windows azure architecture guide
TRANSCRIPT
-
8/10/2019 Windows Azure Architecture Guide
1/123
Architecture GuideWindows Azure
October 2012
Version 3.0
-
8/10/2019 Windows Azure Architecture Guide
2/123
Disclaimer
This document is provided as-is. Information and views expressed in this document, including URL and other Internet website references, may
change without notice. You bear the risk of using it.
Some examples are for illustration only and are fictitious. No real association is intended or inferred.
This document does not provide you with any legal rights to any intellectual property in any Microsoft product. You may copy and use this document
for your internal, reference purposes.
2012 Microsoft Corporation. All rights reserved.
Microsoft, the Microsoft logo, the Windows logo, Active Directory, ActiveSync, AppFabric, Bing, BizTalk, Excel, Hyper-V, InfoPath, Internet Explorer,
Office 365, Outlook, PerformancePoint, PowerPoint, SharePoint, SQL Azure, SQL Server, Visio, Visual Studio, Windows, Windows Azure, Windows
Intune, Windows Mobile, Windows PowerShell, Windows Server, and Windows Vista are either registered trademarks or trademarks of Microsoft
Corporation in the United States and/or other countries.
All other trademarks are property of their respective owners.
-
8/10/2019 Windows Azure Architecture Guide
3/123
Architecture Guide Page 3 of 123
Contents
Overview .............................................................................................................................................. 4
Scope of This Guide ....................................................................................................................................................................... 4Who Should Read This Guide .................................................................................................................................................... 4
How to Use This Guide ................................................................................................................................................................. 4
Section Summaries ........................................................................................................................................................................ . 4
Customizing Your Solution ............................................................................................................. 5Why Customize? ................................................................................................................................................ .............................. 5
The Customization Process ......................................................................................................................................................... 5
Understand Your Priorities ........................................................................................................................................... 5
Choose a Starting Point ................................................................................................................................................. 6
Adjust the Optimization Mapping ............................................................................................................................ 6
Adjust the Logical Architecture .................................................................................................................................. 8
Design the Physical Architecture and Plan ............................................................................................................ 8
Phase 1 ................................................................................................................................................. 9Envision the Solution .................................................................................................................................................................... . 9
Definition ............................................................................................................................................................................. 9
Optimization Mapping ................................... ........................................ ....................................... .............................. 10
Technology Mapping .................................................................................................................................................. 13
Architect the Solution ................................................................................................................................................................. 14
Logical Architecture ..................................................................................................................................................... 14
Illustrative Physical Architecture ............................................................................................................................. 15
System Components .................................................................................................................................................... 16
Plan Development and Deployment of the Solution ..................................................................................................... 20
Phase 2 ............................................................................................................................................... 64Envision the Solution ................................................................................................................................................................... 64
Definition .......................................................................................................................................................................... 64
Optimization Mapping ................................... ........................................ ....................................... .............................. 65
Technology Mapping .................................................................................................................................................. 67
Architect the Solution ................................................................................................................................................................. 69
Logical Architecture ..................................................................................................................................................... 69
Illustrative Physical Architecture ............................................................................................................................. 70
System Components .................................................................................................................................................... 70
Plan Development and Deployment of the Solution ..................................................................................................... 75
Phase 3 ............................................................................................................................................... 97Envision the Solution ................................................................................................................................................................... 97
Definition .......................................................................................................................................................................... 97Optimization Mapping ................................... ........................................ ....................................... .............................. 98
Technology Mapping ..................................... ........................................ ....................................... ............................ 101
Architect the Solution ............................................................................................................. ................................................. 103
Logical Architecture ................................................................................................................................................... 103
Illustrative Physical Architecture..................................... ........................................ ....................................... ........ 103
System Components ....................................... ........................................ ....................................... ............................ 104
Plan Development and Deployment of the Solution .................................................................................................. 109
-
8/10/2019 Windows Azure Architecture Guide
4/123
Architecture Guide Page 4 of 123
OverviewThis section explains this documents scope, the intended audience, a description about how the
audience should use this document, and a summary of the key sections.
Scope of This Guide
This document helps the audience design a logical architecture for an enterprise platform that is based
on Microsofttechnologies and that optimizes WindowsAzure. It also contains references to other
documents that describe how to design a physical architecture and how to plan for developing and
deploying the designed platform.
The audience should use the information in this document in the context of business needs and
integrated capability requirements that the Microsoft Optimization solution area for Windows Azure
discusses. This solution area helps structure conversations with IT directors and executives to better
understand their business drivers and priorities, discuss potential business capabilities, and design and
deploy a robust enterprise platform that supports the solution.
Who Should Read This Guide
This document is for solution implementation team members who specify and plan an enterprise
platform that optimizes Windows Azure. Solution implementation team members typically include
business analysts, solution architects, platform architects, infrastructure architects, IT infrastructure
managers, and IT operations managers.
How to Use This Guide
This document provides useful information about an integrated capability analysis, which is a
structured process for validating the requirements, specifying the design, and planning to develop and
deploy an enterprise architecture.
Section Summaries
This document has four major sections:
Customizing Your Solution:This section provides an approach to use the remaining sections of
this document and other Optimization solution area materials to validate requirements, specify the
design, and plan to develop and deploy an enterprise architecture that meets your specific needs.
Phase 1:This section provides the definition; Optimization mapping; technology mapping; logical
architecture; illustrative physical architecture; system components; and references to plan, develop,
and deploy Phase 1.
Phase 2:This section provides the definition; Optimization mapping; technology mapping; logicalarchitecture; illustrative physical architecture; system components; and references to plan, develop,
and deploy the Phase 2.
Phase 3:This section provides the definition; Optimization mapping; technology mapping; logical
architecture; illustrative physical architecture; system components; and references to plan, develop,
and deploy the Phase 3.
-
8/10/2019 Windows Azure Architecture Guide
5/123
Architecture Guide Page 5 of 123
Customizing Your SolutionThis section provides an approach to use this document and other Optimization solution area materials
to validate requirements, specify the design, and plan to develop and deploy an enterprise architecture
that optimizes Windows Azure.
Why Customize?
This document and the other Optimization solution area materials define three illustrative solution
phases that increase in complexity and potential business value: Phase 1, Phase 2, and Phase 3. Each
solution phase specifies business capabilities that map to the Optimization maturity models,
architecture diagrams, and technologies.
The definitions of these three illustrative solutions are quite robust, so it is likely that no solution
exactly matches your particular needs because your business has:
Specific priorities of business drivers
Specific priorities of business capabilities
Existing architecture and initiatives in your environment
The Customization Process
You should use the solution phases as starting points in the following steps, which ensures a resulting
platform that is robust, agile, and manageable:
1. Understand your priorities.
2. Choose a starting point.
3. Adjust the Optimization mapping.
4.
Adjust the logical architecture.
5.
Design the physical architecture and plan.
Understand Your Priorities
The first step is to clearly understand, document, and baseline your priorities. You can use the Business
Priorities Guide for a solution area to discuss, capture, and baseline the relevance and priority of
specific business drivers and potential business capabilities.
Figure 1 illustrates an example where:
The business driver, Create high-impact sales proposals, is the first priority.
Red text emphasizes the compelling business capabilitiess that address the organizations specific
needs.
-
8/10/2019 Windows Azure Architecture Guide
6/123
Architecture Guide Page 6 of 123
Figure 1 Example business priorities
Choose a Starting Point
Based on your priorities, Phase 2 is the starting point for this example because it is the least advancedsolution that covers the first priority business capability.
Adjust the Optimization Mapping
Review and adjust the Optimization mapping that corresponds to the starting-point solution. You can
remove capabilities that you do not need and change the maturity levels for the capabilities.
Figure 2 illustrates this process for the specific business capability priorities. In this figure:
Capability is needed
Capability is not needed
? Capability may not be relevant
* Capability that Phase 2 defines may not match thespecific requirement for the customized solution
-
8/10/2019 Windows Azure Architecture Guide
7/123
Architecture Guide Page 7 of 123
Figure 2 Adjusting your solutions Optimization mapping
Tips for adjusting your solutions Optimization mapping:
For capabilities that may not match the specific requirement for your customized solution (that is,capabilities that are marked with an asterisk [*]):
Refer to the Optimization model definitions.
Consider using an alternate maturity level that corresponds to your requirements, as Figure 3
shows.
Remove items in a capability that you do not need.
Figure 3 Using an alternate maturity level
-
8/10/2019 Windows Azure Architecture Guide
8/123
Architecture Guide Page 8 of 123
For capabilities that may not be relevant (that is, capabilities that are marked with a question mark
[?]):
Identify, document, and discuss how a capability might be relevant.
Identify the Core capabilities that may not be critically relevant, as Figure 4 shows.
Figure 4 Identifying a Core capability that is not critically relevant
Server Securityhelps protect and secure the server infrastructure at the data center from viruses,
spam, malware, and other intrusions.
Adjust the Logical Architecture
After you identify a stable set of business capabilities and corresponding required Optimization
capability maturity levels, you can adjust the technology mapping, logical architecture, and system
components of the starting-point solution phase to remove what you do not need.
Design the Physical Architecture and Plan
From the system components list that you adjusted, you can refer to the corresponding lists to design
a specific physical architecture that meets your needs and environment and to plan how to develop
and deploy your customized platform.
-
8/10/2019 Windows Azure Architecture Guide
9/123
-
8/10/2019 Windows Azure Architecture Guide
10/123
Architecture Guide Page 10 of 123
This section describes the integrated capabilities of the Phase 1 solution. Organizations can use this
section to better understand which integrated capabilities they need to customize for the solution to
meet specific business needs.
Organizations that require a Phase 1 solution for Windows Azure need to manage their IT
infrastructure efficiently with minimal administrative overhead and focus on value-added services by
expanding their existing portfolio of applications and services. Organizations need to have highly
available, scalable, multitenant data services in the cloud to meet changing business needs on demand
Organizations can help deliver on-demand computing and storage capabilities while ensuring a
familiar and consistent application development model. Organizations can better work with increasing
amounts of data from multiple locations and devices by linking existing on-premises data stores to
cloud-based storage services without compromising performance and achieving defined service-level
agreements. Organizations can provide more secure access to applications that are exposed over
Internet, firewall, domain, and network boundaries by building federated authorization into
applications.
Optimization Mapping
Error! Reference source not found.6 shows the Optimization mapping for Phase 1.
Figure 6 Optimization mapping for Phase 1
-
8/10/2019 Windows Azure Architecture Guide
11/123
Architecture Guide Page 11 of 123
-
8/10/2019 Windows Azure Architecture Guide
12/123
Architecture Guide Page 12 of 123
-
8/10/2019 Windows Azure Architecture Guide
13/123
Architecture Guide Page 13 of 123
Technology Mapping
Phase 1 requires the following Microsoft technologies:
Client Technologies
Microsoft Office 2007 / 2010
Microsoft Office Outlook2007 / Microsoft Outlook 2010, Microsoft Office Word 2007 /
Microsoft Word 2010, Microsoft Office Excel2007 / Microsoft Excel 2010, Microsoft Office
PowerPoint2007 / Microsoft PowerPoint 2010
Microsoft Office Visio2007 / Microsoft Visio 2010
Microsoft Office Project 2007 / Microsoft Project 2010
Microsoft ForefrontEndpoint Protection 2010 / Microsoft System Center 2012 Endpoint
Protection
Windows7 / 8
Server Technologies
Microsoft SQL Server
2008 R2 / 2012
Microsoft Server Security
Microsoft Internet Security and Acceleration Server 2006 / Microsoft Forefront Threat
Management Gateway 2010
Microsoft Intelligent Application Gateway 2007 / Microsoft Forefront Unified Access Gateway
2010
Microsoft Forefront Identity Manager 2010 / 2010 R2
Microsoft Windows Server2008 R2 / 2012
Microsoft System Center
Microsoft System Center Operations Manager 2007 R2 / Microsoft System Center 2012
Operations Manager
Microsoft System Center Data Protection Manager 2010 / Microsoft System Center 2012 Data
Protection Manager
Microsoft System Center Configuration Manager 2007 R3 / Microsoft System Center 2012
Configuration Manager
Microsoft System Center Virtual Machine Manager 2008 R2 / Microsoft System Center 2012
Virtual Machine Manager
Microsoft System Center Service Manager 2010 / Microsoft System Center 2012 Service
Manager
Opalis / Microsoft System Center 2012 Orchestrator
Microsoft Windows Storage Server 2008 / 2008 R2
Windows Server AppFabric
Microsoft Hyper-VServer 2008 / 2008 R2
Microsoft BizTalkServer 2009 / 2010
-
8/10/2019 Windows Azure Architecture Guide
14/123
Architecture Guide Page 14 of 123
Cloud Technologies
Microsoft Business Productivity Online Services / Microsoft Office 365
Microsoft SharePointOnline
Windows Azure platform
Windows Azure
Windows Azure AppFabric
Microsoft SQL Azure
Microsoft Online Backup Service
Development Tools
Microsoft .NET Framework
Microsoft Visual Studio2010 Team Foundation Server / Microsoft Visual Studio 11 Team
Foundation Server
Microsoft Visual Studio Team System 2008 / 2010 / 11
Windows Communications Foundation (WCF) Services
Tools
Microsoft Assessment and Planning Toolkit 6.0 / 6.5
Microsoft Security Assessment Tool
Microsoft Software Inventory Analyzer 5.0 / 5.1
Microsoft Deployment Toolkit 2010 / 2012
Windows Automated Installation Kit
Microsoft Security Compliance Management Toolkit
Compliance Management Libraries 2.0
Data Classification Toolkit
IT Governance, Risk and Compliance process management pack 2.0
BizTalk ESB Toolkit
Architect the Solution
This section provides the logical architecture, illustrative physical architecture, and list of required
system components for Phase 1, which are useful starting points to help you design your solution.
Logical Architecture
Figure 7 is the logical architecture diagram that shows the infrastructure for Phase 1 and its
functionalities. This diagram provides a high-level overview of the requirements to implement Phase 1.
This diagram is a starting point; you should customize it to meet the specific needs of yourorganization.
-
8/10/2019 Windows Azure Architecture Guide
15/123
Architecture Guide Page 15 of 123
Figure 7 Logical architecture diagram of Phase 1
Illustrative Physical Architecture
Figure 8 is an illustrative physical architecture diagram for Phase 1. A physical architecture diagram
shifts from describing technologies as capabilities and roles to describing physical systems. As with all
sample diagrams, you should customize this diagram to meet the specific needs of your organization.
For more information about customizing this diagram (including the required software product
editions), seePlan Development and Deployment of the Solutionin Phase 1.
Figure 8 Physical architecture for Phase 1
-
8/10/2019 Windows Azure Architecture Guide
16/123
Architecture Guide Page 16 of 123
System Components
This section lists the system components that Phase 1 requires. The system components consist of
product components that are grouped by product families. Table 1 l ists the product components that
each solution capability in Phase 1 needs. You can use this table to better understand which product
components you need to meet the specific solution capability requirements for your customizedsolution.
The legend for the table is as follows:
X Product must be included to enable the solution capability.
* Product is recommended to better enable the solution capability.
Table 1 System components for Phase 1
Highlyavailable,scalable,multitenant
storageserviceinthecloud
Self-managingcapabilitytopro
vision
dataserviceswithbuilt-infault
tolerance
Creation,prototyping,anddeploymentof
applicationsthatintegratedata
across
theorganization
Relationaldatamodelinthecloudthat
providesconnectivitywithexistingon-
premisesstorage
Secureconnectivitybetweenlo
osely
coupledservicesandapplicatio
nsover
theInternetacrossfirewall,
dom
ain,and
networkboundaries
Enablingservicestonavigatefirewallsor
networkboundaries
Product family
Product component
CLIENT TECHNOLOGIES
Office 2007 / 2010
Office Outlook 2007 / Outlook2010, Office Word 2007 / Word
2010, Office Excel 2007 / Excel
2010, Office PowerPoint 2007 /
PowerPoint 2010
*
Office Visio 2007 / Visio 2010 *
Office Project 2007 / Project 2010 *
Forefront Endpoint Protection 2010
/ System Center 2012 Endpoint
Protection
* * * *
Windows 7 X X X X X X
Windows 8
Offline Files *
DirectAccess
SERVER TECHNOLOGIES
Office SharePoint Server 2007 /
SharePoint Server 2010*
Sites and Portals
Single Sign-On Service / Secure
Store Service*
-
8/10/2019 Windows Azure Architecture Guide
17/123
Architecture Guide Page 17 of 123
Highlyavailable,scalable,
multitenant
storageserviceintheclou
d
Self-managingcapabilitytoprovision
dataserviceswithbuilt-in
faulttolerance
Creation,prototyping,anddeploymentof
applicationsthatintegratedataacross
theorganization
Relationaldatamodelinthecloudthat
providesconnectivitywith
existingon-
premisesstorage
Secureconnectivitybetweenloosely
coupledservicesandapplicationsover
theInternetacrossfirewall,
domain,and
networkboundaries
Enablingservicestonavig
atefirewallsor
networkboundaries
Product family
Product component
SQL Server 2008 R2 / 2012
Database Engine * X X X *
Server Security
Forefront Security for SharePoint
/ Forefront Protection 2010 forSharePoint
Internet Security and Acceleration
Server 2006 / Forefront Threat
Management Gateway 2010
Firewall X X X X X X
Intelligent Application Gateway
2007 / Forefront Unified Access
Gateway 2010
* * *
Forefront Identity Manager 2010 /
2010 R2*
Windows Server 2008 R2 / 2012*
Active DirectoryDomain
ServicesX X X X X X
Active Directory Federation
Services
Active Directory Certificate
Services
Active Directory Lightweight
Directory Services* X X
Network Policy and Access
Services* X
Group Policy * * *
Internet Information Services (IIS)7 / 8
* * *
Hyper-V * * * * * *
Windows Deployment Services *
Windows Firewall with Advanced
Security* * * * * *
DirectAccess
Storage Spaces* X
-
8/10/2019 Windows Azure Architecture Guide
18/123
Architecture Guide Page 18 of 123
Highlyavailable,scalable,
multitenant
storageserviceintheclou
d
Self-managingcapabilitytoprovision
dataserviceswithbuilt-in
faulttolerance
Creation,prototyping,anddeploymentof
applicationsthatintegratedataacross
theorganization
Relationaldatamodelinthecloudthat
providesconnectivitywith
existingon-
premisesstorage
Secureconnectivitybetweenloosely
coupledservicesandapplicationsover
theInternetacrossfirewall,
domain,and
networkboundaries
Enablingservicestonavig
atefirewallsor
networkboundaries
Product family
Product component
System Center
System Center Operations
Manager 2007 R2 / System
Center 2012 Operations Manager
* * * * *
System Center Data ProtectionManager 2010 / System Center
2012 Data Protection Manager
X * X
System Center Configuration
Manager 2007 R3 / System
Center 2012 Configuration
Manager
* * * * *
System Center Virtual Machine
Manager 2008 R2 / System
Center 2012 Virtual Machine
Manager
* * * * * *
System Center Virtual Machine
Manager Self Service Portal 2.0
System Center Service Manager2010 / System Center 2012
Service Manager
* * * *
Opalis / System Center 2012
Orchestrator* * * * * *
System Center 2012 App
Controller
Windows Storage Server 2008 /
2008 R2X *
Windows Server AppFabric *
Hyper-VServer 2008 / 2008 R2 * * * * *
BizTalk Server 2009 / 2010 X X X
CLOUD TECHNOLOGIES
BPOS / Office 365* * *
SharePoint Online *
Windows Azure platform
Windows Azure X X X X X X
Windows Azure AppFabric X X X X
-
8/10/2019 Windows Azure Architecture Guide
19/123
Architecture Guide Page 19 of 123
Highlyavailable,scalable,
multitenant
storageserviceintheclou
d
Self-managingcapabilitytoprovision
dataserviceswithbuilt-in
faulttolerance
Creation,prototyping,anddeploymentof
applicationsthatintegratedataacross
theorganization
Relationaldatamodelinthecloudthat
providesconnectivitywith
existingon-
premisesstorage
Secureconnectivitybetweenloosely
coupledservicesandapplicationsover
theInternetacrossfirewall,
domain,and
networkboundaries
Enablingservicestonavig
atefirewallsor
networkboundaries
Product family
Product component
Active Directory Access Control * *
SQL Azure X X X X X X
Online Backup Service * *
DEVELOPMENT TOOLS
.NET Framework X X X X X
Visual Studio 2010 Team Foundation
Server / Visual Studio 11 Team
Foundation Server
X X X X X
Visual Studio Team System 2008 /
2010 / 11X X X X X X
Windows Communications
Foundation (WCF) Services* *
TOOLS, ADD-INS, LIBRARIES, AND FRAMEWORKS
Assessment and Planning Toolkit 6.0
/ 6.5* * * *
Security Assessment Tool X X
Software Inventory Analyzer 5.0 /
5.1*
Deployment Toolkit 2010 / 2012 * X
Windows Automated Installation Kit * *
Security Compliance Management
Toolkit
Security Compliance Manager 2.x * * *
Compliance Management Libraries
2.0* * *
Windows SDK
Data Classification Toolkit * * * *
IT Governance, Risk and Compliance
Process Management Pack 2.0* * *
BizTalk ESB Toolkit * X X
-
8/10/2019 Windows Azure Architecture Guide
20/123
Architecture Guide Page 20 of 123
Plan Development and Deployment of the Solution
This section provides references to help you plan to develop and deploy the server product
components that are relevant to Phase 1.
SERVER TECHNOLOGIESThis section contains links to the server technologies that Table 1 references.
Microsoft SQL Server 2008 R2
Microsoft SQL Server 2008 R2 can help people scale database operations with confidence; improve IT
and developer efficiency; and enable highly scalable, well-managed, and self-service business
intelligence.
General
Home Page http://www.microsoft.com/sqlserver/2008/en/us/R2.aspx
Get Started http://technet.microsoft.com/en-us/library/bb500434.aspx
Plan a SQL Server Installation http://technet.microsoft.com/en-us/library/bb500442.aspx
Technical Articles http://technet.microsoft.com/en-
us/library/bb418445(SQL.10).aspx
Database Engine
The Database Engine is the core service for storing, processing, and securing data. It provides
controlled access and rapid transaction processing to meet the requirements of the most demanding
data-consuming applications within the enterprise.
People can use the Database Engine to create relational databases for online transaction processing or
online analytical processing data. They also can create tables for storing data, and database objects
such as indexes, views, and stored procedures for viewing, managing, and securing data.
General
Get Started http://technet.microsoft.com/hi-in/library/bb510421(en-
us,SQL.105).aspx
Planning and Architecture http://technet.microsoft.com/hi-in/library/cc280361(en-
us,SQL.105).aspx
Development http://technet.microsoft.com/hi-in/library/bb500155(en-
us,SQL.105).aspx
Deployment http://technet.microsoft.com/hi-in/library/bb522543(en-
us,SQL.105).aspx
Operations http://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspx
http://www.microsoft.com/sqlserver/2008/en/us/R2.aspxhttp://www.microsoft.com/sqlserver/2008/en/us/R2.aspxhttp://technet.microsoft.com/en-us/library/bb500434.aspxhttp://technet.microsoft.com/en-us/library/bb500434.aspxhttp://technet.microsoft.com/en-us/library/bb500442.aspxhttp://technet.microsoft.com/en-us/library/bb500442.aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb500442.aspxhttp://technet.microsoft.com/en-us/library/bb500434.aspxhttp://www.microsoft.com/sqlserver/2008/en/us/R2.aspx -
8/10/2019 Windows Azure Architecture Guide
21/123
Architecture Guide Page 21 of 123
System Components Integration
This section describes the integration points of SQL Server 2008 R2 with other system components.
Usage Scenarios
This section describes the usage scenarios as supported by SQL Server 2008 R2 in integration with
other system components.
Highly available, scalable, multitenant storage service in the cloud
Interoperability with SQL Azure
Microsoft SQL Azure Database is a cloud-based, relational database service built on SQL Server
technologies. It provides a highly available, scalable, multitenant database service hosted by
Microsoft in the cloud. SQL Azure Database helps organizations provision and deploy multiple
databases, and helps developers avoid installing, setting up, patching, or managing any software.
It features high availability and fault tolerance, requires no physical administration, and supports
Transact-SQL (T-SQL). Developers can use existing knowledge in T-SQL development and a familia
relational data model for symmetry with existing on-premises databases.
Relational data model in the cloud that provides connectivity with existing on-premises storage
Interoperability with SQL Azure
SQL Azure provides a familiar environment for database programmers. The objects that are
created in SQL Azure Database are the same as those in an SQL Server database. Both SQL Server
and SQL Azure Database use the Transact-SQL language for database creation and data
manipulation. Database developers and administrators can quickly become productive in SQL
Azure by using their existing expertise. Developers can use existing knowledge in T-SQL
development and a familiar relational data model for symmetry with existing on-premises
databases.
Creation, prototyping, and deployment of applications that integrate data across the organization
Interoperability with Visual Studio Team System 2008
Visual Studio offers database design and development tools in an integrated development
environment, helping developers to visually design data relationships, filter SQL statements, edit
SQL code, and run database queries in the development environment itself.
Associated System Components
This section describes the dependencies and recommendations for SQL Server 2008 R2 and highlights
capabilities as enabled directly or when integrated with another system component.
Interoperability with Office BizTalk Server 2009
BizTalk Server is dependent on SQL Server 2008 R2 for the messaging tracking database as well as
other databases. The most sensitive information (such as credential information containing details
of database connection strings, user names, and passwords related to the BizTalk adapters) is
stored in an encrypted format in the single sign-on (SSO) database.
-
8/10/2019 Windows Azure Architecture Guide
22/123
Architecture Guide Page 22 of 123
Interoperability with Core and Management Services
SQL Server 2008 R2 uses the following technologies and services:
Windows Server 2008 R2
Windows Server provides an installation and deployment platform, granular services, and
other essential components and technologies.
Active Directory Domain Services can help administrators manage user identities and
relationships.
The Active Directory Lightweight Directory Services server role is a Lightweight Directory
Access Protocol (LDAP) directory service that provides data storage and retrieval for
directory-enabled applications, without the dependencies that are required for Active
Directory Domain Services.
Network Policy and Access Services (NPAS) provides technologies that allow deployment
of virtual private networking (VPN), dial-up networking, and 802.11-protected wireless
access. With NPAS, organizations can define and enforce policies for network access
authentication, authorization, and client health.
Group Policy provides an infrastructure for centralized configuration management of the
operating system and applications that run on the operating system.
Internet Information Services (IIS) 7.0 is a powerful web server that provides a highly
reliable, manageable, and scalable web application infrastructure.
The Hyper-V virtualization platform can be used to create and manage a virtualized server
computing environment.
Windows Deployment Services can help administrators remotely deploy Windows
operating systems.
Windows Firewall with Advanced Security helps protect computers on a network through
a stateful firewall that enables administrators to determine what network traffic to permit
to pass between a computer and the network. It also includes connection security rulesthat use Internet Protocol security (IPsec) to help protect traffic as it travels across the
network.
Internet Security and Acceleration Server 2006 protects the IT environment from Internet-
based threats and provides users with fast and secure remote access to applications and data.
Intelligent Application Gateway 2007 provides a secure-socket-layer virtual private network, a
web application firewall, and endpoint security management that enable access control,
authorization, and content inspection for a wide variety of applications.
Windows Storage Server 2008 enables high-availability scenarios by providing backup and
replication of stored data.
Microsoft Hyper-V Server 2008 provides a reliable and optimized virtualization solution thathelps organizations improve server use and reduce costs through a small footprint and
minimal overhead.
System Center family helps organizations by providing IT with self-managing and monitoring
of dynamic systems. System Center family provides:
A comprehensive view of the health of the IT environment.
-
8/10/2019 Windows Azure Architecture Guide
23/123
Architecture Guide Page 23 of 123
Optimized disk-based backup and recovery, more consistent data protection, and features
to increase the IT organizations operational efficiencies.
A secure and scalable operating system, application deployment, and configuration
management.
Unified management of physical and virtual machines, consolidation of underutilizedphysical servers, and rapid provisioning of new virtual machines.
A flexible platform for automating and adapting IT Service Management best practices to
the organizations requirements.
Automated incident response, change and compliance, and service life-cycle management
processes.
Microsoft SQL Server 2012
Microsoft SQL Server 2012 is a cloud-ready information platform that helps organizations to protect,
scale, and unlock the power of their data. With SQL Server 2012, IT can provide organizations with
performance and availability for business-critical solutions, the potential for breakthrough insight
through rapid data exploration, and the ability to visualize data across the organization. Finally, SQLServer 2012 helps IT build solutions that extend across premises and the cloud.
General
Home Page http://www.microsoft.com/sqlserver/en/us/default.aspx
Overview / Capabilities http://www.microsoft.com/sqlserver/en/us/product-
info/overview-capabilities.aspx
Upgrade to SQL Server 2012 http://technet.microsoft.com/en-us/library/bb677622.aspx
Installation for SQL Server 2012 http://technet.microsoft.com/en-us/library/bb500469.aspx
Technical Articles http://technet.microsoft.com/en-
us/library/bb418445(v=sql.10).aspx
Database Engine
The Database Engine is the core service for storing, processing, and securing data. The Database
Engine provides controlled access and rapid transaction processing to meet the requirements of the
most demanding data consuming applications within the enterprise.
Use the Database Engine to create relational databases for online transaction processing or online
analytical processing data. This capability includes creating tables for storing data and developing
database objects such as indexes, views, and stored procedures for viewing, managing, and securing
data.
GeneralGet Started http://technet.microsoft.com/en-
us/library/ms187875(v=sql.110).aspx
What's New (Database Engine) http://technet.microsoft.com/en-us/library/bb510411.aspx
SQL Server Database Engine Backward
Compatibility
http://technet.microsoft.com/en-us/library/ms143532.aspx
Database Engine Features and Tasks http://technet.microsoft.com/en-us/library/bb500155.aspx
http://www.microsoft.com/sqlserver/en/us/default.aspxhttp://www.microsoft.com/sqlserver/en/us/default.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://technet.microsoft.com/en-us/library/bb677622.aspxhttp://technet.microsoft.com/en-us/library/bb677622.aspxhttp://technet.microsoft.com/en-us/library/bb500469.aspxhttp://technet.microsoft.com/en-us/library/bb500469.aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/bb510411.aspxhttp://technet.microsoft.com/en-us/library/bb510411.aspxhttp://technet.microsoft.com/en-us/library/ms143532.aspxhttp://technet.microsoft.com/en-us/library/ms143532.aspxhttp://technet.microsoft.com/en-us/library/bb500155.aspxhttp://technet.microsoft.com/en-us/library/bb500155.aspxhttp://technet.microsoft.com/en-us/library/bb500155.aspxhttp://technet.microsoft.com/en-us/library/ms143532.aspxhttp://technet.microsoft.com/en-us/library/bb510411.aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb500469.aspxhttp://technet.microsoft.com/en-us/library/bb677622.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/default.aspx -
8/10/2019 Windows Azure Architecture Guide
24/123
Architecture Guide Page 24 of 123
General
Technical Reference (Database Engine) http://technet.microsoft.com/en-us/library/bb500275.aspx
System Components Integration
This section describes the integration points of SQL Server 2012 with other system components.
Usage Scenarios
This section describes the usage scenarios as supported by SQL Server 2012 in integration with other
system components.
Highly available, scalable, multitenant storage service in the cloud
Interoperability with SQL Azure
Microsoft SQL Azure Database is a cloud-based, relational database service built on SQL Server
technologies. It provides a highly available, scalable, multi-tenant database service hosted by
Microsoft in the cloud. SQL Azure Database helps organizations provision and deploy multipledatabases, and helps developers avoid installing, setting up, patching, or managing any software.
It features high availability and fault tolerance, requires no physical administration, and supports
Transact-SQL (T-SQL). Developers can use existing knowledge in T-SQL development and a familia
relational data model for symmetry with existing on-premises databases.
Relational data model in the cloud that provides connectivity with existing on-premises storage
Interoperability with SQL Azure
SQL Azure provides a familiar environment for database programmers. The objects that are
created in SQL Azure Database are the same as those in an SQL Server database. Both SQL Server
and SQL Azure Database use the Transact-SQL language for database creation and data
manipulation. Database developers and administrators can quickly become productive in SQL
Azure by using their existing expertise. Developers can use existing knowledge in T-SQLdevelopment and a familiar relational data model for symmetry with existing on-premises
databases.
Creation, prototyping, and deployment of applications that integrate data across the organization
Interoperability with Visual Studio Team System 2010/ Visual Studio 11
Visual Studio offers database designing and development tools in an integrated development
environment, helping developers to visually design data relationships, filter SQL statements, edit
SQL code, and run database queries in the development environment itself.
Associated System Components
This section describes the dependencies and recommendations for SQL Server 2012 and highlightscapabilities as enabled directly or when integrated with another system component.
Interoperability with Office BizTalk Server 2010
BizTalk Server is dependent on SQL Server 2012 for the messaging tracking database as well as
other databases. The most sensitive information, such as credential information containing details
of database connection strings, user names, and passwords related to the BizTalk adapters, is
stored in an encrypted format in the SSO database.
http://technet.microsoft.com/en-us/library/bb500275.aspxhttp://technet.microsoft.com/en-us/library/bb500275.aspxhttp://technet.microsoft.com/en-us/library/bb500275.aspx -
8/10/2019 Windows Azure Architecture Guide
25/123
Architecture Guide Page 25 of 123
Interoperability with Core and Management Services
SQL Server 2012 uses the following technologies and services:
Windows Server 2012
Windows Server provides an installation and deployment platform, granular services, and
other essential components and technologies.
Active Directory Domain Services can help administrators manage user identities and
relationships.
The Active Directory Lightweight Directory Services server role is a Lightweight Directory
Access Protocol (LDAP) directory service that provides data storage and retrieval for
directory-enabled applications, without the dependencies that are required for Active
Directory Domain Services.
Network Policy and Access Services (NPAS) provides technologies that allow deployment
of virtual private networking (VPN), dial-up networking, and 802.11-protected wireless
access. With NPAS, organizations can define and enforce policies for network access
authentication, authorization, and client health.
Group Policy provides an infrastructure for centralized configuration management of the
operating system and applications that run on the operating system.
Internet Information Services (IIS) 8.0 is a powerful web server that provides a highly
reliable, manageable, and scalable web application infrastructure.
The Hyper-V virtualization platform can be used to create and manage a virtualized server
computing environment.
Windows Deployment Services can help administrators remotely deploy Windows
operating systems.
Windows Firewall with Advanced Security helps protect computers on a network through
a stateful firewall that enables administrators to determine what network traffic to permit
to pass between a computer and the network. It also includes connection security rulesthat use Internet Protocol security (IPsec) to help protect traffic as it travels across the
network.
Storage Spaces enables virtualized storage capabilities by grouping industry-standard
disks into storage pools, and then creating virtual disks called storage spaces from the
available capacity in the storage pools
Forefront Threat Management Gateway 2010 protects the IT environment from Internet-based
threats and provides users with fast and secure remote access to applications and data.
Forefront Unified Access Gateway 2010 provides a secure-socket-layer virtual private network,
a web application firewall, and endpoint security management that enable access control,
authorization, and content inspection for a wide variety of applications.
Windows Storage Server 2008 R2 enables high-availability scenarios by providing backup and
replication of stored data.
Microsoft Hyper-V Server 2008 R2 provides a reliable and optimized virtualization solution
that helps organizations improve server use and reduce costs through a small footprint and
minimal overhead.
System Center family helps organizations by providing IT with self-managing and monitoring
of dynamic systems. System Center family provides:
-
8/10/2019 Windows Azure Architecture Guide
26/123
Architecture Guide Page 26 of 123
A comprehensive view of the health of the IT environment.
Optimized disk-based backup and recovery, more consistent data protection, and features
to increase the IT organizations operational efficiencies.
A secure and scalable operating system, application deployment, and configuration
management.
Unified management of physical and virtual machines, consolidation of underutilized
physical servers, and rapid provisioning of new virtual machines.
A flexible platform for automating and adapting IT Service Management best practices to
the organizations requirements.
Automated incident response, change and compliance, and service life-cycle management
processes.
Microsoft Server Security
Microsoft Server Security is a set of comprehensive line-of-business security products that provide
greater protection and control through integration with existing IT infrastructures and through
simplified deployment, management, and analysis.
General
Microsoft ForefrontHome Page http://www.microsoft.com/forefront/serversecurity/en/us/defaul
t.aspx
Internet Security and Acceleration Server 2006
Microsoft Internet Security and Acceleration Server 2006 is the integrated security gateway that helps
protect IT environments from Internet-based threats, while providing faster and more secure remote
access to applications and data.
General
Get Started http://technet.microsoft.com/hi-in/library/bb898432(en-us).aspx
Technical Reference http://technet.microsoft.com/hi-in/library/bb898443(en-
us,TechNet.10).aspx
Planning and Architecture http://www.microsoft.com/technet/isa/2006/planningarchitectur
e/default.mspx
Development http://www.microsoft.com/technet/isa/2006/development/defa
ult.mspx
Deployment http://www.microsoft.com/technet/isa/2006/deployment/defaul
t.mspx
Operations http://www.microsoft.com/technet/isa/2006/operations/default.
mspx
Microsoft Internet Security and
Acceleration Server 2006 SDK
http://msdn.microsoft.com/en-us/library/ms828058.aspx
http://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://technet.microsoft.com/hi-in/library/bb898432(en-us).aspxhttp://technet.microsoft.com/hi-in/library/bb898432(en-us).aspxhttp://office.microsoft.com/search/redir.aspx?assetid=FX101211721033http://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://msdn.microsoft.com/en-us/library/ms828058.aspxhttp://msdn.microsoft.com/en-us/library/ms828058.aspxhttp://msdn.microsoft.com/en-us/library/ms828058.aspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://office.microsoft.com/search/redir.aspx?assetid=FX101211721033http://technet.microsoft.com/hi-in/library/bb898432(en-us).aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspx -
8/10/2019 Windows Azure Architecture Guide
27/123
Architecture Guide Page 27 of 123
Firewall Service
The firewall service in Internet Security and Acceleration Server 2006 runs in user mode at the top of
the TCP/IP protocol stack, and employs a hybrid architecture that combines elements of both proxy
and stateful inspection firewall behavior. The firewall service performs an additional packet inspection
after receiving clearance from the firewall engine. The firewall service can manage traffic acrossmultiple connections and perform associated processing (for example, application filtering).
General
Internet Security and Acceleration
Server 2006 Firewall Core
http://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-
4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.doc
Forefront Threat Management Gateway 2010
Forefront Threat Management Gateway 2010 helps organizations safely and productively use the
Internet for business without worrying about malicious software and other threats. It provides multiple
layers of continuously updated protection that is integrated into a unified, easy-to-manage gateway,
and reduces the cost and complexity of web security.
General
Home Page http://www.microsoft.com/forefront/threat-management-
gateway/en/us/overview.aspx
Whats New http://technet.microsoft.com/hi-in/library/ee207139(en-us).aspx
Planning and Design http://technet.microsoft.com/library/cc441674.aspx
Deployment http://technet.microsoft.com/library/cc441445.aspx
Operations http://technet.microsoft.com/library/cc441590.aspx
Technical Reference http://technet.microsoft.com/hi-in/library/cc441714(en-us).aspx
Development Guide http://technet.microsoft.com/hi-in/library/cc533499(en-us).aspx
Firewall Protection
Forefront Threat Management Gateway 2010 provides access control and protection on three layers:
packet filtering, stateful inspection, and application layer filtering. It also provides deep content
filtering through built-in application filters and delivers customizable, granular controls to HTTP traffic.
General
Overview http://technet.microsoft.com/en-us/library/cc995253.aspx
Microsoft Intelligent Application Gateway 2007
Microsoft Intelligent Application Gateway 2007 with Application Optimizers provides a secure-socket-
layer VPN, a web application firewall, and an endpoint security management that enable access
control, authorization, and content inspection for a wide variety of line-of-business applications.
Together, these technologies provide mobile and remote workers with easy, flexible, and more secure
access from a broad range of devices and locations, including kiosks, PCs, and mobile devices.
http://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://technet.microsoft.com/hi-in/library/ee207139(en-us).aspxhttp://technet.microsoft.com/hi-in/library/ee207139(en-us).aspxhttp://technet.microsoft.com/library/cc441674.aspxhttp://technet.microsoft.com/library/cc441674.aspxhttp://technet.microsoft.com/library/cc441445.aspxhttp://technet.microsoft.com/library/cc441445.aspxhttp://technet.microsoft.com/library/cc441590.aspxhttp://technet.microsoft.com/library/cc441590.aspxhttp://technet.microsoft.com/hi-in/library/cc441714(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc441714(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc533499(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc533499(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc533499(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc441714(en-us).aspxhttp://technet.microsoft.com/library/cc441590.aspxhttp://technet.microsoft.com/library/cc441445.aspxhttp://technet.microsoft.com/library/cc441674.aspxhttp://technet.microsoft.com/hi-in/library/ee207139(en-us).aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.doc -
8/10/2019 Windows Azure Architecture Guide
28/123
Architecture Guide Page 28 of 123
General
Overview http://technet.microsoft.com/en-us/library/cc303240.aspx
Planning and Architecture http://technet.microsoft.com/en-us/library/dd278044.aspx
Deployment http://technet.microsoft.com/en-us/library/dd278109.aspx
Operations http://technet.microsoft.com/en-us/library/dd278091.aspx
Intelligent Application Gateway 2007
Technical Reference
http://technet.microsoft.com/en-
us/library/cc303257(TechNet.10).aspx
Microsoft Forefront Unified Access Gateway 2010
Forefront Unified Access Gateway provides remote access to applications, networks, and internal
resources from diverse client endpoints through a single point of entry. It is an easy and secure remote
access solution that helps provide application intelligence and granular access controls.
General
Home Page http://www.microsoft.com/forefront/unified-access-
gateway/en/us/
Get Started http://technet.microsoft.com/hi-in/library/dd857281(en-us).aspx
Planning and Design http://technet.microsoft.com/hi-in/library/dd857293(en-us).aspx
Deployment http://technet.microsoft.com/hi-in/library/dd857358(en-us).aspx
Operations http://technet.microsoft.com/hi-in/library/dd857237(en-us).aspx
Technical Reference http://technet.microsoft.com/hi-in/library/dd857316(en-us).aspx
Microsoft Forefront Identity Manager 2010
Microsoft Forefront Identity Manager 2010 provides powerful self-service capabilities and improvedtools for IT professionals to solve daily tasks such as delegating administration and creating workflows
for common identity management tasks. Forefront Identity Manager 2010 is built on a foundation
based on Microsoft .NET and web services so developers can build customized and extensible
solutions.
General
Home Page http://technet.microsoft.com/en-us/forefront/cc470030
Get Started Here http://technet.microsoft.com/hi-in/library/ff602041(en-
us,WS.10).aspx
Microsoft Forefront Identity Manager 2010 R2Microsoft Forefront Identity Manager 2010 R2 provides an integrated and comprehensive solution for
managing the entire life cycle of user identities and their associated credentials. It offers organizations
self-service identity management for users, automated life cycle management across heterogeneous
platforms, and a rich policy framework for enforcing security policies and detailed audits. It provides
identity synchronization, user provisioning, certificate and password management, and policy
management in a single solution that works across heterogeneous systems. Developers can use web
service APIs to create custom clients and to provide extensible activities and workflow schemas.
http://technet.microsoft.com/en-us/library/cc303240.aspxhttp://technet.microsoft.com/en-us/library/cc303240.aspxhttp://technet.microsoft.com/en-us/library/dd278091.aspxhttp://technet.microsoft.com/en-us/library/dd278091.aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://www.microsoft.com/forefront/unified-access-gateway/en/us/http://www.microsoft.com/forefront/unified-access-gateway/en/us/http://www.microsoft.com/forefront/unified-access-gateway/en/us/http://technet.microsoft.com/hi-in/library/dd857281(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857281(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857293(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857293(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857358(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857358(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857237(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857237(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857316(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857316(en-us).aspxhttp://technet.microsoft.com/en-us/forefront/cc470030http://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/forefront/cc470030http://technet.microsoft.com/hi-in/library/dd857316(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857237(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857358(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857293(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857281(en-us).aspxhttp://www.microsoft.com/forefront/unified-access-gateway/en/us/http://www.microsoft.com/forefront/unified-access-gateway/en/us/http://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/dd278091.aspxhttp://technet.microsoft.com/en-us/library/cc303240.aspx -
8/10/2019 Windows Azure Architecture Guide
29/123
Architecture Guide Page 29 of 123
General
Home Page http://www.microsoft.com/en-us/server-
cloud/forefront/identity-manager.aspx
Technical Overview http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/
SIM332
Deployment http://technet.microsoft.com/en-
us/library/jj134310%28v=ws.10%29.aspx
Development http://msdn.microsoft.com/en-
us/library/windows/desktop/jj131731%28v=vs.100%29.aspx
Windows Server 2008 R2
Windows Server 2008 R2 offers virtualization tools, web resources, management enhancements, and
Windows 7 integration, helping to save time, reduce costs, and provide a platform for a dynamic and
efficiently managed data center. Powerful tools, including Internet Information Services 7, updated
Server Manager and Hyper-V platforms, and Microsoft Windows PowerShell 2.0, work together to give
organizations greater control, increased efficiency, and the ability to react to frontline organizationalneeds faster than ever before.
General
Home Page http://technet.microsoft.com/en-
us/windowsserver/bb310558.aspx
Deployment http://technet.microsoft.com/hi-in/library/ee344846(en-
us,WS.10).aspx
Changes in Functionality from
Windows Server 2008 to Windows
Server 2008 R2
http://technet.microsoft.com/en-
au/library/dd391932(WS.10).aspx
Active Directory Domain Services
Active Directory Domain Services is the central location for configuration information, authentication
requests, and information about all objects stored within the forest structure. With Active Directory
Domain Services, organizations can efficiently manage users, computers, groups, printers, applications,
and other directory-enabled objects from one highly secure, central location.
General
Home Page http://technet.microsoft.com/library/cc770946(WS.10).aspx
Features in Active Directory Domain
Services
http://technet.microsoft.com/hi-in/library/dd378796(en-
us,WS.10).aspx
Active Directory Domain Services
Operations Guide
http://technet.microsoft.com/en-
us/library/cc816807(WS.10).aspx
Active Directory Lightweight Directory Services
Active Directory Lightweight Directory Services provides directory services for directory-enabled
applications, without requiring or relying on Active Directory domains or forests. Organizations can run
Active Directory Lightweight Directory Services on member servers or stand-alone servers. They also
http://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/library/cc770946(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/library/cc770946(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspx -
8/10/2019 Windows Azure Architecture Guide
30/123
Architecture Guide Page 30 of 123
can run multiple instances of Active Directory Lightweight Directory Serviceseach with its own
independently managed schemaon one server.
General
Home Page http://technet.microsoft.com/library/cc731868(WS.10).aspx
Overview http://technet.microsoft.com/en-us/library/cc732019.aspx
Network Policy and Access Services
Network Policy and Access Services in Windows Server 2008 R2 delivers a variety of methods to help
provide more secure local and remote network connectivity, connect network segments, and enable
network administrators to centrally manage network access and client health policies. With Network
Access Services, organizations can more securely deploy virtual private network (VPN) servers, dial-up
servers, routers, and 802.1X-protected wireless access. They also can deploy RADIUS servers and
proxies and use the Connection Manager Administration Kit to create remote access profiles that allow
client computers to safely connect to the network.
General
Introduction http://technet.microsoft.com/library/cc754521(WS.10).aspx
Network Policy and Access Services
overview for Windows Server 2008 R2
http://technet.microsoft.com/en-us/library/cc731321.aspx
Network Policy Server (NPS) http://technet.microsoft.com/en-us/library/cc732912.aspx
Group Policy
Group Policy helps organizations manage configurations for groups of computers and users, including
options for registry-based policy settings, security settings, software deployment, scripts, folder
redirection, Remote Installation Services, and maintenance of Microsoft Internet Explorer. By using
Group Policy, organizations can significantly reduce the total cost of ownership (TCO). Because of
factors such as the large number of policy settings available, the interaction between multiple policies,
and inheritance options, Group Policy design can be complex. By carefully planning, designing, and
testing a solution based on business requirements, organizations can provide the necessary
standardized functionality, security, and management control.
General
Home Page http://technet.microsoft.com/library/cc726027(WS.10).aspx
Whats New in Group Policy http://technet.microsoft.com/en-
us/library/dd367853(WS.10).aspx
Windows PowerShell cmdlets for
Group Policy
http://technet.microsoft.com/en-
us/library/dd367856(WS.10).aspx
Internet Information Services 7.0
Microsoft Internet Information Services 7.0 is a powerful web application and services platform that
delivers rich, web-based experiences. Internet Information Services 7.0 offers improved administrative
and diagnostic tools to help lower infrastructure costs on a variety of popular development platforms.
With improved reliability and scalability, IT professionals and developers can manage the most
demanding web service environments, from a single web server to a large web farm.
http://technet.microsoft.com/library/cc731868(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732019.aspxhttp://technet.microsoft.com/en-us/library/cc732019.aspxhttp://technet.microsoft.com/library/cc754521(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc731321.aspxhttp://technet.microsoft.com/en-us/library/cc731321.aspxhttp://technet.microsoft.com/en-us/library/cc732912.aspxhttp://technet.microsoft.com/en-us/library/cc732912.aspxhttp://technet.microsoft.com/library/cc726027(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/library/cc726027(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732912.aspxhttp://technet.microsoft.com/en-us/library/cc731321.aspxhttp://technet.microsoft.com/library/cc754521(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732019.aspxhttp://technet.microsoft.com/library/cc731868(WS.10).aspx -
8/10/2019 Windows Azure Architecture Guide
31/123
Architecture Guide Page 31 of 123
General
Internet Information Services 7.0 http://technet.microsoft.com/en-
us/library/cc732050(WS.10).aspx
Internet Information Services 7.0
Development
http://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspx
Hyper-V
With Microsoft Hyper-V, organizations can more easily take advantage of the cost savings of
virtualization through Windows Server 2008 R2. Organizations can optimize server hardware
investments by consolidating multiple server roles as separate virtual machines running on a single
physical machine, efficiently run multiple different operating systems in parallel on a single server, and
fully use the power of Microsoft x64 computing technologies.
General
Home Page http://technet.microsoft.com/en-
us/windowsserver/dd448604.aspx
Hyper-V Features http://technet.microsoft.com/en-
us/library/cc753637(WS.10).aspx
Getting Started http://technet.microsoft.com/en-
us/library/ee344828(WS.10).aspx
Hyper-V Planning http://technet.microsoft.com/en-
us/library/ee344841(WS.10).aspx
Hyper-V Installation http://technet.microsoft.com/en-
us/library/ee344837(WS.10).aspx
Hyper-V Configuration http://technet.microsoft.com/en-
us/library/ee344820(WS.10).aspx
Windows Deployment Services
Windows Deployment Services, the updated and redesigned version of Remote Installation Services, is
a suite of components that work together in Windows Server 2008 R2 to enable the deployment of
Windows operating systems, particularly Windows Vista. With Windows Deployment Services,
organizations can deploy Windows operating systems over the network instead of installing each
operating system directly from a CD or DVD. They also can use Windows Deployment Services to
repurpose existing computers.
General
Overview http://technet.microsoft.com/hi-in/library/cc772106(en-
us,WS.10).aspx
Windows Deployment Services for
Windows Server 2008 R2
http://technet.microsoft.com/en-
us/library/dd348502(WS.10).aspx
Getting Started Guide http://technet.microsoft.com/en-
us/library/cc771670(WS.10).aspx
Deployment Guide http://technet.microsoft.com/hi-in/library/cc770667(en-
us,WS.10).aspx
http://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspx -
8/10/2019 Windows Azure Architecture Guide
32/123
Architecture Guide Page 32 of 123
Windows Firewall with Advanced Security
Windows Firewall with Advanced Security is a host-based firewall that blocks incoming and outgoing
connections based on its configuration. While typical end-user configuration of Windows Firewall
occurs through the Windows Firewall Control Panel tool, advanced configuration now occurs in
Windows Firewall with Advanced Security, a Microsoft Management Control snap-in.
General
Firewall with Advanced Security and
IPSec
http://technet.microsoft.com/en-
us/library/cc732283(WS.10).aspx
Introduction to Windows Firewall with
Advanced Security
http://technet.microsoft.com/en-
us/library/cc730955(WS.10).aspx
Windows Firewall with Advanced
Security Design Guide
http://technet.microsoft.com/en-
us/library/cc732024(WS.10).aspx
Windows Firewall with Advanced
Security Deployment Guide
http://technet.microsoft.com/en-
us/library/cc972925(WS.10).aspx
Windows Server 2012
Windows Server 2012 is designed to help IT pros enact cloud optimization while satisfying business
needs more quickly and efficiently. Windows Server 2012 provides a highly available and easy-to-
manage multiserver platform that offers flexible storage, continuous availability, and management
efficiency. With Windows Server 2012, Microsoft delivers a server platform based on the experience of
building and operating many of the world's most complex cloud-based services and largest data
centers. Whether administrators are setting up a single server for a small business or architecting a
major new data center environment, Windows Server 2012 can help them cloud optimize their IT so
they can more fully meet their organizations unique needs.
Active Directory Domain Services
Active Directory Domain Services provides a distributed database that stores and manages informationabout network resources and application-specific data from directory-enabled applications. A server
that is running Active Directory Domain Services is called a domain controller. Administrators can use
Active Directory Domain Services to organize elements of a network, such as users, computers, and
other devices, into a hierarchical containment structure. The hierarchical containment structure
includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each
domain.
General
Home Page http://www.microsoft.com/en-us/server-cloud/windows-
server/default.aspx
Windows Server 2012 Overview http://www.microsoft.com/en-us/server-cloud/windows-
server/overview.aspx
What's New in Windows Server 2012 http://technet.microsoft.com/library/hh831769.aspx
Windows Server 2012 Capabilities http://www.microsoft.com/en-us/server-cloud/windows-
server/capabilities.aspx
http://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspx -
8/10/2019 Windows Azure Architecture Guide
33/123
Architecture Guide Page 33 of 123
Active Directory Lightweight Directory Services
Active Directory Lightweight Directory Services is a Lightweight Directory Access Protocol (LDAP)
directory service that provides flexible support for directory-enabled applications, without the
dependencies and domain-related restrictions of Active Directory Domain Services. Organizations can
run Active Directory Lightweight Directory Services on member servers or stand-alone servers. They
also can run multiple instances of Active Directory Lightweight Directory Serviceseach with its own
independently managed schemaon one server. In addition, Active Directory Lightweight Directory
Services provides directory services for directory-enabled applications without the overhead of
domains and forests or the requirements of a single schema throughout a forest.
Network Policy and Access ServicesOrganizations can use the Network Policy and Access Services server role to deploy and configure
Network Access Protection (NAP), secure wired and wireless access point