, 236–237 clients, 224 protected mode, kernel, 9–10 ports, rules for NLB clusters, 244 protocols, binding order for network ports, TS Gateway connections, 282–283 connections, 59 POSIX (Portable Operating System Interface) providers, PowerShell, 185 clients, 224 Provision a Shared Folder wizard, 133–138 power management, improvements to, 11 DFS Namespace Publishing screen, 138 powers of nines, 239 File Screen Policy screen, 137 PowerShell, 179–201 NFS Settings screen, 134–136 accessing WMI providers, 191 NTFS permissions screen, 134 cmdlets, 186–187 Quota Policy screen, 136–137 command guide, 191–199 Share Protocols screen, 134–135 command-line services, 189–191 Shared Folder Location screen, 134 distributed services, 181–182 SMB Settings screen, 134–136 execution policies, 199 provisioning, QoS policy, 121 installation, 182–186 .PSI file extension, 200 overview of, 179–180 Public Key Infrastructures (PKIs), 79–80 scripts, 199–201 PXE (Preboot Execution Environment) syntax, 187–188 installing Server Core using, 315 PPP (Point-to-Point Protocol), and SSTP, 56 Lite Touch Installations and, 50 Windows Deployment Services and, 49–50 74593bindex.fm Page 348 Friday, January 11, 2008 9:25 AM
348 QOS (QUALITY OF SERVICE) • RESOURCE ALLOCATION POLICIES (RAPS)
Q redirection, Group Policy settings, 93 QoS (Quality of service) RegEditImportExportLoadHive, Server Core, applying policies, 120–123 310 features for implementing, 222 Registry new policy settings, 120 Group Policy settings, 92 Windows System Resource Manager kernel modifications in, 10 providing, 160 mapping with PowerShell, 190–191 quarantine policy, Network Access Protection, 125 Security Configuration Wizard settings, Quaternary Tree, 126 211–213 question mark (?), PowerShell, 187 Relative Distinguished Name (RDN), 70 quorum, fail-over clusters, 246–247 Reliability and Performance Monitor, Server quotas, 136–140 Manager Device Manager, 159 overview of, 161–162 R Performance Monitor, 162–163 RADIUS (Remote Authentication Dial-In User Reliability Monitor, 163–165 Service) server, 285 Reliability Core, 181 RAM disk, WinPE and, 27 Reliability Monitor, 161–165 RAP (Resource Access Policy), 161 Remote Authentication Dial-In User Service RAPs (Resource Allocation Policies), 238–239 (RADIUS), 285 RBAC (role-based access control), 81 Remote Desktop Administration, 318–320 RDC (Remote Differential Compression) Remote Desktop client, Terminal Server, 268 algorithm, 97 Remote Desktop Connection, Desktop Experience, RDL Launcher, 225 273 RDN (Relative Distinguished Name), AD, 70 Remote Installation Services (RIS), 49 RDP 6.0 for Terminal Server Remote Registry service, 161 configuring remote connections, 276–278 Remote Server Administration Tools (RSAT), 171 defined, 263 RemoteApp Wizard, 275–277 downloading version 6.0, 267–268 Removable Storage Access policies, 122, 126 large monitor support, 270 replay attacks, and Kerberos, 204 monitor spanning, 271 replication Remote Desktop Connection client Desktop Active Directory, 71–72 Experience settings for, 273 Group Policy Object, 97 RemoteApp security and, 279–280 multimaster, 85–86 TS Gateway connections and, 282–283 RODC unidirectional, 85 read-only domain controllers (RODCs), AD reports defined, 69 Application Compatibility Toolkit, 36 domain topology, 85–87 generating Initial Configuration Tasks, 152 features of, 81–82 RequestFilterModule, IIS, 301 real-time operating systems (RROSs), 4 Resource Access Policy (RAP), 161 rebooting server, 321, 324 Resource Allocation Policies (RAPs), 238–239 Red Hat Linux, 15 74593bindex.fm Page 349 Friday, January 11, 2008 9:25 AM
RESOURCES AND SUPPORT PANEL • SECTOR-BASED IMAGING 349
Resources and Support panel, Server Manager, Windows Firewall with Advanced Security, 156, 158 216–217 Resultant Set of Policy (RSOP), 102–103 Windows System Resource Manager, 238 Rights Management Services (RMS), 79–80 RIS (Remote Installation Services), 49 RMS (Rights Management Services), 79–80 S RODCs (read-only domain controllers), AD SACLs (system access control lists), 73, 204 defined, 69 SAM (Security Accounts Manager), Active domain topology, 85–87 Directory, 71–72, 204 features of, 81–82 SATA (Serial Advanced Technology installing as option, 77 Attachment), 63 role groups, IIS, 306 SATA (Serial Advanced Technology Attachment) role-based access control (RBAC), 81 RAID, 63–64 Role-Based Services, Security Configuration scale-out deployments, 235 Wizard, 206–209 scale-up deployments, 235 roles scaling. See virtualization and scaling installing with ICT wizards, 152 SCANSTATE command, User State Migration Tool, removing administrative, 84 38–39 Server Core, 322–324 schema, Active Directory, 71 Windows Scripting file, 318–319 Schema partition, Active Directory, 72 Windows Server Virtualization, 255 scopes, policy, 101–103 roles, Active Directory, 79–84 SCREGEDIT.WSF, 318–319, 326–329 customized, 81–82 scripts defined, 69 Group Policy settings, 93 integrated authorization, 79–81 managing Vista clients, 222 metadirectories, 81 PowerShell execution policies, 199–201 Public Key Infrastructures, 79–80 printer management, 324–325 RODC removing administrative, 84 SCSI (Small Computer System Interface), 64–65, Roles Summary panel, Server Manager, 156–157 246–247 round-robin, 66 SCVMM (System Center Virtual Machine routing, IPv6, 61 Manager), 253 RROSs (real-time operating systems), 4 SCW (Security Configuration Wizard), 205–215 RS-232 serial devices, 261 Audit Policy, 213–214 RSAT (Remote Server Administration Tools), 104, completing, 214–215 171 launching, 205–206 RSOP (Resultant Set of Policy), 102–103 Network Security, 209–211 rules. See also policies overview of, 205 Event Viewer, 166 Registry Settings, 211–213 Network Access Protection policy, 125–126 Role-Based Services, 206–209 Network Load Balancing Server, 241–242 SCWCMD, 205 Network Security, 209–211 SCWCMD TRANSFORM command, 205 port, 244–245 sector-based imaging, vs. file-based, 27–28 74593bindex.fm Page 350 Friday, January 11, 2008 9:25 AM
350 SECURE SOCKET TUNNELING PROTOCOL (SSTP) • SERVICES FOR UNIX (SFU)
Secure Socket Tunneling Protocol (SSTP), 56–57 overview of, 309 Secure Sockets Layer (SSL), 279–280, 282, 291 print server setup, 324–325 security, 203–219. See also SCW (Security remote desktop connections, 318–319 Configuration Wizard) remote network settings, 319–320 access control lists, 218 roles, 181, 322–324 CHAP authentication and, 203–204 Server for Network Information Services, 226 DLLs, Server Core installation, 312 server management, 147–177 Group Policy settings, 92 command-line tools, 147–152 IIS, 294–295, 301–302 Device Manager, 159 installing domain controller, 77 Event Viewer, 166–172 IPv6, 61 Initial Configuration Tasks console, 152–154 Network Access Protection policies, 284–285 Microsoft Management Console, 155 network connection, 217–218 Reliability and Performance section, 161–165 new features, 204–205 Server Manager, 156–158 TS Remote App, 279–280 Storage Manager, 165–166 Windows Firewall with Advanced Security, Task Scheduler, 172–175 215–217 Windows System Resource Manager, 159–161 Security Accounts Manager (SAM), AD, 71–72, 204 WMI control, 175–176 Security Configuration Viewer, 206–207 Server Manager Security Configuration Wizard. See SCW (Security configuring role services in IIS in, 305 Configuration Wizard) configuring web services in IIS in, 303 Security Information panel, Server Manager, 156 Device Manager in, 159 Security log, Active Directory auditing, 73–76 Event Viewer in, 167–172 Security Support Provider Interface (SSPI), 80 installing Group Policy management, 97–98 Security team, BDD, 44 overview of, 156–158 SEH (structured exception handling), 155 Reliability and Performance Monitor in, self-configuration, of IPv6, 61 161–165 Self-Healing NTFS, 129–130 restartable AD DS in, 87–88 Serial Advanced Technology Attachment Storage Manager in, 165–166 (SATA), 63 Terminal Server in, 266–267 Serial Advanced Technology Attachment using SERVERMANAGERCMD.EXE, 148–150 (SATA) RAID, 63–64 Windows System Resource Manager in, Server Core, 309–333 159–161 basics, 309–314 server-based deployments, 23–25 choosing version of, 314 SERVERMANAGERCMD.EXE, 148–150 command prompt management, 316–318 server-side authentication, HTTP drivers, 62 command-line commands, 326–333 Service Control Manager, 11 hostname and domain, 321–322 services installing, 314–316 DLLs in Server Core installation, 312–313 installing Virtual Server 2007 on, 252 kernel modifications in Windows Server 08, 11 Microsoft Management Console management, PowerShell command-line, 189–191 325–326 Services for Unix (SFU), 225 74593bindex.fm Page 351 Friday, January 11, 2008 9:25 AM
SESSION SPACE • SYSTEM ACCESS CONTROL LISTS (SACLS) 351
Session space, Terminal Server, 266 SoftGrid Application Virtualization products, 260 sessions, TS Session Broker, 286 software, deployment settings, 92–93 SET-EXECUTIONPOLICY
352 SYSTEM CENTER VIRTUAL MACHINE MANAGER (SCVMM) • TRANSACTIONAL NTFS (TXF)
System Center Virtual Machine Manager improvements to, 12, 266–269 (SCVMM), 253 large monitor support, 270 System Configuration test, fail-over clusters, 247 managing with Windows System Resource system identification number (SID), CHAP, 203 Manager, 271 system images monitor spanning, 270–271 deploying with WIM files, 27–29 Network Access Protection policies, 284–285 managing library of, 33–36 not so thin anymore, 264–265 new deployment technology of, 19 single sign-on, 269 types of, 33–34 theme support with Desktop Experience, System Installation Manager (SIM), 30, 34 272–273 system management. See policies, Active Directory TS Gateway, 281–283 System space, Terminal Server, 266 TS Gateway Console, 285–286 system upgrade deployment, 23–25 TS Licensing, 287 TS Remote App, 274–280 TS Session Broker, 286–287 T TS Web Access, 280–281 tab expansion, PowerShell commands, 197 Terminal Server Configuration tool, 286–287 Targeting rules, Group Policy Preferences, 106–107 Terminal Services Task Manager Macintosh interoperability with, 224–225 getting into, 2–3 Server Manager, 158 working with PowerShell, 181 Web Access, 280–281 Task Scheduler, 172–175 testing TASKMGR, 2–3 application compatibility, 36–38 TCG (Trusted Computing Group), 128 Business Desktop Deployment, 44 TCP Offload Engine (TOE), 240 fail-over clusters, 247 TCP/IP configuration, 57–58 TFTP (Trivial File Transfer Protocol), 49 TCP/IP Offload Using an Offload Engine themes, terminal server, 272–273 (TPCOE), 57 thick (fat) client terminal services model, 264–265 TCP/IP stack. See Next Generation TCP/IP Stack thick images, 33 teams, BDD resources, 42–44 thin (microkernel) hypervisors, 251–252 templates thin client terminal services, 263–264 Administrative Template files, 93–94 thin images, 33 Business Desktop Deployment team resources, 32-bit version, Windows Server 2008, 12 42–44 threads, 3 creating or editing file screen, 145 TOE (TCP Offload Engine), 240 Group Policy, 92 TPCOE (TCP/IP Offload Using an Offload quota, 139–140 Engine), 57 Teredo technology, 61–62 TPM (Trusted Platform Module), NTFS, 128–129 Terminal Server, 261–288 TRACERPT.EXE command, 55 Citrix contribution to, 262–264 transaction log($LogFile), NTFS, 127–128 history of, 261–262 transactional file systems, 222 how it works, 265–266 Transactional NTFS (TxF), 129–130 74593bindex.fm Page 353 Friday, January 11, 2008 9:25 AM
TRANSACTIONS • VIRTUAL DIRECTORIES 353
transactions, stateless, 240 overview of, 128–130 trees WMI Control and, 176 Active Directory, 71 UACCE (User Account Control Compatibility B+ Tree system using, 126 Evaluator), 37 triggers, Task Scheduler, 173–174 UEFI (Unified Extensible Firmware Interface), 12 Trivial File Transfer Protocol (TFTP), 49 UIA (Update Impact Analyzer), 37 troubleshooting UNATTEND.XML file. See answer files with Event Viewer, 168–169 unidirectional replication, RODC, 85 fail-over clusters, 247 Unified Extensible Firmware Interface (UEFI), 12 with Windows PE 2.0, 26–27 Unique Entries, LDAP directory, 70 Trusted Computing Group (TCG), 128 Universal Plug and Play (UPnP), for Teredo, 62 Trusted Platform Module (TPM), NFTS, 128–129 Universally Unique Identifier (UUID), 71 TS CAP (Terminal Services Connection Unix interoperability, 225–228, 232 Authorization Policy), 282–283 Update Impact Analyzer (UIA), 37 TS Gateway updates, for stand-alone installations, 21 connections, 281–283 upgrades Network Access Protection policies, 284–285 Application Compatibility Toolkit for, 36–37 requirements, 283 Windows Server 08 installation, 22 setting up, 281 UPnP (Universal Plug and Play), for Teredo, 62 TS Gateway Console, 285–286 User Account Control. See UAC (User Account TS Licensing, 287 Control) TS Manager Gateway console, 285–286 User Account Control Compatibility Evaluator TS RAP (Terminal Services Resource (UACCE), 37 Authorization Policy), 282–283 user data, migrating, 38–40 TS Remote App, 274–280 user interface DLLs, Server Core installation, 313 Active Directory deployment, 275 user mode, Windows NT, 3–5 configuring, 276–279 User State Migration team, BDD, 44 defined, 12 USMT (User State Migration Tool) 3.0, 38–41 overview of, 274 UUID (Universally Unique Identifier), 71 remote connections, 276 security, 279–280 TS RemoteApps Manager, 276–279 V TS Session Broker, 286–287 Validate a Configuration wizard, 248 TS Web Access, 280–281 validation, fail-over clusters, 247–248 TxF (Transactional NTFS), 129–130 VDMs (Virtual DOS Machines), 5 Type 1 hypervisors, 14–15, 251–252 verb-noun command syntax, PowerShell, 187 Type 2 hypervisors, 14–15, 251 video subsystem, 12 video terminals (VTs), 260–261 views U Event Viewer custom, 171–172 UAC (User Account Control) Storage Explorer, 64 authorization, 155 virtual directories, IIS, 291 74593bindex.fm Page 354 Friday, January 11, 2008 9:25 AM
354 VIRTUAL DOS MACHINES (VDMS) • WINDOWS HARDWARE ERROR ARCHITECTURE (WHEA)
Virtual DOS Machines (VDMs), 5 Web Applications Administrator, 306 Virtual Machine Manager (VMM), 251–252 Web Server Administrator, 306 Virtual PC, 250–251, 260 Web Server (IIS) role, installing, 302–303 virtual private networking (VPN), 56, 218 Web Services on Devices (WSD), 230 Virtual Server 2007, 251–254 Web Site Administrator, 306 Virtual Service Provider (VSP), 252 WEB.CONFIG, IIS, 293 virtualization and scaling, 249–260 websites Dynamic Systems Initiative, 259–260 creating in IIS Manager, 304–305 and hypervisors, 12–16 delegation in IIS, 306 importance of, 250 IIS support for, 291–292 Virtual PC and Virtual Server, 250–251 weighted paths, 66 Virtual Server 2007, 251–254 WFP (Windows Filtering Platform), 54 Windows Server Virtualization, 254–259 WHEA (Windows Hardware Error Architecture), Vista SP1 11 as full partner to Windows Server 2008, 11 wildcards, PowerShell, 187–188 managing, 221–222 WIM (Windows imaging) format .NET 3.0 stack in, 8–9 creating, 33 processes in Task Manager, 2–3 features of, 28–30 support for, 11 system images kept in, 19 VMM (Virtual Machine Manager), 251–252 WIMGAPI, 28 VMware Server, 253–254 Win32 subsystem, 5 volume management, 130–142 Windows. See ETW (Event Tracing for Windows) file screens, 140–142 Windows 2000 Server overview of, 131–132 architecture, 3–5 quota management, 138–140 incorporating Active Directory, 8 share management, 132–138 Windows NT 5.0 branded as, 7 Windows Server 2003 file services, 142 Windows 95, 7–8 volumes, NTFS full encryption for, 128–129 Windows Aero interface, 272 VPN (virtual private networking), 56, 218 Windows Automated Installation Kit (WAIK) 3.01, VSP (Virtual Service Provider), 252 30–32, 42 VTs (video terminals), 260–261 Windows CardSpace (WCS), 9 Windows Communication Foundation. See WCF (Windows Communication Foundation) W Windows Deployment Services (WDS), 49–51 WAIK (Windows Automated Installation Kit) 3.01, Windows Event Collector Service, 171 30–32, 42 Windows Event Log, 55 WCF (Windows Communication Foundation) Windows Filtering Platform (WFP), 54 Indigo branded as, 6 Windows Firewall with Advanced Security, overview of, 9 215–217 WPAS managing, 292–293 Windows Future Storage (WinFS), 6–7 WCS (Windows CardSpace), 9 Windows Hardware Error Architecture WDS (Windows Deployment Services), 49–51 (WHEA), 11 74593bindex.fm Page 355 Friday, January 11, 2008 9:25 AM
WINDOWS IMAGING FORMAT • WMI (WINDOWS MANAGEMENT INSTRUMENTATION) 355
Windows imaging format. See WIM (Windows Business Desktop Deployment, 42–47 imaging) format editions, 21–22 Windows Management Instrumentation. See WMI managing images and libraries, 33–36 (Windows Management Instrumentation) Microsoft Solutions Framework, 47–49 Windows .NET 3.0, 8 migrating user data, 38–40 Windows NT new technology for, 19–20 3.5 and 4.0, 7–8 review, 52 5.0, 7 server deployments, 23–25 architecture, 3–5 stand-alone server installation, 20–23 history of, 1–2 tools for, 41 NTFS. See NTFS (Windows NT File System) Windows Automated Installation Kit 3.01, Windows NT File System. See NTFS (Windows NT 30–32 File System) Windows Deployment Services, 49–51 Windows Preference settings, Group Policy, Windows imaging format, 28–30 107–108 Windows Preinstallation Environment, 25–28 Windows Preinstallation Environment. See WinPE Windows Server Backup, 166 (Windows Preinstallation Environment) Windows Server Virtualization (WSV), 253, Windows Presentation Foundation. See WPF 254–259 (Windows Presentation Foundation) Windows Socket Kernel (WSK), 55 Windows Process Activation Service (WPAS), IIS, Windows Sockets 2 API, 55 291–293 Windows Storage Server OS, 225 Windows Rally, 230 Windows System Resource Manager. See WSRM Windows Remote Management (WinRM), 171, 175 (Windows System Resource Manager) Windows Remote Shell, 319 Windows Task Manager, 317–318 Windows Scripting Host (WSH), 180 Windows Terminal Server. See Terminal Server Windows Server 2003 File Services, 142 Windows Virtual Machine Integration Service, 259 Windows Server 2008 architecture, 1–17 Windows Workflow Foundation (WWF), 8–9 boot environment, new feature, 12 Windows-on-Windows 64-bit (WoW64), 12 kernel modifications, 9–11 WinFrame, 262 memory support, 11–12 WinFS (Windows Future Storage), 6–7 .NET and, 7–8 WinPE (Windows Preinstallation Environment) new features, 5–6 BDD deployment with, 45–47 roots of, 1–2 creating from within WAIK, 32 system overview, 2–3 features of, 25–28 Terminal Server, 266 WINPESHL.INI command, WinPE, 27 virtualization and hypervisor, 13–16 WinRM (Windows Remote Management) service, Windows 2000/NT architecture, 3–5 171, 175 Windows Server 08 architecture, 12 WinView, 262 Windows Workflow Foundation, 8–9 witness disk, fail-over clusters, 246 WinFS, 6–7 WMI (Windows Management Instrumentation) Windows Server 2008, deploying, 19–52 group policy objects and, 101–102 Application Compatibility Toolkit 5.0, 36–38 IIS management with, 307–308 74593bindex.fm Page 356 Friday, January 11, 2008 9:25 AM
356 WORKER PROCESSES • ZTIS (ZERO TOUCH INSTALLATIONS)
as interoperability standard, 181 overview of, 159–161 overview of, 175–176 performance enhancements using, 235–239 PowerShell access to, 191 WSV (Windows Server Virtualization), 253, worker processes, WPAS and, 292 254–259 WoW64 (Windows-on-Windows 64-bit), 12 WWF (Windows Workflow Foundation), 8–9 WOW64.WIN.DLL, 13 Wyse Winterms, 263–264 WPAS (Windows Process Activation Service), IIS, 291–293 WPD devices, 127 X WPEINIT.EXE command, WinPE, 27 XAML (Extensible Application Markup WPF (Windows Presentation Foundation) Language), 6 as Avalon, 6 XCOPY command, 291 defined, 9 XD (Execute Disable), Intel VT processors, 252 XPS using, 229 Xen open source virtual machine, 15 WSD (Web Services on Devices), 230 XML (Extensible Markup Language), 39–40 WSH (Windows Scripting Host), 180 XPS (XML Paper Specification), 229 WSK (Windows Socket Kernel), 55 WSRM (Windows System Resource Manager) defined, 235 Z managing Terminal Server with, 271 ZTIs (Zero Touch Installations), 50–51