Windows Server 2008 Administration et déploiement 3/30/2017 12:05 PM Fabrice Meillon Architecte Infrastructure Microsoft France http://blogs.technet.com/fabricem_blogs Windows Server 2008 Administration et déploiement © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Les outils d’administration Au cœur de l’optimisation des coûts de possession Les coûts les à l’administration représentent le facteur essentiel du coût de possession d’un serveur … Les notions et outils introduits avec Windows 2000 et pérennisées par Windows Server 2003 demeurent MMC, WMI, La palette des outils disponible en standard est largement enrichie Plus de Resource Kit ou de Support Tools

Objectifs de Windows Server 2008 Simplifier l’installation du serveur Déployer plus rapidement de nouveaux systèmes (postes et serveurs) Rationaliser les outils d’administration Elargir les possibilités offertes en terme d’administration locale et distante

Quoi de neuf sur l’installation ? 3/30/2017 12:05 PM Quoi de neuf sur l’installation ? © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Plateformes et versions 32 bits (x86) 64 bits (x64 et IA64*) 8 Versions « classique » Web Standard (avec ou sans Hyper-V) Enterprise (avec ou sans Hyper-V) Datacenter (avec ou sans Hyper-V) Itanium 2 options d’installation  classique et server core** * Rôles et fonctionnalités limités - http://www.microsoft.com/windowsserver/bulletins/longhorn/itanium_bulletin.mspx ** uniquement sur Standard, Enterprise et Datacenter

Installation et configuration initiale 3/30/2017 12:05 PM Installation et configuration initiale demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Server Core Option d’installation minimale 3/30/2017 12:05 PM Server Core Types de serveurs (exemples) Option d’installation minimale Surface d’exposition réduite Interface en ligne de commande Ensemble de rôles restreints Choix à l’installation ! TS IAS Web Server Share Point Etc… Server Avec .Net 3.0, shell, outils, etc. Server Core - « Rôles » DNS DHCP File AD WSV AD LDS Media Server IIS Server Core Composants Sécurité, TCP/IP, Système de fichiers, RPC, plus d’autre sous-systèmes Core Server GUI, CLR, Shell, IE, Media, OE, etc. © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary. 7

Installation et configuration Server Core 3/30/2017 12:05 PM Installation et configuration Server Core demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Server Core - Installation Manuelle En mode sans réponse (fichier Unattend) Configuration initiale Activer le produit en ligne de commande C:\windows\system32\slmgr.vbs –ato  Changer le nom de la machine Netdom renamecomputer %computername% /NewName: Changer les paramètres IP (par défaut le serveur est client DHCP) Netsh interface ipv4 show interfaces Netsh interface ipv4 set address 2 static @IP Mask netsh interface ipv4 add dnsserver 2  @IP_DNS 1 Joindre le domaine Netdom join %ComputerName% /domain:lh-demo.net /userd: /passwordd INF210

Server Core – Installation des périphériques Le Plug and Play est disponible sur un Server Core Si le driver est présent dans la distribution  installation “silencieuse” S’il n’est pas présent mais s’il est Plug and Play Copier le driver localement Exécuter : Pnputil –i –a driverinf Ajout des rôles et fonctionnalités Lister les composants disponibles Oclist.exe Ajouter un compoosants Ligne de commande : start /w ocsetup RolePackage/OptionalFeaturePackage Et pour supprimer : /uninstall à la ligne de commande

Quoi de neuf sur l’administration ? 3/30/2017 12:05 PM Quoi de neuf sur l’administration ? © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Windows Server 2008 - Administration De nombreux nouveaux outils ou outils ayant connu des évolutions significatives Server Manager Observateur d’événements (Event Viewer) Planificateur de tâches (Task Manager) Windows PowerShell Administration à distance (TS, WinRM et WinRS) Outils de diagnostique Windows Server Backup

Le Server Manager Votre nouvel ami  : le couteau suisse de l’administration locale de Windows Server 2008 Rationnaliser les outils et disposer d’un outil central permettant d’ajouter, de configurer et de gérer les différents rôles et fonctionnalités du serveur Un seul outil pour configurer Windows Server 2008 Portail pour l’administration Windows Server 2008 introduit deux niveaux de granularité pour l’installation et la configuration de ses composants Les rôles, au nombre de 17, chaque rôle représente une fonction majeure du système Les fonctionnalités, au nombre de 35, chaque fonctionnalité représente une fonction de moindre importance INF210

demo Le Server Manager 3/30/2017 12:05 PM © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Journaux d’événements Windows Eventing 6.0 Plus de contrôle Nouveau format (XML) permettant une intégration plus simple avec les outils tierces parties Nouvelles API de configuration et meta-données Plus de lisibilité Création de vues filtrées (une par rôle par défaut) Plus de flexibilité dans l’exploitation à grande échelle Transfert d’événements (Event Forwarding) en s’appuyant sur le protocole WS-Management Nouveau service “Event Collector” Configuration centralisée via stratégies de groupe Plus d’automatisation Association de taches à des événements Outils en ligne de commande

L’observateur d’événements 3/30/2017 12:05 PM L’observateur d’événements demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Ordonnanceur de tâches Plus de souplesse Activation de tâches sur des événements Lancement des tâches au démarrage, à l’ouverture de session, sur inactivité, ou quand connecté au réseau Spécification de conditions multiples pour la lancement Plus d’automatisation via le lancement de tâches en séquence Génération d’actions multiples sur la base d’une seule condition Synchronisation des tâches pour des scénarios complexes Plus de contrôle via la supervision des tâches Vues résumé des tâches ordonnancées et lancées Trace des succès et des échecs Envoi d’un mail quand la tâche se termine ou en cas de problème

Le planificateur de taches 3/30/2017 12:05 PM Le planificateur de taches demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3/30/2017 12:05 PM Windows PowerShell Windows PowerShell est un langage de script et un shell interactif offrant une manière de traiter des tâches orientée commande Les concepteurs ont suivis différentes approches afin que Windows PowerShell soit : aussi interactif et composable que KSH ou BASH aussi programmable que PERL ou RUBY aussi orienté-production que VMS DCL ou AS400 CL permettre l’accès aux sources de données aussi facilement que l’accès au système de fichiers © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary. 19

demo Windows PowerShell 3/30/2017 12:05 PM © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Administration via Terminal Services Plus de session 0 interactive Session 0 : services Sessions 1, 2 etc… = sessions utilisateurs MSTSC /console remplacé par MSTSC /admin Par défaut les utilisateurs sont restreints à une session « Restrict user to one session » à 1 Modification via tsconfig ou stratégie de groupe qwinsta

Gestion à distance de Windows (Windows Remote Management - WinRM) Windows Remote Management - “Firewall Friendly Remote Access Protocol” (remplace DCOM) Administration au travers de HTTP et HTTPS Implémentation Microsoft de WS-Management Un protocole de management de type service Web basé sur XML/SOAP Winrm : Outil de ligne de commande de la gestion à distance de Windows Installation : Winrm quickconfig WinRS: Windows Remote Shell

Implémentation de WS-Management WinRM Enumerate Response WinRM Enumerate Request SNMP WMI Provider WMI Providers Managed Objects SNMP Managed entity Cimv2 WMI Windows (Win32) Any WMI Any (Native Code) … Native C/C++ System.Management .NET Client Applications Windows Forms Web Forms COM Inter-Op C/C++ Client WMI COM API WMI Consumers (Management Applications) Scripts COM/DCOM WMI Scripting API Repository WMI Core (CIM Object Manager) WMI Infrastructure .NET WMI Provider .NET Managed App/entity System.Management. Instrumentation .NET C#, VB.NET, etc 1 2 3 Windows Remote Management WMI Plug-in For WS-Mgmt HTTP /HTTPS Windows Remote Management

Windows Remote Management Windows Remote Shell 3/30/2017 12:05 PM Windows Remote Management Windows Remote Shell demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Fiabilité et performance 3/30/2017 12:05 PM Fiabilité et performance Combine les fonctionnalités d’outils préalablement disponibles de manière indépendante (perfmon/SPA) Conserve trace des modifications du système Fournit de nouvelles fonctionnalités

demo Outils de diagnostics 3/30/2017 12:05 PM © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Server Core - Administration Locale ou distante en ligne de commande Outils basiques WinRM et Windows Remote Shell pour l’exécution à distance WMI et WMIC (locale et à distance) Terminal Services (à distance) Microsoft Management Console (à distance) RPC, DCOM Planificateur de tâches Evénements et transfert d’événements Pas de support du code managé donc pas de support de Windows PowerShell INF210

Administration Server Core 3/30/2017 12:05 PM Administration Server Core demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Sauvegarde et restauration Windows Server Backup remplace NTBackup Installation sous la forme d’une fonctionnalité additionnelle Basé sur le service “Volume Shadow Copy” et une sauvegarde au niveau bloc (block level) Assistant de planification de sauvegarde et à la demande Sauvegarde du serveur ou des volumes sélectionnés Sauvegarde sur disque (interne ou externe), DVD ou partages Première sauvegarde complète puis des sauvegardes incrémentielles Restauration Restauration volume, dossiers et fichiers Sauvegarde et restauration du System State uniquement disponible en ligne de commande : wbadmin.exe

Remote Server Administration Tools pour Vista SP1

Quoi de neuf sur le déploiement ? 3/30/2017 12:05 PM Quoi de neuf sur le déploiement ? © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Services de déploiement Windows (Windows Deployment Services) Solution de déploiement pour Windows Server 2008 Nouvelles technologies : WIM, IBS, WinPE Image de démarrage, image de capture Ensemble d’outils pour personnaliser l’installation Démarrage à distance d’un environnement de pré-installation (WinPE) Notion de serveur PXE Support du multicast  Administration graphique et en ligne de commande Wdsutil.exe

Comment fonctionne WDS? Client Serveur DHCP Le client demande une adresse 1 1 Le serveur DHCP alloue une adresse 2 2 Le client contacte le serveur WDS 3 3 6 Le serveur WDS vérifie si le poste existe dans l’Active Directory (optionnel) 4 Active Directory Serveur WDS 5 WDS réponds ou transfère à un serveur WDS plus proche 5 4 Le serveur WDS envoie une liste d’images de boot 6

Windows Deployment Services 3/30/2017 12:05 PM Windows Deployment Services demo © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Ressources utiles Blog : http://blogs.technet.com/longhorn

3/30/2017 12:05 PM © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION. © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.