Still confused about what Direct Access really is and what it can mean for your business? Bookmark the DirectAccess FAQ for answers to many of your DirectAccess questions. Learn how your users can be seamlessly and securely connected to your network any time they have an internet connection. Keep your users up to date with security and system health policies using DirectAccess.
Announcing the Forefront TMG Best Practices Analyzer Version 8 ! This announcement discusses new features and functions found in the latest release of the Best Practices Analyzer tool, including URL Filtering, ISP Redundancy, HTTPS Inspection, Anti-Malware protection and much more!
Forefront TMG Case Studies – Many of our customers will wait a while and look to see how a software product performs in the real world before making the decision to adopt a new technology. The same goes for the Microsoft Forefront TMG product, the successor to the popular and proven Microsoft ISA technology. Customers want to know why TMG is being adopted, why they should change from their current ISA platform, and what benefits they will realize when they decide to make the move. A great way to answer those questions is through real world case studies such as those found here where customer testimonials can help illustrate some of the benefits found in Microsoft TMG.
Forefront UAG RTM documentation now live on TechNet
Published 13 January 10 12:15 PM
The complete library of Forefront UAG RTM content is now available on the Library tab of our Forefront UAG TechCenter. This content release is the result of a joint effort coordinated by the UAG User Experience team, in conjunction with the product group, field and support engineers, our community and customers. Together we planned, developed and reviewed the library content, in order to expand and improve the UAG ITPro documentation experience.
To read the whole article, go to the source.
Big news: Microsoft and HP team up to move IT forward
This morning Microsoft and HP announced a three-year, $250 million agreement to jointly deliver a new infrastructure-to-application model, advance cloud computing and generally reduce the costs and complexities of IT.
The press release, executive videos and other information about the agreement are available here.
This is a big commitment on the part of both companies, representing the industry’s most comprehensive technology stack integration to date. There are three main components to the agreement:
· A shared engineering roadmap to ensure strong integration between hardware and software - both on premises and in the cloud.
· Joint solutions to optimize and simplify the deployment, management and health of the datacenter.
· Investment in joint sales, service and channel partner programs
Virtualization is (of course) at the center of the partnership. New solutions based on HP Converged Infrastructure with Microsoft Hyper-V and applications will enable customers to speed up implementation time, reduce unplanned downtime, and lower network/cabling infrastructure costs. And they will help customers deliver service-based infrastructure and the foundation for cloud computing.
Windows Virtualization Team Blog : Big news: Microsoft and HP team up to move IT forward
Microsoft Forefront Server Protection Blog
The official blog of the Forefront Server Protection product team.
Forefront DNSBL… Yeah or Nay?
As you might guess, DNSBL stands for DNS Blocklist. While it’s not a new technology, the usefulness of various DNS/RBL blocklists in fighting spam is indisputably immense. Over the years I’ve heard both the success stories from folks who implemented RBLs in their Exchange server deployments, and I’ve heard some horror stories from the folks who’s IPs were maliciously or mistakenly added to RBLs and the difficulties they had working with blocklist providers to delist their IPs from the RBLs. Another contributing factor to the overall painful experience with RBLs is the fact that you need to configure them with appropriate response codes and delisting logic etc. It’s manual work and as such is very error-prone. Also, some of the blocklist providers will expose their lists for free to small customers only. For example, they will allow only a certain number of queries against the blocklist per day and if the query volume exceeds the allowed (and very small in reality) free amount they will either block the queries (firewall) or ask the customer to receive the blocklists via paid subscription. If you are going to use a free DNS blocklist, you need to make adjustments (lower expectations) regarding the quality of service. Considering these factors, some Exchange admins prefer to stay away from blocklists because they just do not want to go through the headache generally associated with maintaining multiple RBL providers’ configurations.
For more info go to the source
Source - Microsoft Forefront Server Protection Blog : Forefront DNSBL… Yeah or Nay?
Forefront Unified Access Gateway 2010 unleashed
As previewed earlier this month, Forefront Unified Access Gateway (UAG) 2010 has been released to manufacturing. The evaluation software is now available here.
Part of our Business Ready Strategy, Forefront UAG enables organizations to give employees (and trusted partners and vendors) secure remote access to corporate resources. With its focus on application intelligence and granular access control, UAG is an ideal solution all of your remote access needs that provides centralized management and policy control across all users, devices, and network resources.
Building on its predecessor, Intelligent Application Gateway, UAG enables remote access via managed and unmanaged PCs and mobile devices. It integrates a deep understanding of applications, the health state of end user devices, and the user’s identity for greater security and reduced management costs.
While UAG provides a variety of connectivity options, such web publishing and SSL VPN tunnels, one of the best new features is UAG’s support and enhancements for Windows DirectAccess (DA). DA is the future of remote access allowing for seamless, always-on connectivity. Always-on keeps users happy as they are continually productive, but it also keeps administrators content as users are “always-managed.” UAG helps make DA deployments simpler, more extensible and easier to scale
The Solution Accelerator team has released a new guide for UAG which outlines the critical infrastructure design elements that are key to the successful implementation. Use this guide to shorten your Forefront UAG infrastructure planning and deployment time!
· Download the IPD Guide for Microsoft Forefront Unified Access Gateway.
· Visit the Forefront Unified Access Gateway page on TechNet to learn more.
Forefront Team Blog : Forefront Unified Access Gateway 2010 unleashed
Redirection to OWA 2007 Directory in ISA 2004/2006
Introduction
Recently I have seen a fair number of cases where ISA Administrators were trying to redirect connections made to the root OWA Web site to the /owa folder when publishing Exchange 2007 through ISA Server 2004/2006. In these particular cases they were using a documented trick for Exchange 2003 that involves entering a path on the OWA rule that looks like this /exchange\ . The trick is documented here and works quite well for Exchange 2003. The problem is that people believe it should also work for Exchange 2007. When they try this method they end up with a garbled inbox with a lot of red Xs showing up as shown in Figure 1: See more at the SOURCE
Source: Forefront TMG (ISA Server) Product Team Blog : Redirection to OWA 2007 Directory in ISA 2004/2006
Microsoft Hyper-V Server 2008 R2 Release Candidate! (Free Live Migration/HA Anyone?)
Virtualization Nation,
The Virtualization team is pleased to announce the availability of the Microsoft Hyper-V Server 2008 R2 Release Candidate for download. Hyper-V Server 2008 R2, our free standalone hypervisor, represents our continued commitment to providing high performance, hypervisor based virtualization for everyone, especially small and mid-market customers. This release underscores our customer focus by adding key new capabilities such as Live Migration and High Availability (and more.). The Microsoft Hyper-V Server 2008 Release Candidate is available here:
http://www.microsoft.com/hyper-v-server/en/us/default.aspx
Free Live Migration and High Availability? Really?
A couple weeks ago, Zane Adam first blogged the news that Hyper-V Server 2008 R2 would include Live Migration and High Availability at no charge. The response from our customers was "AWESOME!! When is the final release?" :-) Understandably, the phone's been ringing off the hook, my inbox has been on overdrive and some folks in the blogosphere have been trying to imply <cough, cough, FUD> that there are some strings attached. So, I wanted to take a moment to provide more details about the upcoming Hyper-V Server 2008 R2 release and free Live Migration & High Availability.
Hyper-V Server 2008 R2 Availability
When Hyper-V Server 2008 R2 goes gold and is released to manufacturing (RTM) the bits will be available as a free download here:
http://www.microsoft.com/hyper-v-server/en/us/default.aspx
Hyper-V Server 2008 R2 will be available worldwide in 11 languages.
Microsoft Hyper-V Server 2008 R2 includes Live Migration and High Availability. Period. No Strings Attached.
Live Migration is a great solution for planned downtime such as servicing the underlying hardware like adding more memory, storage or applying a BIOS update. Simply Live Migrate the virtual machines to another server (without downtime) shutdown the physical server and perform the maintenance. When the maintenance is complete, Live Migrate the virtual machines back and your done.
High Availability is a great solution for unplanned downtime. For example, suppose someone accidentally unplugs the wrong power cable on a server. The virtual machine on the server that just unexpectedly went down will automatically restart on another node without any user intervention.
Hyper-V Server 2008 R2 includes both these capabilities as well as our new Cluster Shared Volumes (CSV) capabilities to simplify storage management and run multiple virtual machines from a single LUN.
Managing Hyper-V Server 2008 R2
Hyper-V Server 2008 R2 Live Migration and High Availability can be managed in a few different ways:
- Failover Cluster Manager/Hyper-V Manager from a Windows Server 2008 R2 Server OR,
- System Center Virtual Machine Manager 2008 R2 OR,
- Using the FREELY (there's that word again) available Failover Cluster Manager/Hyper-V Manager for Windows 7.
So, as you can see, there are a few different options depending on your needs and option three gives you Live Migration and High Availability at zero cost.
BTW: If you decide to go with option #2 System Center Virtual Machine Manager 2008 R2, you certainly can do a lot more such as:
- Heterogeneous Virtualization Management
- Rich PowerShell Support for Datacenter Automation
- Maintenance mode
- Virtual Machine Library Support
- Templates, Clones, Sysprep Integration
- Performance Resource Optimization (PRO)
.and a lot, lot more. But, I digress.
$$$ Comparison
Let's take a look at a few cluster configurations and compare costs for Live Migration and High Availability functionality.
You may be wondering, "Did he choose the most expensive VMware configuration?" On the contrary, I chose the least expensiveconfiguration ($2245 per processor) that offers both Live Migration and High Availability.
You may be wondering, "Why isn't System Center management represented here?"
In this example, I simply wanted to compare the lowest cost for Live Migration and High Availability functionality from Microsoft and VMware with some real world configurations that a small/medium business may use. I will post a follow-up blog that adds management for small/medium businesses. As for enterprise customers, they typically have larger server farms with more sophisticated management requirements. That's another blog for another time.
You may also be wondering, "Why isn't the cost of guest operating systems included here?"
Simple, neither Microsoft Hyper-V Server 2008 R2 nor VMware include any guest operating system licenses so if you need to run 4 copies of Windows Server, you need to purchase the appropriate license. That cost is the same whether you're running Hyper-V Server 2008 R2 or VMware so I didn't bother to include it.
While VMware claims to be more affordable the facts are clear and the value of Microsoft Hyper-V Server 2008 R2 is undeniable. Microsoft offers exceptional value especially for small and mid-market customers who have told us for years how they would like Live Migration/High Availability functionality and simply can't afford it.
Those days are over.
At this point you may be thinking we're crazy to provide virtualization live migration and high availability at no cost. Well, I wish we could say we were first, but the folks at Xen have been providing free Live Migration and HA for a few months. In fact, the only one still charging for Live Migration and High Availability ($2245+ per socket) is VMware.
Now that's crazy.
Jeff Woolsey
Principal Group Program Manager
Windows Server, Hyper-VPublished 06 May 09 12:07 by WSV_GUY
Server Virtualization: Top Five Security Concerns
From VM sprawl to compliance, here's a look at the top security issues worrying IT about virtualized servers. The bad news: Despite improved IT understanding regarding virtualization management, many of the security holes are still ones that companies create themselves.
By Kevin Fogarty
Wed, May 13, 2009 — CIO — In surveys of senior-level IT managers, security is consistently one of the top five concerns, along, specifically, with security related to the hot technology of the moment. Most recently those worries have included social-networking technologies such as Twitter and Facebook and other outlets through which employees could turn loose company confidential data. But the security of virtual servers and virtualized infrastructures also rank near the top of the list—and rightly so, according to analysts.
Continued at the source - Server Virtualization: Top Five Security Concerns - CIO.com - Business Technology Leadership
