Windows Azure Architecture Guide

Architecture Guide

Windows Azure

October 2012

Version 3.0

Disclaimer

This document is provided “as-is.” Information and views expressed in this document, including URL and other Internet website references, may change without notice. You bear the risk of using it.

Some examples are for illustration only and are fictitious. No real association is intended or inferred.

This document does not provide you with any legal rights to any intellectual property in any Microsoft product. You may copy and use this document for your internal, reference purposes.

© 2012 Microsoft Corporation. All rights reserved.

Microsoft, the Microsoft logo, the Windows logo, Active Directory, ActiveSync, AppFabric, Bing, BizTalk, Excel, Hyper-V, InfoPath, Internet Explorer, Office 365, Outlook, PerformancePoint, PowerPoint, SharePoint, SQL Azure, SQL Server, Visio, Visual Studio, Windows, Windows Azure, Windows Intune, Windows Mobile, Windows PowerShell, Windows Server, and Windows Vista are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries.

Contents

Overview ... 4

Scope of This Guide ... 4

Who Should Read This Guide ... 4

How to Use This Guide ... 4

Section Summaries ... 4

Customizing Your Solution ... 5

Why Customize? ... 5

The Customization Process ... 5

Understand Your Priorities ... 5

Choose a Starting Point ... 6

Adjust the Optimization Mapping ... 6

Adjust the Logical Architecture ... 8

Design the Physical Architecture and Plan ... 8

Phase 1 ... 9

Envision the Solution ... 9

Definition ... 9

Optimization Mapping ... 10

Technology Mapping ... 13

Architect the Solution ... 14

Logical Architecture ... 14

Illustrative Physical Architecture ... 15

System Components ... 16

Plan Development and Deployment of the Solution ... 20

Phase 2 ... 64

Envision the Solution ... 64

Definition ... 64

Optimization Mapping ... 65

Technology Mapping ... 67

Architect the Solution ... 69

Logical Architecture ... 69

Illustrative Physical Architecture ... 70

System Components ... 70

Plan Development and Deployment of the Solution ... 75

Phase 3 ... 97

Envision the Solution ... 97

Definition ... 97

Optimization Mapping ... 98

Technology Mapping ... 101

Architect the Solution ... 103

Logical Architecture ... 103

Illustrative Physical Architecture ... 103

System Components ... 104

Overview

This section explains this document’s scope, the intended audience, a description about how the audience should use this document, and a summary of the key sections.

Scope of This Guide

This document helps the audience design a logical architecture for an enterprise platform that is based on Microsoft® _{technologies and that optimizes Windows}® _{Azure™. It also contains references to other}

documents that describe how to design a physical architecture and how to plan for developing and deploying the designed platform.

The audience should use the information in this document in the context of business needs and integrated capability requirements that the Microsoft Optimization solution area for Windows Azure discusses. This solution area helps structure conversations with IT directors and executives to better understand their business drivers and priorities, discuss potential business capabilities, and design and deploy a robust enterprise platform that supports the solution.

Who Should Read This Guide

This document is for solution implementation team members who specify and plan an enterprise platform that optimizes Windows Azure. Solution implementation team members typically include business analysts, solution architects, platform architects, infrastructure architects, IT infrastructure managers, and IT operations managers.

How to Use This Guide

This document provides useful information about an integrated capability analysis, which is a

structured process for validating the requirements, specifying the design, and planning to develop and deploy an enterprise architecture.

Section Summaries

This document has four major sections:

 Customizing Your Solution: This section provides an approach to use the remaining sections of

this document and other Optimization solution area materials to validate requirements, specify the design, and plan to develop and deploy an enterprise architecture that meets your specific needs.  Phase 1: This section provides the definition; Optimization mapping; technology mapping; logical

architecture; illustrative physical architecture; system components; and references to plan, develop, and deploy Phase 1.

 Phase 2: This section provides the definition; Optimization mapping; technology mapping; logical

architecture; illustrative physical architecture; system components; and references to plan, develop, and deploy the Phase 2.

 Phase 3: This section provides the definition; Optimization mapping; technology mapping; logical

architecture; illustrative physical architecture; system components; and references to plan, develop, and deploy the Phase 3.

Customizing Your Solution

This section provides an approach to use this document and other Optimization solution area materials to validate requirements, specify the design, and plan to develop and deploy an enterprise architecture that optimizes Windows Azure.

Why Customize?

This document and the other Optimization solution area materials define three illustrative solution phases that increase in complexity and potential business value: Phase 1, Phase 2, and Phase 3. Each solution phase specifies business capabilities that map to the Optimization maturity models, architecture diagrams, and technologies.

The definitions of these three illustrative solutions are quite robust, so it is likely that no solution exactly matches your particular needs because your business has:

 Specific priorities of business drivers  Specific priorities of business capabilities

 Existing architecture and initiatives in your environment

The Customization Process

You should use the solution phases as starting points in the following steps, which ensures a resulting platform that is robust, agile, and manageable:

1. Understand your priorities. 2. Choose a starting point.

3. Adjust the Optimization mapping. 4. Adjust the logical architecture.

5. Design the physical architecture and plan.

Understand Your Priorities

The first step is to clearly understand, document, and baseline your priorities. You can use the Business Priorities Guide for a solution area to discuss, capture, and baseline the relevance and priority of specific business drivers and potential business capabilities.

Figure 1 illustrates an example where:

 The business driver, “Create high-impact sales proposals,” is the first priority.

 Red text emphasizes the compelling business capabilitiess that address the organization’s specific needs.

Figure 1 Example business priorities

Choose a Starting Point

Based on your priorities, Phase 2 is the starting point for this example because it is the least advanced solution that covers the first priority business capability.

Adjust the Optimization Mapping

Review and adjust the Optimization mapping that corresponds to the starting-point solution. You can remove capabilities that you do not need and change the maturity levels for the capabilities.

Figure 2 illustrates this process for the specific business capability priorities. In this figure:



Capability is needed



Capability is not needed

?

Capability may not be relevant

*

Capability that Phase 2 defines may not match the specific requirement for the customized solution

Figure 2 Adjusting your solution’s Optimization mapping

Tips for adjusting your solution’s Optimization mapping:

 For capabilities that may not match the specific requirement for your customized solution (that is, capabilities that are marked with an asterisk [*]):

• Refer to the Optimization model definitions.

• Consider using an alternate maturity level that corresponds to your requirements, as Figure 3 shows.

• Remove items in a capability that you do not need. Figure 3 Using an alternate maturity level

 For capabilities that may not be relevant (that is, capabilities that are marked with a question mark [?]):

• Identify, document, and discuss how a capability might be relevant.

• Identify the Core capabilities that may not be critically relevant, as Figure 4 shows. Figure 4 Identifying a Core capability that is not critically relevant

Server Security helps protect and secure the server infrastructure at the data center from viruses,

spam, malware, and other intrusions.

Adjust the Logical Architecture

After you identify a stable set of business capabilities and corresponding required Optimization capability maturity levels, you can adjust the technology mapping, logical architecture, and system components of the starting-point solution phase to remove what you do not need.

Design the Physical Architecture and Plan

From the system components list that you adjusted, you can refer to the corresponding lists to design a specific physical architecture that meets your needs and environment and to plan how to develop and deploy your customized platform.

Phase 1

This section provides the definition, Optimization mapping; technology mapping; logical architecture; illustrative physical architecture; system components; and references to plan, develop, and deploy Phase 1.

Envision the Solution

This section provides the definition of Phase 1 and other useful information, such as starting points, to help you envision your solution’s definition, Optimization mapping, and technology mapping.

Definition

Phase 1 is a robust, enterprise-class deployment that addresses the following goals:  Addresses the most typical compelling business priorities.

 Gets you using the new platform with high visibility, leading to positive return on investment. The conceptual architecture diagram in

Figure 5 represents the collective set of business capabilities that Phase 1 includes. Figure 5 Conceptual architecture diagram for Phase 1

This section describes the integrated capabilities of the Phase 1 solution. Organizations can use this section to better understand which integrated capabilities they need to customize for the solution to meet specific business needs.

Organizations that require a Phase 1 solution for Windows Azure need to manage their IT

infrastructure efficiently with minimal administrative overhead and focus on value-added services by expanding their existing portfolio of applications and services. Organizations need to have highly available, scalable, multitenant data services in the cloud to meet changing business needs on demand. Organizations can help deliver on-demand computing and storage capabilities while ensuring a familiar and consistent application development model. Organizations can better work with increasing amounts of data from multiple locations and devices by linking existing on-premises data stores to cloud-based storage services without compromising performance and achieving defined service-level agreements. Organizations can provide more secure access to applications that are exposed over Internet, firewall, domain, and network boundaries by building federated authorization into applications.

Optimization Mapping

Error! Reference source not found.6 shows the Optimization mapping for Phase 1.

Technology Mapping

Phase 1 requires the following Microsoft technologies:

Client Technologies

 Microsoft Office 2007 / 2010

 Microsoft Office Outlook® _{2007 / Microsoft Outlook 2010, Microsoft Office Word 2007 /}

Microsoft Word 2010, Microsoft Office Excel® _{2007 / Microsoft Excel 2010, Microsoft Office}

PowerPoint® _{2007 / Microsoft PowerPoint 2010}

 Microsoft Office Visio® _{2007 / Microsoft Visio 2010}

 Microsoft Office Project 2007 / Microsoft Project 2010

 Microsoft Forefront® _{Endpoint Protection 2010 / Microsoft System Center 2012 Endpoint}

Protection  Windows® _{7 / 8}

Server Technologies

 Microsoft SQL Server® _{2008 R2 / 2012}

 Microsoft Server Security

 Microsoft Internet Security and Acceleration Server 2006 / Microsoft Forefront Threat Management Gateway 2010

 Microsoft Intelligent Application Gateway 2007 / Microsoft Forefront Unified Access Gateway 2010

 Microsoft Forefront Identity Manager 2010 / 2010 R2  Microsoft Windows Server® _{2008 R2 / 2012}

 Microsoft System Center

 Microsoft System Center Operations Manager 2007 R2 / Microsoft System Center 2012 Operations Manager

 Microsoft System Center Data Protection Manager 2010 / Microsoft System Center 2012 Data Protection Manager

 Microsoft System Center Configuration Manager 2007 R3 / Microsoft System Center 2012 Configuration Manager

 Microsoft System Center Virtual Machine Manager 2008 R2 / Microsoft System Center 2012 Virtual Machine Manager

 Microsoft System Center Service Manager 2010 / Microsoft System Center 2012 Service Manager

 Opalis / Microsoft System Center 2012 Orchestrator  Microsoft Windows Storage Server 2008 / 2008 R2  Windows Server AppFabric®

 Microsoft Hyper-V® _{Server 2008 / 2008 R2}

Cloud Technologies

 Microsoft Business Productivity Online Services / Microsoft Office 365  Microsoft SharePoint® _Online

 Windows Azure™ platform  Windows Azure

 Windows Azure AppFabric  Microsoft SQL Azure  Microsoft Online Backup Service

Development Tools

 Microsoft .NET Framework

 Microsoft Visual Studio® _{2010 Team Foundation Server / Microsoft Visual Studio 11 Team}

Foundation Server

 Microsoft Visual Studio Team System 2008 / 2010 / 11  Windows Communications Foundation (WCF) Services

Tools

 Microsoft Assessment and Planning Toolkit 6.0 / 6.5  Microsoft Security Assessment Tool

 Microsoft Software Inventory Analyzer 5.0 / 5.1  Microsoft Deployment Toolkit 2010 / 2012  Windows Automated Installation Kit

 Microsoft Security Compliance Management Toolkit  Compliance Management Libraries 2.0

 Data Classification Toolkit

 IT Governance, Risk and Compliance process management pack 2.0  BizTalk ESB Toolkit

Architect the Solution

This section provides the logical architecture, illustrative physical architecture, and list of required system components for Phase 1, which are useful starting points to help you design your solution.

Logical Architecture

Figure 7 is the logical architecture diagram that shows the infrastructure for Phase 1 and its

functionalities. This diagram provides a high-level overview of the requirements to implement Phase 1. This diagram is a starting point; you should customize it to meet the specific needs of your

Figure 7 Logical architecture diagram of Phase 1

Illustrative Physical Architecture

Figure 8 is an illustrative physical architecture diagram for Phase 1. A physical architecture diagram shifts from describing technologies as capabilities and roles to describing physical systems. As with all sample diagrams, you should customize this diagram to meet the specific needs of your organization. For more information about customizing this diagram (including the required software product editions), see Plan Development and Deployment of the Solution in Phase 1.

System Components

This section lists the system components that Phase 1 requires. The system components consist of product components that are grouped by product families. Table 1 lists the product components that each solution capability in Phase 1 needs. You can use this table to better understand which product components you need to meet the specific solution capability requirements for your customized solution.

The legend for the table is as follows:

X Product must be included to enable the solution capability. * Product is recommended to better enable the solution capability. Table 1 System components for Phase 1

H ig hly ava ilab le, s cal ab le, m ultit en ant st or ag e ser vi ce in the clo ud Sel f-m anag ing cap ab ili ty to p ro vi si on data ser vi ces w ith buil t-in faul t t ol er ance Cr eatio n, p ro to ty pi ng , and d ep lo ym ent o f ap pl icat io ns that int eg rate data ac ro ss the or gani zatio n Rel atio nal d ata m od el in the clo ud that pr ovi des co nnect ivi ty w ith ex is ting o n-pr em is es s to rag e Secur e co nnect ivi ty b et w ee n lo os el y co up led s er vi ces and ap pl icat io ns o ver the In ter net acr os s fir ew al l, do m ai n, and net w or k bo und ar ies Enab ling s er vi ces to navi gate fir ew al ls o r net w or k bo und ar ies Product family Product component CLIENT TECHNOLOGIES Office 2007 / 2010

Office Outlook 2007 / Outlook 2010, Office Word 2007 / Word 2010, Office Excel 2007 / Excel 2010, Office PowerPoint 2007 / PowerPoint 2010

*

Office Visio 2007 / Visio 2010 *

Office Project 2007 / Project 2010 * Forefront Endpoint Protection 2010

/ System Center 2012 Endpoint Protection * * * * Windows 7 X X X X X X Windows 8 Offline Files * DirectAccess SERVER TECHNOLOGIES

Office SharePoint Server 2007 / SharePoint Server 2010*

Sites and Portals

Single Sign-On Service / Secure Store Service*

H ig hly ava ilab le, s cal ab le, m ultit en ant st or ag e ser vi ce in the clo ud Sel f-m anag ing cap ab ili ty to p ro vi si on data ser vi ces w ith buil t-in faul t t ol er ance Cr eatio n, p ro to ty pi ng , and d ep lo ym ent o f ap pl icat io ns that int eg rate data ac ro ss the or gani zatio n Rel atio nal d ata m od el in the clo ud that pr ovi des co nnect ivi ty w ith ex is ting o n-pr em is es s to rag e Secur e co nnect ivi ty b et w ee n lo os el y co up led s er vi ces and ap pl icat io ns o ver the In ter net acr os s fir ew al l, do m ai n, and net w or k bo und ar ies Enab ling s er vi ces to navi gate fir ew al ls o r net w or k bo und ar ies Product family Product component SQL Server 2008 R2 / 2012 Database Engine * X X X * Server Security

Forefront Security for SharePoint / Forefront Protection 2010 for SharePoint

Internet Security and Acceleration Server 2006 / Forefront Threat Management Gateway 2010

Firewall X X X X X X

Intelligent Application Gateway 2007 / Forefront Unified Access Gateway 2010

* * *

Forefront Identity Manager 2010 /

2010 R2 *

Windows Server 2008 R2 / 2012*

Active Directory® _Domain

Services X X X X X X

Active Directory Federation Services

Active Directory Certificate Services

Active Directory Lightweight

Directory Services * X X

Network Policy and Access

Services * X

Group Policy * * *

Internet Information Services (IIS)

7 / 8 * * *

Hyper-V * * * * * *

Windows Deployment Services *

Windows Firewall with Advanced

Security * * * * * *

DirectAccess

H ig hly ava ilab le, s cal ab le, m ultit en ant st or ag e ser vi ce in the clo ud Sel f-m anag ing cap ab ili ty to p ro vi si on data ser vi ces w ith buil t-in faul t t ol er ance Cr eatio n, p ro to ty pi ng , and d ep lo ym ent o f ap pl icat io ns that int eg rate data ac ro ss the or gani zatio n Rel atio nal d ata m od el in the clo ud that pr ovi des co nnect ivi ty w ith ex is ting o n-pr em is es s to rag e Secur e co nnect ivi ty b et w ee n lo os el y co up led s er vi ces and ap pl icat io ns o ver the In ter net acr os s fir ew al l, do m ai n, and net w or k bo und ar ies Enab ling s er vi ces to navi gate fir ew al ls o r net w or k bo und ar ies Product family Product component System Center

System Center Operations Manager 2007 R2 / System Center 2012 Operations Manager

* * * * *

System Center Data Protection Manager 2010 / System Center 2012 Data Protection Manager

X * X

System Center Configuration Manager 2007 R3 / System Center 2012 Configuration Manager

* * * * *

System Center Virtual Machine Manager 2008 R2 / System Center 2012 Virtual Machine Manager

* * * * * *

System Center Virtual Machine Manager Self Service Portal 2.0 System Center Service Manager 2010 / System Center 2012 Service Manager

* * * *

Opalis / System Center 2012

Orchestrator * * * * * *

System Center 2012 App Controller

Windows Storage Server 2008 /

2008 R2 X *

Windows Server AppFabric *

Hyper-VServer 2008 / 2008 R2 * * * * *

BizTalk Server 2009 / 2010 X X X

CLOUD TECHNOLOGIES

BPOS / Office 365* * *

SharePoint Online *

Windows Azure platform

Windows Azure X X X X X X

H ig hly ava ilab le, s cal ab le, m ultit en ant st or ag e ser vi ce in the clo ud Sel f-m anag ing cap ab ili ty to p ro vi si on data ser vi ces w ith buil t-in faul t t ol er ance Cr eatio n, p ro to ty pi ng , and d ep lo ym ent o f ap pl icat io ns that int eg rate data ac ro ss the or gani zatio n Rel atio nal d ata m od el in the clo ud that pr ovi des co nnect ivi ty w ith ex is ting o n-pr em is es s to rag e Secur e co nnect ivi ty b et w ee n lo os el y co up led s er vi ces and ap pl icat io ns o ver the In ter net acr os s fir ew al l, do m ai n, and net w or k bo und ar ies Enab ling s er vi ces to navi gate fir ew al ls o r net w or k bo und ar ies Product family Product component

Active Directory Access Control * *

SQL Azure X X X X X X

Online Backup Service * *

DEVELOPMENT TOOLS

.NET Framework X X X X X

Visual Studio 2010 Team Foundation Server / Visual Studio 11 Team Foundation Server

X X X X X

Visual Studio Team System 2008 /

2010 / 11 X X X X X X

Windows Communications

Foundation (WCF) Services * *

TOOLS, ADD-INS, LIBRARIES, AND FRAMEWORKS

Assessment and Planning Toolkit 6.0

/ 6.5 * * * *

Security Assessment Tool X X

Software Inventory Analyzer 5.0 /

5.1 *

Deployment Toolkit 2010 / 2012 * X Windows Automated Installation Kit * * Security Compliance Management

Toolkit

Security Compliance Manager 2.x * * *

Compliance Management Libraries

2.0 * * *

Windows SDK

Data Classification Toolkit * * * *

IT Governance, Risk and Compliance

Process Management Pack 2.0 * * *

Plan Development and Deployment of the Solution

This section provides references to help you plan to develop and deploy the server product components that are relevant to Phase 1.

SERVER TECHNOLOGIES

This section contains links to the server technologies that Table 1 references.

Microsoft SQL Server 2008 R2

Microsoft SQL Server 2008 R2 can help people scale database operations with confidence; improve IT and developer efficiency; and enable highly scalable, well-managed, and self-service business intelligence.

General

Home Page http://www.microsoft.com/sqlserver/2008/en/us/R2.aspx

Get Started http://technet.microsoft.com/en-us/library/bb500434.aspx

Plan a SQL Server Installation http://technet.microsoft.com/en-us/library/bb500442.aspx

Technical Articles

http://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspx

Database Engine

The Database Engine is the core service for storing, processing, and securing data. It provides controlled access and rapid transaction processing to meet the requirements of the most demanding data-consuming applications within the enterprise.

People can use the Database Engine to create relational databases for online transaction processing or online analytical processing data. They also can create tables for storing data, and database objects such as indexes, views, and stored procedures for viewing, managing, and securing data.

General

Get Started

http://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspx

Planning and Architecture http://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspx Development http://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspx Deployment http://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspx Operations http://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspx

System Components Integration

This section describes the integration points of SQL Server 2008 R2 with other system components.

Usage Scenarios

This section describes the usage scenarios as supported by SQL Server 2008 R2 in integration with other system components.

Highly available, scalable, multitenant storage service in the cloud  Interoperability with SQL Azure

Microsoft SQL Azure Database is a cloud-based, relational database service built on SQL Server technologies. It provides a highly available, scalable, multitenant database service hosted by Microsoft in the cloud. SQL Azure Database helps organizations provision and deploy multiple databases, and helps developers avoid installing, setting up, patching, or managing any software. It features high availability and fault tolerance, requires no physical administration, and supports Transact-SQL (T-SQL). Developers can use existing knowledge in T-SQL development and a familiar relational data model for symmetry with existing on-premises databases.

Relational data model in the cloud that provides connectivity with existing on-premises storage  Interoperability with SQL Azure

SQL Azure provides a familiar environment for database programmers. The objects that are created in SQL Azure Database are the same as those in an SQL Server database. Both SQL Server and SQL Azure Database use the Transact-SQL language for database creation and data

manipulation. Database developers and administrators can quickly become productive in SQL Azure by using their existing expertise. Developers can use existing knowledge in T-SQL development and a familiar relational data model for symmetry with existing on-premises databases.

Creation, prototyping, and deployment of applications that integrate data across the organization  Interoperability with Visual Studio Team System 2008

Visual Studio offers database design and development tools in an integrated development environment, helping developers to visually design data relationships, filter SQL statements, edit SQL code, and run database queries in the development environment itself.

Associated System Components

This section describes the dependencies and recommendations for SQL Server 2008 R2 and highlights capabilities as enabled directly or when integrated with another system component.

 Interoperability with Office BizTalk Server 2009

BizTalk Server is dependent on SQL Server 2008 R2 for the messaging tracking database as well as other databases. The most sensitive information (such as credential information containing details of database connection strings, user names, and passwords related to the BizTalk adapters) is stored in an encrypted format in the single sign-on (SSO) database.

 Interoperability with Core and Management Services

SQL Server 2008 R2 uses the following technologies and services: • Windows Server 2008 R2

Windows Server provides an installation and deployment platform, granular services, and other essential components and technologies.

Active Directory Domain Services can help administrators manage user identities and relationships.

The Active Directory Lightweight Directory Services server role is a Lightweight Directory Access Protocol (LDAP) directory service that provides data storage and retrieval for directory-enabled applications, without the dependencies that are required for Active Directory Domain Services.

Network Policy and Access Services (NPAS) provides technologies that allow deployment of virtual private networking (VPN), dial-up networking, and 802.11-protected wireless access. With NPAS, organizations can define and enforce policies for network access authentication, authorization, and client health.

Group Policy provides an infrastructure for centralized configuration management of the operating system and applications that run on the operating system.

Internet Information Services (IIS) 7.0 is a powerful web server that provides a highly reliable, manageable, and scalable web application infrastructure.

The Hyper-V virtualization platform can be used to create and manage a virtualized server computing environment.

Windows Deployment Services can help administrators remotely deploy Windows operating systems.

Windows Firewall with Advanced Security helps protect computers on a network through a stateful firewall that enables administrators to determine what network traffic to permit to pass between a computer and the network. It also includes connection security rules that use Internet Protocol security (IPsec) to help protect traffic as it travels across the network.

• Internet Security and Acceleration Server 2006 protects the IT environment from Internet-based threats and provides users with fast and secure remote access to applications and data. • Intelligent Application Gateway 2007 provides a secure-socket-layer virtual private network, a

web application firewall, and endpoint security management that enable access control, authorization, and content inspection for a wide variety of applications.

• Windows Storage Server 2008 enables high-availability scenarios by providing backup and replication of stored data.

• Microsoft Hyper-V Server 2008 provides a reliable and optimized virtualization solution that helps organizations improve server use and reduce costs through a small footprint and minimal overhead.

• System Center family helps organizations by providing IT with self-managing and monitoring of dynamic systems. System Center family provides:

Optimized disk-based backup and recovery, more consistent data protection, and features to increase the IT organization’s operational efficiencies.

A secure and scalable operating system, application deployment, and configuration management.

Unified management of physical and virtual machines, consolidation of underutilized physical servers, and rapid provisioning of new virtual machines.

A flexible platform for automating and adapting IT Service Management best practices to the organization’s requirements.

Automated incident response, change and compliance, and service life-cycle management processes.

Microsoft SQL Server 2012

Microsoft SQL Server 2012 is a cloud-ready information platform that helps organizations to protect, scale, and unlock the power of their data. With SQL Server 2012, IT can provide organizations with performance and availability for business-critical solutions, the potential for breakthrough insight through rapid data exploration, and the ability to visualize data across the organization. Finally, SQL Server 2012 helps IT build solutions that extend across premises and the cloud.

General

Home Page http://www.microsoft.com/sqlserver/en/us/default.aspx

Overview / Capabilities http://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspx

Upgrade to SQL Server 2012 http://technet.microsoft.com/en-us/library/bb677622.aspx Installation for SQL Server 2012 http://technet.microsoft.com/en-us/library/bb500469.aspx

Technical Articles

http://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspx

Database Engine

The Database Engine is the core service for storing, processing, and securing data. The Database Engine provides controlled access and rapid transaction processing to meet the requirements of the most demanding data consuming applications within the enterprise.

Use the Database Engine to create relational databases for online transaction processing or online analytical processing data. This capability includes creating tables for storing data and developing database objects such as indexes, views, and stored procedures for viewing, managing, and securing data.

General

Get Started

http://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspx

What's New (Database Engine) http://technet.microsoft.com/en-us/library/bb510411.aspx SQL Server Database Engine Backward

Compatibility

http://technet.microsoft.com/en-us/library/ms143532.aspx Database Engine Features and Tasks http://technet.microsoft.com/en-us/library/bb500155.aspx

General

Technical Reference (Database Engine) http://technet.microsoft.com/en-us/library/bb500275.aspx

System Components Integration

This section describes the integration points of SQL Server 2012 with other system components.

Usage Scenarios

This section describes the usage scenarios as supported by SQL Server 2012 in integration with other system components.

Highly available, scalable, multitenant storage service in the cloud  Interoperability with SQL Azure

Microsoft SQL Azure Database is a cloud-based, relational database service built on SQL Server technologies. It provides a highly available, scalable, multi-tenant database service hosted by Microsoft in the cloud. SQL Azure Database helps organizations provision and deploy multiple databases, and helps developers avoid installing, setting up, patching, or managing any software. It features high availability and fault tolerance, requires no physical administration, and supports Transact-SQL (T-SQL). Developers can use existing knowledge in T-SQL development and a familiar relational data model for symmetry with existing on-premises databases.

Relational data model in the cloud that provides connectivity with existing on-premises storage  Interoperability with SQL Azure

SQL Azure provides a familiar environment for database programmers. The objects that are created in SQL Azure Database are the same as those in an SQL Server database. Both SQL Server and SQL Azure Database use the Transact-SQL language for database creation and data

manipulation. Database developers and administrators can quickly become productive in SQL Azure by using their existing expertise. Developers can use existing knowledge in T-SQL development and a familiar relational data model for symmetry with existing on-premises databases.

Creation, prototyping, and deployment of applications that integrate data across the organization  Interoperability with Visual Studio Team System 2010/ Visual Studio 11

Visual Studio offers database designing and development tools in an integrated development environment, helping developers to visually design data relationships, filter SQL statements, edit SQL code, and run database queries in the development environment itself.

Associated System Components

This section describes the dependencies and recommendations for SQL Server 2012 and highlights capabilities as enabled directly or when integrated with another system component.

 Interoperability with Office BizTalk Server 2010

BizTalk Server is dependent on SQL Server 2012 for the messaging tracking database as well as other databases. The most sensitive information, such as credential information containing details of database connection strings, user names, and passwords related to the BizTalk adapters, is stored in an encrypted format in the SSO database.

 Interoperability with Core and Management Services

SQL Server 2012 uses the following technologies and services: • Windows Server 2012

Windows Server provides an installation and deployment platform, granular services, and other essential components and technologies.

Active Directory Domain Services can help administrators manage user identities and relationships.

The Active Directory Lightweight Directory Services server role is a Lightweight Directory Access Protocol (LDAP) directory service that provides data storage and retrieval for directory-enabled applications, without the dependencies that are required for Active Directory Domain Services.

Network Policy and Access Services (NPAS) provides technologies that allow deployment of virtual private networking (VPN), dial-up networking, and 802.11-protected wireless access. With NPAS, organizations can define and enforce policies for network access authentication, authorization, and client health.

Group Policy provides an infrastructure for centralized configuration management of the operating system and applications that run on the operating system.

Internet Information Services (IIS) 8.0 is a powerful web server that provides a highly reliable, manageable, and scalable web application infrastructure.

The Hyper-V virtualization platform can be used to create and manage a virtualized server computing environment.

Windows Deployment Services can help administrators remotely deploy Windows operating systems.

Windows Firewall with Advanced Security helps protect computers on a network through a stateful firewall that enables administrators to determine what network traffic to permit to pass between a computer and the network. It also includes connection security rules that use Internet Protocol security (IPsec) to help protect traffic as it travels across the network.

Storage Spaces enables virtualized storage capabilities by grouping industry-standard disks into storage pools, and then creating virtual disks called storage spaces from the available capacity in the storage pools

• Forefront Threat Management Gateway 2010 protects the IT environment from Internet-based threats and provides users with fast and secure remote access to applications and data. • Forefront Unified Access Gateway 2010 provides a secure-socket-layer virtual private network,

a web application firewall, and endpoint security management that enable access control, authorization, and content inspection for a wide variety of applications.

• Windows Storage Server 2008 R2 enables high-availability scenarios by providing backup and replication of stored data.

• Microsoft Hyper-V Server 2008 R2 provides a reliable and optimized virtualization solution that helps organizations improve server use and reduce costs through a small footprint and minimal overhead.

• System Center family helps organizations by providing IT with self-managing and monitoring of dynamic systems. System Center family provides:

A comprehensive view of the health of the IT environment.

Optimized disk-based backup and recovery, more consistent data protection, and features to increase the IT organization’s operational efficiencies.

A secure and scalable operating system, application deployment, and configuration management.

Unified management of physical and virtual machines, consolidation of underutilized physical servers, and rapid provisioning of new virtual machines.

A flexible platform for automating and adapting IT Service Management best practices to the organization’s requirements.

Automated incident response, change and compliance, and service life-cycle management processes.

Microsoft Server Security

Microsoft Server Security is a set of comprehensive line-of-business security products that provide greater protection and control through integration with existing IT infrastructures and through simplified deployment, management, and analysis.

General

Microsoft Forefront—Home Page http://www.microsoft.com/forefront/serversecurity/en/us/defaul t.aspx

Internet Security and Acceleration Server 2006

Microsoft Internet Security and Acceleration Server 2006 is the integrated security gateway that helps protect IT environments from Internet-based threats, while providing faster and more secure remote access to applications and data.

General

Get Started http://technet.microsoft.com/hi-in/library/bb898432(en-us).aspx

Technical Reference http://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspx

Planning and Architecture http://www.microsoft.com/technet/isa/2006/planningarchitectur e/default.mspx Development http://www.microsoft.com/technet/isa/2006/development/defa ult.mspx Deployment http://www.microsoft.com/technet/isa/2006/deployment/defaul t.mspx Operations http://www.microsoft.com/technet/isa/2006/operations/default. mspx Microsoft Internet Security and

Acceleration Server 2006 SDK

Firewall Service

The firewall service in Internet Security and Acceleration Server 2006 runs in user mode at the top of the TCP/IP protocol stack, and employs a hybrid architecture that combines elements of both proxy and stateful inspection firewall behavior. The firewall service performs an additional packet inspection after receiving clearance from the firewall engine. The firewall service can manage traffic across multiple connections and perform associated processing (for example, application filtering). General

Internet Security and Acceleration Server 2006 Firewall Core

http://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.doc

Forefront Threat Management Gateway 2010

Forefront Threat Management Gateway 2010 helps organizations safely and productively use the Internet for business without worrying about malicious software and other threats. It provides multiple layers of continuously updated protection that is integrated into a unified, easy-to-manage gateway, and reduces the cost and complexity of web security.

General

Home Page

http://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspx

What’s New http://technet.microsoft.com/hi-in/library/ee207139(en-us).aspx

Planning and Design http://technet.microsoft.com/library/cc441674.aspx

Deployment http://technet.microsoft.com/library/cc441445.aspx

Operations http://technet.microsoft.com/library/cc441590.aspx

Technical Reference http://technet.microsoft.com/hi-in/library/cc441714(en-us).aspx Development Guide http://technet.microsoft.com/hi-in/library/cc533499(en-us).aspx

Firewall Protection

Forefront Threat Management Gateway 2010 provides access control and protection on three layers: packet filtering, stateful inspection, and application layer filtering. It also provides deep content filtering through built-in application filters and delivers customizable, granular controls to HTTP traffic. General

Overview http://technet.microsoft.com/en-us/library/cc995253.aspx

Microsoft Intelligent Application Gateway 2007

Microsoft Intelligent Application Gateway 2007 with Application Optimizers provides a secure-socket-layer VPN, a web application firewall, and an endpoint security management that enable access control, authorization, and content inspection for a wide variety of line-of-business applications. Together, these technologies provide mobile and remote workers with easy, flexible, and more secure access from a broad range of devices and locations, including kiosks, PCs, and mobile devices.

General

Overview http://technet.microsoft.com/en-us/library/cc303240.aspx

Planning and Architecture http://technet.microsoft.com/en-us/library/dd278044.aspx

Deployment http://technet.microsoft.com/en-us/library/dd278109.aspx

Operations http://technet.microsoft.com/en-us/library/dd278091.aspx

Intelligent Application Gateway 2007 Technical Reference

http://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspx

Microsoft Forefront Unified Access Gateway 2010

Forefront Unified Access Gateway provides remote access to applications, networks, and internal resources from diverse client endpoints through a single point of entry. It is an easy and secure remote access solution that helps provide application intelligence and granular access controls.

General

Home Page

http://www.microsoft.com/forefront/unified-access-gateway/en/us/

Get Started http://technet.microsoft.com/hi-in/library/dd857281(en-us).aspx

Planning and Design http://technet.microsoft.com/hi-in/library/dd857293(en-us).aspx

Deployment http://technet.microsoft.com/hi-in/library/dd857358(en-us).aspx

Operations http://technet.microsoft.com/hi-in/library/dd857237(en-us).aspx

Technical Reference http://technet.microsoft.com/hi-in/library/dd857316(en-us).aspx

Microsoft Forefront Identity Manager 2010

Microsoft Forefront Identity Manager 2010 provides powerful self-service capabilities and improved tools for IT professionals to solve daily tasks such as delegating administration and creating workflows for common identity management tasks. Forefront Identity Manager 2010 is built on a foundation based on Microsoft .NET and web services so developers can build customized and extensible solutions.

General

Home Page http://technet.microsoft.com/en-us/forefront/cc470030

Get Started Here http://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspx

Microsoft Forefront Identity Manager 2010 R2

Microsoft Forefront Identity Manager 2010 R2 provides an integrated and comprehensive solution for managing the entire life cycle of user identities and their associated credentials. It offers organizations self-service identity management for users, automated life cycle management across heterogeneous platforms, and a rich policy framework for enforcing security policies and detailed audits. It provides identity synchronization, user provisioning, certificate and password management, and policy management in a single solution that works across heterogeneous systems. Developers can use web service APIs to create custom clients and to provide extensible activities and workflow schemas.

General

Home Page

http://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspx

Technical Overview http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/

SIM332 Deployment http://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspx Development http://msdn.microsoft.com/en-us/library/windows/desktop/jj131731%28v=vs.100%29.aspx

Windows Server 2008 R2

Windows Server 2008 R2 offers virtualization tools, web resources, management enhancements, and Windows 7 integration, helping to save time, reduce costs, and provide a platform for a dynamic and efficiently managed data center. Powerful tools, including Internet Information Services 7, updated Server Manager and Hyper-V platforms, and Microsoft Windows PowerShell 2.0, work together to give organizations greater control, increased efficiency, and the ability to react to frontline organizational needs faster than ever before.

General

Home Page

http://technet.microsoft.com/en-us/windowsserver/bb310558.aspx

Deployment

http://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspx Changes in Functionality from

Windows Server 2008 to Windows Server 2008 R2

http://technet.microsoft.com/en-au/library/dd391932(WS.10).aspx

Active Directory Domain Services

Active Directory Domain Services is the central location for configuration information, authentication requests, and information about all objects stored within the forest structure. With Active Directory Domain Services, organizations can efficiently manage users, computers, groups, printers, applications, and other directory-enabled objects from one highly secure, central location.

General

Home Page http://technet.microsoft.com/library/cc770946(WS.10).aspx

Features in Active Directory Domain Services

http://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspx

Active Directory Domain Services Operations Guide

http://technet.microsoft.com/en-us/library/cc816807(WS.10).aspx

Active Directory Lightweight Directory Services

Active Directory Lightweight Directory Services provides directory services for directory-enabled applications, without requiring or relying on Active Directory domains or forests. Organizations can run Active Directory Lightweight Directory Services on member servers or stand-alone servers. They also

can run multiple instances of Active Directory Lightweight Directory Services—each with its own independently managed schema—on one server.

General

Home Page http://technet.microsoft.com/library/cc731868(WS.10).aspx

Overview http://technet.microsoft.com/en-us/library/cc732019.aspx

Network Policy and Access Services

Network Policy and Access Services in Windows Server 2008 R2 delivers a variety of methods to help provide more secure local and remote network connectivity, connect network segments, and enable network administrators to centrally manage network access and client health policies. With Network Access Services, organizations can more securely deploy virtual private network (VPN) servers, dial-up servers, routers, and 802.1X-protected wireless access. They also can deploy RADIUS servers and proxies and use the Connection Manager Administration Kit to create remote access profiles that allow client computers to safely connect to the network.

General

Introduction http://technet.microsoft.com/library/cc754521(WS.10).aspx

Network Policy and Access Services overview for Windows Server 2008 R2

http://technet.microsoft.com/en-us/library/cc731321.aspx Network Policy Server (NPS) http://technet.microsoft.com/en-us/library/cc732912.aspx

Group Policy

Group Policy helps organizations manage configurations for groups of computers and users, including options for registry-based policy settings, security settings, software deployment, scripts, folder redirection, Remote Installation Services, and maintenance of Microsoft Internet Explorer. By using Group Policy, organizations can significantly reduce the total cost of ownership (TCO). Because of factors such as the large number of policy settings available, the interaction between multiple policies, and inheritance options, Group Policy design can be complex. By carefully planning, designing, and testing a solution based on business requirements, organizations can provide the necessary standardized functionality, security, and management control.

General

Home Page http://technet.microsoft.com/library/cc726027(WS.10).aspx

What’s New in Group Policy http://technet.microsoft.com/en-us/library/dd367853(WS.10).aspx Windows PowerShell cmdlets for

Group Policy

http://technet.microsoft.com/en-us/library/dd367856(WS.10).aspx

Internet Information Services 7.0

Microsoft Internet Information Services 7.0 is a powerful web application and services platform that delivers rich, web-based experiences. Internet Information Services 7.0 offers improved administrative and diagnostic tools to help lower infrastructure costs on a variety of popular development platforms. With improved reliability and scalability, IT professionals and developers can manage the most demanding web service environments, from a single web server to a large web farm.

General

Internet Information Services 7.0 http://technet.microsoft.com/en-us/library/cc732050(WS.10).aspx Internet Information Services 7.0

Development

http://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspx

Hyper-V

With Microsoft Hyper-V, organizations can more easily take advantage of the cost savings of virtualization through Windows Server 2008 R2. Organizations can optimize server hardware investments by consolidating multiple server roles as separate virtual machines running on a single physical machine, efficiently run multiple different operating systems in parallel on a single server, and fully use the power of Microsoft x64 computing technologies.

General

Home Page

http://technet.microsoft.com/en-us/windowsserver/dd448604.aspx

Hyper-V Features

http://technet.microsoft.com/en-us/library/cc753637(WS.10).aspx

Getting Started

http://technet.microsoft.com/en-us/library/ee344828(WS.10).aspx

Hyper-V Planning

http://technet.microsoft.com/en-us/library/ee344841(WS.10).aspx

Hyper-V Installation

http://technet.microsoft.com/en-us/library/ee344837(WS.10).aspx

Hyper-V Configuration

http://technet.microsoft.com/en-us/library/ee344820(WS.10).aspx

Windows Deployment Services

Windows Deployment Services, the updated and redesigned version of Remote Installation Services, is a suite of components that work together in Windows Server 2008 R2 to enable the deployment of Windows operating systems, particularly Windows Vista. With Windows Deployment Services, organizations can deploy Windows operating systems over the network instead of installing each operating system directly from a CD or DVD. They also can use Windows Deployment Services to repurpose existing computers.

General

Overview

http://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspx Windows Deployment Services for

Windows Server 2008 R2

http://technet.microsoft.com/en-us/library/dd348502(WS.10).aspx

Getting Started Guide

http://technet.microsoft.com/en-us/library/cc771670(WS.10).aspx

Deployment Guide

Windows Firewall with Advanced Security

Windows Firewall with Advanced Security is a host-based firewall that blocks incoming and outgoing connections based on its configuration. While typical end-user configuration of Windows Firewall occurs through the Windows Firewall Control Panel tool, advanced configuration now occurs in Windows Firewall with Advanced Security, a Microsoft Management Control snap-in.

General

Firewall with Advanced Security and IPSec

http://technet.microsoft.com/en-us/library/cc732283(WS.10).aspx Introduction to Windows Firewall with

Advanced Security

http://technet.microsoft.com/en-us/library/cc730955(WS.10).aspx Windows Firewall with Advanced

Security Design Guide

http://technet.microsoft.com/en-us/library/cc732024(WS.10).aspx Windows Firewall with Advanced

Security Deployment Guide

http://technet.microsoft.com/en-us/library/cc972925(WS.10).aspx

Windows Server 2012

Windows Server 2012 is designed to help IT pros enact cloud optimization while satisfying business needs more quickly and efficiently. Windows Server 2012 provides a highly available and easy-to-manage multiserver platform that offers flexible storage, continuous availability, and easy-to-management efficiency. With Windows Server 2012, Microsoft delivers a server platform based on the experience of building and operating many of the world's most complex cloud-based services and largest data centers. Whether administrators are setting up a single server for a small business or architecting a major new data center environment, Windows Server 2012 can help them “cloud optimize” their IT so they can more fully meet their organizations’ unique needs.

Active Directory Domain Services

Active Directory Domain Services provides a distributed database that stores and manages information about network resources and application-specific data from directory-enabled applications. A server that is running Active Directory Domain Services is called a domain controller. Administrators can use Active Directory Domain Services to organize elements of a network, such as users, computers, and other devices, into a hierarchical containment structure. The hierarchical containment structure includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each domain.

General

Home Page

http://www.microsoft.com/en-us/server-cloud/windows-server/default.aspx

Windows Server 2012 Overview http://www.microsoft.com/en-us/server-cloud/windows-server/overview.aspx

What's New in Windows Server 2012 http://technet.microsoft.com/library/hh831769.aspx Windows Server 2012 Capabilities

Active Directory Lightweight Directory Services

Active Directory Lightweight Directory Services is a Lightweight Directory Access Protocol (LDAP) directory service that provides flexible support for directory-enabled applications, without the dependencies and domain-related restrictions of Active Directory Domain Services. Organizations can run Active Directory Lightweight Directory Services on member servers or stand-alone servers. They also can run multiple instances of Active Directory Lightweight Directory Services—each with its own independently managed schema—on one server. In addition, Active Directory Lightweight Directory Services provides directory services for directory-enabled applications without the overhead of domains and forests or the requirements of a single schema throughout a forest.

Network Policy and Access Services

Organizations can use the Network Policy and Access Services server role to deploy and configure Network Access Protection (NAP), secure wired and wireless access points, and RADIUS servers and proxies. The role also allows deploying virtual private networking (VPN), dial-up networking, and 802.11-protected wireless access. With Network Policy and Access Services, administrators can define and enforce policies for network access authentication, authorization, and client health using NAP, Routing and Remote Access Services, Health Registration Authority (HRA), and Host Credential Authorization Protocol (HCAP).

General

Active Directory Domain Services overview

http://technet.microsoft.com/en-us/library/hh831484.aspx What's New in Active Directory Domain

Services

http://technet.microsoft.com/en-us/library/hh831477.aspx

General

Active Directory Lightweight Directory Services Overview

http://technet.microsoft.com/en-us/library/hh831593.aspx Active Directory Lightweight Directory

Services Operations Guide

http://technet.microsoft.com/en-us/library/cc816635%28v=ws.10%29.aspx Active Directory Lightweight Directory

Services Getting Started/Step-By-Step Guide

http://technet.microsoft.com/en-us/library/cc770639%28v=ws.10%29.aspx

General

Network Policy and Access Services http://technet.microsoft.com/en-us/windowsserver/dd448603.aspx Network Policy and Access Services

Overview

http://technet.microsoft.com/library/hh831683 Best Practices Analyzer for Network

Policy and Access Services

Group Policy

Group Policy allows administrators to specify managed configurations for users and computers through Group Policy settings and Group Policy preferences. For Group Policy settings that affect only a local computer or user, administrators can use the Local Group Policy Editor. They can manage Group Policy settings and Group Policy preferences in an Active Directory Domain Services environment through the Group Policy Management Console. Group Policy management tools also are included in the Remote Server Administration Tools pack to provide a way to administer Group Policy settings from remote machines.

Internet Information Services 8

Internet Information Services (IIS) 8 is a unified web platform that integrates IIS, ASP.NET, FTP services, PHP, and Windows Communication Foundation (WCF). With IIS 8 in Windows Server 2012, developers can customize the functionality of IIS, create applications to assist in managing IIS, and create

applications that run on IIS. IIS also enables the extensibility of configuration, scripting, event logging, and administration tools, providing software developers with a complete server platform on which to build web server extensions.

Hyper-V

The Hyper-V role enables IT administrators to create and manage a virtualized computing environment by using virtualization technology built into Windows Server 2012. Hyper-V role deployment installs required components and, optionally, management tools. Required components include Windows hypervisor, Hyper-V Virtual Machine Management Service, and the virtualization Windows Management Instrumentation (WMI) provider, as well as other virtualization components like the virtual machine bus (VMbus), virtualization service provider (VSP) and virtual infrastructure driver (VID). Hyper-V virtualizes hardware to provide an environment in which administrators can run multiple operating systems at the same time on one physical computer by running each operating system in its own virtual machine.

General

Group Policy Home Page

http://technet.microsoft.com/en-us/windowsserver/bb310732.aspx

Group Policy Overview http://technet.microsoft.com/library/hh831791

Designing a Group Policy Infrastructure http://technet.microsoft.com/en-us/library/c75e3e6f-c322-4220-b205-46c6e9ba7674

General

Internet Information Services Overview http://technet.microsoft.com/en-us/library/hh831725.aspx Internet Information Services

Development

http://msdn.microsoft.com/en-us/library/ms692515%28v=vs.90%29.aspx Internet Information Services

Extensions

Windows Deployment Services

In Windows Server 2012, Windows Deployment Services (WDS) is a server role that enables

administrators to remotely deploy Windows operating systems. Administrators can use it to set up new computers through a network-based installation. This means that administrators do not have to install each operating system directly from a CD, USB drive, or DVD. To use WDS, administrators should have a working knowledge of common desktop deployment technologies and networking components, including Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS), and Active Directory Domain Services. It is also helpful to understand the Preboot execution Environment (also known as the Pre-Execution Environment).

Windows Firewall with Advanced Security

In Windows Server 2012, Windows Firewall with Advanced Security is an important part of a layered security model. By providing host-based, two-way network traffic filtering for a computer, Windows Firewall with Advanced Security blocks unauthorized network traffic flowing into or out of the local computer. Windows Firewall with Advanced Security also works with Network Awareness so that it can apply security settings appropriate to the types of networks to which the computer is connected. Windows Firewall and IPsec configuration settings are integrated into a single Microsoft Management Console (MMC) named Windows Firewall with Advanced Security, so Windows Firewall is also an important part of a network’s isolation strategy.

General

Hyper-V Home Page

http://technet.microsoft.com/en-us/windowsserver/dd448604.aspx

Hyper-V Overview http://technet.microsoft.com/en-us/library/hh831531

What's New in Hyper-V http://technet.microsoft.com/library/hh831410

Hyper-V Getting Started Guide http://technet.microsoft.com/library/cc732470%28WS.10%29.as px

General

Windows Deployment Services Overview

http://technet.microsoft.com/en-us/library/hh831764.aspx Windows Deployment Services Getting

Started Guide

http://technet.microsoft.com/en-us/library/jj648426.aspx Windows Deployment Services Guide http://technet.microsoft.com/en-us/library/cc265612.aspx

General

Windows Firewall with Advanced Security Overview

http://technet.microsoft.com/en-us/library/hh831365.aspx Windows Firewall with Advanced

Security Getting Started Guide

http://technet.microsoft.com/en-us/library/cc748991%28v=ws.10%29.aspx Windows Firewall with Advanced

Security Step-By-Step Guide

http://www.microsoft.com/en-us/download/details.aspx?id=11698

Storage Spaces

Windows Server 2012 delivers sophisticated storage virtualization capabilities, empowering customers to use industry-standard storage for single computer and scalable multinode deployments. It is appropriate for a wide range of customers—from consumers using Windows 8 for personal storage, to enterprises and cloud-hosting companies using Windows Server 2012 for highly available storage that can cost effectively grow with demand.

Microsoft System Center

System Center is central to the Microsoft vision of helping IT organizations benefit from self-managing, dynamic systems. Microsoft System Center solutions capture and aggregate knowledge about

infrastructures, policies, processes, and best practices so that IT staff can build manageable systems and automate operations to reduce costs, improve application availability, and enhance service delivery.

General

Home Page http://www.microsoft.com/SystemCenter/

System Center Library http://technet.microsoft.com/hi-in/library/cc507089(en-us).aspx

System Center Operations Manager 2007 R2

Microsoft System Center Operations Manager 2007 R2 delivers end-to-end service management of applications and IT services across the data center, helping to provide greater control and insight into the health and performance of Microsoft, UNIX, and Linux servers and the workloads running on them. With System Center Operations Manager 2007 R2, organizations can reduce the cost of managing the data center and ensure delivery of IT services to expected levels.

General

What's New http://technet.microsoft.com/en-us/library/dd362653.aspx

Getting Started http://technet.microsoft.com/en-us/library/dd887701.aspx

Design Guide http://technet.microsoft.com/en-us/library/dd789005.aspx

Deployment Guide http://technet.microsoft.com/en-us/library/bb419281.aspx

Using Windows Firewall with Advanced Security

http://msdn.microsoft.com/en-us/library/windows/desktop/aa366418%28v=vs.85%29.aspx

General

Storage Spaces Overview http://technet.microsoft.com/en-us/library/hh831739.aspx Storage Spaces Frequently Asked

Questions

http://social.technet.microsoft.com/wiki/contents/articles/11382 .storage-spaces-frequently-asked-questions-faq.aspx

Deploying and Managing Storage Spaces with PowerShell

http://www.microsoft.com/en-us/download/details.aspx?id=30125

System Center 2012 Operations Manager

Microsoft System Center 2012 Operations Manager provides infrastructure monitoring that is flexible and cost effective; helps to ensure the predictable performance and availability of vital applications; and offers comprehensive monitoring for the data center and cloud, both private and public. General

Home Page

http://www.microsoft.com/systemcenter/en/us/om-vnext-beta.aspx

Overview http://technet.microsoft.com/en-us/library/hh205987.aspx

Getting Started http://technet.microsoft.com/en-us/library/hh509025.aspx

Deployment Guide http://technet.microsoft.com/en-us/library/hh278852.aspx

System Center Data Protection Manager 2010

Microsoft System Center Data Protection Manager 2010 is a backup and recovery solution for Windows applications and file servers that uses seamlessly integrated disk and tape.

General

Home Page http://technet.microsoft.com/en-us/library/ff399192.aspx

Planning and Deployment http://technet.microsoft.com/en-us/library/ff399519.aspx Data Protection Manager 2010

Operations

http://technet.microsoft.com/en-us/library/ff399138.aspx

System Center 2012 Data Protection Manager

Microsoft System Center 2012 Data Protection Manager provides centralized management and granular access as few of its key features. It enables disk-based and tape-based data protection and recovery for servers such as SQL Server, Exchange Server, SharePoint, virtual servers, file servers, and support for Windows desktops and laptops. It can also centrally manage system state and Bare Metal Recovery (BMR).

General

What’s New? http://technet.microsoft.com/en-us/edge/Video/hh285690

Planning http://technet.microsoft.com/en-us/library/hh758140.aspx

Deploying http://technet.microsoft.com/en-us/library/hh757823.aspx

Operations Guide http://technet.microsoft.com/en-us/library/hh757851.aspx Troubleshooting Guide http://technet.microsoft.com/en-us/library/hh872921.aspx

System Center Configuration Manager 2007 R3

Microsoft System Center Configuration Manager 2007 R3 includes a complete set of power management tools, scale and performance enhancements, and mobile device management to help organizations gain better insight into and control over their IT systems.