+353-1-416-8900REST OF WORLD
+44-20-3973-8888REST OF WORLD
1-917-300-0470EAST COAST U.S
1-800-526-8630U.S. (TOLL FREE)

Mastering Windows Server 2016. Edition No. 1

  • Book

  • 608 Pages
  • August 2018
  • John Wiley and Sons Ltd
  • ID: 4226241
The IT pro's must-have guide to Windows Server 2016

Mastering Windows Server 2016 is a complete resource for IT professionals needing to get quickly up to date on the latest release. Designed to provide comprehensive information in the context of real-world usage, this book offers expert guidance through the new tools and features to help you get Windows Server 2016 up and running quickly. Straightforward discussion covers all aspects, including virtualization products, identity and access, automation, networking, security, storage and more, with clear explanations and immediately-applicable instruction. Find the answers you need, and explore new solutions as Microsoft increases their focus on security, software-defined infrastructure, and the cloud; new capabilities including containers and Nano Server, Shielded VMs, Failover Clustering, PowerShell, and more give you plenty of tools to become more efficient, more effective, and more productive.

Windows Server 2016 is the ideal server for Windows 10 clients, and is loaded with new features that IT professionals need to know. This book provides a comprehensive resource grounded in real-world application to help you get up to speed quickly.

  • Master the latest features of Windows Server 2016
  • Apply new tools in real-world scenarios
  • Explore new capabilities in security, networking, and the cloud
  • Gain expert guidance on all aspect of Windows Server 2016 migration and management

System administrators tasked with upgrading, migrating, or managing Windows Server 2016 need a one-stop resource to help them get the job done. Mastering Windows Server 2016 has the answers you need, the practicality you seek, and the latest information to get you up to speed quickly.

Table of Contents

Introduction xxiii

Chapter 1 Windows Server 2016 Installation and Management 1

Windows Server 2016 Editions and Licensing 1

Processor Core-Based Licensing 3

Client Access Licenses 3

Licensing Programs 3

Other Editions of Windows Server 2016 4

Installing Windows Server 2016 4

Installation Steps 5

Post-Installation Configuration 9

Activation 10

Automating the Installation of Windows Server 2016 11

Sysprep and Imaging 12

Windows System Image Manager 14

Windows Deployment Services 16

Microsoft Deployment Toolkit 19

Deployment Solutions for Virtualization 19

Common Management Tools 20

Overview of Server Manager 21

Computer Management 24

Device Manager 24

Task Scheduler 25

Monitoring and Troubleshooting Tools 27

Event Viewer 28

Task Manager 29

Resource Monitor 30

Performance Monitor 32

The Bottom Line 33

Chapter 2 PowerShell 35

What Is PowerShell? 35

Forward Compatible 36

PowerShell Versions 36

Running and Customizing PowerShell 37

Customizing the PowerShell Console 37

Cutting and Pasting in PowerShell 37

Using PowerShell Integrated Scripting Environment (ISE) 38

Exploring the Command Add-On Pane 38

Setting Up PowerShell ISE Profiles 41

Editing Profiles 42

Setting Up Execution Policies 43

Recording PowerShell Sessions 44

Using Aliases and Getting Help 44

Using CMD.EXE-Like Commands in PowerShell 44

Exploring a Get-Help Example 46

Getting Get-Help Updates 47

Updating Help for Servers Without Internet Access 48

Accessing Online Help Files 48

Understanding Cmdlet Syntax 49

Interpreting the Syntax 49

Using Spaces in Cmdlets 51

Passing Multiple Values to a Parameter 51

Using Show-Command 52

Using -WhatIf 53

Using -Confirm 54

All About “About” Files 55

Understanding Shortened Command Syntax 56

Exploring PowerShell Command Concepts 58

Implementing Pipelines 59

Exploring Objects and Members 59

Exploring Properties, Events, and Methods 60

Performing Object Sorting 61

Measuring Objects 62

Using Select-Object to Select a Subset of Objects in a Pipeline 63

Using File Input and Output Operations 65

Converting Objects to Different Formats 66

Using ConvertTo-CSV 66

Using Export-Csv 67

Using ConvertTo-Html 68

Using ConvertTo-Xml 69

Using Export-Clixml 71

Encrypting an Exported Credential Object with Export-Clixml 71

Saving the Credentials to an XML File 73

Importing Data into PowerShell 74

Processing Pipeline Data 74

Using Comparison Operators 75

Using Wildcards and the -like Operator 76

Exploring Common Data Types 77

Determining Data Type with -is 79

Finding Portions of Strings with -match 80

Using the Containment Operators -contains and -notcontains 81

Using the -in and -notin Operators 81

Using the -replace Operator 82

Using Variables 83

Exploring Types of PowerShell Variables 83

Clearing and Removing Variables 84

Using the Variable Drive 84

Using Environmental Variables 84

Using Functions 85

Seeing Them in Action 85

Splatting 86

Creating Functions 86

Using Parameters 88

Sending Pipeline Objects to a Function with Begin, Process, and End 93

Viewing All Functions in a Session 94

Formatting Output 94

Using Format-Wide 94

Using Format-List 95

Using Format-Table 96

Using Loops 96

Using the For Loop 96

Using the Foreach Loop 97

Using the If Statement 99

Using the Switch Statement 100

Using the While Loop 102

Using the Where-Object Method 104

Managing Remote Systems via PowerShell 109

Using Enable-PSRemoting 109

Remoting to Workgroup Servers 110

Running PowerShell Commands on Remote Systems 110

Running Remote Scripts on Remote Computers 111

Establishing Persistent Remote Connections 111

Using PowerShell Direct 112

The Bottom Line 112

Chapter 3 Compute 115

Overview of Hyper-V 115

What’s New in Windows Server 2016 Hyper-V 116

Installing Hyper-V 118

Nested Virtualization 119

Storage Options in Hyper-V 120

Virtual Hard Disk Types 120

Virtual Hard Disk Recommendations 121

Configuring Hyper-V 121

Hyper-V Networking 121

Hyper-V Virtual Machine Configurations 122

Shielded Virtual Machines 123

Virtual Machine Settings 124

Virtual Machine State 124

Virtual Machine Checkpoints 125

Importing and Exporting Virtual Machines 125

Live Migration 126

PowerShell Direct 126

Virtual Machine Migration 126

Overview of Live Migration 127

Live Migration Requirements 128

The Validation Wizard and the Cluster Support Policy Requirements 142

Configuring Roles 143

Managing Failover Clusters 144

Configuring Cluster Properties 145

Managing Cluster Nodes 145

Configuring Quorum Properties 147

What Is Cluster-Aware Updating? 148

What Is a Stretch Cluster? 149

Failover Clustering with Hyper-V 151

Implementing Hyper-V Failover Clustering 152

Implementing CSVs 154

The Bottom Line 155

Chapter 4 Storage 157

Overview of Storage in Windows Server 2016 157

File Systems 158

NTFS 158

ReFS 159

Comparing NTFS and ReFS 159

Data Deduplication 161

How Data Is Optimized 162

How Optimized Data Is Read 163

How Data Deduplication Works in the Background 164

How to Enable Data Deduplication 164

Data Deduplication Advanced Settings 165

Storage Spaces 166

Storage Spaces Configuration Options 167

Storage Spaces Direct 168

Storage Replica 170

Types of Replication 171

Deploying Storage Replica 174

Storage Quality of Service 176

Working with Storage QoS 176

The Bottom Line 177

Chapter 5 Networking 179

Windows Server 2016 Network Configuration 179

IP Configuration 180

Network Adapter Teaming 182

Windows Firewall 185

DNS 188

DNS Zones 189

Name Resolution Processing 192

Removing Stale DNS Records 197

Securing DNS 198

Monitoring and Troubleshooting DNS 199

DHCP 202

DHCP Scopes 204

DHCP Options 206

DHCP Policies and Filters 207

High Availability 208

DHCP Database 209

Remote Access 210

VPN 211

WAP 218

Network Load Balancing 219

Software Defined Networking 220

Network Controller 221

Hyper-V Network Virtualization 221

RAS Gateway 221

Datacenter Firewall 222

Software Load Balancing 222

Switch Embedded Teaming 223

Internal DNS Service 224

The Bottom Line 224

Chapter 6 File Services 227

File Services Overview 227

File Server 229

Installing the File Server 230

Creating a File Share 230

Assigning Permissions 231

BranchCache for Network Files 232

BranchCache Modes of Operation 233

DFS Namespaces and DFS Replication 237

Accessing Shared Folders in DFS 238

Configuring DFS Replication 241

DFS Monitoring and Troubleshooting 243

File Server Resource Manager 245

FSRM Features Deployment 246

Configuring General FSRM Options 247

Classification Management 248

File Management Tasks 249

Quota Management 250

Templates for Monitoring Disk Usage 251

File Screening Management 251

Work Folders 252

The Bottom Line 257

Chapter 7 Windows Server Containers 259

Containers Overview 259

Container Limitations 261

Container Terminology 261

Hyper-V Containers 262

Creating and Maintaining Containers 263

Hardware and Software Requirements 263

Installing Docker 264

Retrieving Container Images from Docker Hub 266

Creating and Running a Container 267

Manually Customizing an Image 270

Automating Image Creation 271

Managing Container Images 274

Configuring Containers 275

Storage 275

Networking 276

Resource Constraints 279

Authentication to AD 280

Application Development and Deployment 281

The Bottom Line 282

Chapter 8 Security Mechanisms 285

Security Overview 285

Where to Begin? 285

What Are the Risks? 286

Thinking Like an Attacker 287

Ethical Hacking 288

Protecting Accounts 288

Privileged Access 289

Securing User Accounts 292

Configuring Account Policy Settings 293

Protected Users, Authentication Policies, and Authentication Policy Silos 294

Delegating Privileges 295

Credential Guard 296

Protecting Data at Rest 297

Encrypting File System 297

BitLocker 298

Protecting Data in Transit 300

Windows Firewall with Advanced Security 300

IPsec 304

Protecting Administrative Access 312

Privileged Access Workstations 312

Local Administrator 313

Just Enough Administration 315

Role-Capability Files 316

Session-Configuration Files 317

Protecting Active Directory Infrastructure 318

Enhanced Security Administrative Environment 318

Privileged Access Management 319

Malware Protection 322

Software Restriction Policies 323

AppLocker 323

Device Guard 324

Hardening Operating Systems Security with Additional Microsoft Products 327

Advanced Threat Analytics 327

Evidence of the Attack 328

Auditing 329

The Bottom Line 336

Chapter 9 Active Directory Domain Services 339

Overview of Features 339

What Changed in AD DS for Windows Server 2016 339

Features from Windows Server 2012 R2 340

Features from Windows Server 2012 340

Revisiting Privileged Access Management 340

Design Considerations 342

Forests and Domains 342

Active Directory Trusts 344

Active Directory Sites 345

Active Directory Replication 348

Flexible Single Master Operation Roles 350

Designing the Organizational Unit Structure 351

Domain Controllers 353

Computer, User, and Group Management 363

Computer Management 363

User Management 366

Group Management 370

Group Policy 373

Group Policy Inheritance and Enforcement 374

Group Policy Day-to-Day Tasks 376

The Bottom Line 383

Chapter 10 Active Directory Certificate Services 385

What’s New in AD CS Windows Server 2016 385

Windows Server 2012 R2 386

Windows Server 2012 386

Introduction to a Public Key Infrastructure and AD CS 387

Planning and Design Considerations 389

Implementing a Two-Tier Hierarchy 393

Working with Certificate Templates 406

Auto-Enrollment 417

The Bottom Line 419

Chapter 11 Active Directory Federation Services 423

Overview of AD FS 423

AD FS Terminology 425

How AD FS Works 426

Planning and Design Considerations 429

Where Should You Place the AD FS Components? 429

Should You Use SQL Server for the AD FS Database? 431

What Are Your Certificate Options for Your AD FS Environment? 432

Should You Use a Group-Managed Service

Account for Your AD FS Environment? 432

Deploying an AD FS Environment 433

Installing the AD FS Server Role 433

Configuring Internal DNS Name Resolution 439

Configuring a Sample Federated Application 441

Configuring an AD FS Relying Party 445

Testing Application Access from an Internal Client 445

Installing Web Application Proxy Server Role Service 447

Publishing the Sample Federated Application 450

Testing Application Access from an External Client 452

The Bottom Line 454

Chapter 12 Management with System Center 457

Overview of System Center 2016 457

Understanding the Upgrade Sequence 457

Understanding the Install Sequence 459

Installing an Instance in a Cluster 461

Using System Center Virtual Machine Manager 465

Installing and Configuring VMM 466

Managing the VMM Compute Fabric 470

Managing the VMM Library 470

Managing the VMM Host Groups 470

Managing Hyper-V Hosts and Clusters 470

Managing VMware Servers 470

Managing Infrastructure Servers 470

Managing the VMM Networking Fabric 472

Creating a Logical Network 473

Creating a VM Network 475

Managing the Storage Fabric 476

Creating Virtual Machines 478

Managing Windows Server 2016 with System Center Operations Manager 482

The Operations Manager Infrastructure 482

Installing the Prerequisites 484

Managing Windows Server 2016 with System Center Configuration Manager 499

Three Branches 499

What You Should Know About Site Server Differences 501

ConfigMgr Prerequisites 503

Installing a Primary Site Server 505

Configuring System Center Configuration Manager 517

Boundaries and Boundary Groups 526

Installing Clients 530

Using Client Settings 532

Using Collections 535

The Bottom Line 539

Chapter 13 Management with OMS 541

What Is Operations Management Suite? 541

A Brief History 542

OMS Services 542

OMS Pricing 543

SLA Details 543

System Requirements 544

Log Analytics 546

Performance Queries 552

Event Queries 554

The Bottom Line 555

Index 559

Authors

Brian Svidergol Vladimir Meloski Byron Wright Santos Martinez Doug Bassett