Microsoft Windows Server 2022 OS released
Windows Server 2022 to help organizations accelerate application modernization. Some of the new features are
- Advanced multilayer Security
- Hybrid Cloud Integration with Azure
- Containerized Applications
Secured Core brings advanced hardware security to Server and Edge which brings an all-encompassing secured server by requiring hardware and software vendors to follow security best-practices of the OS.
Support for on-prem Windows Server in Azure Automanage. Means you can now do rebootless patching of managed machines with Azure Automanage and Windows Server
Windows Admin Center Version 2103
Windows Admin Center is the new way to manage Windows Server. The old RSAT tools still available
Windows Admin Center 2103 functionality includes:
- Public Preview of Windows Admin Center running in Microsoft Azure
- Automatic Updates for WAC and its Extensions
- Support for Outbound Proxies
- Windows Event Viewer Overhaul
SERVER Core Container
Windows Server Core container images are 40% smaller and startup times to Windows PowerShell are 30-45% faster.
Windows Server Core container images are used for
- scaling apps,
- continuous integration and
- continuous delivery (CI/CD),
- situations where images are pulled without using a Docker image cache or where faster startup times are required.
To reduce Server Core container image sizes by including a smaller set of NGEN images by decreasing image size and maintaining startup performance
NGEN images are a series of precompiled .NET native images that are generated using a tool called Ngen.exe to improve startup performance. NGEN was the culprit for increased image size.
To achieve its goals for the Windows Server Core base image layer, Microsoft made the following changes:
- Included a serviced copy of .NET Framework 4.8.
- Removed all NGEN images, except for mscorlib.dll, System.dll and System.Core.dll (32-bit and 64-bit).
In the .NET Framework runtime image layer, the changes are as follows:
- Included NGEN assemblies used by Windows PowerShell and ASP.NET only.
- Included only NGEN 64-bit assemblies.
Better application compatibility
Windows Server 2019: Brought the optional Server Core ‘App Compatibility’ Feature on Demand. It lets applications run in Server Core that would normally require the desktop experience to be installed.
Windows Server 2022: Allow organizations to run globally scalable apps with virtualized time zones, and even run apps that depend on Active Directory (AD) without joining the container hosts to the domain.
Group Managed Service Accounts for Active Directory support
Containers can’t be joined to AD, but they can still use AD domain accounts to support authentication. A Windows container can run with a group Managed Service Account (gMSA). gMSAs let multiple computers share an identity without needing to know its password.
When a container is configured to run using a gMSA, the container host gets the gMSA password from Active Directory and passes it to the container. The container then uses the gMSA credential when its computer account (SYSTEM) needs to access network resources.
Virtualized time zones
An update in Windows Server 2022 will allow you to set the time zone in container instances using the tzutil command line tool, by setting the virtual registry key, or by specifying the time zone using a Docker/AKS (Azure Kubernetes Service) argument.
Windows Admin Center container tool
The Windows Admin Center (WAC) container extension is now a fully paid-up member of the team and it is available as an out-of-the-box tool. The container tool lets you get Windows and Linux containers up and running quickly. Also another option to migrate legacy Windows Server ASP.NET, WebDeploy, .NET, and MSI applications to the Azure container registry, allowing you deploy apps in Azure and Azure Stack HCI.
Container tool in Windows Admin Center (WAC)
The container tool in WAC lets administrators containerize existing applications by answering a few simple questions. The tool then generates the necessary Docker file with instructions on how to create the container image. Once the Docker file has been generated, you can either run the image locally or push it to an external container registry.
Deploy consistent network policy with Calico across hybrid Kubernetes clusters
Calico is an open-source container networking solution created by Tigera. Kubernetes doesn’t manage network connectivity between containers. Container Networking Interface (CNI) plugins, like Calico, enable full network connectivity between cluster nodes. But full network connectivity between nodes can introduce security risks. Tools like Calico use the Kubernates NetworkPolicy API to apply consistent network policy.
A problem with Windows worker node support in Kubernetes is that Calico, one of the most popular network policy tools, doesn’t support Windows. That is until now. With the release of Calico version 3.16, Windows containers can be deployed and secured in Azure, other cloud providers, and on-premises using the network components in Windows Server and Calico network policy. Furthermore, you can take the containers you deployed in AKS and deploy them in Azure Stack HCI. They will just work, be fully compliant, and can be managed from the cloud using Azure Arc.
If you’re interested in trying the new version of Windows Admin Center, you can call us.
Sales: +91 9986288377