Category Archives: Server 2012

Oct 11

Flashcard App sets for 70-410 PowerShell and ITIL

Posted on by

Flashcard Sets for ITIL and PowerShell for 70-410, 411, 412, 417

I have created two flashcard sets at http://www.flashcardmachine.com/, one for ITIL Foundations terms (remember, no acronym memorization is needed for Foundations test).

ITIL – 52 flashcards on the key terms and definitions.

70-410, 411, 412 and 417 PowerShell commands.

You can review these online, or you can download an APP to study them on your phone. The app is

Flashcard Machine ITIL and PowerShell sets

Flashcard Machine flashcards for ITIL and 70-410

called Flashcard Machine, and it’s FREE. To find my two flashcard sets search for these terms on FlashCardMachine.com;

ITIL – ITIL 2011 JL Key Service Management Terms (53 cards)

70-410 PowerShell – 70-410 JL PowerShell Commands (68 cards)

As you can see, I have “JL” in each title so you can make sure you’re getting my sets.

Sep 12

Server 2012 R2 Core, Minimal GUI, GUI

Posted on by

SO, what are all the options with core?  What is “minimal  GUI”?  How do you move from one to the other?

I wanted to post to outline these options as this understanding will probably be included on several questions in the 70-412 or 70-417 tests.

There are THREE options for the interface on Server 2012.

From the most basic, to the most features, they look like this;

  1. Server Core – always installed and enabled; the baseline feature for all Windows Servers. This includes the fundamental capabilities that cannot be removed and are core to the OS.
    1. What you get; ONLY command prompt (Powershell)
  2. Minimal Server Interface; Server Graphical Management Tools & Infrastructure – functionality for Minimal Server Interface;
    1. What you get; Server Manager and command prompt, and MMC
  3. Server Graphical Shell – equivalent to Server with a GUI
    1. What you get; this is the full GUI interface that most Administrators work with

Link to overview and diagram shown below.

Server 2012 GUI Layers

Server 2012 GUI Layers

 

We are going to demonstrate scenarios with VIDEO

  1. Starting with Server Graphical Shell (normal full blown GUI)
    1. We remove the Graphical Shell, which takes us to MINIMAL SERVER INTERFACE.  Then we return to the Server Graphical Shell.
      1. Link to video going from Server Graphical Shell to Minimal Server Interface, and back. Also looking at the tools in Minimal Server Interface, and how you restart your tools if you close them all and are looking at a black, blank desktop in Minimal Server Interface.
      2. https://youtu.be/O1mNgwzUewQ 
    2. We remove Graphical Shell and minimal interface and go directly to CORE, then we return to Graphical Shell
      1. This command gets you from CORE to Minimal Server Interface; Install-WindowsFeature Server-Gui-Mgmt-Infra
      2. Add this command as well, and you go back to full Server Graphical Shell; Install-WindowsFeatureServer-Gui-Shell 
      3. So, to go from Core back to Server Graphical Shell in one step, this is your command; Install-WindowsFeature Server-Gui-Mgmt-Infra, Server-Gui-Shell
      4. Link to video going from Server Graphical Shell to Core, and back. Also looking at the tools in Core, and how you restart your tools if you close them all and are looking at a black, blank desktop in Core.
      5. https://youtu.be/sAwOOpuD4mA
Jul 11

Windows Server 2012 R2 (70-412) Continuity and Disaster Recovery – Study Guide

Posted on by

Prepare yourself for the Microsoft MCSA 70-412 exam. This course explores how to implement an advanced DHCP solution, implement an advanced DNS solution, and deploy and manage IP Address Management.

Videos at the bottom (WinRE)

These notes are my personal notes from the FREE training on Pluralsight. You can get your FREE signup through technet/MSDN or Dreamspark. The title of this course is exactly the title of this post. These notes are from this specific course only. I use these as a refresher Study Guide. POWERSHELL topics and2012GregShieldscmdlets are in purple. I have a few notes with the “DEMO” each time the training included a DEMO just so you can see how many demos there were which were really helpful. Thanks to Greg Shields @ConcentratdGreg, the trainer, contact info at the end.

All, or nearly all, sections include DEMOS so I’m not notating that separately.2012TrainingRecommendedOrder

These training courses should be preferably taken in this order (screenshot).

  1. Configure and Manage Backup Solutions
    1. Configure Windows Server Backups FEATURE
      1. Compared to NT backups, this focuses on VOLUMES.
      2. Pretty fully featured technology today.
      3. If you want to do Bare Metal backups, you need to check that along with System State, System Reserved, and probably the C or OS drive.
      4. Advanced settings
        1. excluded files
        2. VSS settings
          1. copy vs. full (are you using some other backup application, if so you use COPY)
      5. Destination
        1. local volume
        2. remote shared folder
        3. Optimize backup performance = types of backups (full, incremental, etc.)
      6. POWERSHELL WB = Windows Backup
      7. Get-WBJob
      8. Stop-WBJob
      9. Get-WBVSSBackupOption
    2. Configure Azure Backups
      1. designed to just get a back up into the Cloud
      2. Create “Backup Vault” tied to subscription and choose location
      3. Download Vault credentials, and download and install Azure Backup Agent
      4. Is now called MICROSOFT Azure Backup NOT Windows Azure Backup
      5. set up encryption; Microsoft cannot recover data
      6. Azure looks almost the same as a Windows backup. File and folder; just data, not system restore.
    3. Configure role-specific backups
      1. Backup Operators is the default, maybe too many permissions for many cases; can shut down system.
      2. Create your own role for backup files and directories and restore files and directories
    4. Manage VSS settings using VSS Admin
      1. extended from original design (previous versions for users) to now include backups (quiescence)
      2. VSS writer (specific by vendor for the application, Exchange, Oracle, AD, SQL, etc.
      3. the VSS requester is the partner to the writer
      4. PS vssadmin list writers
      5. vssadmin list providers
      6. vssadmin add shadowstorage /for=c: /on=f: /maxsize=20% set location for VSS
      7. vssadmin create shadow /for=c:     create vss shadow copy, very quick nearly instantly
      8. vssadmin can remove, revert, etc.
  2. Recover Servers (restore)
    1. individual file or folder recovery
      1. backup from – choose location, then choose files and folders (other choices volumes, applications, system state, or virtual machines)
      2. can put back in same, or different location
    2. Bare metal server recovery
      1. boot into WINRE (WINdows Recovery Environment) and also here; Tom’s Guide; when to use RE
        1. one option is to use shutdown command shutdown /r /o /t 02012NewShutdownSwitches (Check out Windows 8 new shutdown switches here)
        2. the /o is a new switch
        3. This is a gui based windows recovery console. Allows you to find the system image, install drives, connect to network locations to find image. Do you want to repartition drives.
        4. Don’t even need DVD media.
        5. Here is a link to a video of the WINRE console.
        6. The F8 replacement is WINRE
        7. msconfig – set what startup you get for NEXT boot to boot into safe mode, AD repair, etc. In case boots are so fast you can’t see F8
        8. you can also boot to windows DVD
        9. From WINRE you can boot to command prompt view, and you can manipulate unmounted drive (OS is not mounted). You can tell because command prompt is on the X drive which is the WINRE OS
          1. startrep (start repair scan)
          2. bootrec (boot record repair) Fixmbr, Fixboot, ScanOS, RebuildBcd
          3. Advanced boot options (looks like the F8 options)
            1. safe mode, with networking, with command prompt, boot logging, debugging, low-resolution video, last known good, disable restart, disable early launch anti-malware etc., etc.
        10. Configure the boot configuration data store
        11. multi boot menu to offer recovery options (not multi os boot)
          1. bcdedit
          2. bcdedit /export c:\save (export and save config)
  3. Configure site level fault tolerance
    1. Configure Hyper-V Replica, including Replica Broker and VMs
      1. Replica is NOT failover clustering
      2. provides a way to keep another copy of VM files (usually at remote site)
      3. Replica CAN work with failover clusters
      4. Replica is NOT OS specific; you can set it up with just shell VM, no OS to prove it
      5. Kerberos – not encrypted traffic, requires trusted AD
      6. certs – encrypted, no trusted domain needed
      7. set up on each VM individually
      8. configure frequency
      9. can also set up scheduled recovery points
      10. VSS for application consistent recovery points
      11. you can do the initial replication via external media, network, choose other machine, etc.
      12. set failover TCP/IP
      13. on the TARGET location server there is “test failover” under network adapter in Hyper-V Manager
      14. PLANNED failovers all start from the SOURCE location
      15. UNPLANNED start from Destination location (thought is that the source location is down, or offline)
      16. Adding Replica to Failover Cluster, need to
        1. Need to add the Hyper-V Replica Broker ROLE
    2. Configure Multi Site Clustering, including network settings, Quorum, and Failover Settings
    3. Configure Hyper-V Replica Extended Replication
      1. create a second replication site
      2. this is initiated from the TARGET location of the original source.
      3. most other stuff is the same
    4. Configure Global Update Manager
      1. https://technet.microsoft.com/en-us/library/dn265972.aspx#BKMK_GUM
      2. When a state change occurs such as a cluster resource is taken offline, the nodes in a failover cluster must be notified of the change and acknowledge it before the cluster commits the change to the database. The Global Update Manager is responsible for managing these cluster database updates. In Windows Server 2012 R2, you can configure how the cluster manages global updates. By default, the Global Update Manager uses the following modes for failover cluster workloads in Windows Server 2012 R2:
    5. Recover a Multi Site Failover Cluster
      1. make sure you can support the IP and network configuration in the failover site
      2. same Cluster Manager is used to manage stretch (multi site) clusters
      3. configure preferred owners to deselect the DR site
      4. QUORUM
        1. node and file share is preferred
        2. even number of hosts per location preferred
        3. Force start without a quorum; https://msdn.microsoft.com/en-us/library/hh270275.aspx
Jun 24

Windows Server 2012 R2 (70-412) Configure High Availability – Study Guide

Posted on by

These notes are my personal notes from the FREE training on Pluralsight. You can get your FREE signup through technet/MSDN or Dreamspark. The title of this course is exactly the title of this post. These notes are from this specific course only. I use these as a refresher Study Guide. POWERSHELL topics and2012GregShieldscmdlets are in purple. I have a few notes with the “DEMO” each time the training included a DEMO just so you can see how many demos there were which were really helpful. Thanks to Greg Shields @ConcentratdGreg, the trainer, contact info at the end.

All, or nearly all, sections include DEMOS so I’m not notating that separately.

  1. Configure Network Load Balancing
    1. most commonly used with IIS
    2. stateless (doesn’t matter what node user connects with)
    3. Configure NLB Prerequisites
      1. install Feature
      2. Unicast, Multicast, IGMP Multicast
      3. Unicast
        1. always works
        2. 1:1
        3. requires a second NIC on each server
        4. causes subnet flooding; all traffic to all hosts goes to all hosts
      4. Multicast
        1. no second NIC
        2. network configurations
        3. does not solve subnet flooding
      5. IGMP Multicast – best practice
        1. no second nic
        2. network requirements
        3. solve subnet flooding problem
    4. Install NLB Nodes
    5. Configure Cluster Operation Mode
    6. Configure Port Rules and Affinity
    7. Upgrade an NLB Cluster
  2. Configure Failover Clustering (read prior post here)
    1. Cluster Storage
      1. shared storage is not built in Windows; it’s a foreign concept
      2. proper configuration of storage is critical
      3. iSCSI, FC, Storage Spaces (in our previous FS training)
      4. we’re using iSCSI here in this demo
    2. Configure Cluster networking
      1. best practice to separate cluster private network and storage network
      2. Failover Cluster Manager – console for cluster management
      3. Cluster Validation wizard (lots of experience with this 😉
      4. In this Demo, Cluster Private network, Storage network, and Management / Production
      5. Check the networks in Failover Cluster Manager
    3. Cluster Shared Volumes (CSV) used by Hyper-V virtual machines
      1. Quorum (chosen by smallest size)
      2. Available Storage LUNs (if containing a VM, they all would have to fail over at the same time (or each have dedicated LUN)
      3. CSV, each VM can fail over individually
      4. you can define a disk as a CSV, and you can revert also.
      5. More here on Using CSV for Failover Cluster
        1. CSV cache size configuration; (Get-Cluster).BlockCacheSize = 512 for Server 2012 R2, for more read the link above.
      6. Quorum configuration
        1. Quorum is only to identify if enough of a cluster remains to still operate as a quorum.
        2. Quorum Models (dependent on number of nodes)
          1. Node majority (used for ODD number of nodes)
          2. Node and Disk Majority (even number of nodes)
          3. “split brain” when cluster breaks into two separate groups of nodes who each think they are quorum
          4. No Majority Disk Only (old, not used any more)
          5. Node and File Server Majority (special considerations) even nodes, multi site. The separate vote goes to a disk file share somewhere.
        3. Configure quorum model in Failover Cluster Manager
          1. MS automatically manages cluster quorum setting now. “use default quorum configuration”
          2. Or, you can go to advanced features and dance with the complexity on your own.
      7. Clusters without network names (detached cluster) Deploy an Active Directory-Detached Cluster
        1. SQL server outside your firewall
        2. not supported for several additional roles
        3. no bitlocker
        4. no CAU (Cluster Aware Updating)
        5. read the link
        6. cannot use FOCM
        7. PS – (Get-Cluster).AdministrativeAccessPoint
          1. read the link for more
      8. CAU (Cluster Aware Updating)
        1. “update cluster” item in Server Manager
        2. allows cluster to manage resource movement to update nodes/hosts.
        3. configure self-updating options wizard
        4. add the ROLE on the cluster
        5. choose schedule (normal WSUS stuff)
        6. reboot timeouts, max retries, pre or post scripts, recommended / important
        7. All the above is for Windows updates, not WSUS
        8. “Analyze cluster updating readiness”
        9. PS
          1. Cluster-Aware Updating Cmdlets in Windows PowerShell
      9. Restoring single node of cluster
        1. Evict = kicking node out
        2. restore configuration from backup (make sure you have system state)
      10. Upgrading a cluster
        1. not recommended to directly upgrade a cluster
        2. this is a cut and move
        3. “copy cluster roles” from a wizard from the TARGET cluster, connect to OLD cluster to get configs.
  3. Manage Failover Clustering Roles
    1. remember MSCS is a “general purpose” clustering solution
    2. role-specific settings
      1. DFS, SHCP, DTC, FIle Server, iSCSI target, etc., etc..
      2. Generic application, script, or service
      3. DEMO – clustered NOTEPAD via Generic Application
      4. cluster is a SINGLE instance of the app that fails from node to node, moving the resources (including created drives) as needed
      5. Continuously available file server
        1. General Use, or SOFS (Scale Out File Server) (used for Hyper-V and SQL)
      6. Configure Virtual Machines
        1. do not put SOFS and VMs on same CSV
    3. fail-over and preferences
      1. ROLES (shared app, file server, VM, etc.)
      2. move, stop, change startup priority
      3. no autostart
      4. add resources or storage
      5. “show dependency” report
        1. graphical representation of dependencies
      6. “preferred owner” unchecked can be used, just not preferred
      7. failover max
      8. failback now/yes, set hours it can happen
      9. cluster handles DNS records for cluster required records
      10. you can manually add dependencies
    4. possible and preferred owners
      1. possible owners (cannot be on any node that is not checked)
      2. preferred owner (can use unchecked nodes, they’re just not preferred)
    5. guest clustering
      1. another layer of abstraction
      2. simply means clustering VMs that are on the MSCS cluster
      3. shared .VHDX2012EnableVirtualHardDiskSharing
      4. new feature (like RDMs) in VMware
      5. advanced features “enable virtual hard disk sharing”
  4. Manage VM Movement
    1. Migration – Live, Quick, Storage
      1. Quick
        1. the old fashioned, with a quick period of loss of service
      2. Live
        1. no loss of service
      3. Storage
        1. moving the .vhdx, the data
      4. Quick is technically faster, and uses less bandwidth than Live
      5. Live – procs need to be same manufacturer and similar family
      6. virtual switches needs to be named the same
      7. physical devices must be disconnected
      8. DEMO
        1. constrained delegation has to be configured to the hosts that you want to migrate to/from
        2. CredSSP alternative to Kerbos/constrained delegation but CredSSP requires you to log onto the machine to start the migration
    2. Import, Export, Copy
      1. have to export/import if you can’t do quick/live migration
    3. Configure VM Health Protection
      1. move to locations without proper networks, or something similar
      2. VMHP is under Network Adapter / advanced features
      3. it will move it back to prior location if it ends up isolated
      4. ENABLED by default
    4. Configure Drain on Shutdown
      1. drain a node on shutdown
      2. ENABLED by default
    5. Configure VM Monitoring
      1. “resources” tab on bottome of Failover Cluster Manager
      2. checkbox to enable automatic recovery for application health monitoring
      3. if/when enabled, you can select services via checkbox that you want to include for application monitoring.
Jun 14

Windows Server 2012 R2 (70-412) MCSA and the 70-412 Exam – Study Guide

Posted on by

These notes are my personal notes from the FREE training on Pluralsight. You can get your FREE signup through technet/MSDN or Dreamspark. The title of this course is exactly the title of this post. These notes are from this specific course only. I use these as a refresher Study Guide. POWERSHELL topics and 2012GregShieldscmdlets are in purple. I have a few notes with the “DEMO” each time the training included a DEMO just so you can see how many demos there were which were really helpful. Thanks to Greg Shields @ConcentratdGreg, the trainer, contact info at the end.

After doing the Advanced Features training, I’m expanding into the rest on Pluralsight and will go through as many as I can before my test date. This content should also apply to the 70-417. The 417 is the one I’m taking is a combination of 410, 411, and 412 all in one. It breaks down the score for each section. You have to pass all three sections. I have passed two of them (410 and 411) but not the 412, so if you fail one of them, you fail the entire test.

  1. An Introduction to the MCSA’s Final Exam2012Exams
    1. bunch of stuff about exam, objectives, strategy
    2. 417 is a combination of 410, 411 and 412
    3. Intended audience; ok.
    4. Without taking a bunch of notes, let’s just say review the exam objectives, just scroll down on the appropriate page for the specific exam you’re looking at;
      1. https://www.microsoft.com/learning/en-us/exam-70-410.aspx
      2. https://www.microsoft.com/learning/en-us/exam-70-411.aspx
      3. https://www.microsoft.com/learning/en-us/exam-70-412.aspx
      4. https://www.microsoft.com/learning/en-us/exam-70-417.aspx
    5. R2 specific information has  been included since January 2014.  So, while I don’t think you’ll have a lot of questions about the differences from 2012 and Server 2012 R2, I WOULD expect to know the new Server 2012 R2 features.
    6. Link on what is NEW in Server 2012 R2
  2. The next section is titled Building Your 70-412 R2 Environment 
    1. I’m going to put the next section in a new post focused on how to build a lab.
Jun 14

Windows Server 2012 R2 New Features Study Guide

Posted on by

Windows Server 2012 R2 New Features (test 70-412 or 70-417)

These notes are my personal notes from the FREE training on Pluralsight. You can get your FREE signup through technet/MSDN or Dreamspark. The title of this course is exactly the title of this post. These notes are from this specific course only. I use these as a refresher Study Guide. POWERSHELL topics and cmdlets are in purple. I have a few notes with the “DEMO” each time the training included a DEMO just so you can see how many demos there were which were really helpful. Thanks to Orin Thomas, the trainer, contact info at the end.

  1. Web Application Proxy
    1. Replaces AD FS Proxy role
      1. AD FS offers CLAIMS BASED Authentication (based on other atributes from user or computer accounts). For example based on employee type, location, title, etc.
      2. AD FS can work between organizations with different OS (Windows / Linux)
      3. Allows SSO for premise and cloud (like Office 365)
      4. Reverse proxy for web apps (prior might have used TMG / Threat Management Gateway)
    2. Web Application Proxy prerequisites
      1. supports pass through authentication
      2. AD FS preauthentication
      3. requries certs;
        1. cert that includes federation service name
        2. specifics for Workplace Join
        3. Certs for each web app, or wildcard cert
  2. Guest Clustering with Shared Virtual Hard Disks
    1. I think is the same as using VMware RDMs to sup MSCS clusters on Windows Server VMs. I’ve done a bunch of these at work with vShere 6.0 and Server 2012 R2
    2. Nodes can be on different hosts; AKA “Cluster Across Boxes” as opposed to “Cluster in a Box” which is both nodes on one physical host.
    3. Shared Virtual Hard Disks allow shared storage WITHOUT SAN.  What?
    4. More simple than iSCSI
    5. Needs to be highly available via
      1. scale out file server
      2. cluster shared volume
    6. shared storage needs to be .vhdx
    7. Gen1 or Gen2
    8. Only with 2012 and 2012R2 for OS
    9. DEMO
      1. build out clustered SOFS
      2. configure cluster file server
      3. add csv
      4. set up new share on SOFS using SMB-Applications
      5. Hyper-V hosts need to be able to access this location
    10. Then use Hyper-V console to attach the VHD to a SCSI controller
      1. has to be .vhdx
      2. fixed or dynamic
      3. ENABLE VHD sharing
      4. attach to SCSI controller
      5. bring disk online, iitialize, format volume
      6. can create multiple drives on same volume
    11. DEMO
      1. create VHD and create VM cluster
      2. enalble vhd sharing

        2012EnableVHDSharing

        enable VHD sharing

      3. after each VM (node) can see the storage then you can add the failover clustering FEATURE.
      4. then build the cluster
  3. Improving VHD Performance
    1. resizing VHDs
      1. used to have to be shut down, now can be running
      2. must be using .vhdx format
      3. must be connected to a SCSI controller (Gen1, or Gen2)
        1. Gen1 machines boot from IDE, so…
      4. resizing allows to set smaller size upfront, knowing expansion is simple.
      5. use Hyper-V console or Resize-VHD Powershell command
      6. DEMO of above steps
    2. Storage QoS
      1. set max/min IOPS

        2012SetIOPSonVHD

        set IOPS limits

    3. Storage Tiering
      1. via storage pools
      2. automatic; turn in and it moves based on activity
      3. CAN  manual settings
  4. Windows Server 2012 Clustering Improvements
    1. VM Drain on shutdown
      1. If you put a VM in maintenace mode, then VMs are moved to another host.
      2. HOWEVER, in 2012, if you shut down host WITHOUT maintenance mode, there is a disruption of service as VMs go into a saved state, are moved, then started. While they are in a saved state, they are non-functional.
      3. In R2, even if you shut down (without maintenance mode) they move to another host AUTOMATICALLY. This is new in R2
    2. Dynamic Quorum / Dynamic Witness
      1. DQ – 2012 and 2012 R2 automatically recalculate quorum if a node is shut down gracefully.
      2. if multiple nodes fail, 1) checks if it has a quorum then 2) recalculates quorum
      3. you can also configure certain nodes to be NON voting node.
      4. Dynamic Witness
        1. configure a witness that will or will not be used based on quorum
        2. if there is an odd number, then dynamic witness doesn’t vote
        3. if there is an even number, then dynamic witness will be active
        4. PURPOSE is to reduce the chance of cluster failure if a witness goes down.
        5. basically insures an odd number of votes
      5. Force Quorum Resiliency
        1. to avoid “split brain” or “partitioned cluster”; nodes are not aware of each other, most often due to network issue. Generally resolved by restarting cluster. Essentially, each set of nodes think they have quorum. Think nodes in two separate datacenters (Sydney and Melbourne)
        2. Force Quorum Resiliency is that when network is restored, the cluster quorum is restored automatically.
      6. Tiebreaker 50-50 Node Split
        1. clusters dynamically adjust a nodes vote (deprecated vote) to ensure odd number.
        2. you have to configure it.
        3. works WITH dynamic witness
        4. works if dynamic witness fails
        5. in multi site clusters, admin can set which site retains quorum
  5. Enhanced Session Mode and Improved VM Export
    1. Virtual Machine Connection via Hyper V Console
      1. doesn’t allow cut/paste, scripting, redirect sound, basically only KB and mouse
      2. if you want those features, you usually have to use RDP
      3. Requirements
        1. host on 2012 R2
        2. VMs running R2 or Windows 8.1
        3. Enabled in Hyper V settings on host
        4. account is a member of RDP users or Admins on VM
        5. (do not have to log into VM and enable RDP
    2. DEMO of Enhanced Session Mode2012EnhancedSessionMode
      1. allows to set resolution
      2. allows redirect audio
      3. allows record remote audio
      4. redirect printers
      5. redirect clipboard (like RDP)
      6. click “More” to get to map drives, PnP, etc.
      7. Essentially this is like the same thing in RDP but appears pretty robust and solid.
    3. Virtual Machine Export IMPROVEMENTS
      1. 2012 or prior, had to shut down machine.
      2. R2 lets you export RUNNING machine.
      3. the exported machine, when you import it, it will be running as well (with certain requirements)
      4. Example; testing; you want to copy a bunch of machines to test a software install.
    4. DEMO of Virtual Machine Live Export
      1. create checkpoint (snapshot)
      2. can export checkpoint or live machine
      3. if you do the live machine, it creates temporary checkpoint, then a live update at the last instant to finalize
      4. WILL create a new vm id upon import, if you want. there are three choices; 1) Register in place (use existing unique ID), 2) restore the virtual machine (use existing unique ID), and 3) copy the virtual machine (create a new unique ID). Explanations of these three options here.
      5. Also note the VM unique ID, is a unique Hyper-V GUID, but this is NOT the same as a SID. A SID is used for Active Directory, this is simply for Hyper-V see explanation here.
      6. CAN do multiple imports, like a template. That would usually be option # 3 above.
  6. Generation 2 Virtual Machines – NEW in R2
    1. Gen 1 machines WILL run in 2012 R2 no problem.
    2. Gen 1 machines emulate older hardware, which creates performance impact
      1. lots of P2V, but now we do a lot of straight to VM
    3. Gen 2
      1. supports secure VM boot
      2. don’t need to run on particular older hypervisor
      3. don’t need to support Remote FX
      4. boot volumes bigger than 2.2 Tb (developers will love this; we want all the storage you have….)
      5. there is a new step in VM creation wizard; 1 or 2.  Default is still Gen1 (see screenshot)
      6. Can’t really change this later. There is an unsupported script on MSDN and perhaps other places example here.
    4. DEMO of Generation 2 VM on Server 2012 R22012Gen2MachineDefaultGen1
      1. It states in the wizard that this cannot be changed, see the warning at the bottom.
      2. next few steps are the same as you’re familiar with.
      3. Gen2 only support new .vhdx format.
      4. Another new feature; no default virtual DVD! This is ONLY created if you specify install by .iso. (see screenshot)

        If you don't select the .iso, there will be NO default DVD drive created.

        If you don’t select the .iso, there will be NO default DVD drive created.

    5. Generation 2 Boot Order
      1. for booting to .ISO etc.Just like changing boot order in BIOS more less.
      2. Enable secure boot (default is ENABLED)
      3. only supported by Windows OS
      4. VM has to be turned off to change setting.
      5. currently (as of this training)
    6. DEMO of Gen2 Boot Order
      1. contained in VM “settings/firmware”
    7. NO IDE controller. (older versions HAD to boot off IDE
      1. Gen2 ONLY boot from SCSI
      2. allows hot add storage, or expand storage while running (R2)
    8. DEMO of hot add storage and expand
      1. we went over this in the prior post VNEXT First Look
    9. Drawbacks to Gen2
      1. no remote FX (so be aware if you are a VDI shop)
      2. no .vhd support for OS drive.
      3. no linux support
      4. no iSCSI reboot
      5. cannot replicate to Azure
  7. SMB and DFS Improvements
    1. manage bandwidth based on traffic type; default/Live Migration/Virtual Machine Traffic
    2. by default, no limits
    3. Bandwidth Limit is a FEATURE, only enabled/configured by POWERSHELL (no GUI install). Installed from Server Manager, enabled by PS
    4. SMB manage bandwidth Managed by Powershell, see here.
    5. Clone of the DFS database; Use Case; setting it up in a branch office without WAN replication to get initial replication set up.
    6. Preserved File Restoration
      1. ConflictAndDeleted and PreExisting can be managed by Powershell;
        1. Get-DfsrPreservedFiles and Restore-DfsrPeservedFiles
        2. can choose to overwrite, or copy to new location
      2. This is a Server 2012 R2 capability.
    7. DEMO DFS Export
      1. Get-DfsrCloneState
  8. Remote Desktop Services Improvements
    1. Session shadowing, Dynamic Display, RestrictedAdmin Mode, Online Data Deduplication
    2. Session shadowing allows admin to connect to Server 2012 R2 session and view mode, or “control mode” so you can interact and control just like the user.
      1. Can be configured to “require permission”
    3. DEMO of session shadowing.
      1. similar to what a lot of third party tools have been able to do; Citrix, Webex, LogMeIn123, VNC,  etc.
    4. Dynamic Display – supports “device rotation” for landscape mode for tablets etc. Multiple monitors, projectors, etc. Supports touch devices.
    5. RemoteFX virtualized GPU support DX 11.1
    6. compression bandwidth compression – claims of 50% less bandwidth when playing video across Server 2012 R2 RDS WAN link.
    7. RestrictedAdmin mode
      1. allows interactive logon without sending credentials
      2. only Windows 8.1
      3. requires /restrictedadmin mode in MSTSC command
      4. more info on RestrictedAdmin mode here.
    8. Online Data Deduplication
      1. deduplicates VHD while running
      2. requires Server 2012 R2 with Feature enabled
      3. when deployed on tiered storage, deduped data moved to higher tier
  9. Windows Server 2012 R2 WDS Improvements
    1. WDS with Powershell and VHDX deployment
    2. lots of new powershell to automate. System Center Orchestrator can call these cmdlets.
      1. New Powershell cmdlets;
        1. New-WdsInstallImageGroup
        2. Import-WdsBootImage
        3. Import-WdsInstallImage
        4. Import-WdsDriverPackage
    3. DEMO of Powershell cmdlets via ISE
    4. VHDX files Import and Deployment
      1. now can use a GUI to manage.
      2. create in Hyper V, sysprep, then shut down.
      3. no need to capture
      4. import the .vhdx into WDS
      5. make reference machine smaller than 120 Gb or WDS will error thinking it’s larger than the default 120 Gb drive
    5. DEMO
      1. demo of sysprep, shut down, etc.
      2. Import to WDS
  10. DHCP and DNS Improvements
    1. Implementing DNSSEC, Zone Level Statistics, and DHCP Registration Options
    2. DNSSEC allows records to be digitally signed so clients can verify authenticity
    3. most Server 2012 R2 improvements related to replication
    4. When DNSSEC is enabled, each record gets a matching RRSIG (Record Resource SIGnature) record, and a DNSKEY record and a NSEC/NSEC3. More on DNSSEC here.
    5. DNSSEC keys
      1. trust anchor
      2. KSK Key Signing Key
        1. first server with DNSSEC has the KSK
      3. Zone Signing Key
      4. NRPT can be configured after DNSSEC is confitured.
        1. configured with Group Policy
        2. allows you to configure IPSEC
    6. DEMO of DNSSEC
    7. Zone Level Statistics (improved)
      1. query, transfer, updates
    8. Demo of Zone Level Statistics
      1. Get-DnsServerStatistics
    9. DHCP registration and Name Protection
      1. DEMO of DHCP registration and Name Protection
      2. site or server level
      3. “enable name protection” checkbox. Does not allow duplicate named hosts.
  11. Upgrading to Windows Server 2012
    1. upgrading domain controllers, migrating DHCP servers, migrating file servers
      1. DC not a true upgrade, can’t do x86 to x64 version
      2. only some OS can do an OS upgrade
      3. Recommendation is to introduce a Server 2012 R2 DC to your 2003 functional level domain
      4. promote Server 2012 R2 to DC
      5. transfer FISMO roles to Server 2012 R2 DC
      6. then demote the old DCs (dcpromo)
    2. DEMO of upgrading the DCs
      1. netdom query FISMO  (shows FISMO roles)
    3. Migrating DHCP
      1. back it up using DHCP concsole
      2. install ROLE on Server 2012 R2
      3. then restore the backup
        1. netsh to back up DHCP
        2. 2003 netsh DHCP server export c:\somefilename.txt all (exports the file)
        3. 2003 netsh DHCP server import c:\somefilename.txt all (imports to Server 2012 R2 server)
        4. 2008 use the Server Manager
    4. DEMO of transferring DHCP
    5. Migrating File Server
      1. biggest issues are permissions, share permissions, and quotas
      2. install migration tools Feature on Server 2012 R2
      3. creates a package to install on source machine
      4. basic steps are;
        1. INSTALL migration tools on Server 2012 R2 target machine
        2. CREATE package for donor/source machine
        3. INSTALL migration tools from package to donor/source machine
        4. START Receive-SmigServerData on target/destination
        5. START Send-SmigServerData on donor/source
        6. More on SmigServerData here.
    6. DEMO of moving file server role
      1. install Feature from server manager or PS
        1. DO NEED .net framework 4
        2. create package (just a folder of a bunch of files)
        3. run smigdeploy to start it on the donor/source

This concludes the Pluralsight Windows Server 2012 R2 New Features Course

Thanks to Orin Thomas;

http://www.pluralsight.com/author/orin-thomas

http://orinthomas.com/

@orinthomas

Jun 11

Windows Server vNext First Look

Posted on by

This is one of the FREE Pluralsight training classes.
Windows Server vNext First Look

UPDATE; I got some questions about VNEXT. I have not finished this Study Guide as I need to focus on my upcoming test. However, I did find a couple of additional posts on other sites that are helpful;

  1. 1) http://windowsitpro.com/windows-server/windows-server-vnext-giant-leap-rather-small-step
  2. 2) Tech Days Keynote by Jeffrey Snover and Rick Claus
  3. 3) there is a whole series of videos on MSDN CHANNEL 9
    1. There are two many to list right now but go to this URL; http://channel9.msdn.com/Events/Ignite/2015/
    2. Then, add search criteria on the right; 1) add “vnext” or “nano” to the search box (one at a time)
    3. AND also down the list a bit select “level 300” and you should be getting a list of vNEXT and NANO videos from Ignite.

My notes (did not complete this, had to focus back on 2012 R2 for upcoming tests)

  • The next (unamed OS). This is a PREView, not even to Beta yet.
  • Some features are not even in the preview
  • RTM sometime 2015
  • Hyper-V
    • can rolling upgrade from 2012 R2 to vNEXT AND BACK
    • so you can move a VM from one to another
    • once all nodes are vNext, then you can upgrade cluster, and after that all VMs are version 6 instead of 2012R2 v5
    • VM configuration file improvements. Less editable, more resilient. Binary, not XML
      • .VMCX and .VMRS files
    • Production checkpoints (snapshots in 2012r2) weren’t really supported. Now are fully supported in all production workloads.
    • Still can do standard checkpoints, or production checkpoints
    • Linux Secure Boot;
      • Generation2 Linux VM
      • protects boot environment from malware
      • have to use MS UEFI certificate authority
    • Hot Add Memory and Hot Add NICs
      • increase, decrease even with static settings, Gen 1, Gen2
      • NICs, only Gen 2
    • Hyper-V Manager
      • information about versions and memory utilization
      • can use alternate credentials
      • downlevel server management; 2012 R2, Windows 8, different versions.
      • additional features; integration services through windows updates, connected standby, add storage to VMs that are set to replicate (prior had to recreate)
    • Demo
      • hyper-v console
      • hot add memory (VMware could do for years)
      • hot add NIC (VMware could do for years)
    • What’s new in Remote Desktop Services
      • Remote FX improvements (Remote FX simulates a powerful graphics adapter, in VDI environments or Remote Desktop)

 

May 19

70-417 and 70-412

Posted on by

412

Here is a list of my free training from Pluralsight;

 

TO Do List

Skills measured

This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam.

Please note that the questions may test on, but will not be limited to, the topics described in the bulleted text.

As of January 2014, this exam includes content covering Windows Server 2012 R2.

Hide all
Configure and manage high availability (15–20%)
  • Configure Network Load Balancing (NLB)
    • Install NLB nodes, configure NLB prerequisites, configure affinity, configure port rules, configure cluster operation mode, upgrade an NLB cluster
  • Configure failover clustering
    • Configure quorum, configure cluster networking, restore single node or cluster configuration, configure cluster storage, implement Cluster-Aware Updating, upgrade a cluster, configure and optimize clustered shared volumes, configure clusters without network names, configure storage spaces
  • Manage failover clustering roles
    • Configure role-specific settings, including continuously available shares; configure virtual machine (VM) monitoring; configure failover and preference settings; configure guest clustering
  • Manage VM movement
    • Perform live migration; perform quick migration; perform storage migration; import, export, and copy VMs; configure VM network health protection; configure drain on shutdown

Preparation resources

Configure file and storage solutions (15–20%)
  • Configure advanced file services
    • Configure Network File System (NFS) data store, configure BranchCache, configure File Classification Infrastructure (FCI) using File Server Resource Manager (FSRM), configure file access auditing
  • Implement Dynamic Access Control (DAC)
    • Configure user and device claim types, implement policy changes and staging, perform access-denied remediation, configure file classification, create and configure Central Access rules and policies, create and configure resource properties and lists
  • Configure and optimize storage
    • Configure iSCSI target and initiator, configure Internet Storage Name server (iSNS), implement thin provisioning and trim, manage server free space using Features on Demand, configure tiered storage

Preparation resources

Implement business continuity and disaster recovery (15–20%)
  • Configure and manage backups
    • Configure Windows Server backups, configure Microsoft Azure backups, configure role-specific backups, manage VSS settings using VSSAdmin
  • Recover servers
    • Restore from backups, perform a Bare Metal Restore (BMR), recover servers using Windows Recovery Environment (Win RE) and safe mode, configure the Boot Configuration Data (BCD) store
  • Configure site-level fault tolerance
    • Configure Hyper-V Replica, including Hyper-V Replica Broker and VMs; configure multi-site clustering, including network settings, Quorum, and failover settings; configure Hyper-V Replica extended replication; configure Global Update Manager; recover a multi-site failover cluster

Preparation resources

Configure Network Services (15–20%)
  • Implement an advanced Dynamic Host Configuration Protocol (DHCP) solution
    • Create and configure superscopes and multicast scopes; implement DHCPv6; configure high availability for DHCP, including DHCP failover and split scopes; configure DHCP Name Protection; configure DNS registration
  • Implement an advanced DNS solution
    • Configure security for DNS, including Domain Name System Security Extensions (DNSSEC), DNS Socket Pool, and cache locking; configure DNS logging; configure delegated administration; configure recursion; configure netmask ordering; configure a GlobalNames zone; analyze zone level statistics
  • Deploy and manage IP Address Management (IPAM)
    • Provision IPAM manually or by using Group Policy, configure server discovery, create and manage IP blocks and ranges, monitor utilization of IP address space, migrate to IPAM, delegate IPAM administration, manage IPAM collections, configure IPAM database storage

Preparation resources

Configure the Active Directory infrastructure (15–20%)
  • Configure a forest or a domain
    • Implement multi-domain and multi-forest Active Directory environments, including interoperability with previous versions of Active Directory; upgrade existing domains and forests, including environment preparation and functional levels; configure multiple user principal name (UPN) suffixes
  • Configure trusts
    • Configure external, forest, shortcut, and realm trusts; configure trust authentication; configure SID filtering; configure name suffix routing
  • Configure sites
    • Configure sites and subnets, create and configure site links, manage site coverage, manage registration of SRV records, move domain controllers between sites
  • Manage Active Directory and SYSVOL replication
    • Configure replication to Read-Only Domain Controllers (RODCs), configure Password Replication Policy (PRP) for RODC, monitor and manage replication, upgrade SYSVOL replication to Distributed File System Replication (DFSR)

Preparation resources

Configure Identity and Access Solutions (15–20%)
  • Implement Active Directory Federation Services (AD FS)
    • Install AD FS; implement claims-based authentication, including Relying Party Trusts; configure authentication policies; configure Workplace Join; configure multi-factor authentication
  • Install and configure Active Directory Certificate Services (AD CS)
    • Install an Enterprise Certificate Authority (CA), configure certificate revocation lists (CRL) distribution points, install and configure Online Responder, implement administrative role separation, configure CA backup and recovery
  • Manage certificates
    • Manage certificate templates; implement and manage certificate deployment, validation, and revocation; manage certificate renewal; manage certificate enrollment and renewal to computers and users using Group Policies; configure and manage key archival and recovery
  • Install and configure Active Directory Rights Management Services (AD RMS)
    • Install a licensing or certificate AD RMS server, manage AD RMS Service Connection Point (SCP), manage RMS templates, configure Exclusion Policies, back up and restore AD RMS

Preparation resources

417

Exam 70-410

Hide all
Install and configure servers (25‒30%)
  • Install servers
    • Plan for a server installation, plan for server roles, plan for a server upgrade, install Server Core, optimize resource utilization by using Features on Demand, migrate roles from previous versions of Windows Server
  • Configure servers
    • Configure Server Core, delegate administration, add and remove features in offline images, deploy roles on remote servers, convert Server Core to/from full GUI, configure services, configure NIC teaming, install and configure Windows PowerShell Desired State Configuration (DSC)
  • Configure local storage
    • Design storage spaces, configure basic and dynamic disks, configure Master Boot Record (MBR) and GUID Partition Table (GPT) disks, manage volumes, create and mount virtual hard disks (VHDs), configure storage pools and disk pools, create storage pools by using disk enclosures

Preparation resources

Configure server roles and features (20‒25%)
  • Configure servers for remote management
    • Configure WinRM, configure down-level server management, configure servers for day-to-day management tasks, configure multi-server management, configure Server Core, configure Windows Firewall, manage non-domain joined servers

Preparation resources

Configure Hyper-V (25‒30%)
  • Create and configure virtual machine (VM) settings
    • Configure dynamic memory, configure smart paging, configure Resource Metering, configure guest integration services, create and configure Generation 1 and 2 VMs, configure and use enhanced session mode, configure RemoteFX
  • Create and configure virtual machine storage
    • Create VHDs and VHDX, configure differencing drives, modify VHDs, configure pass-through disks, manage checkpoints, implement a virtual Fibre Channel adapter, configure storage Quality of Service
  • Create and configure virtual networks
    • Configure Hyper-V virtual switches, optimize network performance, configure MAC addresses, configure network isolation, configure synthetic and legacy virtual network adapters, configure NIC teaming in VMs

Preparation resources

Install and administer Active Directory (25‒30%)
  • Install domain controllers
    • Add or remove a domain controller from a domain, upgrade a domain controller, install Active Directory Domain Services (AD DS) on a Server Core installation, install a domain controller from install from media (IFM), resolve Domain Name System (DNS) SRV record registration issues, configure a global catalog server, deploy Active Directory infrastructure as a service (IaaS) in Microsoft Azure

Preparation resources

Exam 70-411

Hide all
Deploy, manage, and maintain servers (20‒25%)
  • Monitor servers
    • Configure Data Collector Sets (DCS), configure alerts, monitor real-time performance, monitor VMs, monitor events, configure event subscriptions, configure network monitoring, schedule performance monitoring

Preparation resources

Configure network services and access (20‒25%)
  • Configure DirectAccess
    • Implement server requirements, implement client configuration, configure DNS for DirectAccess, configure certificates for DirectAccess

Preparation resources

Configure a network policy server infrastructure (15‒20%)
  • Configure Network Access Protection (NAP)
    • Configure System Health Validators (SHVs), configure health policies, configure NAP enforcement using Dynamic Host Configuration Protocol (DHCP) and VPN, configure isolation and remediation of non-compliant computers using DHCP and VPN, configure NAP client settings

Preparation resources

Configure and manage Active Directory (20‒25%)
  • Configure domain controllers
    • Transfer and seize operations master roles, install and configure a read-only domain controller (RODC), configure domain controller cloning
  • Maintain Active Directory
    • Back up Active Directory and SYSVOL, manage Active Directory offline, optimize an Active Directory database, clean up metadata, configure Active Directory snapshots, perform object- and container-level recovery, perform Active Directory restore, configure and restore objects by using the Active Directory Recycle Bin

Preparation resources

Configure and manage Group Policy (20‒25%)
  • Configure Group Policy processing
    • Configure processing order and precedence, configure blocking of inheritance, configure enforced policies, configure security filtering and WMI filtering, configure loopback processing, configure and manage slow-link processing and Group Policy caching, configure client-side extension (CSE) behavior, force Group Policy Update

Preparation resources

ToDo

Cluster CSV

DISK2VHD

NETSH

DAC

VSSADMIN

 

 

Apr 01

Microsoft Certification Challenge – 180 days to Certification

Posted on by

New Microsoft option to get started with certification.

http://borntolearn.mslearn.net/goodstuff/p/certchallenge.aspx

I know, sometimes there are so many different options, programs, websites, it seems hard to keep track of it all. However, this new one seems like a good deal, expecially for someone new to Microsoft Microsoft180DayChallengeCertifiations. Essentially, you create an online profile where you get recommendations, training, tips and exam discounts.

This was actually announced a few months ago, so we can’t give Satya Nadella credit for this one!

DISCOUNTS include;

20% off SQL Server exams + Second Shot
20% off Windows Server and Client exams + Second Shot
20% off MTA exams + Second Shot
3-for-1 Developer exams + Second Shot

Oct 18

Server 2012 FREE eBook, FREE training

Posted on by

Server 2012 Newsletter #3

 

NEXT NEWSLETTER (#3)

  • Free eBook on Server 2012 (no physical books are out yet)
  • Training

 

Ok, as promised, in this note we will provide links on a FREE ebook on Server 2012. Most new books are ebooks because they are available before they can get them printed. If you have a Kindle, this one is also available in .MOBI. You can also install the Kindle app on a PC, or on a phone, or whatever, you don’t really need a Kindle to read Kindle books. Kindles will also read .pdf.  So, why is a .mobi better?  Simple; a .pdf on a Kindle does not scale; you have to scroll around to read it which is a pain. A .mobi will scale and read just like a Kindle book. Also, if you use the “send to Kindle” app, it will NOT work with this book as it’s just over the 50 Mb limit for the “send to Kindle” app. This is like 51 Mb or something, so you have to move it to your Kindle with a USB cord. Anyhow, enough of Kindle.

 

 

  • Leveraging the popular “Jump Start” virtual classroom approach, Microsoft Senior Technical Evangelist Rick Claus and TrainSignal Microsoft Certified Trainer Ed Liberman will walk you through new features and functionality in Windows Server 2012. Topics and technologies covered will include Dynamic Access Control (DAC), Failover Clustering, Microsoft Online Backup and storage, Active Directory, Hyper-V and Active Directory Federation Services (ADFS), and high availability. This course is NOT a “product upgrade” course covering considerations for migrating and upgrading your specific environment; but, it is exam preparation material and maps directly to Exam 70-417: Upgrading Your Skills to MCSA Windows Server 2012. Note this is PACIFIC time, so it’s evening. I belive these will be available “on demand” afterwards, most MVA (Microsoft Virtual Academy) stuff IS, but I don’t know for sure.