TechNet Magazine Blog

NAP monitors the health of specified computers when they attempt to connect to a network and includes a number of mechanisms to enforce health requirements. In this article, Geek of All Trades Greg Shields gives readers an overview of these enforcement mechanisms and, as an example, takes a closer look at setting up DHCP enforcement.

For more information on this topic, see The Cable Guy: Troubleshooting NAP Enforcement.

Use Windows PowerShell to Manage Virtual Machines
Here are a few examples of how you can use Windows PowerShell scripts to manage virtual machines running on a Server Core installation. Note that these scripts are presented as samples and may need to be customized to work in your environment.

Create a New Failover Cluster in 12 Steps
Once you’ve thoroughly researched and planned your implementation of Failover clusters, you’re ready to actually create the cluster. The mechanism to create and manage Failover clusters is the Cluster Administrator application, part of the Administrative Tools folder. Here are the 12 easy steps!

Create and Use Starter GPOs
When you create a new GPO in the GPMC, you are given the opportunity to base the new GPO on a starter GPO. Because the settings of the starter GPO are then imported into the new GPO, you can use a starter GPO to define the base configuration settings for a new GPO. Here are the steps you need to follow to create a starter GPO.

Monitor and Tune Network Bandwidth and Connectivity
No other factor matters more to the way a user perceives your server’s performance than the network that connects your server to the user’s computer. The delay, or latency, between when a request is made and the time it’s received can make all the difference. To determine the throughput and current activity on a server’s network cards, you can check these counters.

Disabling an Unused Part of Group Policy Objects
One way to disable a policy is to disable an unused part of the GPO. By disabling part of a policy that isn’t used, the application of GPOs and security will be faster.

Administer Windows Server 2008 Server Core from the Command Prompt
This tip offers a list of tools that will help you become an expert in administering Server Core from the command prompt.

Installing and Uninstalling Roles and Features Using Ocsetup
You can use Ocsetup.exe to install or remove roles, role services, and features on Server Core. Note that the Ocsetup.exe syntax is case sensitive so you must type package names exactly as shown in this list.

Use Built-In Tools to Monitor DNS Servers
Windows Server 2008 offers built-in functionality for monitoring a DNS server. You can configure monitoring to occur manually or automatically by following these simple steps!

In the May 2009 issue of TechNet Magazine, Paul presents the Top 10 Security Issue every DBA should be concerned about. He explores each problem, explains each solution, and then points you to where you can find more information on each problem. In the article, Paul discusses:

• Physical Security
• Network Security
• Attack Surface Minimization
• Service Accounts
• Restricting Use of Administrator Privileges
• Authentication
• Authorization
• SQL Injection
• Disaster Recovery
• Auditing

Read the full article online now.

Microsoft Forefront is designed to deliver an integrated security solution that makes it much easier to deploy and manage security across an organization’s IT infrastructure. In this, our annual security issue, we feature two articles that describe how Forefront Security protects instant messaging and e-mail.

Protect Instant Messaging with Forefront Security As IM becomes ever more popular, it is increasingly important that administrators have a way to keep it secure. Forefront Security for Office Communication Server provides effective protection against instant messaging-targeted malware or other prohibited content within an OCS 2007 environment, as Molly Gilmore describes.

Protect E-Mail with Forefront Security  Neetu Rajpal introduces the next generation of Forefront Security for Exchange, a premium anti-malware product that protects e-mail that flows through Exchange server environments.

Windows 7 and Windows Server 2008 R2 introduce PKI enhancements that greatly improve the deployment and operational experience for users, enabling powerful new scenarios while decreasing operational costs. In the May 2009 issue of TechNet Magazine, we explore all these changes to PKI.

Read the full article online now.

Windows 7 includes many new features and enhancements to help improve  security. In the May 2009 issue of TechNet Magazine, which is now available online, Chris Corio gives an overview of all these new security features and enhancements in Windows 7.  In the article, Chris discusses:

• Windows Biometric Framework
• Extending Authentication Protocols
• BitLocker Core Enhancements
• BitLocker To Go
• UAC Improvements
• AppLocker
• Global SACLs and Granular Auditing
• DNSSec Validation

Read the full article online now.

To celebrate Earth Day (and the one-year anniversary of our Sustainable Computing column), we've produced a special online-only edition of TechNet Magazine that focuses entirely on Green IT and reducing energy consumption.

It includes some new articles as well as a collection of some of the best Sustainable Computing coverage we've done in the past year.

Throughout the articles, we offer a variety of best practices and hands-on techniques you can easily implement to reduce energy consumption and save money for your organization.

FEATURE ARTICLES                                                                  
Green IT: Framework for Building a “Hyper-Green” Virtual Server System
A Hyper-Green virtualization system is designed to fully optimize your reduction in enegy consumption. Here are seven steps you must follow to build a Hyper-Green system. -- Adam Bogobowicz and Dave Ohara

Green IT: Planning Your Power Management and Virtualization Strategies
Implementing power management and virtualization strategies are ideal first steps in moving towards a greener IT environment. Learn how you can simplify planning these strategies with the free Microsoft Assessment and Planning (MAP) Toolkit. -- -- Baldwin Ng

Green IT: Essential Tools for Planning Your Virtual Infrastructure
Is your infrastructure ready for virtualization? The Microsoft Assessment and Planning Toolkit, a network-wide infrastructure assessment tool, can help you better understand your IT infrastructure and determine whether your systems are ready for upgrade or migration to a variety of technologies, including virtualization. -- Jay Sauls and Baldwin Ng

Green IT: Build a Green Datacenter
Companies around the world are beginning to think of ways to save energy and reduce costs, yet there is little guidance on how you can take action. Get started with our introduction to planning, designing, and implementing a green datacenter in your organization. -- Dave Ohara

COLUMNS                                                                                   
From the Editor: Going Green
Constant debate is healthy, but only action will bring results.  It's time to start acting on your Green IT initiatives. -- Matthew Graven

Sustainable Computing: Enforce Power Management Settings in your Organization with Group Policy
Find out how features in Microsoft operating systems, various IT tools, and system management solutions (such as Microsoft System Center) can help you save money and minimize carbon emissions. -- Frank Koch, Mike Stephens, and Michael Walsh

Sustainable Computing: Sleep or Hibernate?
Leaving your computer on when it's not in use is a waste of energy. Features like Sleep and Hibernate make it easy to power down your system when you're not using it, and these features are more reliable now than in previous versions of Windows. Here's a look at the differences between these features and some best practices for configuring them. -- Mark Aggar, Megan Morrone, and Michael Walsh

Sustainable Computing: Is It Time to Turn Off Your Servers?
When you're not using your PC, you shut it down. So why not do the same with your servers? Dave Ohara explores the strategy of powering down idle servers for significant reductions in power consumption. -- Dave Ohara

Sustainable Computing: Conserving Energy with Group Policy
Enforcing a power management strategy on the systems throughout your entire organization can add up to substantial savings. And Windows Vista includes 35 power management settings that you can configure and enforce with Group Policy. Here is some guidance for configuring some of the more common settings. -- Mark Aggar, Pat Stemen, and Michael Walsh

Sustainable Computing: Plan and Optimize Your Infrastructure to be Energy Efficient with System Center
To truly achieve energy efficiency across the enterprise, you must think beyond power management settings and take into consideration the entire profile of your organization's architecture. -- Frank Koch, Mike Stephens, and Michael Walsh

The May 2009 issue of TechNet Magazine is available online. And this is our annual Security Issue!

We introduce you to new security features and enhancements in the upcoming release of Windows 7 and delve into PKI enhancements in Windows 7 and Windows Server 2008 R2.  We discuss common SQL Server security mistakes and show you how to fix these problems. We even explain how you can make sure your instant messaging and e-mail communications are secure.

We also have two articles that teach you how to customize and get more out of Office applications.



FEATURE ARTICLES                                                                  
Security: An Introduction to Security in Windows 7
Windows 7 includes many new features and enhancements to help improve  security. Here’s an overview of everything you’ll find, from the new Biometric Framework and AppLocker to improvements for BitLocker and UAC. Chris Corio

Security: PKI Enhancements in Windows 7 and Windows Server 2008 R2
Windows 7 and Windows Server 2008 R2 introduce PKI enhancements that greatly improve the deployment and operational experience for users, enabling powerful new scenarios while decreasing operational costs. Learn about all the changes to PKI.

Security: Common SQL Server Security Issues and Solutions
Have you found yourself inadvertently in charge of a SQL Server database and don’t know all the best practices for making it secure? Paul Randal covers the top 10 security areas you should worry about, detailing common problems and their solutions.

Security: Protect Instant Messaging with Forefront Security
As IM becomes ever more popular, it is increasingly important that administrators  have a way to keep it secure. Forefront Security for Office Communication Server provides effective protection against instant messaging-targeted malware or other prohibited content within an OCS 2007 environment.

Security: Protect E-Mail with Forefront Security
Neetu Rajpal introduces the next generation of Forefront Security for Exchange, a premium anti-malware product that protects e-mail that flows through Exchange server environments.

Microsoft Office: A Guide to Customizing the Office 2007 Ribbon
The Microsoft Offi ce Ribbon makes it extremely easy to customize the interface of Offi ce applications for users in your environment— and all you need is Notepad.  Here is everything you need to know to start customizing the Offi ce Ribbon today.

Microsoft Excel: Using Excel and Visual Basic for Applications to Create a Game
A look at how you can use Visual Basic for Applications to create a game in Excel 2007. It's the perfect way to prep for OfficePalooza!

COLUMNS                                                                                   
Toolbox: New Products for IT Pros
Greg Steen looks at using Admin Script Editor Enterprise Edition and finding SQL Server instances with Quest Discovery Wizard for SQL Server. He also discusses the book "Windows PowerShell Scripting Guide".

Exchange Queue & A: Recovering a Clustered Mailbox Server, Offline Address Book Issues, and More
Exchange Online and Exchange 2010.

Utility Spotlight: User Profile Deletion Utility
Delprof is a command-line utility that lets you free up disk space by deleting user profiles that are no longer required on both local or remote computers.

Inside SharePoint: Integrate Information Rights Management into SharePoint
Continuing last month’s discussion about SharePoint integration with AD RMS, this column show you how to establish an AD RMS pre-production development environment, compile the IRM protectors, and integrate the compiled components into WSS 3.0.

Windows PowerShell: Automating User Provisioning, Part 3
Don Jones continues his four-part series that explains how you can create an automated provisioning function in Windows PowerShell.

Geek of all Trades: Control Network Access Using DHCP Enforcement
NAP monitors the health of specified computers when they attempt to connect to a network and includes a number of mechanisms to enforce health requirements. This article gives readers an overview of these enforcement mechanisms and, as an example, takes a closer look at setting up DHCP enforcement.

Hey, Scripting Guy!: Working with Access Databases in Windows PowerShell
Automating data entry is more important than ever, and today’s automation language is Windows PowerShell. This article uses Windows PowerShell to collect some data about the local computer and write it to an Office Access database.

Desktop Files: Revisiting the Microsoft Desktop Optimization Pack
Wes Miller updates his 2007 article on the Microsoft Desktop Optimization Pack, a collection of valuable components that can can save your IT department a lot of time and effort. All of the components have been enhanced—and something new has been added.

Field Notes: IT Does Matter
Romi Mahajan notes the reasons people sometimes doubt the value of IT, then discusses why those reasons have little validity.

Cable Guy: DirectAccess and the Thin Edge Network
DirectAccess is a new feature of Windows 7 and Windows Server 2008 R2 that enables transparent, concurrent intranet and Internet remote access and eases the management of remote computers by combining a number of technologies and components, facilitating the transition to a thin edge network.

Windows Confidential: Finding the Right Volume
Raymond Chen discusses the difficult job of satisfying audiophiles and those who just want the sound to work.

The Microsoft Learning team has come out with a great series of bite-sized “Learning Snacks” to help introduce you to new features coming in Windows 7. They’ve just released a new series of Snacks this week, and we thought you might enjoy them!

Desktop Experience in Windows 7

Setting Up a Home Network in Windows 7

Implementing User Account Control in Windows 7

Introducing BitLocker and AppLocker in Windows 7

Introducing the Troubleshooting Platform in Windows 7

Using the Deployment Image Servicing and Management Tool for Servicing Windows 7 Images

Of course, for more information on new security features coming in Windows 7, take a look at Chris Corio’s article in this issue of TechNet Magazine: An Introduction to Security in Windows 7.

A few weeks ago, we mentioned the release of the latest edition of ServerQuest, the retro-style video game where the IT guy is the hero. Now you’ve got an even better reason to play – to outplay the other IT guys!

ServerQuest II has posted their leaderboard for all to see:

If you’re name is on it, congratulations! You clearly rock. If not, you’ve got some work to do.

We’ve got two free utilities this month, both designed to make the life of an IT pro a little easier by helping you manage resources.

Over time, the network PCs in your organization may become cluttered with multiple user profiles, especially if they're shared computers used by many people. These profiles and their associated files and documents can easily eat up a sizable chunk of disk space. Lance Whitney describes a tool called User Profile Deletion Utility that helps you remove the inactive local profiles from computers in your environment.

The second utility actually consists of two scripts that together give you a nice way to build a report on CPU utilization in your organization. Read James Turner’s Faster CPU Utilization Reports Using Multithreading  to find out how the use of multithreading allows reports to be produced much faster.

Read all about it on Ian Hameroff’s blog!  World, Meet Exchange 2010 introduces the public beta. Enjoy!

This month, TechNet Magazine is running a month of Windows Server 2008 tips, posting a new tip every day Monday through Friday.  Here's what we posted for the second week of April.

Use Built-In Tools to Create Partitions and Volumes in Windows Server
Windows Server 2008 simplifies the Disk Management user interface by using one set of dialog boxes and wizards for both partitions and volumes.

Run Check Disk from the Command Line to Find and Fix Errors
You can run Check Disk from the command line or within other utilities. At a command prompt, you can test the integrity of the E drive by typing these commands.

Create and Restore Shadow Copies on Windows Server 2008
Simple steps for creating and restoring Shadow Copies on Windows Server 2008!

Quickly Map a Network Drive in Windows Vista and Windows Server 2008
Need to quickly map a network drive? We show you how, in both Windows Vista and Windows Server 2008.

This month, TechNet Magazine is running a month of Windows Server 2008 tips, posting a new tip every day Monday through Friday.  Here's what we posted for April 1 through April 3.

Commands and Tools for Managing Windows Server 2008 Server Core
With a core server installation, you have a minimal UI that includes a limited desktop environment for local console management of the server. Here is an overview of key commands and utilities you’ll use for managing server core installations while logged on locally.

Quickly Filter Event Logs in Windows Server 2008
The Event Viewer automatically creates several filtered views of the event logs. You can also create a custom view to make it easier to look for specific types of events.

Create System Startup / Shutdown and User Logon / Logoff Scripts
With Windows Server 2008 you can configure four types of scripts: Computer Startup Executed during startup; Computer Shutdown Executed prior to shutdown; User Logon Executed when a user logs on; and User Logoff Executed when a user logs off. Here's how to write these useful scripts.