Mastering Windows Server 2016 is a complete resource for IT professionals needing to get quickly up to date on the latest release. Designed to provide comprehensive information in the context of real-world usage, this book offers expert guidance through the new tools and features to help you get Windows Server 2016 up and running quickly. Straightforward discussion covers all aspects, including virtualization products, identity and access, automation, networking, security, storage and more, with clear explanations and immediately-applicable instruction. Find the answers you need, and explore new solutions as Microsoft increases their focus on security, software-defined infrastructure, and the cloud; new capabilities including containers and Nano Server, Shielded VMs, Failover Clustering, PowerShell, and more give you plenty of tools to become more efficient, more effective, and more productive.
Windows Server 2016 is the ideal server for Windows 10 clients, and is loaded with new features that IT professionals need to know. This book provides a comprehensive resource grounded in real-world application to help you get up to speed quickly.
- Master the latest features of Windows Server 2016
- Apply new tools in real-world scenarios
- Explore new capabilities in security, networking, and the cloud
- Gain expert guidance on all aspect of Windows Server 2016 migration and management
System administrators tasked with upgrading, migrating, or managing Windows Server 2016 need a one-stop resource to help them get the job done. Mastering Windows Server 2016 has the answers you need, the practicality you seek, and the latest information to get you up to speed quickly.
Table of Contents
Introduction xxiii
Chapter 1 Windows Server 2016 Installation and Management 1
Windows Server 2016 Editions and Licensing 1
Processor Core-Based Licensing 3
Client Access Licenses 3
Licensing Programs 3
Other Editions of Windows Server 2016 4
Installing Windows Server 2016 4
Installation Steps 5
Post-Installation Configuration 9
Activation 10
Automating the Installation of Windows Server 2016 11
Sysprep and Imaging 12
Windows System Image Manager 14
Windows Deployment Services 16
Microsoft Deployment Toolkit 19
Deployment Solutions for Virtualization 19
Common Management Tools 20
Overview of Server Manager 21
Computer Management 24
Device Manager 24
Task Scheduler 25
Monitoring and Troubleshooting Tools 27
Event Viewer 28
Task Manager 29
Resource Monitor 30
Performance Monitor 32
The Bottom Line 33
Chapter 2 PowerShell 35
What Is PowerShell? 35
Forward Compatible 36
PowerShell Versions 36
Running and Customizing PowerShell 37
Customizing the PowerShell Console 37
Cutting and Pasting in PowerShell 37
Using PowerShell Integrated Scripting Environment (ISE) 38
Exploring the Command Add-On Pane 38
Setting Up PowerShell ISE Profiles 41
Editing Profiles 42
Setting Up Execution Policies 43
Recording PowerShell Sessions 44
Using Aliases and Getting Help 44
Using CMD.EXE-Like Commands in PowerShell 44
Exploring a Get-Help Example 46
Getting Get-Help Updates 47
Updating Help for Servers Without Internet Access 48
Accessing Online Help Files 48
Understanding Cmdlet Syntax 49
Interpreting the Syntax 49
Using Spaces in Cmdlets 51
Passing Multiple Values to a Parameter 51
Using Show-Command 52
Using -WhatIf 53
Using -Confirm 54
All About “About” Files 55
Understanding Shortened Command Syntax 56
Exploring PowerShell Command Concepts 58
Implementing Pipelines 59
Exploring Objects and Members 59
Exploring Properties, Events, and Methods 60
Performing Object Sorting 61
Measuring Objects 62
Using Select-Object to Select a Subset of Objects in a Pipeline 63
Using File Input and Output Operations 65
Converting Objects to Different Formats 66
Using ConvertTo-CSV 66
Using Export-Csv 67
Using ConvertTo-Html 68
Using ConvertTo-Xml 69
Using Export-Clixml 71
Encrypting an Exported Credential Object with Export-Clixml 71
Saving the Credentials to an XML File 73
Importing Data into PowerShell 74
Processing Pipeline Data 74
Using Comparison Operators 75
Using Wildcards and the -like Operator 76
Exploring Common Data Types 77
Determining Data Type with -is 79
Finding Portions of Strings with -match 80
Using the Containment Operators -contains and -notcontains 81
Using the -in and -notin Operators 81
Using the -replace Operator 82
Using Variables 83
Exploring Types of PowerShell Variables 83
Clearing and Removing Variables 84
Using the Variable Drive 84
Using Environmental Variables 84
Using Functions 85
Seeing Them in Action 85
Splatting 86
Creating Functions 86
Using Parameters 88
Sending Pipeline Objects to a Function with Begin, Process, and End 93
Viewing All Functions in a Session 94
Formatting Output 94
Using Format-Wide 94
Using Format-List 95
Using Format-Table 96
Using Loops 96
Using the For Loop 96
Using the Foreach Loop 97
Using the If Statement 99
Using the Switch Statement 100
Using the While Loop 102
Using the Where-Object Method 104
Managing Remote Systems via PowerShell 109
Using Enable-PSRemoting 109
Remoting to Workgroup Servers 110
Running PowerShell Commands on Remote Systems 110
Running Remote Scripts on Remote Computers 111
Establishing Persistent Remote Connections 111
Using PowerShell Direct 112
The Bottom Line 112
Chapter 3 Compute 115
Overview of Hyper-V 115
What’s New in Windows Server 2016 Hyper-V 116
Installing Hyper-V 118
Nested Virtualization 119
Storage Options in Hyper-V 120
Virtual Hard Disk Types 120
Virtual Hard Disk Recommendations 121
Configuring Hyper-V 121
Hyper-V Networking 121
Hyper-V Virtual Machine Configurations 122
Shielded Virtual Machines 123
Virtual Machine Settings 124
Virtual Machine State 124
Virtual Machine Checkpoints 125
Importing and Exporting Virtual Machines 125
Live Migration 126
PowerShell Direct 126
Virtual Machine Migration 126
Overview of Live Migration 127
Live Migration Requirements 128
The Validation Wizard and the Cluster Support Policy Requirements 142
Configuring Roles 143
Managing Failover Clusters 144
Configuring Cluster Properties 145
Managing Cluster Nodes 145
Configuring Quorum Properties 147
What Is Cluster-Aware Updating? 148
What Is a Stretch Cluster? 149
Failover Clustering with Hyper-V 151
Implementing Hyper-V Failover Clustering 152
Implementing CSVs 154
The Bottom Line 155
Chapter 4 Storage 157
Overview of Storage in Windows Server 2016 157
File Systems 158
NTFS 158
ReFS 159
Comparing NTFS and ReFS 159
Data Deduplication 161
How Data Is Optimized 162
How Optimized Data Is Read 163
How Data Deduplication Works in the Background 164
How to Enable Data Deduplication 164
Data Deduplication Advanced Settings 165
Storage Spaces 166
Storage Spaces Configuration Options 167
Storage Spaces Direct 168
Storage Replica 170
Types of Replication 171
Deploying Storage Replica 174
Storage Quality of Service 176
Working with Storage QoS 176
The Bottom Line 177
Chapter 5 Networking 179
Windows Server 2016 Network Configuration 179
IP Configuration 180
Network Adapter Teaming 182
Windows Firewall 185
DNS 188
DNS Zones 189
Name Resolution Processing 192
Removing Stale DNS Records 197
Securing DNS 198
Monitoring and Troubleshooting DNS 199
DHCP 202
DHCP Scopes 204
DHCP Options 206
DHCP Policies and Filters 207
High Availability 208
DHCP Database 209
Remote Access 210
VPN 211
WAP 218
Network Load Balancing 219
Software Defined Networking 220
Network Controller 221
Hyper-V Network Virtualization 221
RAS Gateway 221
Datacenter Firewall 222
Software Load Balancing 222
Switch Embedded Teaming 223
Internal DNS Service 224
The Bottom Line 224
Chapter 6 File Services 227
File Services Overview 227
File Server 229
Installing the File Server 230
Creating a File Share 230
Assigning Permissions 231
BranchCache for Network Files 232
BranchCache Modes of Operation 233
DFS Namespaces and DFS Replication 237
Accessing Shared Folders in DFS 238
Configuring DFS Replication 241
DFS Monitoring and Troubleshooting 243
File Server Resource Manager 245
FSRM Features Deployment 246
Configuring General FSRM Options 247
Classification Management 248
File Management Tasks 249
Quota Management 250
Templates for Monitoring Disk Usage 251
File Screening Management 251
Work Folders 252
The Bottom Line 257
Chapter 7 Windows Server Containers 259
Containers Overview 259
Container Limitations 261
Container Terminology 261
Hyper-V Containers 262
Creating and Maintaining Containers 263
Hardware and Software Requirements 263
Installing Docker 264
Retrieving Container Images from Docker Hub 266
Creating and Running a Container 267
Manually Customizing an Image 270
Automating Image Creation 271
Managing Container Images 274
Configuring Containers 275
Storage 275
Networking 276
Resource Constraints 279
Authentication to AD 280
Application Development and Deployment 281
The Bottom Line 282
Chapter 8 Security Mechanisms 285
Security Overview 285
Where to Begin? 285
What Are the Risks? 286
Thinking Like an Attacker 287
Ethical Hacking 288
Protecting Accounts 288
Privileged Access 289
Securing User Accounts 292
Configuring Account Policy Settings 293
Protected Users, Authentication Policies, and Authentication Policy Silos 294
Delegating Privileges 295
Credential Guard 296
Protecting Data at Rest 297
Encrypting File System 297
BitLocker 298
Protecting Data in Transit 300
Windows Firewall with Advanced Security 300
IPsec 304
Protecting Administrative Access 312
Privileged Access Workstations 312
Local Administrator 313
Just Enough Administration 315
Role-Capability Files 316
Session-Configuration Files 317
Protecting Active Directory Infrastructure 318
Enhanced Security Administrative Environment 318
Privileged Access Management 319
Malware Protection 322
Software Restriction Policies 323
AppLocker 323
Device Guard 324
Hardening Operating Systems Security with Additional Microsoft Products 327
Advanced Threat Analytics 327
Evidence of the Attack 328
Auditing 329
The Bottom Line 336
Chapter 9 Active Directory Domain Services 339
Overview of Features 339
What Changed in AD DS for Windows Server 2016 339
Features from Windows Server 2012 R2 340
Features from Windows Server 2012 340
Revisiting Privileged Access Management 340
Design Considerations 342
Forests and Domains 342
Active Directory Trusts 344
Active Directory Sites 345
Active Directory Replication 348
Flexible Single Master Operation Roles 350
Designing the Organizational Unit Structure 351
Domain Controllers 353
Computer, User, and Group Management 363
Computer Management 363
User Management 366
Group Management 370
Group Policy 373
Group Policy Inheritance and Enforcement 374
Group Policy Day-to-Day Tasks 376
The Bottom Line 383
Chapter 10 Active Directory Certificate Services 385
What’s New in AD CS Windows Server 2016 385
Windows Server 2012 R2 386
Windows Server 2012 386
Introduction to a Public Key Infrastructure and AD CS 387
Planning and Design Considerations 389
Implementing a Two-Tier Hierarchy 393
Working with Certificate Templates 406
Auto-Enrollment 417
The Bottom Line 419
Chapter 11 Active Directory Federation Services 423
Overview of AD FS 423
AD FS Terminology 425
How AD FS Works 426
Planning and Design Considerations 429
Where Should You Place the AD FS Components? 429
Should You Use SQL Server for the AD FS Database? 431
What Are Your Certificate Options for Your AD FS Environment? 432
Should You Use a Group-Managed Service
Account for Your AD FS Environment? 432
Deploying an AD FS Environment 433
Installing the AD FS Server Role 433
Configuring Internal DNS Name Resolution 439
Configuring a Sample Federated Application 441
Configuring an AD FS Relying Party 445
Testing Application Access from an Internal Client 445
Installing Web Application Proxy Server Role Service 447
Publishing the Sample Federated Application 450
Testing Application Access from an External Client 452
The Bottom Line 454
Chapter 12 Management with System Center 457
Overview of System Center 2016 457
Understanding the Upgrade Sequence 457
Understanding the Install Sequence 459
Installing an Instance in a Cluster 461
Using System Center Virtual Machine Manager 465
Installing and Configuring VMM 466
Managing the VMM Compute Fabric 470
Managing the VMM Library 470
Managing the VMM Host Groups 470
Managing Hyper-V Hosts and Clusters 470
Managing VMware Servers 470
Managing Infrastructure Servers 470
Managing the VMM Networking Fabric 472
Creating a Logical Network 473
Creating a VM Network 475
Managing the Storage Fabric 476
Creating Virtual Machines 478
Managing Windows Server 2016 with System Center Operations Manager 482
The Operations Manager Infrastructure 482
Installing the Prerequisites 484
Managing Windows Server 2016 with System Center Configuration Manager 499
Three Branches 499
What You Should Know About Site Server Differences 501
ConfigMgr Prerequisites 503
Installing a Primary Site Server 505
Configuring System Center Configuration Manager 517
Boundaries and Boundary Groups 526
Installing Clients 530
Using Client Settings 532
Using Collections 535
The Bottom Line 539
Chapter 13 Management with OMS 541
What Is Operations Management Suite? 541
A Brief History 542
OMS Services 542
OMS Pricing 543
SLA Details 543
System Requirements 544
Log Analytics 546
Performance Queries 552
Event Queries 554
The Bottom Line 555
Index 559