Book Image

Mastering Windows Server 2019 - Second Edition

By : Jordan Krause

Book Image

Mastering Windows Server 2019 - Second Edition

By: Jordan Krause

Overview of this book

Mastering Windows Server 2019 – Second Edition covers all of the essential information needed to implement and utilize this latest-and-greatest platform as the core of your data center computing needs. You will begin by installing and managing Windows Server 2019, and by clearing up common points of confusion surrounding the versions and licensing of this new product. Centralized management, monitoring, and configuration of servers is key to an efficient IT department, and you will discover multiple methods for quickly managing all of your servers from a single pane of glass. To this end, you will spend time inside Server Manager, PowerShell, and even the new Windows Admin Center, formerly known as Project Honolulu. Even though this book is focused on Windows Server 2019 LTSC, we will still discuss containers and Nano Server, which are more commonly related to the SAC channel of the server platform, for a well-rounded exposition of all aspects of using Windows Server in your environment. We also discuss the various remote access technologies available in this operating system, as well as guidelines for virtualizing your data center with Hyper-V. By the end of this book, you will have all the ammunition required to start planning for, implementing, and managing Windows.

Preface

Who this book is for

What this book covers

To get the most out of this book

Free Chapter

Getting Started with Windows Server 2019

Getting Started with Windows Server 2019

The purpose of Windows Server

It's getting cloudy out there

Windows Server versions and licensing

Overview of new and updated features

Navigating the interface

Using the newer Settings screen

Installing and Managing Windows Server 2019

Installing and Managing Windows Server 2019

Technical requirements

Installing Windows Server 2019

Installing roles and features

Centralized management and monitoring

Windows Admin Center (WAC)

Enabling quick server rollouts with Sysprep

Core Infrastructure Services

Core Infrastructure Services

What is a Domain Controller?

Using AD DS to organize your network

The power of Group Policy

Domain Name System (DNS)

DHCP versus static addressing

Back up and restore

MMC and MSC shortcuts

Certificates in Windows Server 2019

Certificates in Windows Server 2019

Common certificate types

Planning your PKI

Creating a new certificate template

Issuing your new certificates

Creating an auto-enrollment policy

Obtaining a public-authority SSL certificate

Exporting and importing certificates

Networking with Windows Server 2019

Networking with Windows Server 2019

Introduction to IPv6

Your networking toolbox

Building a routing table

Software-defined networking

Azure Network Adapter

Enabling Your Mobile Workforce

Enabling Your Mobile Workforce

Remote Access Management Console

DA, VPN, or AOVPN? Which is best?

Web Application Proxy

Requirements for WAP

Latest improvements to WAP

Hardening and Security

Hardening and Security

Windows Defender Advanced Threat Protection

Windows Defender Firewall – no laughing matter

Encryption technologies

Banned passwords

Advanced Threat Analytics

General security best practices

Server Core

Why use Server Core?

Interfacing with Server Core

Windows Admin Center for managing Server Core

The Sconfig utility

Roles available in Server Core

What happened to Nano Server?

Redundancy in Windows Server 2019

Redundancy in Windows Server 2019

Network Load Balancing (NLB)

Configuring a load-balanced website

Failover clustering

Clustering tiers

Setting up a failover cluster

Recent clustering improvements in Windows Server

Storage Spaces Direct (S2D)

PowerShell

Why move to PowerShell?

Working within PowerShell

PowerShell Integrated Scripting Environment

Remotely managing a server

Desired State Configuration

Containers and Nano Server

Containers and Nano Server

Understanding application containers

Containers and Nano Server

Windows Server containers versus Hyper-V containers

Docker and Kubernetes

Working with containers

Virtualizing Your Data Center with Hyper-V

Virtualizing Your Data Center with Hyper-V

Designing and implementing your Hyper-V Server

Using virtual switches

Creating a new virtual switch

Implementing a new virtual server

Managing a virtual server

Integrating with Linux

ReFS deduplication

Hyper-V Server 2019

Assessments

Chapter 1: Getting Started with Windows Server 2019

Chapter 2: Installing and Managing Windows Server 2019

Chapter 3: Core Infrastructure Services

Chapter 4: Certificates in Windows Server 2019

Chapter 5: Networking with Windows Server 2019

Chapter 6: Enabling Your Mobile Workforce

Chapter 7: Hardening and Security

Chapter 8: Server Core

Chapter 9: Redundancy in Windows Server 2019

Chapter 10: PowerShell

Chapter 11: Containers and Nano Server

Chapter 12: Virtualizing Your Data Center with Hyper-V

Another Book You May Enjoy

Another Book You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Shielded VMs

If your day job doesn't include work with Hyper-V, it's possible that you have never heard of shielded VMs. The name does a pretty good job of explaining this technology at a basic level. If a VM is a virtual machine, then a shielded VM must be a virtual machine that is shielded or protected in some way, right?

A shielded VM is essentially a VM that is encrypted. Rather, the hard drive file itself (the VHDX) is encrypted, using BitLocker. It sounds simple, but there are some decent requirements for making this happen. In order for the BitLocker encryption to work properly, the VM is injected with a virtual Trusted Platform Module (TPM) chip. TPMs are quickly becoming commonplace at a hardware level, but actually using them is still a mysterious black box to most administrators. Shielded VMs can also be locked down so that they can only run on healthy and...