Virtualization Hyper-V host scale and scale-up workload support

Virtualization Hyper-V host scale and scale-up workload support System Host Virtual machine Resource Logical processors on hardware MAXIMUM NUMBER Windows 2008 R2 Windows Server 2012 64 320 5 Physical memory 1 TB 4 TB 4 Virtual processors per host 512 2,048 4 Virtual processors per virtual machine 4 64 16 Memory per virtual machine 64 GB 1 TB 16 Improvement factor Active virtual machines 384 1,024 2.7 Cluster Nodes 16 64 4 Virtual machines 1,000 4,000 4

Manage virtual machines independently from underlying infrastructure Live migration within a cluster Live migration of storage Handle changing needs on demand Shared-nothing live migration Hyper-V Replica

MEMORY VIRTUAL MACHINE MOBILITY Live migration based on server message block (SMB) share Modified Memory Storage Live migration pages handle transferred moved setup Improvements Faster and simultaneous migration VM Modified Configuration Memory memory content data pages VM Live migration outside a clustered environment Store virtual machines on a File Share IP connection SMB network storage

VIRTUAL MACHINE MOBILITY Live migration of storage Move virtual hard disks attached to a running virtual machine Benefits Manage storage in a cloud environment with greater flexibility and control Move storage with no downtime Update physical storage available to a virtual machine (such as SMB-based storage) Windows PowerShell cmdlets Disk Disk Reads writes contents are and mirrored; writes are copied go outstanding to to new new Reads and writes go to the source VHD changes destination are replicated VHD Virtual machine Source device Computer running Hyper-V Target device

MEMORY VIRTUAL MACHINE MOBILITY Shared-nothing live migration Benefits Increase flexibility of virtual machine placement Increase administrator efficiency Reduce downtime for migrations across cluster boundaries Disk Reads Disk contents writes and writes are copied mirrored; go to to the new Live Migration Completes Continues outstanding source VHD. destination source changes Live Migration VHD VHD are replicated Begins Source Hyper-V Virtual machine Source device Live Migration Modified Configuration Memory memory content data pages IP connection Target device Virtual machine Destination Hyper-V

VIRTUAL MACHINE MOBILITY New feature Replicate Hyper-V virtual machines from a primary site to a replica site Benefits Affordable in-box business continuity and disaster recovery Failure recovery in minutes More secure replication across network No need for storage arrays No need for other software replication technologies Automatic handling of live migration Simpler configuration and management CRM virtual machine SQL virtual machine SharePoint virtual machine P1 Primary site Hyper-V role and tools Hyper-V cmdlets SMB file share Hyper-V PS integrated UI Hyper-V Management Module tracks and replicates changes for each virtual machine Exchange virtual machine IIS virtual machine P2 Replicate over WAN link Send/receive replica traffic CRM replica virtual machine Exchange replica virtual machine R1 Replica site Hyper-V role and tools Hyper-V cmdlets SAN R2 Hyper-V PS integrated UI Hyper-V Management Module receives and applies the changes to the replica virtual machine R3

NIC Teaming CONTINUOUS SERVICES Benefits Management Higher reliability against failure Better throughput Windows PowerShell Configuration UI for NIC Teaming Server Manager What is NIC Teaming? Multiple parallel network connections Increases throughput Provides redundancy in case of link failure NIC Teaming in a Hyper-V environment Uses virtual network adapters Can connect to more than one virtual switch Maintains connectivity if one switch disconnects Can support up to 32 network adapters in a team (Example: SR-IOV)

CONTINUOUS SERVICES Multiple modes: switch dependent and independent Hashing modes: port and 4-tuple Active/active and active/standby Virtual adapters Team network adapter Team network adapter

ROBUST AUTOMATION Key features Broader coverage Rich management through more than 2300 cmdlets Windows PowerShell Web Access More intuitive Integrated Scripting Environment 3.0: IntelliSense Code Snippets Syntax simplification Cmdlet discovery and module autoloading Updatable help Script-sharing Greater resiliency Robust session connectivity Disconnected sessions Session configuration files Job scheduling Windows PowerShell Workflow Higher performance On-the-fly compilation scripts run up to six times faster Performance Improvements 20

Windows PowerShell Workflow.NET Framework 4 support Add-Member improvements Computer cmdlets CSV handling improvements Get-ChildItem attributes Get-Command improvements Default parameter values Better history support Security cmdlet fixes Select-Object optimizations Select-String improvements Tee-Object -Append Disconnected sessions Idle timeout & server buffering control Invoke-Command in disconnected sessions Disconnected jobs STA mode by default Run with PowerShell context menu Module autoloading Console host start perf improvements ETW logging and tracing Core CIM cmdlets New Group Policy settings Output redirection for all streams Array member enumeration Word wrap in console host Default properties on custom objects Updatable help system Method overload discovery HelpUri attribute support HelpFile property on FunctionInfo Simplified Where and ForEach Remoting local variables via $using Dynamic types & formats Get-Content -Tail Generic method invocation Typecasting deserialized objects New parser built on DLR Improved method overload selection New objects from hash tables Typecasting for parameter values Pipeline paging APIs Nested pipeline APIs $PSScriptRoot and $PSCommandPath Ordered hash tables Improved module discovery & import New module manifest keys Public abstract syntax tree Runspace pool cleanup API Public tab completion Windows RT API support Obsolete cmdlet attribute Command discovery improvements Script autosave support Out-GridView -PassThru CIM cmdlet authoring from WMI v2 CIM.NET APIs Job scheduling Runtime script compilation Engine reliability improvements Better Get-ChildItem network performance Cmdlet definition files Certificate provider improvements Alternate NTFS data stream support Move-Item across drives Remote module discovery & import Credentials for FileSystem provider Remote session autodisconnect & retry Transport options for remote sessions Module logging Workflow persistence Job integration with Task Scheduler Alternate credential support for jobs Update console font & branding Verb & noun on FunctionInfo Special character handling LiteralPath support for core cmdlets DLR-based tab completion Session configuration files IntelliSense support Windows Management Framework 3.0 Windows PE integration Windows RT support Windows PowerShell Web Access Management OData IIS Extension XAML-based workflows Script-based workflows Control Panel cmdlets Unblock-File cmdlet Workflow help Cmdlet to activity conversion RunAs and SharedHost support Improved WMI object formatting Heterogeneous object formatting Workflow logging Workflow extensibility Common workflow parameters Workflow execution environment Snippets ISE Add-ons $PSItem alias for $_ Show-Command Get-Help -ShowWindow Restart Manager support Web & REST cmdlets JSON cmdlets XML syntax highlighting Block select Collapsible regions Contextual F1 support Script Explorer 21

More intuitive ROBUST AUTOMATION IntelliSense Context-sensitive command completion for cmdlet and script names, parameter names and enumerated values, and property and method names Show-Command pane for finding and running cmdlets in a dialog box 22

More intuitive ROBUST AUTOMATION Simplified Scripting Syntax simplification: Windows PowerShell 3.0 includes simplified, consistent syntax across all cmdlets Simplified scripting through Windows PowerShell ISE 3.0: Built-in code snippets include templates for functions, parameters, and statements Users do not need to remember the syntax Snippets add reusable text to scripts and commands 23

More intuitive ROBUST AUTOMATION Cmdlet discovery Simplified learning Get-Command has been updated to find all cmdlets installed on the system Cmdlets can be used immediately because modules are imported automatically on first use For example To find cmdlets, run Get-Command: Get-Command *-Net* To get the syntax of a cmdlet, run: Get-Command <Command Name> -Syntax 24

More intuitive ROBUST AUTOMATION Script Sharing Microsoft Script Explorer for Windows PowerShell available on Download Center Provides access to community-generated Windows PowerShell scripts 25

Delivers enterpriseclass performance Optimizes capacity utilization Storage Spaces SMB 3.0 Resilient to component failures Lowers the cost of acquisition, deployment, and operations Data Deduplication SMB Direct 26

ENTERPRISE-CLASS FEATURES ON LESS EXPENSIVE HARDWARE Physical or virtualized deployments Integrated with other Windows Server 2012 capabilities Windows Virtualized Storage Physical Storage File Server Administration Console Failover Clustering Cluster Shared Volume Storage Pool Windows Application Server or File Server Hyper-V NTFS NFS Storage Pool SMB Multichannel SMB Direct Windows Storage Mgmt. Storage Space Storage Space Storage Space Virtualization of storage with Storage Pools and Storage Spaces Storage resilience and availability with commodity hardware Resiliency and data redundancy through n-way mirroring (clustered or unclustered) or parity mode (unclustered) Utilization optimized through thin and trim provisioning and enclosure awareness Integration with other Windows Server 2012 capabilities Serial Attached SCSI (SAS) and Serial AT Attachment (SATA) interconnects (Shared) SAS or SATA

ENTERPRISE-CLASS FEATURES ON LESS EXPENSIVE HARDWARE VHD Library Software Deployment Share General File Share User Home Folder (My Docs) 0% 20% 40% 60% 80% 100% Average savings with Data Deduplication by workload type Maximize capacity by removing duplicate data 2:1 with file shares, 20:1 with virtual storage Less data to back up, archive, and migrate Increased scale and performance Low CPU and memory impact Configurable compression schedule Transparent to primary server workload Improved reliability and integrity Redundant metadata and critical data Checksums and integrity checks Increase availability through redundancy Faster file download times with BranchCache Source: Microsoft Internal Testing"

CONTINUOUS APPLICATION AVAILABILITY CHKDSK NTFS improvements Rapid recovery from file system corruption without affecting availability Resilient against power outage corruption Periodic checksum validation of file system metadata Improved data integrity protection Ideal for file server volumes Seconds to fix corrupted data Rapid recovery from file system corruption without affecting availability No offline time when used with CSV Data Disk scanning corruption process virtually separated eliminated from through repair allocate-on-write process Period Online checksum scanning with validation volume of and file system offline repair meta-data Seamless data integrity protection 400 300 200 100 0 100 Million Files 200 Million Files 300 Million Files Windows Server 2008 R2 Windows Server 2012 Source: Microsoft Internal Testing"

Windows Server file server cluster CONTINUOUS APPLICATION AVAILABILITY High-performance, continually available fileshares for business critical applications \\foo\share Failover transparent to server applications with zero downtime and with only a small I/O delay Support for planned moves, load balancing, operating system restart, unplanned failures, and client redirection (scale-out only) Resilient for file and directory operations All servers involved should have Windows Server 2012 \\foo1\share1 \\foo2\share1

CONTINUOUS APPLICATION AVAILABILITY Reduces server downtime and user disruption by orchestration of cluster node updates Maintains service availability without impacting cluster quorum Detects required updates and moves workloads off nodes for updates Uses Windows Update Agent or extensible plug-in U Third-party plug-in for updates Windows Server Cluster Current Workload

DIRECTACCESS Transparent network access to the end user from any Internet connection Easy-deployment wizard Support for multiple sites Support for Windows PowerShell for client and server Site-to-site tunneling Simple to deploy and manage centrally Flexible deployment scenarios Unified management experience Built-in support for IPv6 translation technology 35

DIRECTACCESS Traditional virtual private networks (VPNs) for compatibility Connection is not always established DirectAccess for automatic, transparent connectivity Connection is established at machine startup time and user does not need to log on Cannot originate connection from intranet Can originate connection from intranet Connection originates from mobile user on an indeterminate schedule Connection to intranet is always active 36

DYNAMIC ACCESS CONTROL Centrally manage access control from Active Directory Easily resolve end-user permission issues File access audit Integration with Active Directory Rights Management Services Pre-stage and simulate the effect of changes to access policy Automatically identify and classify data based on content Central access policies File Classification Infrastructure

DYNAMIC ACCESS CONTROL Classification Access control Auditing Rights Management Services protection Files inherit classification tags from parent folder File owners tag files manually Files are tagged automatically Files are tagged by applications Central access policies are based on classification Access conditions for user claims, device claims, and file tags are based on expressions Assistance is available for denial of access Central audit policies can be applied across multiple file servers Audits for user claims, device claims, and file tags are based on expressions Audits can be staged to simulate policy changes in a real environment Automatic Rights Management Services (RMS) protection is available for Microsoft Office documents Protection is in nearreal time when a file is tagged RMS protection extends to files not created in Microsoft Office 38

DYNAMIC ACCESS CONTROL Location Manual Contextual Application Create or modify file Save classification Determine classification In-box content classifier Third-party classification plug-in 39

DYNAMIC ACCESS CONTROL 40

DYNAMIC ACCESS CONTROL Active Directory Domain Services File server User claims User.Department = Finance User.Clearance = High Device claims Device.Department = Finance Device.Managed = True Resource properties Resource.Department = Finance Resource.Impact = High Access policy For access to financial information that has high business impact, a user must be a finance department employee with a high security clearance, and must use a managed device registered with the finance department. 41

DYNAMIC ACCESS CONTROL High business impact policy Personally identifiable information policy Finance policy Active Directory Domain Services Organizational policies High business impact Personally identifiable information Finance department policies High business impact Personally identifiable information Finance Corporate file servers User folders Characteristics Composed of central access rules Applied to file servers through Group Policy objects Supplement (not replace) native file and folder access control lists from New Technology File System (NTFS) Finance folders 42

DYNAMIC ACCESS CONTROL Active Directory Domain Services Create claim definitions Create file property definitions Create central access policy Active Directory Domain Services Group Policy Send central access policies to file servers Claim definitions User File Server User s computer Apply access policy to the shared folder Identify information User tries to access information File property definitions Audit policy Allow or deny File server 43