windows azure architecture guide

8/10/2019 Windows Azure Architecture Guide

1/123

Architecture GuideWindows Azure

October 2012

Version 3.0


2/123

Disclaimer

This document is provided as-is. Information and views expressed in this document, including URL and other Internet website references, may

change without notice. You bear the risk of using it.

Some examples are for illustration only and are fictitious. No real association is intended or inferred.

This document does not provide you with any legal rights to any intellectual property in any Microsoft product. You may copy and use this document

for your internal, reference purposes.

2012 Microsoft Corporation. All rights reserved.

Microsoft, the Microsoft logo, the Windows logo, Active Directory, ActiveSync, AppFabric, Bing, BizTalk, Excel, Hyper-V, InfoPath, Internet Explorer,

Office 365, Outlook, PerformancePoint, PowerPoint, SharePoint, SQL Azure, SQL Server, Visio, Visual Studio, Windows, Windows Azure, Windows

Intune, Windows Mobile, Windows PowerShell, Windows Server, and Windows Vista are either registered trademarks or trademarks of Microsoft

Corporation in the United States and/or other countries.

All other trademarks are property of their respective owners.


3/123

Architecture Guide Page 3 of 123

Contents

Overview .............................................................................................................................................. 4

Scope of This Guide ....................................................................................................................................................................... 4Who Should Read This Guide .................................................................................................................................................... 4

How to Use This Guide ................................................................................................................................................................. 4

Section Summaries ........................................................................................................................................................................ . 4

Customizing Your Solution ............................................................................................................. 5Why Customize? ................................................................................................................................................ .............................. 5

The Customization Process ......................................................................................................................................................... 5

Understand Your Priorities ........................................................................................................................................... 5

Choose a Starting Point ................................................................................................................................................. 6

Adjust the Optimization Mapping ............................................................................................................................ 6

Adjust the Logical Architecture .................................................................................................................................. 8

Design the Physical Architecture and Plan ............................................................................................................ 8

Phase 1 ................................................................................................................................................. 9Envision the Solution .................................................................................................................................................................... . 9

Definition ............................................................................................................................................................................. 9

Optimization Mapping ................................... ........................................ ....................................... .............................. 10

Technology Mapping .................................................................................................................................................. 13

Architect the Solution ................................................................................................................................................................. 14

Logical Architecture ..................................................................................................................................................... 14

Illustrative Physical Architecture ............................................................................................................................. 15

System Components .................................................................................................................................................... 16

Plan Development and Deployment of the Solution ..................................................................................................... 20

Phase 2 ............................................................................................................................................... 64Envision the Solution ................................................................................................................................................................... 64

Definition .......................................................................................................................................................................... 64

Optimization Mapping ................................... ........................................ ....................................... .............................. 65

Technology Mapping .................................................................................................................................................. 67

Architect the Solution ................................................................................................................................................................. 69

Logical Architecture ..................................................................................................................................................... 69

Illustrative Physical Architecture ............................................................................................................................. 70

System Components .................................................................................................................................................... 70

Plan Development and Deployment of the Solution ..................................................................................................... 75

Phase 3 ............................................................................................................................................... 97Envision the Solution ................................................................................................................................................................... 97

Definition .......................................................................................................................................................................... 97Optimization Mapping ................................... ........................................ ....................................... .............................. 98

Technology Mapping ..................................... ........................................ ....................................... ............................ 101

Architect the Solution ............................................................................................................. ................................................. 103

Logical Architecture ................................................................................................................................................... 103

Illustrative Physical Architecture..................................... ........................................ ....................................... ........ 103

System Components ....................................... ........................................ ....................................... ............................ 104

Plan Development and Deployment of the Solution .................................................................................................. 109


4/123


OverviewThis section explains this documents scope, the intended audience, a description about how the

audience should use this document, and a summary of the key sections.

Scope of This Guide

This document helps the audience design a logical architecture for an enterprise platform that is based

on Microsofttechnologies and that optimizes WindowsAzure. It also contains references to other

documents that describe how to design a physical architecture and how to plan for developing and

deploying the designed platform.

The audience should use the information in this document in the context of business needs and

integrated capability requirements that the Microsoft Optimization solution area for Windows Azure

discusses. This solution area helps structure conversations with IT directors and executives to better

understand their business drivers and priorities, discuss potential business capabilities, and design and

deploy a robust enterprise platform that supports the solution.

Who Should Read This Guide

This document is for solution implementation team members who specify and plan an enterprise

platform that optimizes Windows Azure. Solution implementation team members typically include

business analysts, solution architects, platform architects, infrastructure architects, IT infrastructure

managers, and IT operations managers.

How to Use This Guide

This document provides useful information about an integrated capability analysis, which is a

structured process for validating the requirements, specifying the design, and planning to develop and

deploy an enterprise architecture.

Section Summaries

This document has four major sections:

Customizing Your Solution:This section provides an approach to use the remaining sections of

this document and other Optimization solution area materials to validate requirements, specify the

design, and plan to develop and deploy an enterprise architecture that meets your specific needs.

Phase 1:This section provides the definition; Optimization mapping; technology mapping; logical

architecture; illustrative physical architecture; system components; and references to plan, develop,

and deploy Phase 1.

Phase 2:This section provides the definition; Optimization mapping; technology mapping; logicalarchitecture; illustrative physical architecture; system components; and references to plan, develop,

and deploy the Phase 2.

Phase 3:This section provides the definition; Optimization mapping; technology mapping; logical

architecture; illustrative physical architecture; system components; and references to plan, develop,

and deploy the Phase 3.


5/123


Customizing Your SolutionThis section provides an approach to use this document and other Optimization solution area materials

to validate requirements, specify the design, and plan to develop and deploy an enterprise architecture

that optimizes Windows Azure.

Why Customize?

This document and the other Optimization solution area materials define three illustrative solution

phases that increase in complexity and potential business value: Phase 1, Phase 2, and Phase 3. Each

solution phase specifies business capabilities that map to the Optimization maturity models,

architecture diagrams, and technologies.

The definitions of these three illustrative solutions are quite robust, so it is likely that no solution

exactly matches your particular needs because your business has:

Specific priorities of business drivers

Specific priorities of business capabilities

Existing architecture and initiatives in your environment

The Customization Process

You should use the solution phases as starting points in the following steps, which ensures a resulting

platform that is robust, agile, and manageable:

1. Understand your priorities.

2. Choose a starting point.

3. Adjust the Optimization mapping.

4.

Adjust the logical architecture.

5.

Design the physical architecture and plan.

Understand Your Priorities

The first step is to clearly understand, document, and baseline your priorities. You can use the Business

Priorities Guide for a solution area to discuss, capture, and baseline the relevance and priority of

specific business drivers and potential business capabilities.

Figure 1 illustrates an example where:

The business driver, Create high-impact sales proposals, is the first priority.

Red text emphasizes the compelling business capabilitiess that address the organizations specific

needs.


6/123


Figure 1 Example business priorities

Choose a Starting Point

Based on your priorities, Phase 2 is the starting point for this example because it is the least advancedsolution that covers the first priority business capability.

Adjust the Optimization Mapping

Review and adjust the Optimization mapping that corresponds to the starting-point solution. You can

remove capabilities that you do not need and change the maturity levels for the capabilities.

Figure 2 illustrates this process for the specific business capability priorities. In this figure:

Capability is needed

Capability is not needed

? Capability may not be relevant

* Capability that Phase 2 defines may not match thespecific requirement for the customized solution


7/123


Figure 2 Adjusting your solutions Optimization mapping

Tips for adjusting your solutions Optimization mapping:

For capabilities that may not match the specific requirement for your customized solution (that is,capabilities that are marked with an asterisk [*]):

Refer to the Optimization model definitions.

Consider using an alternate maturity level that corresponds to your requirements, as Figure 3

shows.

Remove items in a capability that you do not need.

Figure 3 Using an alternate maturity level


8/123


For capabilities that may not be relevant (that is, capabilities that are marked with a question mark

[?]):

Identify, document, and discuss how a capability might be relevant.

Identify the Core capabilities that may not be critically relevant, as Figure 4 shows.

Figure 4 Identifying a Core capability that is not critically relevant

Server Securityhelps protect and secure the server infrastructure at the data center from viruses,

spam, malware, and other intrusions.

Adjust the Logical Architecture

After you identify a stable set of business capabilities and corresponding required Optimization

capability maturity levels, you can adjust the technology mapping, logical architecture, and system

components of the starting-point solution phase to remove what you do not need.

Design the Physical Architecture and Plan

From the system components list that you adjusted, you can refer to the corresponding lists to design

a specific physical architecture that meets your needs and environment and to plan how to develop

and deploy your customized platform.


9/123


10/123


This section describes the integrated capabilities of the Phase 1 solution. Organizations can use this

section to better understand which integrated capabilities they need to customize for the solution to

meet specific business needs.

Organizations that require a Phase 1 solution for Windows Azure need to manage their IT

infrastructure efficiently with minimal administrative overhead and focus on value-added services by

expanding their existing portfolio of applications and services. Organizations need to have highly

available, scalable, multitenant data services in the cloud to meet changing business needs on demand

Organizations can help deliver on-demand computing and storage capabilities while ensuring a

familiar and consistent application development model. Organizations can better work with increasing

amounts of data from multiple locations and devices by linking existing on-premises data stores to

cloud-based storage services without compromising performance and achieving defined service-level

agreements. Organizations can provide more secure access to applications that are exposed over

Internet, firewall, domain, and network boundaries by building federated authorization into

applications.

Optimization Mapping

Error! Reference source not found.6 shows the Optimization mapping for Phase 1.

Figure 6 Optimization mapping for Phase 1


11/123



12/123



13/123


Technology Mapping

Phase 1 requires the following Microsoft technologies:

Client Technologies

Microsoft Office 2007 / 2010

Microsoft Office Outlook2007 / Microsoft Outlook 2010, Microsoft Office Word 2007 /

Microsoft Word 2010, Microsoft Office Excel2007 / Microsoft Excel 2010, Microsoft Office

PowerPoint2007 / Microsoft PowerPoint 2010

Microsoft Office Visio2007 / Microsoft Visio 2010

Microsoft Office Project 2007 / Microsoft Project 2010

Microsoft ForefrontEndpoint Protection 2010 / Microsoft System Center 2012 Endpoint

Protection

Windows7 / 8

Server Technologies

Microsoft SQL Server

2008 R2 / 2012

Microsoft Server Security

Microsoft Internet Security and Acceleration Server 2006 / Microsoft Forefront Threat

Management Gateway 2010

Microsoft Intelligent Application Gateway 2007 / Microsoft Forefront Unified Access Gateway

2010

Microsoft Forefront Identity Manager 2010 / 2010 R2

Microsoft Windows Server2008 R2 / 2012

Microsoft System Center

Microsoft System Center Operations Manager 2007 R2 / Microsoft System Center 2012

Operations Manager

Microsoft System Center Data Protection Manager 2010 / Microsoft System Center 2012 Data

Protection Manager

Microsoft System Center Configuration Manager 2007 R3 / Microsoft System Center 2012

Configuration Manager

Microsoft System Center Virtual Machine Manager 2008 R2 / Microsoft System Center 2012

Virtual Machine Manager

Microsoft System Center Service Manager 2010 / Microsoft System Center 2012 Service

Manager

Opalis / Microsoft System Center 2012 Orchestrator

Microsoft Windows Storage Server 2008 / 2008 R2

Windows Server AppFabric

Microsoft Hyper-VServer 2008 / 2008 R2

Microsoft BizTalkServer 2009 / 2010


14/123


Cloud Technologies

Microsoft Business Productivity Online Services / Microsoft Office 365

Microsoft SharePointOnline

Windows Azure platform

Windows Azure

Windows Azure AppFabric

Microsoft SQL Azure

Microsoft Online Backup Service

Development Tools

Microsoft .NET Framework

Microsoft Visual Studio2010 Team Foundation Server / Microsoft Visual Studio 11 Team

Foundation Server

Microsoft Visual Studio Team System 2008 / 2010 / 11

Windows Communications Foundation (WCF) Services

Tools

Microsoft Assessment and Planning Toolkit 6.0 / 6.5

Microsoft Security Assessment Tool

Microsoft Software Inventory Analyzer 5.0 / 5.1

Microsoft Deployment Toolkit 2010 / 2012

Windows Automated Installation Kit

Microsoft Security Compliance Management Toolkit

Compliance Management Libraries 2.0

Data Classification Toolkit

IT Governance, Risk and Compliance process management pack 2.0

BizTalk ESB Toolkit

Architect the Solution

This section provides the logical architecture, illustrative physical architecture, and list of required

system components for Phase 1, which are useful starting points to help you design your solution.

Logical Architecture

Figure 7 is the logical architecture diagram that shows the infrastructure for Phase 1 and its

functionalities. This diagram provides a high-level overview of the requirements to implement Phase 1.

This diagram is a starting point; you should customize it to meet the specific needs of yourorganization.


15/123


Figure 7 Logical architecture diagram of Phase 1

Illustrative Physical Architecture

Figure 8 is an illustrative physical architecture diagram for Phase 1. A physical architecture diagram

shifts from describing technologies as capabilities and roles to describing physical systems. As with all

sample diagrams, you should customize this diagram to meet the specific needs of your organization.

For more information about customizing this diagram (including the required software product

editions), seePlan Development and Deployment of the Solutionin Phase 1.

Figure 8 Physical architecture for Phase 1


16/123


System Components

This section lists the system components that Phase 1 requires. The system components consist of

product components that are grouped by product families. Table 1 l ists the product components that

each solution capability in Phase 1 needs. You can use this table to better understand which product

components you need to meet the specific solution capability requirements for your customizedsolution.

The legend for the table is as follows:

X Product must be included to enable the solution capability.

* Product is recommended to better enable the solution capability.

Table 1 System components for Phase 1

Highlyavailable,scalable,multitenant

storageserviceinthecloud

Self-managingcapabilitytopro

vision

dataserviceswithbuilt-infault

tolerance

Creation,prototyping,anddeploymentof

applicationsthatintegratedata

across

theorganization

Relationaldatamodelinthecloudthat

providesconnectivitywithexistingon-

premisesstorage

Secureconnectivitybetweenlo

osely

coupledservicesandapplicatio

nsover

theInternetacrossfirewall,

dom

ain,and

networkboundaries

Enablingservicestonavigatefirewallsor

networkboundaries

Product family

Product component

CLIENT TECHNOLOGIES

Office 2007 / 2010

Office Outlook 2007 / Outlook2010, Office Word 2007 / Word

2010, Office Excel 2007 / Excel

2010, Office PowerPoint 2007 /

PowerPoint 2010

*

Office Visio 2007 / Visio 2010 *

Office Project 2007 / Project 2010 *

Forefront Endpoint Protection 2010

/ System Center 2012 Endpoint

Protection

* * * *

Windows 7 X X X X X X

Windows 8

Offline Files *

DirectAccess

SERVER TECHNOLOGIES

Office SharePoint Server 2007 /

SharePoint Server 2010*

Sites and Portals

Single Sign-On Service / Secure

Store Service*


17/123


Highlyavailable,scalable,

multitenant

storageserviceintheclou

d

Self-managingcapabilitytoprovision

dataserviceswithbuilt-in

faulttolerance


applicationsthatintegratedataacross

theorganization


providesconnectivitywith

existingon-

premisesstorage

Secureconnectivitybetweenloosely

coupledservicesandapplicationsover


domain,and

networkboundaries

Enablingservicestonavig

atefirewallsor

networkboundaries

Product family

Product component

SQL Server 2008 R2 / 2012

Database Engine * X X X *

Server Security

Forefront Security for SharePoint

/ Forefront Protection 2010 forSharePoint

Internet Security and Acceleration

Server 2006 / Forefront Threat

Management Gateway 2010

Firewall X X X X X X

Intelligent Application Gateway

2007 / Forefront Unified Access

Gateway 2010

* * *

Forefront Identity Manager 2010 /

2010 R2*

Windows Server 2008 R2 / 2012*

Active DirectoryDomain

ServicesX X X X X X

Active Directory Federation

Services

Active Directory Certificate

Services

Active Directory Lightweight

Directory Services* X X

Network Policy and Access

Services* X

Group Policy * * *

Internet Information Services (IIS)7 / 8

* * *

Hyper-V * * * * * *

Windows Deployment Services *

Windows Firewall with Advanced

Security* * * * * *

DirectAccess

Storage Spaces* X


18/123



multitenant


d



faulttolerance



theorganization



existingon-

premisesstorage




domain,and

networkboundaries


atefirewallsor

networkboundaries

Product family

Product component

System Center

System Center Operations

Manager 2007 R2 / System

Center 2012 Operations Manager

* * * * *

System Center Data ProtectionManager 2010 / System Center

2012 Data Protection Manager

X * X

System Center Configuration


Center 2012 Configuration

Manager

* * * * *

System Center Virtual Machine


Center 2012 Virtual Machine

Manager

* * * * * *

System Center Virtual Machine

Manager Self Service Portal 2.0

System Center Service Manager2010 / System Center 2012

Service Manager

* * * *

Opalis / System Center 2012

Orchestrator* * * * * *

System Center 2012 App

Controller

Windows Storage Server 2008 /

2008 R2X *

Windows Server AppFabric *

Hyper-VServer 2008 / 2008 R2 * * * * *

BizTalk Server 2009 / 2010 X X X

CLOUD TECHNOLOGIES

BPOS / Office 365* * *

SharePoint Online *

Windows Azure platform

Windows Azure X X X X X X

Windows Azure AppFabric X X X X


19/123



multitenant


d



faulttolerance



theorganization



existingon-

premisesstorage




domain,and

networkboundaries


atefirewallsor

networkboundaries

Product family

Product component

Active Directory Access Control * *

SQL Azure X X X X X X

Online Backup Service * *

DEVELOPMENT TOOLS

.NET Framework X X X X X

Visual Studio 2010 Team Foundation

Server / Visual Studio 11 Team

Foundation Server

X X X X X

Visual Studio Team System 2008 /

2010 / 11X X X X X X

Windows Communications

Foundation (WCF) Services* *

TOOLS, ADD-INS, LIBRARIES, AND FRAMEWORKS

Assessment and Planning Toolkit 6.0

/ 6.5* * * *

Security Assessment Tool X X

Software Inventory Analyzer 5.0 /

5.1*

Deployment Toolkit 2010 / 2012 * X

Windows Automated Installation Kit * *

Security Compliance Management

Toolkit

Security Compliance Manager 2.x * * *

Compliance Management Libraries

2.0* * *

Windows SDK

Data Classification Toolkit * * * *

IT Governance, Risk and Compliance

Process Management Pack 2.0* * *

BizTalk ESB Toolkit * X X


20/123


Plan Development and Deployment of the Solution

This section provides references to help you plan to develop and deploy the server product

components that are relevant to Phase 1.

SERVER TECHNOLOGIESThis section contains links to the server technologies that Table 1 references.

Microsoft SQL Server 2008 R2

Microsoft SQL Server 2008 R2 can help people scale database operations with confidence; improve IT

and developer efficiency; and enable highly scalable, well-managed, and self-service business

intelligence.

General

Home Page http://www.microsoft.com/sqlserver/2008/en/us/R2.aspx

Get Started http://technet.microsoft.com/en-us/library/bb500434.aspx

Plan a SQL Server Installation http://technet.microsoft.com/en-us/library/bb500442.aspx

Technical Articles http://technet.microsoft.com/en-

us/library/bb418445(SQL.10).aspx

Database Engine

The Database Engine is the core service for storing, processing, and securing data. It provides

controlled access and rapid transaction processing to meet the requirements of the most demanding

data-consuming applications within the enterprise.

People can use the Database Engine to create relational databases for online transaction processing or

online analytical processing data. They also can create tables for storing data, and database objects

such as indexes, views, and stored procedures for viewing, managing, and securing data.

General

Get Started http://technet.microsoft.com/hi-in/library/bb510421(en-

us,SQL.105).aspx

Planning and Architecture http://technet.microsoft.com/hi-in/library/cc280361(en-

us,SQL.105).aspx

Development http://technet.microsoft.com/hi-in/library/bb500155(en-

us,SQL.105).aspx

Deployment http://technet.microsoft.com/hi-in/library/bb522543(en-

us,SQL.105).aspx

Operations http://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspx
http://www.microsoft.com/sqlserver/2008/en/us/R2.aspxhttp://www.microsoft.com/sqlserver/2008/en/us/R2.aspxhttp://technet.microsoft.com/en-us/library/bb500434.aspxhttp://technet.microsoft.com/en-us/library/bb500434.aspxhttp://technet.microsoft.com/en-us/library/bb500442.aspxhttp://technet.microsoft.com/en-us/library/bb500442.aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522460(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb522543(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb500155(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/cc280361(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/hi-in/library/bb510421(en-us,SQL.105).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(SQL.10).aspxhttp://technet.microsoft.com/en-us/library/bb500442.aspxhttp://technet.microsoft.com/en-us/library/bb500434.aspxhttp://www.microsoft.com/sqlserver/2008/en/us/R2.aspx


21/123


System Components Integration

This section describes the integration points of SQL Server 2008 R2 with other system components.

Usage Scenarios

This section describes the usage scenarios as supported by SQL Server 2008 R2 in integration with

other system components.

Highly available, scalable, multitenant storage service in the cloud

Interoperability with SQL Azure

Microsoft SQL Azure Database is a cloud-based, relational database service built on SQL Server

technologies. It provides a highly available, scalable, multitenant database service hosted by

Microsoft in the cloud. SQL Azure Database helps organizations provision and deploy multiple

databases, and helps developers avoid installing, setting up, patching, or managing any software.

It features high availability and fault tolerance, requires no physical administration, and supports

Transact-SQL (T-SQL). Developers can use existing knowledge in T-SQL development and a familia

relational data model for symmetry with existing on-premises databases.

Relational data model in the cloud that provides connectivity with existing on-premises storage


SQL Azure provides a familiar environment for database programmers. The objects that are

created in SQL Azure Database are the same as those in an SQL Server database. Both SQL Server

and SQL Azure Database use the Transact-SQL language for database creation and data

manipulation. Database developers and administrators can quickly become productive in SQL

Azure by using their existing expertise. Developers can use existing knowledge in T-SQL

development and a familiar relational data model for symmetry with existing on-premises

databases.

Creation, prototyping, and deployment of applications that integrate data across the organization

Interoperability with Visual Studio Team System 2008

Visual Studio offers database design and development tools in an integrated development

environment, helping developers to visually design data relationships, filter SQL statements, edit

SQL code, and run database queries in the development environment itself.

Associated System Components

This section describes the dependencies and recommendations for SQL Server 2008 R2 and highlights

capabilities as enabled directly or when integrated with another system component.

Interoperability with Office BizTalk Server 2009

BizTalk Server is dependent on SQL Server 2008 R2 for the messaging tracking database as well as

other databases. The most sensitive information (such as credential information containing details

of database connection strings, user names, and passwords related to the BizTalk adapters) is

stored in an encrypted format in the single sign-on (SSO) database.


22/123


Interoperability with Core and Management Services

SQL Server 2008 R2 uses the following technologies and services:

Windows Server 2008 R2

Windows Server provides an installation and deployment platform, granular services, and

other essential components and technologies.

Active Directory Domain Services can help administrators manage user identities and

relationships.

The Active Directory Lightweight Directory Services server role is a Lightweight Directory

Access Protocol (LDAP) directory service that provides data storage and retrieval for

directory-enabled applications, without the dependencies that are required for Active

Directory Domain Services.

Network Policy and Access Services (NPAS) provides technologies that allow deployment

of virtual private networking (VPN), dial-up networking, and 802.11-protected wireless

access. With NPAS, organizations can define and enforce policies for network access

authentication, authorization, and client health.

Group Policy provides an infrastructure for centralized configuration management of the

operating system and applications that run on the operating system.

Internet Information Services (IIS) 7.0 is a powerful web server that provides a highly

reliable, manageable, and scalable web application infrastructure.

The Hyper-V virtualization platform can be used to create and manage a virtualized server

computing environment.

Windows Deployment Services can help administrators remotely deploy Windows

operating systems.

Windows Firewall with Advanced Security helps protect computers on a network through

a stateful firewall that enables administrators to determine what network traffic to permit

to pass between a computer and the network. It also includes connection security rulesthat use Internet Protocol security (IPsec) to help protect traffic as it travels across the

network.

Internet Security and Acceleration Server 2006 protects the IT environment from Internet-

based threats and provides users with fast and secure remote access to applications and data.

Intelligent Application Gateway 2007 provides a secure-socket-layer virtual private network, a

web application firewall, and endpoint security management that enable access control,

authorization, and content inspection for a wide variety of applications.

Windows Storage Server 2008 enables high-availability scenarios by providing backup and

replication of stored data.

Microsoft Hyper-V Server 2008 provides a reliable and optimized virtualization solution thathelps organizations improve server use and reduce costs through a small footprint and

minimal overhead.

System Center family helps organizations by providing IT with self-managing and monitoring

of dynamic systems. System Center family provides:

A comprehensive view of the health of the IT environment.


23/123


Optimized disk-based backup and recovery, more consistent data protection, and features

to increase the IT organizations operational efficiencies.

A secure and scalable operating system, application deployment, and configuration

management.

Unified management of physical and virtual machines, consolidation of underutilizedphysical servers, and rapid provisioning of new virtual machines.

A flexible platform for automating and adapting IT Service Management best practices to

the organizations requirements.

Automated incident response, change and compliance, and service life-cycle management

processes.

Microsoft SQL Server 2012

Microsoft SQL Server 2012 is a cloud-ready information platform that helps organizations to protect,

scale, and unlock the power of their data. With SQL Server 2012, IT can provide organizations with

performance and availability for business-critical solutions, the potential for breakthrough insight

through rapid data exploration, and the ability to visualize data across the organization. Finally, SQLServer 2012 helps IT build solutions that extend across premises and the cloud.

General

Home Page http://www.microsoft.com/sqlserver/en/us/default.aspx

Overview / Capabilities http://www.microsoft.com/sqlserver/en/us/product-

info/overview-capabilities.aspx

Upgrade to SQL Server 2012 http://technet.microsoft.com/en-us/library/bb677622.aspx

Installation for SQL Server 2012 http://technet.microsoft.com/en-us/library/bb500469.aspx

Technical Articles http://technet.microsoft.com/en-

us/library/bb418445(v=sql.10).aspx

Database Engine

The Database Engine is the core service for storing, processing, and securing data. The Database

Engine provides controlled access and rapid transaction processing to meet the requirements of the

most demanding data consuming applications within the enterprise.

Use the Database Engine to create relational databases for online transaction processing or online

analytical processing data. This capability includes creating tables for storing data and developing

database objects such as indexes, views, and stored procedures for viewing, managing, and securing

data.

GeneralGet Started http://technet.microsoft.com/en-

us/library/ms187875(v=sql.110).aspx

What's New (Database Engine) http://technet.microsoft.com/en-us/library/bb510411.aspx

SQL Server Database Engine Backward

Compatibility

http://technet.microsoft.com/en-us/library/ms143532.aspx

Database Engine Features and Tasks http://technet.microsoft.com/en-us/library/bb500155.aspx
http://www.microsoft.com/sqlserver/en/us/default.aspxhttp://www.microsoft.com/sqlserver/en/us/default.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://technet.microsoft.com/en-us/library/bb677622.aspxhttp://technet.microsoft.com/en-us/library/bb677622.aspxhttp://technet.microsoft.com/en-us/library/bb500469.aspxhttp://technet.microsoft.com/en-us/library/bb500469.aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/bb510411.aspxhttp://technet.microsoft.com/en-us/library/bb510411.aspxhttp://technet.microsoft.com/en-us/library/ms143532.aspxhttp://technet.microsoft.com/en-us/library/ms143532.aspxhttp://technet.microsoft.com/en-us/library/bb500155.aspxhttp://technet.microsoft.com/en-us/library/bb500155.aspxhttp://technet.microsoft.com/en-us/library/bb500155.aspxhttp://technet.microsoft.com/en-us/library/ms143532.aspxhttp://technet.microsoft.com/en-us/library/bb510411.aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/ms187875(v=sql.110).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb418445(v=sql.10).aspxhttp://technet.microsoft.com/en-us/library/bb500469.aspxhttp://technet.microsoft.com/en-us/library/bb677622.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/product-info/overview-capabilities.aspxhttp://www.microsoft.com/sqlserver/en/us/default.aspx


24/123


General

Technical Reference (Database Engine) http://technet.microsoft.com/en-us/library/bb500275.aspx

System Components Integration

This section describes the integration points of SQL Server 2012 with other system components.

Usage Scenarios

This section describes the usage scenarios as supported by SQL Server 2012 in integration with other

system components.

Highly available, scalable, multitenant storage service in the cloud


Microsoft SQL Azure Database is a cloud-based, relational database service built on SQL Server

technologies. It provides a highly available, scalable, multi-tenant database service hosted by

Microsoft in the cloud. SQL Azure Database helps organizations provision and deploy multipledatabases, and helps developers avoid installing, setting up, patching, or managing any software.

It features high availability and fault tolerance, requires no physical administration, and supports

Transact-SQL (T-SQL). Developers can use existing knowledge in T-SQL development and a familia

relational data model for symmetry with existing on-premises databases.

Relational data model in the cloud that provides connectivity with existing on-premises storage


SQL Azure provides a familiar environment for database programmers. The objects that are

created in SQL Azure Database are the same as those in an SQL Server database. Both SQL Server

and SQL Azure Database use the Transact-SQL language for database creation and data

manipulation. Database developers and administrators can quickly become productive in SQL

Azure by using their existing expertise. Developers can use existing knowledge in T-SQLdevelopment and a familiar relational data model for symmetry with existing on-premises

databases.

Creation, prototyping, and deployment of applications that integrate data across the organization

Interoperability with Visual Studio Team System 2010/ Visual Studio 11

Visual Studio offers database designing and development tools in an integrated development

environment, helping developers to visually design data relationships, filter SQL statements, edit

SQL code, and run database queries in the development environment itself.

Associated System Components

This section describes the dependencies and recommendations for SQL Server 2012 and highlightscapabilities as enabled directly or when integrated with another system component.

Interoperability with Office BizTalk Server 2010

BizTalk Server is dependent on SQL Server 2012 for the messaging tracking database as well as

other databases. The most sensitive information, such as credential information containing details

of database connection strings, user names, and passwords related to the BizTalk adapters, is

stored in an encrypted format in the SSO database.
http://technet.microsoft.com/en-us/library/bb500275.aspxhttp://technet.microsoft.com/en-us/library/bb500275.aspxhttp://technet.microsoft.com/en-us/library/bb500275.aspx


25/123


Interoperability with Core and Management Services

SQL Server 2012 uses the following technologies and services:

Windows Server 2012

Windows Server provides an installation and deployment platform, granular services, and

other essential components and technologies.

Active Directory Domain Services can help administrators manage user identities and

relationships.

The Active Directory Lightweight Directory Services server role is a Lightweight Directory

Access Protocol (LDAP) directory service that provides data storage and retrieval for

directory-enabled applications, without the dependencies that are required for Active

Directory Domain Services.

Network Policy and Access Services (NPAS) provides technologies that allow deployment

of virtual private networking (VPN), dial-up networking, and 802.11-protected wireless

access. With NPAS, organizations can define and enforce policies for network access

authentication, authorization, and client health.

Group Policy provides an infrastructure for centralized configuration management of the

operating system and applications that run on the operating system.

Internet Information Services (IIS) 8.0 is a powerful web server that provides a highly

reliable, manageable, and scalable web application infrastructure.

The Hyper-V virtualization platform can be used to create and manage a virtualized server

computing environment.

Windows Deployment Services can help administrators remotely deploy Windows

operating systems.

Windows Firewall with Advanced Security helps protect computers on a network through

a stateful firewall that enables administrators to determine what network traffic to permit

to pass between a computer and the network. It also includes connection security rulesthat use Internet Protocol security (IPsec) to help protect traffic as it travels across the

network.

Storage Spaces enables virtualized storage capabilities by grouping industry-standard

disks into storage pools, and then creating virtual disks called storage spaces from the

available capacity in the storage pools

Forefront Threat Management Gateway 2010 protects the IT environment from Internet-based

threats and provides users with fast and secure remote access to applications and data.

Forefront Unified Access Gateway 2010 provides a secure-socket-layer virtual private network,

a web application firewall, and endpoint security management that enable access control,

authorization, and content inspection for a wide variety of applications.

Windows Storage Server 2008 R2 enables high-availability scenarios by providing backup and

replication of stored data.

Microsoft Hyper-V Server 2008 R2 provides a reliable and optimized virtualization solution

that helps organizations improve server use and reduce costs through a small footprint and

minimal overhead.

System Center family helps organizations by providing IT with self-managing and monitoring

of dynamic systems. System Center family provides:


26/123


A comprehensive view of the health of the IT environment.

Optimized disk-based backup and recovery, more consistent data protection, and features

to increase the IT organizations operational efficiencies.

A secure and scalable operating system, application deployment, and configuration

management.

Unified management of physical and virtual machines, consolidation of underutilized

physical servers, and rapid provisioning of new virtual machines.

A flexible platform for automating and adapting IT Service Management best practices to

the organizations requirements.

Automated incident response, change and compliance, and service life-cycle management

processes.

Microsoft Server Security

Microsoft Server Security is a set of comprehensive line-of-business security products that provide

greater protection and control through integration with existing IT infrastructures and through

simplified deployment, management, and analysis.

General

Microsoft ForefrontHome Page http://www.microsoft.com/forefront/serversecurity/en/us/defaul

t.aspx

Internet Security and Acceleration Server 2006

Microsoft Internet Security and Acceleration Server 2006 is the integrated security gateway that helps

protect IT environments from Internet-based threats, while providing faster and more secure remote

access to applications and data.

General

Get Started http://technet.microsoft.com/hi-in/library/bb898432(en-us).aspx

Technical Reference http://technet.microsoft.com/hi-in/library/bb898443(en-

us,TechNet.10).aspx

Planning and Architecture http://www.microsoft.com/technet/isa/2006/planningarchitectur

e/default.mspx

Development http://www.microsoft.com/technet/isa/2006/development/defa

ult.mspx

Deployment http://www.microsoft.com/technet/isa/2006/deployment/defaul

t.mspx

Operations http://www.microsoft.com/technet/isa/2006/operations/default.

mspx

Microsoft Internet Security and

Acceleration Server 2006 SDK

http://msdn.microsoft.com/en-us/library/ms828058.aspx
http://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://technet.microsoft.com/hi-in/library/bb898432(en-us).aspxhttp://technet.microsoft.com/hi-in/library/bb898432(en-us).aspxhttp://office.microsoft.com/search/redir.aspx?assetid=FX101211721033http://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://msdn.microsoft.com/en-us/library/ms828058.aspxhttp://msdn.microsoft.com/en-us/library/ms828058.aspxhttp://msdn.microsoft.com/en-us/library/ms828058.aspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://www.microsoft.com/technet/isa/2006/operations/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/deployment/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/development/default.mspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://www.microsoft.com/technet/isa/2006/planningarchitecture/default.mspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://technet.microsoft.com/hi-in/library/bb898443(en-us,TechNet.10).aspxhttp://office.microsoft.com/search/redir.aspx?assetid=FX101211721033http://technet.microsoft.com/hi-in/library/bb898432(en-us).aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspxhttp://www.microsoft.com/forefront/serversecurity/en/us/default.aspx


27/123


Firewall Service

The firewall service in Internet Security and Acceleration Server 2006 runs in user mode at the top of

the TCP/IP protocol stack, and employs a hybrid architecture that combines elements of both proxy

and stateful inspection firewall behavior. The firewall service performs an additional packet inspection

after receiving clearance from the firewall engine. The firewall service can manage traffic acrossmultiple connections and perform associated processing (for example, application filtering).

General

Internet Security and Acceleration

Server 2006 Firewall Core

http://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-

4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.doc

Forefront Threat Management Gateway 2010

Forefront Threat Management Gateway 2010 helps organizations safely and productively use the

Internet for business without worrying about malicious software and other threats. It provides multiple

layers of continuously updated protection that is integrated into a unified, easy-to-manage gateway,

and reduces the cost and complexity of web security.

General

Home Page http://www.microsoft.com/forefront/threat-management-

gateway/en/us/overview.aspx

Whats New http://technet.microsoft.com/hi-in/library/ee207139(en-us).aspx

Planning and Design http://technet.microsoft.com/library/cc441674.aspx

Deployment http://technet.microsoft.com/library/cc441445.aspx

Operations http://technet.microsoft.com/library/cc441590.aspx

Technical Reference http://technet.microsoft.com/hi-in/library/cc441714(en-us).aspx

Development Guide http://technet.microsoft.com/hi-in/library/cc533499(en-us).aspx

Firewall Protection

Forefront Threat Management Gateway 2010 provides access control and protection on three layers:

packet filtering, stateful inspection, and application layer filtering. It also provides deep content

filtering through built-in application filters and delivers customizable, granular controls to HTTP traffic.

General

Overview http://technet.microsoft.com/en-us/library/cc995253.aspx

Microsoft Intelligent Application Gateway 2007

Microsoft Intelligent Application Gateway 2007 with Application Optimizers provides a secure-socket-

layer VPN, a web application firewall, and an endpoint security management that enable access

control, authorization, and content inspection for a wide variety of line-of-business applications.

Together, these technologies provide mobile and remote workers with easy, flexible, and more secure

access from a broad range of devices and locations, including kiosks, PCs, and mobile devices.
http://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://technet.microsoft.com/hi-in/library/ee207139(en-us).aspxhttp://technet.microsoft.com/hi-in/library/ee207139(en-us).aspxhttp://technet.microsoft.com/library/cc441674.aspxhttp://technet.microsoft.com/library/cc441674.aspxhttp://technet.microsoft.com/library/cc441445.aspxhttp://technet.microsoft.com/library/cc441445.aspxhttp://technet.microsoft.com/library/cc441590.aspxhttp://technet.microsoft.com/library/cc441590.aspxhttp://technet.microsoft.com/hi-in/library/cc441714(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc441714(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc533499(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc533499(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc533499(en-us).aspxhttp://technet.microsoft.com/hi-in/library/cc441714(en-us).aspxhttp://technet.microsoft.com/library/cc441590.aspxhttp://technet.microsoft.com/library/cc441445.aspxhttp://technet.microsoft.com/library/cc441674.aspxhttp://technet.microsoft.com/hi-in/library/ee207139(en-us).aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://www.microsoft.com/forefront/threat-management-gateway/en/us/overview.aspxhttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.dochttp://download.microsoft.com/download/e/7/6/e76fdda3-5c2c-4fbb-9c6f-3bcd0ed4b8ef/firewall_corewp.doc


28/123


General


Planning and Architecture http://technet.microsoft.com/en-us/library/dd278044.aspx

Deployment http://technet.microsoft.com/en-us/library/dd278109.aspx

Operations http://technet.microsoft.com/en-us/library/dd278091.aspx

Intelligent Application Gateway 2007

Technical Reference

http://technet.microsoft.com/en-

us/library/cc303257(TechNet.10).aspx

Microsoft Forefront Unified Access Gateway 2010

Forefront Unified Access Gateway provides remote access to applications, networks, and internal

resources from diverse client endpoints through a single point of entry. It is an easy and secure remote

access solution that helps provide application intelligence and granular access controls.

General

Home Page http://www.microsoft.com/forefront/unified-access-

gateway/en/us/

Get Started http://technet.microsoft.com/hi-in/library/dd857281(en-us).aspx

Planning and Design http://technet.microsoft.com/hi-in/library/dd857293(en-us).aspx

Deployment http://technet.microsoft.com/hi-in/library/dd857358(en-us).aspx

Operations http://technet.microsoft.com/hi-in/library/dd857237(en-us).aspx

Technical Reference http://technet.microsoft.com/hi-in/library/dd857316(en-us).aspx

Microsoft Forefront Identity Manager 2010

Microsoft Forefront Identity Manager 2010 provides powerful self-service capabilities and improvedtools for IT professionals to solve daily tasks such as delegating administration and creating workflows

for common identity management tasks. Forefront Identity Manager 2010 is built on a foundation

based on Microsoft .NET and web services so developers can build customized and extensible

solutions.

General

Home Page http://technet.microsoft.com/en-us/forefront/cc470030

Get Started Here http://technet.microsoft.com/hi-in/library/ff602041(en-

us,WS.10).aspx

Microsoft Forefront Identity Manager 2010 R2Microsoft Forefront Identity Manager 2010 R2 provides an integrated and comprehensive solution for

managing the entire life cycle of user identities and their associated credentials. It offers organizations

self-service identity management for users, automated life cycle management across heterogeneous

platforms, and a rich policy framework for enforcing security policies and detailed audits. It provides

identity synchronization, user provisioning, certificate and password management, and policy

management in a single solution that works across heterogeneous systems. Developers can use web

service APIs to create custom clients and to provide extensible activities and workflow schemas.
http://technet.microsoft.com/en-us/library/cc303240.aspxhttp://technet.microsoft.com/en-us/library/cc303240.aspxhttp://technet.microsoft.com/en-us/library/dd278091.aspxhttp://technet.microsoft.com/en-us/library/dd278091.aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://www.microsoft.com/forefront/unified-access-gateway/en/us/http://www.microsoft.com/forefront/unified-access-gateway/en/us/http://www.microsoft.com/forefront/unified-access-gateway/en/us/http://technet.microsoft.com/hi-in/library/dd857281(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857281(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857293(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857293(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857358(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857358(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857237(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857237(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857316(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857316(en-us).aspxhttp://technet.microsoft.com/en-us/forefront/cc470030http://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ff602041(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/forefront/cc470030http://technet.microsoft.com/hi-in/library/dd857316(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857237(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857358(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857293(en-us).aspxhttp://technet.microsoft.com/hi-in/library/dd857281(en-us).aspxhttp://www.microsoft.com/forefront/unified-access-gateway/en/us/http://www.microsoft.com/forefront/unified-access-gateway/en/us/http://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/cc303257(TechNet.10).aspxhttp://technet.microsoft.com/en-us/library/dd278091.aspxhttp://technet.microsoft.com/en-us/library/cc303240.aspx


29/123


General

Home Page http://www.microsoft.com/en-us/server-

cloud/forefront/identity-manager.aspx

Technical Overview http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/

SIM332

Deployment http://technet.microsoft.com/en-

us/library/jj134310%28v=ws.10%29.aspx

Development http://msdn.microsoft.com/en-

us/library/windows/desktop/jj131731%28v=vs.100%29.aspx


Windows Server 2008 R2 offers virtualization tools, web resources, management enhancements, and

Windows 7 integration, helping to save time, reduce costs, and provide a platform for a dynamic and

efficiently managed data center. Powerful tools, including Internet Information Services 7, updated

Server Manager and Hyper-V platforms, and Microsoft Windows PowerShell 2.0, work together to give

organizations greater control, increased efficiency, and the ability to react to frontline organizationalneeds faster than ever before.

General

Home Page http://technet.microsoft.com/en-

us/windowsserver/bb310558.aspx

Deployment http://technet.microsoft.com/hi-in/library/ee344846(en-

us,WS.10).aspx

Changes in Functionality from

Windows Server 2008 to Windows

Server 2008 R2


au/library/dd391932(WS.10).aspx

Active Directory Domain Services

Active Directory Domain Services is the central location for configuration information, authentication

requests, and information about all objects stored within the forest structure. With Active Directory

Domain Services, organizations can efficiently manage users, computers, groups, printers, applications,

and other directory-enabled objects from one highly secure, central location.

General

Home Page http://technet.microsoft.com/library/cc770946(WS.10).aspx

Features in Active Directory Domain

Services

http://technet.microsoft.com/hi-in/library/dd378796(en-

us,WS.10).aspx


Operations Guide


us/library/cc816807(WS.10).aspx

Active Directory Lightweight Directory Services

Active Directory Lightweight Directory Services provides directory services for directory-enabled

applications, without requiring or relying on Active Directory domains or forests. Organizations can run

Active Directory Lightweight Directory Services on member servers or stand-alone servers. They also
http://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/library/cc770946(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc816807(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/dd378796(en-us,WS.10).aspxhttp://technet.microsoft.com/library/cc770946(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/en-au/library/dd391932(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/ee344846(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/en-us/windowsserver/bb310558.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://technet.microsoft.com/en-us/library/jj134310%28v=ws.10%29.aspxhttp://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://channel9.msdn.com/Events/TechEd/NorthAmerica/2011/SIM332http://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspxhttp://www.microsoft.com/en-us/server-cloud/forefront/identity-manager.aspx


30/123


can run multiple instances of Active Directory Lightweight Directory Serviceseach with its own

independently managed schemaon one server.

General



Network Policy and Access Services

Network Policy and Access Services in Windows Server 2008 R2 delivers a variety of methods to help

provide more secure local and remote network connectivity, connect network segments, and enable

network administrators to centrally manage network access and client health policies. With Network

Access Services, organizations can more securely deploy virtual private network (VPN) servers, dial-up

servers, routers, and 802.1X-protected wireless access. They also can deploy RADIUS servers and

proxies and use the Connection Manager Administration Kit to create remote access profiles that allow

client computers to safely connect to the network.

General

Introduction http://technet.microsoft.com/library/cc754521(WS.10).aspx

Network Policy and Access Services

overview for Windows Server 2008 R2

http://technet.microsoft.com/en-us/library/cc731321.aspx

Network Policy Server (NPS) http://technet.microsoft.com/en-us/library/cc732912.aspx

Group Policy

Group Policy helps organizations manage configurations for groups of computers and users, including

options for registry-based policy settings, security settings, software deployment, scripts, folder

redirection, Remote Installation Services, and maintenance of Microsoft Internet Explorer. By using

Group Policy, organizations can significantly reduce the total cost of ownership (TCO). Because of

factors such as the large number of policy settings available, the interaction between multiple policies,

and inheritance options, Group Policy design can be complex. By carefully planning, designing, and

testing a solution based on business requirements, organizations can provide the necessary

standardized functionality, security, and management control.

General


Whats New in Group Policy http://technet.microsoft.com/en-

us/library/dd367853(WS.10).aspx

Windows PowerShell cmdlets for

Group Policy



Internet Information Services 7.0

Microsoft Internet Information Services 7.0 is a powerful web application and services platform that

delivers rich, web-based experiences. Internet Information Services 7.0 offers improved administrative

and diagnostic tools to help lower infrastructure costs on a variety of popular development platforms.

With improved reliability and scalability, IT professionals and developers can manage the most

demanding web service environments, from a single web server to a large web farm.
http://technet.microsoft.com/library/cc731868(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732019.aspxhttp://technet.microsoft.com/en-us/library/cc732019.aspxhttp://technet.microsoft.com/library/cc754521(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc731321.aspxhttp://technet.microsoft.com/en-us/library/cc731321.aspxhttp://technet.microsoft.com/en-us/library/cc732912.aspxhttp://technet.microsoft.com/en-us/library/cc732912.aspxhttp://technet.microsoft.com/library/cc726027(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367856(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd367853(WS.10).aspxhttp://technet.microsoft.com/library/cc726027(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732912.aspxhttp://technet.microsoft.com/en-us/library/cc731321.aspxhttp://technet.microsoft.com/library/cc754521(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732019.aspxhttp://technet.microsoft.com/library/cc731868(WS.10).aspx


31/123


General

Internet Information Services 7.0 http://technet.microsoft.com/en-


Internet Information Services 7.0

Development

http://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspx

Hyper-V

With Microsoft Hyper-V, organizations can more easily take advantage of the cost savings of

virtualization through Windows Server 2008 R2. Organizations can optimize server hardware

investments by consolidating multiple server roles as separate virtual machines running on a single

physical machine, efficiently run multiple different operating systems in parallel on a single server, and

fully use the power of Microsoft x64 computing technologies.

General

Home Page http://technet.microsoft.com/en-

us/windowsserver/dd448604.aspx

Hyper-V Features http://technet.microsoft.com/en-


Getting Started http://technet.microsoft.com/en-

us/library/ee344828(WS.10).aspx

Hyper-V Planning http://technet.microsoft.com/en-


Hyper-V Installation http://technet.microsoft.com/en-


Hyper-V Configuration http://technet.microsoft.com/en-


Windows Deployment Services

Windows Deployment Services, the updated and redesigned version of Remote Installation Services, is

a suite of components that work together in Windows Server 2008 R2 to enable the deployment of

Windows operating systems, particularly Windows Vista. With Windows Deployment Services,

organizations can deploy Windows operating systems over the network instead of installing each

operating system directly from a CD or DVD. They also can use Windows Deployment Services to

repurpose existing computers.

General

Overview http://technet.microsoft.com/hi-in/library/cc772106(en-

us,WS.10).aspx

Windows Deployment Services for




Getting Started Guide http://technet.microsoft.com/en-


Deployment Guide http://technet.microsoft.com/hi-in/library/cc770667(en-

us,WS.10).aspx
http://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc770667(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc771670(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/en-us/library/dd348502(WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/hi-in/library/cc772106(en-us,WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344820(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344837(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344841(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/ee344828(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc753637(WS.10).aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://technet.microsoft.com/en-us/windowsserver/dd448604.aspxhttp://msdn.microsoft.com/en-us/library/ms692515(VS.90).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732050(WS.10).aspx


32/123


Windows Firewall with Advanced Security

Windows Firewall with Advanced Security is a host-based firewall that blocks incoming and outgoing

connections based on its configuration. While typical end-user configuration of Windows Firewall

occurs through the Windows Firewall Control Panel tool, advanced configuration now occurs in

Windows Firewall with Advanced Security, a Microsoft Management Control snap-in.

General

Firewall with Advanced Security and

IPSec



Introduction to Windows Firewall with

Advanced Security




Security Design Guide




Security Deployment Guide



Windows Server 2012

Windows Server 2012 is designed to help IT pros enact cloud optimization while satisfying business

needs more quickly and efficiently. Windows Server 2012 provides a highly available and easy-to-

manage multiserver platform that offers flexible storage, continuous availability, and management

efficiency. With Windows Server 2012, Microsoft delivers a server platform based on the experience of

building and operating many of the world's most complex cloud-based services and largest data

centers. Whether administrators are setting up a single server for a small business or architecting a

major new data center environment, Windows Server 2012 can help them cloud optimize their IT so

they can more fully meet their organizations unique needs.


Active Directory Domain Services provides a distributed database that stores and manages informationabout network resources and application-specific data from directory-enabled applications. A server

that is running Active Directory Domain Services is called a domain controller. Administrators can use

Active Directory Domain Services to organize elements of a network, such as users, computers, and

other devices, into a hierarchical containment structure. The hierarchical containment structure

includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each

domain.

General

Home Page http://www.microsoft.com/en-us/server-cloud/windows-

server/default.aspx

Windows Server 2012 Overview http://www.microsoft.com/en-us/server-cloud/windows-

server/overview.aspx

What's New in Windows Server 2012 http://technet.microsoft.com/library/hh831769.aspx

Windows Server 2012 Capabilities http://www.microsoft.com/en-us/server-cloud/windows-

server/capabilities.aspx
http://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc972925(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732024(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc730955(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspxhttp://technet.microsoft.com/en-us/library/cc732283(WS.10).aspx


33/123


Active Directory Lightweight Directory Services

Active Directory Lightweight Directory Services is a Lightweight Directory Access Protocol (LDAP)

directory service that provides flexible support for directory-enabled applications, without the

dependencies and domain-related restrictions of Active Directory Domain Services. Organizations can

run Active Directory Lightweight Directory Services on member servers or stand-alone servers. They

also can run multiple instances of Active Directory Lightweight Directory Serviceseach with its own

independently managed schemaon one server. In addition, Active Directory Lightweight Directory

Services provides directory services for directory-enabled applications without the overhead of

domains and forests or the requirements of a single schema throughout a forest.

Network Policy and Access ServicesOrganizations can use the Network Policy and Access Services server role to deploy and configure

Network Access Protection (NAP), secure wired and wireless access point

windows azure architecture guide

Documents