Friday, February 25, 2011

Changes Common To Both Client & Server Platforms In Service Pack 1

Change to behavior of “Restore previous folders at logon” functionality

SP1 changes the behavior of the “Restore previous folders at logon” function available in the Folder Options Explorer dialog. Prior to SP1, previous folders would be restored in a cascaded position based on the location of the most recently active folder. That behavior changes in SP1 so that all folders are restored to their previous positions.






Enhanced support for additional identities in RRAS and IPsec

Support for additional identification types has been added to the Identification field in the IKEv2 authentication protocol. This allows for a variety of additional forms of identification (such as E-mail ID or Certificate Subject) to be used when performing authentication using the IKEv2 protocol.


Support for Advanced Vector Extensions (AVX)

There has always been a growing need for ever more computing power and as usage models change, processors instruction set architectures evolve to support these growing demands. Advanced Vector Extensions (AVX) is a 256 bit instruction set extension for processors. AVX is designed to allow for improved performance for applications that are floating point intensive. Support for AVX is a part of SP1 to allow applications to fully utilize the new instruction set and register extensions.


Improved Support for Advanced Format (512e) Storage Devices

SP1 introduces a number of key enhancements to improve support of recently introduced storage devices with a 4KB physical sector size (commonly referred to as "Advanced Format"). These enhancements include functionality fixes, improved performance, and updated storage drivers which provide applications the ability to retrieve information as to the physical sector size of storage device. More information on these enhancements is detailed in Microsoft KB 982018.

Notable Changes In Windows 7 Service Pack 1


Additional support for communication with third-party federation services

Additional support has been added to allow Windows 7 clients to effectively communicate with third-party identity federation services (those supporting the WS-Federation passive profile protocol). This change enhances platform interoperability, and improves the ability to communicate identity and authentication information between organizations.




Improved HDMI audio device performance

A small percentage of users have reported issues in which the connection between computers running Windows 7 and HDMI audio devices can be lost after system reboots. Updates have been incorporated into SP1 to ensure that connections between Windows 7 computers and HDMI audio devices are consistently maintained.


Corrected behavior when printing mixed-orientation XPS documents

Prior to the release of SP1, some customers have reported difficulty when printing mixed-orientation XPS documents (documents containing pages in both portrait and landscape orientation) using the XPS Viewer, resulting in all pages being printed entirely in either portrait or landscape mode. This issue has been addressed in SP1, allowing users to correctly print mixed-orientation documents using the XPS Viewer.

Notable Changes In Windows Server 2008 R2 Service Pack 1

Dynamic Memory


Constraints on the allocation of physical memory represents one of the greatest challenges organizations face as they adopt new virtualization technology and consolidate their infrastructure. With Dynamic Memory, an enhancement to Hyper-V™ introduced in Windows Server 2008 R2 SP1, organizations can now make the most efficient use of available physical memory, allowing them to realize the greatest possible potential from their virtualization resources. Dynamic Memory allows for memory on a host machine to be pooled and dynamically distributed to virtual machines as necessary. Memory is dynamically added or removed based on current workloads, and is done so without service interruption.

Virtual machines running a wide variety of operating systems can use Dynamic Memory; for a complete list, see the “Dynamic Memory Evaluation Guide” at The guide also discusses Dynamic Memory settings and usage in detail.


Microsoft RemoteFX

Businesses are increasingly looking to leverage the efficiency and cost savings that can come from a virtualized desktop infrastructure. With the addition of Microsoft RemoteFX in Windows Server 2008 R2 SP1, a new set of remote user experience capabilities that enable a media-rich user environment for virtual desktops, session-based desktops and remote applications is introduced. Harnessing the power of virtualized graphics resources, RemoteFX can be deployed to a range of thick and thin client devices, enabling cost-effective, local-like access to graphics-intensive applications and a broad array of end user peripherals, improving productivity of remote users.

RemoteFX can function independently from specific graphics stacks and supports any screen content, including today’s most advanced applications and rich content (including Silverlight and Adobe Flash), ensuring that end users maintain a rich, local-like desktop experience even in a virtualized thin-client environment.

RemoteFX also adds mainstream USB device support to virtual desktop computing, including support for USB drives, cameras and PDAs connected to the client device. RemoteFX also provides a platform for hardware and software partners to enhance RemoteFX capabilities in a variety of possible host, client and network configurations.

To use RemoteFX, the virtualization server must be running Windows Server 2008 R2 with SP1, the virtual machine must be running Windows 7 Enterprise with SP1 or Windows 7 Ultimate with SP1, and the remote client computer must be running either Windows Server 2008 R2 with SP1 or Windows 7 with SP1. To connect to the virtual machine, the remote client computer requires an updated version of Remote Desktop Services (included in the service pack for all editions of Windows 7).
















Enhancements to scalability and high availability when using DirectAccess


DirectAccess is a new feature in the Windows 7 and Windows Server 2008 R2 operating systems that gives users the experience of being seamlessly connected to their corporate network any time they have Internet access. In Windows Server 2008 R2 SP1, improvements have been made to enhance scalability and high availability when using DirectAccess, through the addition of support for 6to4 and ISATAP addresses when using DirectAccess in conjunction with Network Load Balancing (NLB).


Support for Managed Service Accounts (MSAs) in secure branch office scenarios

SP1 enables enhanced support for managed service accounts (MSAs) to be used on domain-member services located in perimeter networks (also known as DMZs or extranets).


Support for increased volume of authentication traffic on domain controllers connected to high-latency networks


As a greater volume of IT infrastructure migrates to cloud-based services, there is a need for higher thresholds of authentication traffic to domain controllers located on high-latency networks (such as the public Internet). SP1 allows for more granular control of the maximum number of possible concurrent connections to a domain controller, enabling a greater degree of performance tuning for service providers.


Enhancements to Failover Clustering with Storage


SP1 enables enhanced support for how Failover Clustering works with storage that is not visible for all cluster nodes. In SP1, improvements have been made to the Cluster Validation and multiple Failover Cluster Manager wizards to allow workloads to use disks that are shared between a subset of cluster nodes.

Wednesday, February 2, 2011

An Insight To AD LDS

What Is Active Directory Lightweight Directory Services?

Active Directory Lightweight Directory Services (AD LDS) is an independent mode of Active Directory, minus infrastructure features, that provides directory services for applications.

AD LDS is a mode of Active Directory that provides directory services for applications.

AD LDS provides dedicated directory services for applications. It provides a data store and services for accessing the data store. It uses standard application programming interfaces (APIs) for accessing the application data. The APIs include those of Active Directory, Active Directory Service Interfaces, Lightweight Data Access Protocol, and System.DirectoryServices.
AD LDS operates independently of Active Directory and independently of Active Directory domains or forests. It operates either as a standalone data store, or it operates with replication. Its independence enables local control and autonomy of directory services for specific applications. It also facilitates independent, flexible schemas, and naming contexts.

AD LDS does not have the infrastructure capabilities of Active Directory.

AD LDS does not include directory services for the Windows operating system, so it concentrates on the requirements of specific applications. If AD LDS operates in an Active Directory environment, it can use Active Directory for authentication. Because AD LDS does not support the Messaging Application Programming Interface, Microsoft Exchange cannot use AD LDS.

AD LDS usage complements that of Active Directory.

Although AD LDS and Active Directory can operate concurrently within the same network, AD LDS serves the requirements of specific applications. An instance of AD LDS can be created for a specific application without concern for the dependencies required by Active Directory. Multiple instances of AD LDS, each supporting a separate application, can run on a single AD LDS installation.

Uses of AD LDS

Why Use Active Directory Lightweight Directory Services?

Active Directory Lightweight Directory Services (AD LDS) has both functional benefits and operational benefits for developers who create or adapt directory-enabled applications.

Functional Benefits of AD LDS


Developers using AD LDS have access to the following functional benefits:
  • AD LDS uses the same directory service technology as Active Directory. This means there is a common framework for both the network operating system (NOS) services of Active Directory and the application services of AD LDS.
  • Use of the same directory service technology increases reusability of design and code between Active Directory and AD LDS.
  • AD LDS increases the scalability of directory services by separating the NOS services from the application services.
  • Multiple instances of AD LDS, each tailored to a specific application, can run on a single AD LDS installation.
  • Each AD LDS configuration set has a separate schema, independent of the Active Directory schema.
  • AD LDS can use X.500-style naming contexts, such as O=Fabrikam and C=US.
  • To increase application security, AD LDS can use Windows security principals for authentication and access control.
  • Development for AD LDS can occur on Microsoft Windows XP Professional as well as on the Windows Server 2003 operating systems.

Operational Benefits of AD LDS

Developers using AD LDS have access to the following operational benefits:
  • AD LDS is easy to deploy. Installation and setup are simple.
  • AD LDS can be installed without affecting Active Directory.
  • AD LDS can be reinstalled or restarted without a restart.
  • AD LDS uses the same administrative model as Active Directory.
  • AD LDS increases reliability by separating application directory services from NOS directory services.

Tuesday, February 1, 2011

New Features in Windows Server 2008 R2 - High Availability

High Availability

Providing high availability to mission-critical applications, services, and data is a primary objective of successful IT departments. When services are down or fail, business continuity is interrupted, which can result in significant losses. Windows Server 2008 R2 supports many key high-availability features to help organizations meet their uptime requirements for their critical systems such as Failover Clustering, Network Load Balancing (NLB), Shadow Copy, Windows Server Backup and a new Windows Recovery Environment.

Failover Clustering

Failover clustering can help you build redundancy into your network and eliminate single points of failure. Learn more at our extensive
Failover Clustering site.

Network Load Balancing

 Network Load Balancing (NLB) allows you to distribute TCP/IP requests to multiple systems in order to optimize resource utilization, decrease computing time, and ensure system availability. NLB has been improved in Windows Server 2008 R2, including:

Windows Hardware Error Architecture (WHEA)

Windows Hardware Error Architecture (WHEA) has been enhanced to support Machine Check Architecture (MCA) error recovery, offering the ability to contain and recover from several types of multi-bit ECC errors in memory and cache without operating system or application interruption.  For more details please visit TechNet .

Dynamic Hardware Partitioning

On a dynamically partitionable server, partition units can be added or replaced without restarting the operating system. Windows Server 2008 R2 supports hot-add of processors, memory, and I/O host bridges, and hot-replace of processors and memory on x64-based and Itanium-based systems which support DHP.

Fault Tolerant Hardware

Windows Server 2008 R2 includes support for fault tolerate memory synchronization.  Fault-tolerant servers contain redundant hardware – from fans and power supplies, to processors and RAM, which run in lockstep with each other. If a primary component fails, the secondary component takes over in a process that is seamless to the application running on the server.

Scaling Up

Windows Server 2008 R2 scales to 256 logical processors, for business-critical servers supporting large databases, line of business, and custom applications which sometimes require highly reliable, scalable servers.

Increased Workload Support by Scaling Out

The Network Load Balancing feature in Windows Server 2008 R2 allows you to combine two or more computers into a cluster. You can use NLB to distribute workloads across the cluster nodes in order to support a larger number of simultaneous users. Network Load Balancing feature improvements in Windows Server 2008 R2 include:
  • Improved Support for Applications and Services That Require Persistent Connections
    The IP Stickiness feature in Network Load Balancing allows you to configure longer affinity between client and cluster nodes. By default, Network Load Balancing distributes each request to different nodes in the clusters. Some applications and services, such as a shopping cart application, require that a persistent connection be maintained with a specific cluster node.
  • Improved Health Monitoring and Awareness for Applications and Services
    The Network Load Balancing Management Pack for Windows Server 2008 R2 allows you to monitor the health of applications and services running in Network Load Balancing clusters.
  • Next Generation TCP/IP
    Internet Protocol version 4 (IPv4) and Internet Protocol version 6 (IPv6) are both supported natively by Windows Server 2008 R2. NLB extends full support to IPv6 for all communication while maintaining IPv4 support.
  • Multiple IP Address Support
    Each node in your NLB cluster can now have multiple dedicated IP addresses.
  • Microsoft ISA Server Integration
    Microsoft ISA Server can support your mixed IPv4 and IPv6 infrastructure by allowing multiple IP addresses for each NLB node where IPv4 and IPv6 clients are used. ISA Server can also provide intrusion detection services to protect your NLB cluster.
Learn more about NLB at the HA Windows Server TechCenter.

Shadow Copy, Windows Server Backup and Windows Recovery

Windows Server 2008 R2 contains new and updated features to help you create backups and, if needed, perform a recovery of your operating system, applications, and data. By using these features appropriately and implementing good operational practices, you can improve your organization's ability to recover from damaged or lost data, hardware failures, and disasters.
There are several features in Windows Server 2008 R2 that you can use together to create backups and perform recoveries of your server systems and data. These include the following:
  • Shadow Copies of Shared Folders
    Shadow Copies of Shared Folders provides point-in-time copies of files that are located on shared resources, such as a file server.
  • Windows Server Backup tools
    Windows Server Backup is a feature in Windows Server 2008 R2 that provides a set of wizards and other tools for you to perform basic backup and recovery tasks for your servers running Windows Server 2008 R2. This feature has been redesigned and introduces new technology.
  • Windows Recovery Environment
    Windows Recovery Environment in Windows Server 2008 R2 is a partial version of the operating system and a set of tools that you can use to perform operating system or full server recoveries (along with a backup that you created earlier using Windows Server R2 Backup).
Learn more about the features at the Backup and Recovery Windows Server TechCenter.

Improved Storage Solution Availability

Availability of storage is essential to all mission-critical applications in your organization. Windows Server 2008 R2 includes the following improvements to storage solution availability:
  • Improved Fault Tolerance Between Servers and Storage.When multiple paths exist between servers and storage, Windows Server 2008 R2 can failover to an alternate path if the primary path fails. You can select the failover priority by configuring the load-balancing policies for your storage solution.
  • Improved Recovery from Configuration Errors.An error in the configuration of the storage subsystem can negatively affect storage availability. Windows Server 2008 R2 allows you to take configuration snapshots of the storage subsystem (for example, the iSCSI configuration). In the event of a subsequent configuration failure, you can quickly restore the configuration to a previous version.