IPAM IP Address Management (IPAM) is one of the features first introduced with Windows Server 2012. IPAM allows you to customize and monitor the IP address infrastructure on a corporate network.
Kerberos Authentication Windows Server 2022 uses the Kerberos authentication protocol and extensions for password‐ based and public key authentication. The Kerberos client is installed as a security support provider (SSP), and it can be accessed through the Security Support Provider Interface (SSPI).
Managed Service Accounts Stand‐ alone managed service accounts, originally created for Windows Server 2008 R2 and Windows 7, are configured domain accounts that allow automatic password management and service principal names (SPNs) management, including the ability to delegate management to other administrators.
Nested Virtualization Windows Server 2022 allows you to use a Hyper‐ V feature called Nested Virtualization. Nested Virtualization allows you to create virtual machines within virtual machines. As an instructor, I find this to be an awesome new feature. Now I can build a Windows Server 2022 Hyper‐ V Server with a training virtual machine. Then when I get to the part when I need to teach Hyper‐ V, I can just do that right on the classroom virtual machine. There are numerous possibilities, and we will talk more about them throughout this book.
Nano Server Windows Server 2022 allows you to set up a unique type of server installation called Nano Server. Nano Server requires you to remotely administer the server operating system. It was primarily designed and optimized for private clouds and datacenters. Nano Server is very similar to Server Core, but the Nano Server operating system uses significantly smaller hard drive space, has no local logon capability, and only supports 64‐ bit applications and tools.
Networking There are many networking technologies and features in Windows
Server 2022, including BranchCache, Data Center Bridging (DCB), NIC Teaming, and many more.
Network Load Balancing The Network Load Balancing (NLB) feature dispenses traffic across multiple servers by using the TCP/IP networking protocol. By combining two or more computers that are running applications in Windows Server 2022 into a single virtual cluster, NLB provides reliability and performance for mission‐ critical servers.
Network Policy and Access Services Use the Network Policy Server (NPS) and Access Services server role to install and configure Network Access Protection (NAP), secure wired and wireless access points, and use RADIUS servers and proxies.
Print and Document Services Print and Document Services allows you to centralize print server and network printer tasks. This role also allows you to receive scanned documents from network scanners and route the documents to a shared network resource, Windows SharePoint Services site, or email addresses. Print and Document Services also provides fax servers with the ability to send and receive faxes while also giving you the ability to manage fax resources such as jobs, settings, reports, and fax devices on the fax server.
PowerShell Direct Windows Server 2022 includes a simple way to manage Hyper‐ V virtual machines called PowerShell Direct. PowerShell Direct is a powerful set of parameters for the PSSession cmdlet called VMName. This will be discussed in greater detail in the Hyper‐ V chapters, and it is included with Windows Server 2022.
Remote Desktop Services Before Windows Server 2008, we used to refer to this as
Terminal Services. Remote Desktop Services allows users to connect to virtual desktops, RemoteApp programs, and session‐ based desktops. Using Remote Desktop Services allows users to access remote connections from within a corporate network or from the Internet.
Security Auditing Security auditing gives you the ability to help maintain the security of your enterprise. By using security audits, you can verify authorized or unauthorized access to machines, resources, applications, and services. One of the best advantages of security audits is to verify regulatory compliance.
Smart Cards Using smart cards (referred to as two‐ factor authentication) and their associated personal identification numbers (PINs) is a popular, reliable, and cost‐ effective way to provide authentication. When using smart cards, the user not only must have the physical card but must also know the PIN to be able to gain access to network resources. This is effective because even if the smart card is stolen, thieves can’t access the network unless they know the PIN.
Software‐ Defined Networking The Software‐ Defined Networking (SDN) solution allows you to centrally configure and manage your physical and virtual network devices.
These devices include items such as routers, switches, and gateways in your datacenter.
Telemetry The Telemetry service allows the Windows Feedback Forwarder to send feedback to Microsoft automatically by deploying a Group Policy setting to one or more organizational units. Windows Feedback Forwarder is available on all editions of Windows Server 2022, including Server Core.
TLS/SSL (Schannel SSP) Schannel is a security support provider (SSP) that uses the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) Internet standard authentication protocols together. The Security Support Provider Interface is an API used by Windows systems to allow security‐r elated functionality, including authentication.
Volume Activation Windows Server 2022 Volume Activation will help your organization benefit from using this service to deploy and manage volume licenses for a medium to large number of computers.
Web Server (IIS) The Web Server (IIS) role in Windows Server 2022 allows you to set up a secure, easy‐ to‐ manage, modular, and extensible platform for reliably hosting websites, services, and applications.
Windows Deployment Services Windows Deployment Services allows you to install Windows operating systems remotely. You can use Windows Deployment Services to set up new computers by using a network‐ based installation.
Windows PowerShell Desired State Configuration Windows Server 2022 allows you to create a PowerShell management platform called Windows PowerShell Desired State Configuration (DSC). DSC enables the deployment and management of configuration data for software services and also helps you manage the environment in which these services run.
DSC allows you to use Windows PowerShell language extensions along with new Windows PowerShell cmdlets and resources. DSC lets you declaratively specify how your corporation wants their software environment to be configured and maintained.
DSC allows you to automate tasks like enabling or disabling server roles and features, manage Registry settings, manage files and directories, manage groups and users, deploy software, and run PowerShell scripts, to name just a few.
Windows Server Backup Feature The Windows Server Backup feature gives your organization a way to back up and restore Windows servers. You can use Windows Server Backup to back up the entire server (all volumes), selected volumes, the system state, or specific files or folders.
Windows Server Update Services Windows Server Update Services (WSUS) allows you to deploy application and operating system updates. By deploying WSUS, you have the ability to manage updates that are released through Microsoft Windows Update to computers in your network. This feature is integrated with the operating system as a server role on a Windows Server 2022 system.
Leave a Reply