Today we will see a quick demo on Active Directory Management. It’s been years and we are still using Active Directory Management Console and over the time as your organization grows the management becomes a real challenge. Windows Server 2008 R2 introduces lot of new features related to Active Directory such as AD Recycle Bin and Active Directory Administrative Center.
Active Directory Administrative Center is the next generation management tool introduced in Windows Server 2008 R2. This tool is designed to ease the Active Directory management. We will now see how to make use of this Active Directory Administrative Center. By the way this tool powered by PowerShell that means we can make use of PowerShell cmdlets available for our disposal in order to manage the Active Directory.
I have a domain controller configured with woodgrovebank.com domain. Let’s start with the Active Directory Administrative Demo. In this demo we will see how we can easily search for the user and configure the account. This is easier than the typical way of managing.
Step 1: Go to Start menu, click Administrative Tools/Active Directory Administrative Center.
Step 2: In the Reset Password box, in the User name, type Woodgrovebank\aviraj and then press TAB
Notice you will get the message "The password will be reset for woodgrovebank\aviraj”
Step 3: Type the new password for this user and click on Apply. You will see the message saying password reset successfully.
Next, up let’s continue with the other demo for searching through the users’ properties using the Active Directory Administrative Center.
Step 1: In Active Directory Administrative Center left hand side pane, expand Woodgrovebank (local), click on the arrow and expand the OU and type In, you will see India OU then click on small arrow again and type Mum, you will see the OU starting with Mum and in this case it is Mumbai.
Step 2: Double click on the Mumbai OU, this will show the user Aviraj Ajgekar, which is currently disabled user account and you can see the brief summary about the same user. And in the right hand side, it will show the Tasks pane where you can perform certain actions related to that particular user.
Step 3: Double click on the above user Aviraj Ajgekar and you will be able to see all the properties related to this particular user.
You will see the properties such as Account, Organization, Member Of, Profile and Extensions details for this user.
Notice the Red Boxes numbered 1, 2, 3
Number 1: Sections talking about user details
Number 2: Close or Expand the certain section
Number 3: Add the sections as per the requirement
Step 4: Using the following you can add/remove the sections as per your requirements.
As we said Active Directory Administrative Center is powered by PowerShell, we will now use built in Active Directory PowerShell module to manage some of the useful tasks with the help of PowerShell cmdlets.
Go to start menu, click on Windows PowerShell ISE. This will launch PowerShell Integrated Scripting Environment for running PowerShell scripts.
Step 1: Type the following command to load the Active Directory Module for PowerShell
Step 2: Type the following command to List available Modules, this will show available module name: ActiveDirectory
Step 3: Type the following command to Display the commands related to Active Directory.
Get-Command –Module ActiveDirectory
Well, that’s all you need to kick off. Next command you can try on your own depending upon how and which commands you want to use.
Note: In this command you have to provide filter to get the user list. In this case Filter samAccountName –like “Aviraj”
That’s all from Active Directory Administrative Center using the built in MMC & using PowerShell ISE. You can make you of these cmdlets to easier your and managing your AD environment much more easily. For more info, scripts keep visiting Hey Scripting Guy’s blog.
Multilingual User Interface (MUI) Language Packs (Windows Server Language Packs) enable a multilingual user interface in a Windows Server 2008 R2 environment. Adding one or more language packs to a Windows Server 2008 R2 image enables one or more languages in the installed Windows Server operating system, allowing corporations to deploy the same Windows Server 2008 R2 image worldwide while still providing localized user interfaces.
NOTE: Itanium based systems require Itanium (ia64) language packs
Each language pack is available as a specific .exe file. If you require further language packs select the appropriate language in the Quick Details section above. x64 Version - Windows6.1-KB974587-x64-en-us.exe IA64 Version - Windows6.1-KB974587-ia64-en-us.exe If needed, you can download the full Windows Server 2008 R2 Multilingual User Interface Language Pack ISO, containing all 35 language packs (2.3Gb).
Additional links to MUI documentation are listed in the "Related Resources" box. Note that MUI technology is shared between Windows client and Windows Server 2008 R2. Therefore the Windows MUI documentation applies to Windows Server 2008 R2 as well.
First of all in order to manage the Windows Server 2008 or Windows Server 2008 R2 based server from Windows 7 RTM, you need to download and install Remote Server Administration Tools for Windows 7.
You can get it from my previous blog post http://blogs.technet.com/aviraj/archive/2009/08/16/remote-server-administration-tools-for-windows-7.aspx or Click Here
Assuming that you have download either x86 or x64 version of the RSAT Tools for Windows 7, we will move further. By default when you install the tools, they are not yet available in Administrative Tools. You have to manually enable what are the administrative tools you require.
Step 1: Download and install the appropriate version of the RSAT Tools. Click Start, click Control Panel, and then click Programs.
Step 2: In the Programs and Features area, click Turn Windows features on or off
Step 3: If you are prompted by User Account Control to enable the Windows Features dialog box to open, click Continue
Step 4: In the Windows Features dialog box, expand Remote Server Administration Tools. Select the remote management tools that you want to install. In this case click on Hyper-V Tools and click on OK.
Step 5: This will install the Hyper-V Manager for Windows 7
Step 6: After the installation click on Restart Now or you can click Restart Later.
Step 7: After the reboot click on Start, Administrative Tools. Click on Hyper-V Manager.
Step 8: This will launch Hyper-V Manager MMC.
Step 9: In the right hand side Actions pane, click on Connect to Server… In the Select Computer windows click on Another computer.
Type the Server you want to manage. In this case it is DEMOSERVER03, click on OK.
Step 10: This will connect to the DEMOSERVER03 server and show the currently Virtual Machines. You can double on any VM to connect.
This way we have seen how to manage Hyper-V based environment using Remote Server Administrative Tools for Windows 7.
This article describes how to use Group Policy, Powershell and the Remote Access Service (RAS) application programming interfaces (APIs) to configure and deploy VPN connection settings to client computers ready for use by users. The solution also describes how the Task Scheduler service can be used to configure scripts or programs that are run whenever a VPN connection is made to the VPN server. The advantage of this solution is that it is not platform specific, and can be used on all of the currently supported versions of Windows.
This guide discusses one technique that can be used. Its primary purpose is to illustrate how a remote access connection can be created programmatically. Another technique often used is to use the Connection Manager Administration Kit (CMAK) to create a Connection Manager profile that can be deployed to your clients. For more information about CMAK, see Connection Manager Administration Kit (http://go.microsoft.com/fwlink/?linkid=55986) in the Windows Server Technical Library.
Amazing documentation for configuring & deploying VPN connections with the help of APIs available.
Microsoft made available the new documentation for Certification Enrollment with Windows Server 2008 R2.
In these documentation you will get the detailed information about the following types of Certificate Enrollment process.
Cross-forest Certificate Enrollment with Windows Server 2008 R2
This paper explains how cross-forest certificate enrollment works. It also provides deployment guidance for cross-forest certificate enrollment in new and existing Active Directory Certificate Services (AD CS) deployments.
Windows Server 2008 R2 enables enterprise Certification Authorities (CA) to issue digital certificates to clients that are members of a different Active Directory (AD) forest. This process is called cross-forest certificate enrollment. This paper explains how cross-forest certificate enrollment works. It provides deployment guidance for cross-forest certificate enrollment in new and existing Active Directory Certificate Services (AD CS) deployments. It provides strategies for consolidating existing certificate templates and presents choices for ongoing management of a cross-forest certificates deployment. A PowerShell script is provided to facilitate management tasks related to setting up and maintaining cross-forest certificate enrollment environments.
Certificate Enrollment Web Services in Windows Server 2008 R2
This paper explains how certificate enrollment Web services work in Windows Server 2008 R2. It also provides deployment guidance for certificate enrollment Web services in new and existing Active Directory Certificate Services (AD CS) deployments.
To provide certificate enrollment in a broader set of deployment scenarios, Microsoft developed a new enrollment protocol based on WS-Trust and two new role services in Windows Server 2008 R2 based on this protocol. The new services use HTTP based messaging over a TLS encrypted transport and do not depend solely on Kerberos for authentication. This enables automatic enrollment from Windows 7 clients to be used across forest boundaries and over the web. The two new role services are called Certificate Enrollment Policy Web Service (the policy service) and Certificate Enrollment Web Service (the enrollment service). These Web services, respectively, enable certificate policy retrieval and certificate enrollment over HTTPS. This guide explains the deployment scenarios, requirements, and recommended configurations, and offers step by step procedures to help you install and configure the new role services.
Announcing the availability the of VMM 2008 R2 RTM. Take full advantage of platform enhancements in Windows Server 2008 R2 including Live Migration, Clustered Shared Volumes (CSV), hot add/remove of storage, network optimization, and remote desktop services (RDS). VMM 2008 R2 also adds functionality to migrate storage for running VMs, SAN-based migration across clusters, template based rapid provisioning, maintenance mode to automate the evacuation of VMs off hosts, and Live Migration host compatibility checks.
System Center Virtual Machine Manager 2008 R2 (VMM) is a comprehensive management solution for the virtualized data center. It enables increased physical server utilization, centralized management of virtual machine infrastructure, and rapid provisioning of new virtual machines by the administrator, delegated administrator, and authorized end users. VMM 2008 R2 can manage all the platforms managed by VMM 2008 and adds support for Windows Server 2008 R2 with Hyper-V. Windows Server 2008 R2 includes significant feature improvements to Hyper-V. VMM 2008 R2 leverages these new platform enhancements and extends the feature set of VMM 2008. Windows Server 2008 R2 Hyper-V Host Management
Download the 180-day evaluation software and explore the latest features for consolidating your physical servers, rapidly provisioning virtual machines, and managing Windows Server 2008 R2 Hyper-V through one console.
MDT 2010 DOWNLOAD NOW
Microsoft Deployment Toolkit 2010 is the newest version of Microsoft Deployment Toolkit, a Solution Accelerator for operating system and application deployment. MDT 2010 supports deployment of Windows 7 and Windows Server 2008 R2 in addition to deployment of Windows Vista, Windows Server 2008, Windows Server 2003, and Windows XP.
For more updated resources visit Microsoft Deployment Toolkit Team Blog at http://blogs.technet.com/msdeployment/default.aspx
Deploy Windows 7 and Windows Server 2008 R2 with the newly released Microsoft Deployment Toolkit 2010. MDT is the recommended process and toolset for automating desktop and server deployment. MDT provides you with the following benefits:
Choosing the Right Version Microsoft Deployment Toolkit 2010 is offered in two versions to support Solution Accelerator component installation on x64 or x86 hosts. Select the version that corresponds with your host hardware type. Both versions of MDT 2010 support deployment of x86 and x64 Windows operating systems. The What’s New in MDT 2010 guide and Release Notes are available as separate downloads on this page for those who want to quickly evaluate MDT 2010. The full package of guidance is available in .chm format as part of the toolkit. For those who want it in Word format, a separate download is available in the Files in this Download list. Send questions or feedback about MDT 2010 directly to us at SATfdbk@microsoft.com
Solution Accelerators are free, scenario-based guides and automations designed to help IT Professionals who are proactively planning, deploying, and operating IT systems using Microsoft products and technologies. Solution Accelerator scenarios focus on security and compliance, management and infrastructure, and communication and collaboration. Get the Solution Accelerator Notifications Newsletter Subscribe to the Solution Accelerator Notifications newsletter so that you can stay informed about new Solution Accelerator releases and updates. The newsletter covers such areas of interest as
You may also receive invitations to participate in accelerator development via beta programs and customer surveys. Solution Accelerator Notifications is currently available in English only.
Happy Deploying :)
This guide describes the considerations you should take into account when planning to deploy the Hyper-V™ technology, and provides installation and configuration details that will help you deploy Hyper-V. This guide provides Requirements, installation, and configuration information for Hyper-V.
About this guide
The Hyper-V Planning and Deployment Guide is intended to help you understand the considerations you should take into account when planning to deploy Hyper-V™, and to provide installation and configuration details that will help you deploy Hyper-V.
· Overview of Hyper-V
· Before You Install Hyper-V
· Installing Hyper-V
· Configuring Virtual Networks
· Implementing Disks and Storage
· Appendix A: Example Authorization Manager Tasks and Operations
· Appendix B: Authorization Manager Terminology
Basically this guide covers all the general queries and questions asked related to Hyper-V Role. For example in the following sessions you will find some of the basic topics covered related to Hyper-V Roles and Requirements.
Happy Virtualization :)
This document provides guidance to help organizations understand and manage the security of the Microsoft® BranchCache™ feature introduced in Microsoft Windows Server® 2008 R2 and Microsoft Windows® 7. BranchCache is a wide area network (WAN) bandwidth optimization technology. To optimize WAN bandwidth, BranchCache copies content from your main office content servers and caches the content at branch office locations, allowing client computers at branch offices to access the content locally rather than over the WAN.
A must read guide for all of them who are deploying this new feature in their Windows Server 2008 R2 and Windows 7 based infrastructure. Often during my better together session covering this particular I get lot of queries around BranchCache Security. This guide covers all the necessary points required for setting up the security for BranchCache based environment.
Microsoft India kicks off with THE NEW EFFICIENCY launch events.
Feel free to join in the launch events and the contests across India.
Visit the following link to know more about THE NEW EFFICIENCY Launch.
Microsoft Security Essentials provides real-time protection for your home PC that guards against viruses, spyware, and other malicious software.
Microsoft Security Essentials is a free* download from Microsoft that is simple to install, easy to use, and always kept up to date so you can be assured your PC is protected by the latest technology. It’s easy to tell if your PC is secure — when you’re green, you’re good. It’s that simple.
Microsoft Security Essentials runs quietly and efficiently in the background so that you are free to use your Windows-based PC the way you want—without interruptions or long computer wait times.
Find information, definitions, and analyses of all the latest threats that Microsoft Security Essentials can help protect you against in the Microsoft Malware Protection Center
Need security for your business? Protect your computers with Microsoft Forefront Client Security
*Your PC must run genuine Windows to install Microsoft Security Essentials. Learn more about genuine
More to read on http://blogs.technet.com/mmpc/archive/2009/09/29/introducing-microsoft-security-essentials.aspx
Here’s a note from the Microsoft Security Essentials team:
Microsoft Security Essentials (formerly codenamed “Morro”) is the newest security product from Microsoft that helps protect consumers against viruses, spyware and other malicious software. The program, using the same technology as the Forefront product family, is designed to protect and take the guess work out of you wondering if you are protected or not. If you’re green, you’re good. Red or yellow means there is something that needs to be done to keep your PC secure. A single click and the PC is back to the green protected state. Microsoft Security Essentials is also designed to address cost and other barriers that have prevented many of our customers from running up-to-date security protection on their PCs. Because there are no subscription fees, there is no registration required to collect billing or other personal information. It also runs quietly in the background scheduling scans when the PC is most likely idle and interrupting the user only when there is an action required to keep their PC secure. It employs practices like active memory swapping and CPU throttling to limit the impact on your PC performance, even on older or less powerful PCs. This isn’t a security suite product that provides rich PC tuning capabilities or backs up your data. But if what you’re looking for is “install and forget” malware protection and solid quality Microsoft Security Essentials may be just what you’ve been waiting for. Plus, as a user of Microsoft Security Essentials you’ll get support from the MMPC. We think you’re gonna like what you get with Microsoft Security Essentials. See for yourself and download it now! Microsoft Security Essentials is available now in 8 languages and 19 markets around the world for genuine Windows PCs. Download at: http://www.microsoft.com/security_essentials.
Microsoft Security Essentials (formerly codenamed “Morro”) is the newest security product from Microsoft that helps protect consumers against viruses, spyware and other malicious software. The program, using the same technology as the Forefront product family, is designed to protect and take the guess work out of you wondering if you are protected or not.
If you’re green, you’re good.
Red or yellow means there is something that needs to be done to keep your PC secure. A single click and the PC is back to the green protected state.
Microsoft Security Essentials is also designed to address cost and other barriers that have prevented many of our customers from running up-to-date security protection on their PCs. Because there are no subscription fees, there is no registration required to collect billing or other personal information.
It also runs quietly in the background scheduling scans when the PC is most likely idle and interrupting the user only when there is an action required to keep their PC secure. It employs practices like active memory swapping and CPU throttling to limit the impact on your PC performance, even on older or less powerful PCs.
This isn’t a security suite product that provides rich PC tuning capabilities or backs up your data. But if what you’re looking for is “install and forget” malware protection and solid quality Microsoft Security Essentials may be just what you’ve been waiting for. Plus, as a user of Microsoft Security Essentials you’ll get support from the MMPC.
We think you’re gonna like what you get with Microsoft Security Essentials. See for yourself and download it now!
Microsoft Security Essentials is available now in 8 languages and 19 markets around the world for genuine Windows PCs. Download at: http://www.microsoft.com/security_essentials.
DOWNLOAD FOLLOWING FILES
Download: Windows XP 32-bit Download: Windows Vista/WIN7 32-bit Download: Windows Vista/WIN7 64-bit
Have a secure experience :)
Following guide has list of resources to help you troubleshoot issues with Windows Server 2008 R2.
A MUST HAVE resources for every IT Professional working on Windows Server 2008 R2.
Area of Focus & Link to Resource
Software Licensing and Product Activation
How to troubleshoot Volume Activation error codes on Windows Server 2008 and Windows Vista-based computers (article 938450 in the Microsoft® Knowledge Base)
Windows Volume Activation
Windows Volume Activation on the Windows Client TechCenter
Hyper-V Live Migration
Hyper-V: Using Live Migration with Cluster Shared Volumes in Windows Server 2008 R2
Hyper-V and Failover Clustering
Migrating Settings to a Failover Cluster Running Windows Server 2008 R2
Hyper-V: Using Hyper-V and Failover Clustering
Overview of Failover Clusters
Remote Desktop Services (Terminal Services)
Remote Desktop Services team blog (how to set up, configure, and so on)
Performance team blog about Remote Desktop Services (Terminal Services)
Remote Desktop Services in Windows Server 2008 R2 (includes how to deploy RD Licensing and RD Gateway)
Windows Server 2008 R2 Remote Desktop Services (Terminal Services) Health Model
Operating System Deployment, Migration, and Upgrade education
Microsoft Deployment Toolkit (MDT) 2008 Update 1
Direct Access and Networking education
Direct Access for Windows Server 2008 R2 on Microsoft TechNet
DirectAccess Early Adopter’s Guide
The Cable Guy Column Archives
Getting Started with Application Compatibility in a Windows Deployment
Microsoft Application Compatibility Toolkit (ACT) Version 5.5
Application Compatibility and User Account Control Web site
Windows Server 2008 R2 Supported Applications
ISV Application Readiness and Certification
Application Compatibility Resources for IT Professionals and Developers
Applocker Step-by-Step Guide
Public Key Infrastructure and Certificate Services
Active Directory Certificate Services
Active Directory Certificate Services: Web Enrollment
Active Directory Certificate Services: Enterprise PKI (PKIView tool)
Windows PKI blog on Microsoft TechNet
You can get the web version of the same document over here.
In case you want to download the .docx formatted guide visit the following link.
This document outlines supported and unsupported upgrade paths for Windows Server® 2008 R2 SKUs.
Welcome to the Windows 7 Enterprise 90-day Trial. It is designed specifically for IT Professionals, so that you can test your software and hardware on a final version of the product. In addition, it provides the opportunity for you to become more familiar with the key improvements over previous versions of the Windows operating system, and experience firsthand how Windows 7 can make your PC environment more productive, secure, and manageable.
Here’s what you need to know:
This is trial software designed for IT Professionals interested in experiencing the Windows 7 Enterprise on behalf of their organization so please read the following to get an idea of the risks and key things you need to know before you install.
We do not recommend that you install this if you are a not an IT Professional or not professionally managing corporate networks.
Guidelines on usage:
Feel free to download and test the Windows 7 Enterprise edition for IT Professionals.
Visit the TechNet Evalcenter to download http://technet.microsoft.com/en-us/evalcenter/cc442495.aspx?ITPID=sprblog
Infrastructure Planning and Design Guides—Release Announcement
Windows Server Virtualization
System Center Virtual Machine Manager
The Infrastructure Planning and Design team has released two updated virtualization guides: Windows Server Virtualization and System Center Virtual Machine Manager. These guides, updated to reflect the features and functionalities of Windows Server® 2008 R2 and System Center Virtual Machine Manager 2008 R2, outline the critical infrastructure design elements that are crucial to a successful implementation of these virtualization products.
The Infrastructure Planning and Design Guide for Windows Server Virtualization takes the reader through the process of designing components, layout, and connectivity in a logical, sequential order. Identification of the Hyper-V™ server hosts required is presented in easy-to-follow steps, helping the reader to design and plan virtual server datacenters.
The Infrastructure Planning and Design Guide for Microsoft System Center Virtual Machine Manager assists readers in the design and implementation of SCVMM architecture, thus enabling centralized administration of physical and virtual machines. Identification of the VMM server instances required is one of the simple, seven-step design processes presented in this guide.
Download the IPD Guides for Virtualization at http://technet.microsoft.com/en-us/solutionaccelerators/ee395429.aspx Infrastructure Planning and Design streamlines the planning process by:
Defining the technical decision flow through the planning process.
Listing the decisions to be made and the commonly available options and considerations.
Relating the decisions and options to the business in terms of cost, complexity, and other characteristics.
Framing decisions in terms of additional questions to the business to ensure a comprehensive alignment with the appropriate business landscape.
Tell your peers about IPD guides! Please forward this mail to anyone who wants to learn more about Infrastructure Planning and Design guides. Join the Beta Additional Infrastructure Planning and Design guides are available as beta releases on the Connect Web site. They are open beta downloads. If you are not already a member of the IPD beta program, and would like to join, follow these steps:
Go here to join the IPD beta program: https://connect.microsoft.com/InvitationUse.aspx?ProgramID=1587&InvitationID=IPDM-QX6H-7TTV&SiteID=14
If the link does not work for you, copy and paste it into the Web browser address bar.
Sign in using a valid Windows Live ID.
Enter your registration information. Then continue to the IPD beta program page.
Already a member of the IPD beta program? Go here to get the latest IPD beta downloads: https://connect.microsoft.com/content/content.aspx?ContentID=6556&SiteID=14
Related Resources Check out all the Infrastructure Planning and Design team has to offer! Visit the IPD page on TechNet, http://www.Microsoft.com/IPD, for additional information, including our most recent guides.
On September 29th at 9 am (PST) please join us here on www.thenewefficiency.com for a kick-off discussion on “The New Efficiency” live from San Francisco as a part of Microsoft’s Virtual Launch Event.
Join in the conversation during this must-see event and see top technology leaders and Microsoft’s Steve Ballmer, debate the role of IT during this economic reset. Can cost savings, productivity and innovation come together to drive business growth? Get a closer look at how real companies are justifying IT investments across desktop, server, network and beyond. You’ll also find sessions related to new releases of Windows 7, Windows Server 2008 R2, Microsoft Exchange Server 2010, Microsoft Forefront, Microsoft System Center, and Microsoft Desktop Optimization Pack.
Mark your calendars; watch it live; submit questions in advance. Don’t miss it!