VMM | Aidan Finn, IT Pro

Microsoft News – 28 September 2015

Wow, the year is flying by fast. There’s a bunch of stuff to read here. Microsoft has stepped up the amount of information being released on WS2016 Hyper-V (and related) features. EMS is growing in terms of features and functionality. And Azure IaaS continues to release lots of new features.

Hyper-V

The Mysterious Case of Infrequent Network Connectivity Issues on 2 Hyper-V VMs Out of 40 Guests: Some PowerShell troubleshooting.
Storage Migration “Operation not allow for VM because Hyper-V State is yet to be initialized from Virtual Machine Configuration” (0x80070015): A fix or workaround to solve this problem.
Missing Hyper-V VMs on Windows 10 – Build 10547: A bug in this insider build hides non v5.0 VMs.
Hyper-converged with Windows Server 2016: Run your storage (Storage Spaces Direct, not SOFS) and Hyper-V cluster on the same hardware.
Configuring site awareness for your multi-active disaggregated datacenters: Solving one of the biggest issues with using Failover Clustering as a DR solution.
Introduction to Linux and FreeBSD on Hyper-V: The Linux Integration Services (LIS). Note that LIS 4.0 can be installed on some distros that have previous versions of LIS built in.
Running Hyper-V on Nano in Windows Server 2016 TP3: For you large scale customers that can afford to lose a host.
Running Nano from Windows Server 2016 TP3 on Hyper-V: Teeny tiny VMs for running born-in-the-cloud services.
Do you know how fast your disks are? I’ve seen expensive customer deployments with over-specced hosts and sh1te SANs where one ordinary VM could effectively shut down the cluster because the SAN couldn’t keep up.
Virtual Machine Storage Resiliency in Windows Server 2016: A very nice resiliency feature from the Hyper-V storage folks.

Windows Client

Windows 10 servicing and deployment guidance now available: Learn about Windows as a Service.
Introduction to Windows 10 servicing: How enterprises can keep devices current with the latest feature upgrades, make better use of Windows Update, and what the new servicing options mean for support lifecycles.
Windows 10 – Reducing the disk footprint: how to deploy Windows 10 with the new smaller installation footprint – great for machines with smaller storage (tablets and ultrabooks)

Azure

Azure Backup – Announcing general availability of backup for Azure IaaS VMs: This vital service for VMs has gone GA with a number of improvements.
Azure Backup of IaaS VMs Generally Available: A post I wrote for Petri.com.
Remote Desktop Services DR Solution using ASR – Guidance: A best practices guide from Microsoft.
SharePoint DR Solution using ASR – Guidance: A best practices guide from Microsoft.
Microsoft Exchange DR Solution using ASR – Guidance: A best practices guide from Microsoft.
A VM that Azure Site Recovery helps protect goes into a resynchronization state: Each VHD must be 1023 GB or less.
Source Control Integration in Azure Automation: Manage your automations scripts.
Monitor your Azure RemoteApp environment with OpInsight – Part 1: A nice hack.
Monitor your Azure RemoteApp environment with OpInsight – Part 2: Continuing the hack.
Microsoft showcases the Azure Cloud Switch (ACS): Linux? Linux! Linux?! Yes; Linux.
September update – Azure Preview Portal improvements: Ibiza continues to evolve in the very long preview. This is starting to feel like the GMail beta. There are some good improvements here, but the lateral scale of the UI needs to be chopped by 80%, or we should get an 80″ Surface Hub for free with every Azure subscription.
Use Azure as Virtual DR Site for VMware and Physical Servers: A post I wrote for Petri.com.
August updates to Azure RemoteApp: Some updates.
How does Azure RemoteApp save user data and settings? I really do not like this solution – I prefer to use a virtual file server with domain membership on the VNet because I have some measure of control.
ADFS Publishing via Azure Traffic Manager : Ah yeah, geo-redundant ADFS.

System Center

Near Real-time Performance Data Collection in OMS: Could this be the start of the replacement of SCOM with a cloud service?
Deploy Software Defined Networks using Virtual Machine Manager : A document based on TP3 of System Center 2016.
2nd Edition of Microsoft System Center: Building a Virtualized Network Solution now available and free to download: Featuring Irish MVP, Damian Flynn.
How to Deploy Host Guardian Service using Service Templates in VMM Tech Preview 3: The new WS2016 Hyper-V security feature.

Office 365

The New Office is Here: In case you missed it, Office 2016 launched this week. O365 customers will get is based on which servicing branch they are in. You might not see it for months if you are in the Current Branch for Business (Pro Plus plans default to this).
What’s new in Office 2016: Why should you upgrade, and what should you look for if you have upgrade rights?
Admins—get ready for Office 2016, rollout begins September 22: I’d tweeted several months ago that I’d heard September was the month, so I am not surprised at all.
Announcing the Office 365 Service Trust Portal: STP is a service feature in Office 365 designed to provide deeper information on how Microsoft manages security, compliance and privacy.
Office 365 Import Service—migration to SharePoint Online and OneDrive for Business just became easier: An out-of-band transfer using hard disks, similar to the Azure import service.
Introducing Office 365 Planner: A “simple and highly visual way to organize teamwork”.
Step-By-Step – Setting up AD FS and Enabling Single Sign-On to Office 365: Set up single sign-on.
How to use your Office 365 subscription with Azure RemoteApp: There’s a new “with O365” template that you can use now. Use your ProPlus installation rights in Azure’s RDS.

EMS

Coming soon – New features for managing Windows 10 and iOS devices: New features between September 25 and October 5.
Day Zero Support for iOS 9 with Intune: Manage your iPhones and iPads.
Azure Active Directory B2B collaboration: Inter-company federation via Azure AD.
Azure AD Premium Dashboard is in preview: Microsoft has turned on the Azure Active Directory Premium Dashboard – available in North America only at this point.
Azure AD B2C and B2B are now in Public Preview:
Learn all about the Azure AD B2B Collaboration Preview: Learn more about the Biz-2-Biz preview.

Security

Tracking a Bluetooth Skimmer Gang in Mexico: A whole new way of skimming your card at the ATM, thanks to the ATM engineers.
Tracking Bluetooth Skimmers in Mexico, Part II: More on this story.
Who’s Behind Bluetooth Skimming in Mexico? A very professional criminal operation.

Miscellaneous

Microsoft heads back to court on September 9th: A post I wrote about the Irish datacenter and US warrant appeal.

Technorati Tags: Microsoft,Hyper-V,Virtualisation,Failover Clustering,Storage,Storage Spaces,Linux,Windows 10,Azure,Cloud,Cloud Computing,Hybrid Cloud,Backup,Remote Desktop Services,DR,Active Directory,System Center,VMM,Security,Office,Office 365,Licensing,EMS,Intune

A Roundup of WS2016 TPv3 Links

I thought that I’d aggregate a bunch of links related to new things in the release of Windows Server 2016 Technical Preview 3 (TP3). I think this is pretty complete for Hyper-V folks – as you can see, there’s a lot of stuff in the networking stack.

FYI: it looks like Network Controller will require the DataCenter edition by RTM – it does in TPv3. And our feedback on offering the full installation during setup has forced a reversal.

Hyper-V

Automatic exclusions for Windows Server Antimalware: The built in “Windows Defender” has automatic scanning exclusions for Hyper-V and CSV.

Administration

Remote Server Administration Tools for Windows 10: Remote Server Administration Tools for Windows 10 lets IT administrators manage Windows Server Technical Preview from a remote computer running the full release version of Windows 10.
Customer Experience Guides for Windows Server 2016 Technical Preview 3: Try out the new technology.

Containers

Microsoft and Mesosphere partner to bring Mesos’ container orchestration to Windows Server: Cross-platform container orchestration coming to Windows Server.
Windows Containers: The what’s and how’s on implementing containers from the TechNet Library.
Introducing the Technical Preview of Docker Engine for Windows Server 2016: A blog post by Docker.

Networking

Deploy Software Defined Networks using scripts: For below.
Software Defined Network scripts for Windows Server 2016 Technical Preview: Use these scripts to deploy Software Defined Networks on Windows Server 2016 Technical Preview. The infrastructure includes a network controller, an SLB/MUX, virtual networks, and associated ACLs.
Datacenter Firewall Overview: An important network function virtualization (NFV).
Network Function Virtualization Overview: NFVs convert traditional physical appliances to software-based elements in the Network Controller-managed fabric.
Remote Direct Memory Access (RDMA) and Switch Embedded Teaming (SET): A new way to team host NICs, converged RDMA (Converged Network Interface Card (NIC)), and RDMA to vNICs in the management OS (without Live Migration support yet).
GRE Tunneling in Windows Server Technical Preview: Linking tenant physical and on-premises sites with hosted virtual networks.
What’s New in Hyper-V Network Virtualization in Windows Server Technical Preview: VXLAN support and Software Load Balancer with NAT.
Network Controller: Network fabric management coming from Azure to Windows Server.

Storage

SMB 3.1.1 Pre-authentication integrity in Windows 10: Improving protection from a man-in-the-middle (MITM) attacker in tampering with SMB2’s connection establishment and authentication messages.
Data Deduplication in Windows Server Technical Preview 3: Bigger files, bigger volumes, built-in support for backup volumes.
Storage Quality of Service in Windows Server Technical Preview: Storage QoS will support Hyper-V with SOFS AND it will also support Hyper-V with CSV (no SOFS).

Nano Server

Getting Started with Nano Server: Easier setup and now has an emergency console.

Failover Clustering

Site-aware Failover Clusters in Windows Server 2016: Easier location and predictable movement of resources in stretch clusters.
Workgroup and Multi-domain clusters in Windows Server 2016: This is really something for the SQL folks that don’t require AD (subset of a subset). Note that Hyper-V is supported – but you only get Quick Migration because Live Migration requires AD.

Remote Desktop Services

Announcing the MultiPoint Services Role in Window Server vNext Technical Preview: MultiPoint is now a role in Windows Server, and offers a great solution in education and SMEs.
Remote Desktop Services in Windows Server 2016 Technical Preview 3: A summary of improvements in a blog post.

System Center

Convert Standard Switch to Logical Switch in System Center 2016 TP3 VMM: I wonder how many VMM veterans will applaud this?
What’s New in VMM in System Center Technical Preview: Note Guarded Hosts and Shielded VMs and cool improvements in storage.
What’s new in DPM in System Center Technical Preview: Looks like DPM is keeping up with the improvements in Hyper-V … that’s a first!!!! Seriously!

Technorati Tags: Windows Server 2016,Hyper-V,Virtualisation,Networking,Storage,Security,Failover Clustering,System Center,VMM,DPM

Microsoft News – 25-May-2015

It’s taken me nearly all day to fast-read through this lot. Here’s a dump of info from Build, Ignite, and since Ignite. Have a nice weekend!

Hyper-V

What’s New in Windows Server 2016 Hyper-V: A post I wrote for Petri.com
Linux Integration Services 4.0 Announcement: As part of this release Microsoft has expanded the access to Hyper-V features and performance to the latest Red Hat Enterprise Linux, CentOS, and Oracle Linux versions.
Linux Integration Services Version 4.0 for Hyper-V: New version of LIS supported Linux distros.
Windows Server 2016 Failover Cluster Troubleshooting Enhancements – Active Dump: This enhancement has significant advantages when you are troubleshooting and getting memory.dmp files from servers running Hyper-V
What’s New in Windows Server Hyper-V: The official statement from Microsoft.
PowerShell Direct – Running PowerShell inside a virtual machine from the Hyper-V host: I wish I had this feature for my WS2012 R2 demos at Ignite.

Windows Server

How to Install Windows Server 2016 Nano in a VM: How to install Nano, the refactored minimal install option for Windows Server designed for cloud apps and micro services.
How Many CSVs Should a Scale-Out File Server Have? A post I wrote for Petri.com
Local Administrator Password Solution (LAPS): The “Local Administrator Password Solution” (LAPS) provides management of local account passwords of domain joined computers. Passwords are stored in Active Directory (AD) and protected by ACL, so only eligible users can read it or request its reset.
Security Thoughts: Microsoft Local Administrator Password Solution (LAPS, KB3062591): A step by step guide.
Storage Spaces Direct: Get the story straight from the PM of this new storage architecture, S2D.
Next-generation storage for the software-defined datacenter: Hear from the boss of the PM of S2D.
Windows Server 2016 Failover Cluster Troubleshooting Enhancements – Cluster Log: This log is valuable for Microsoft’s support as well as those out there who have expertise at troubleshooting failover clusters.
What’s new in SMB 3.1.1 in the Windows Server 2016 Technical Preview 2: In this blog post, you’ll see what changed with the new version of SMB that comes with the Windows 10 Insider Preview released in late April 2015 and the Windows Server 2016 Technical Preview 2 released in early May 2015.
How to display ipconfig on Nano Server every time it boots: At least you’d have some indication that the thing has powered up!
Data Deduplication in Windows Server Technical Preview 2: See what’s currently in the works for WS2016.
What’s new in Windows Server 2016 Technical Preview 2: A subset of features.

Windows Client

Windows 10 and Azure Active Directory – Embracing the Cloud: Since Windows 10’s capabilities to leverage AAD are now starting to appear in the Windows 10 preview builds, this is a great time to explore them in more detail
Azure AD on Windows 10 Personal Devices: How to use Windows 10 with both a personal and a work account at the same time.
Windows 10 Security: Microsoft Passport and Virtual Secure Mode – the latter is based on Hyper-V Shielded VM technology.

System Center

Announcing the availability of System Center 2012 R2 Configuration Manager SP1 and System Center 2012 Configuration Manager SP2: Now generally available and can be downloaded on the Microsoft Evaluation Center. These service packs deliver full compatibility with existing features for Windows 10 deployment, upgrade, and management. Also included in these service packs are new hybrid features for customers using System Center Configuration Manager integrated with Microsoft Intune to manage devices.
Microsoft System Center Operations Manager Management Pack for Windows Server Storage Spaces 2012 R2: Finally!
Windows Azure Pack Websites V2 Update Rollup 6: This release introduces a new MMC application that can be used for install, upgrade and configuration.
Announcing the Microsoft Azure Stack: The new cloud solution from Microsoft, replacing Widows Azure Pack.
Azure Stack – What’s new and what’s changed: A nice description of Azure Stack.
Update Rollup 6 for System Center 2012 R2 Virtual Machine Manager is now available: And allegedly has bugs – I’m stunned!

Azure

Disaster Recovery to Azure enhanced, and we’re listening: Support for Generation 2 VMs, vSphere, physical servers, and more changes coming.
ASR Now Supports NetApp Private Storage for Microsoft Azure: Replicate on-premises NetApp SAN to an NetApp Private Storage appliance in Azure, and orchestrate it using Azure Site Recovery.
New features and innovation: Azure Resource Manager allows deployment of IaaS from JSON templates
Microsoft Azure Marketplace – new features and enhancements: Making the store bigger and more interactive
Introducing App Service Environment: A new scalable and secure environment for Web Apps, spanning the worlds of IaaS and PaaS.
IaaS Just Got Easier. Again: I don’t know about “easier” but JSON templates should be quicker – once you learn this language and syntax.
Build 2015 Azure Storage Announcements! Premium Storage is GA. Azure Files has support.
Azure shines bright at Ignite! A host of announcements from Ignite, including Azure DNS.
Application-Aware Availability Solutions with Azure Site Recovery: Azure Site Recovery solutions have been tested and are now supported for SharePoint, Dynamics AX, Exchange 2013 (single server – AF), Remote Desktop Services, SQL Server (non-replica/cluster members – AF), IIS applications and System Center family like Operations Manager.
Azure Automation – New Graphical and Textual Authoring Features: Revealing Automation through the Ibiza Preview Portal.
Azure Site Recovery at Ignite 2015: The breakout sessions that featured ASR.
Avoid Running Out of Azure Open Credits: A post by me on Petri.com
5 Things That Would Improve Microsoft Azure: A post by me on Petri.com
System Center Orchestrator Migration Toolkit: A collection of tools for migrating integration packs, standard activities, and runbooks from System Center 2012 – Orchestrator to Azure Automation and Service Management Automation.
Azure Cloud App Discovery GA and our new Privileged Identity Management service: How Azure AD can help you and your organization detect and manage risk related to access to cloud resources.
RDP to a Linux Server in Azure: Very handy guide on how to get onto GUI of a Linux VM.
April updates to Azure RemoteApp: Plenty of updates here, some which made the service much easier to use.

Office 365

Modern productivity–Office news at Ignite: What the Office group had to launch at the conference.
Manage change and stay informed in Office 365: Microsoft is adding a new “Select people” option to First Release.

Intune

Announcing support for Windows 10 management with Microsoft Intune: Microsoft announced that Intune now supports the management of Windows 10. All existing Intune features for managing Windows 8.1 and Windows Phone 8.1 will work for Windows 10.
Announcing the Mobile Device Management Design Considerations Guide: If you’re an IT Architect or IT Professional and you need to design a mobile device management (MDM) solution for your organization, there are many questions that you have to answer prior to recommending the best solution for the problem that you are trying to solve. Microsoft has many new options available to manage mobile devices that can match your business and technical requirements.
Mobile Application Distribution Capabilities in Microsoft Intune: Microsoft Intune allows you to upload and deploy mobile applications to iOS, Android, Windows, and Windows Phone devices. In this post, Microsoft will show you how to publish iOS apps, select the users who can download them, and also show you how people in your organization can download these apps on their iOS devices.
Microsoft Intune App Wrapping Tool for Android: Use the Microsoft Intune App Wrapping Tool for Android to modify the behavior of your existing line-of-business (LOB) Android apps. You will then be able to manage certain app features using Intune without requiring code changes to the original application.

Licensing

Disaster Recovery Rights and License Mobility: Fail-over server rights do not apply in the case of software moved to shared third party servers under License Mobility through Software Assurance.

Miscellaneous

Microsoft Ignite 2015 Keynote Highlights for IT Pros: A post I wrote for Petri.com
Getting Started with Microsoft Operations Management Suite: I don’t know if this falls under Azure or not!
Populating machines in Microsoft Operations Management Suite: The next step after getting started.
Protecting your datacenter and cloud from emerging threats: This level 100 post covers a number of areas.

Technorati Tags: Windows Server 2012 R2,Windows Server 2016,Hyper-V,Virtualisation,Storage,Linux,Storage Spaces,PowerShell,Scripting,Deployment,Security,Networking,Windows 10,Active Directory,Azure,Hybrid Cloud,Cloud,Cloud Computing,System Center,Configuration Manager,VMM,Azure Stack,DR,Office 365,Intune,Licensing

Ignite 2015 – Storage Spaces Direct (S2D)

This session, presented by Claus Joergensen, Michael Gray, and Hector Linares can be found on Channel 9:

Current WS2012 R2 Scale-Out File Server

This design is known as converged (not hyper-converged). There are two tiers:

Compute tier: Hyper-V hosts that are connected to storage by SMB 3.0 networking. Virtual machine files are stored on the SOFS (storage tier) via file shares.
Storage tier: A transparent failover cluster that is SAS-attached to shared JBODs. The JBODs are configured with Storage Spaces. The Storage Spaces virtual disks are configured as CSVs, and the file shares that are used by the compute tier are kept on these CSVs.

The storage tier or SOFS has two layers:

The transparent failover cluster nodes
The SAS-attached shared JBODs that each SOFS node is (preferably) direct-connected to

System Center is an optional management layer.

Introducing Storage Spaces Direct (S2D)

Note: you might hear/see/read the term SSDi (there’s an example in one of the demos in the video). This was an old abbreviation. The correct abbreviation for Storage Spaces Direct is S2D.

The focus of this talk is the storage tier. S2D collapses this tier so that there is no need for a SAS layer. Note, though, that the old SOFS design continues and has scenarios where it is best. S2D is not a replacement – it is another design option.

S2D can be used to store VM files on it. It is made of servers (4 or more) that have internal or DAS disks. There are no shared JBODs. Data is mirrored across each node in the S2D cluster, therefore the virtual disks/CSVs are mirrored across each node in the S2D cluster.

S2D introduces support for new disks (with SAS disks still being supported):

Low cost flash with SATA SSDs
Better flash performance with NVMe SSDs

Other features:

Simple deployment – no eternal enclosures or SAS
Simpler hardware requirements – servers + network, and no SAS/MPIO, and no persistent reservations and all that mess
Easy to expand – just add more nodes, and get storage rebalancing
More scalability – at the cost of more CPUs and Windows licensing

S2D Deployment Choice

You have two options for deploying S2D. Windows Server 2016 will introduce a hyper-converged design – yes I know; Microsoft talked down hyper-convergence in the past. Say bye-bye to Nutanix. You can have:

Hyper-converged: Where there are 4+ nodes with DAS disks, and this is both the compute and storage tier. There is no other tier, no SAS, nothing, just these 4+ servers in one cluster, each sharing the storage and compute functions with data mirrored across each node. Simple to deploy and MSFT thinks this is a sweet spot for SME deployments.
Converged (aka Private Cloud Storage): The S2D SOFS is a separate tier to the compute tier. There are a set of Hyper-V hosts that connect to the S2D SOFS via SMB 3.0. There is separate scaling between the compute and storage tiers, making it more suitable for larger deployments.

Hyper-convergence is being tested now and will be offered in a future release of WS2016.

Choosing Between Shared JBODs and DAS

As I said, shared JBOD SOFS continues as a deployment option. In other words, an investment in WS2012 R2 SOFS is still good and support is continued. Node that shared JBODs offer support for dual parity virtual disks (for archive data only – never virtual machines).

S2D adds support for the cheapest of disks and the fastest of disks.

Under The Covers

This is a conceptual, not an architectural, diagram.

A software storage bus replaces the SAS shared infrastructure using software over an Ethernet channel. This channel spans the entire S2D cluster using SMB 3.0 and SMB Direct – RDMA offers low latency and low CPU impact.

On top of this bus that spans the cluster, you can create a Storage Spaces pool, from which you create resilient virtual disks. The virtual disk doesn’t know that it’s running on DAS instead of shared SAS JBOD thanks to the abstraction of the bus.

File systems are put on top of the virtual disk, and this is where we get the active/active CSVs. The file system of choice for S2D is ReFS. This is the first time that ReFS is the primary file system choice.

Depending on your design, you either run the SOFS role on the S2D cluster (converged) or you run Hyper-V virtual machines on the S2D cluster (hyper-converged).

System Center is an optional management layer.

Data Placement

Data is stored in the form of extents. Each extent is 1 GB in size so a 100 GB virtual disk is made up of 100 extents. Below is an S2D cluster of 5 nodes. Note that extents are stored evenly across the S2D cluster. We get resiliency by spreading data across each node’s DAS disks. With 3-way mirroring, each extent is stored on 3 nodes. If one node goes down, we still have 2 copies, from which data can be restored onto a different 3rd node.

Note: 2-way mirroring would keep extents on 2 nodes instead of 3.

Extent placement is rebalanced automatically:

When a node fails
The S2D cluster is expanded

How we get scale-out and resiliency:

Scale-Out: Spreading extents across nodes for increased capacity.
Resiliency: Storing duplicate extents across different nodes for fault tolerance.

This is why we need good networking for S2D: RDMA. Forget your 1 Gbps networks for S2D.

Scalability

Scaling to large pools: Currently we can have 80 disks in a pool. in TPv2 we can go to 240 disks but this could be much higher.
The interconnect is SMB 3.0 over RDMA networking for low latency and CPU utilization
Simple expansion: you just add a node, expand the pool, and the extents are rebalanced for capacity … extents move from the most filled nodes to the most available nodes. This is a transparent background task that is lower priority than normal IOs.

You can also remove a system: rebalance it, and shrink extents down to fewer nodes.

Scale for TPv2:

Minimum of 4 servers
Maximum of 12 servers
Maximum of 240 disks in a single pool

Availability

S2D is fault tolerance to disk enclosure failure and server failure. It is resilient to 2 servers failing and cluster partitioning. The result should be uninterrupted data access.

Each S2D server is treated as the fault domain by default. There is fault domain data placement, repair and rebalancing – means that there is no data loss by losing a server. Data is always placed and rebalanced to recognize the fault domains, i.e. extents are never stored in just a single fault domain.

If there is a disk failure, there is automatic repair to the remaining disks. The data is automatically rebalanced when the disk is replaced – not a feature of shared JBOD SOFS.

If there is a temporary server outage then there is a less disruptive automatic data resync when it comes back online in the S2D cluster.

When there is a permanent server failure, the repair is controlled by the admin – the less disruptive temporary outage is more likely so you don’t want rebalancing happening then. In the event of a real permanent server loss, you can perform a repair manually. Ideally though, the original machine will come back online after a h/w or s/w repair and it can be resynced automatically.

ReFS – Data Integrity

Note that S2D uses ReFS (pronounced as Ree-F-S) as the file system of choice because of scale, integrity and resiliency:

Metadata checksums protect all file system metadata
User data checksums protect file data
Checksum verification occurs on every read of checksum-protected data and during periodic background scrubbing
Healing of detected corruption occurs as soon as it is detected. Healthy version is retrieved from a duplicate extent in Storage Spaces, if available; ReFS uses the healthy version to get Storage Spaces to repair the corruption.

No need for chkdsk. There is no disruptive offline scanning in ReFS:

The above “repair on failed checksum during read” process.
Online repair: kind of like CHKDSK but online
Backups of critical metadata are kept automatically on the same volume. If the above repair process fails then these backups are used. So you get the protection of extent duplication or parity from Storage Spaces and you get critical metadata backups on the volume.

ReFS – Speed and Efficiency

Efficient VM checkpoints and backup:

VHD/X checkpoints (used in file-based backup) are cleaned up without physical data copies. The merge is a metadata operation. This reduces disk IO and increases speed. (this is clever stuff that should vastly improve the disk performance of backups).
Reduces the impact of checkpoint-cleanup on foreground workloads. Note that this will have a positive impact on other things too, such as Hyper-V Replica.

Accelerated Fixed VHD/X Creation:

Fixed files zero out with just a metadata operation. This is similar to how ODX works on some SANs
Much faster fixed file creation
Quicker deployment of new VMs/disks

Yay! I wonder how many hours of my life I could take back with this feature?

Dynamic VHDX Expansion

The impact of the incremental extension/zeroing out of dynamic VHD/X expansion is eliminated too with a similar metadata operation.
Reduces the impact too on foreground workloads

Demo 1:

2 identical VMs, one on NTFS and one on ReFS. Both have 8 GB checkpoints. Deletes the checkpoint from the ReFS VM – The merge takes about 1-2 seconds with barely any metrics increase in PerfMon (incredible improvement). Does the same on the NTFS VM and … PerfMon shows way more activity on the disk and the process will take about 3 minutes.

Demo 2:

Next he creates 15 GB fixed VHDX files on two shares: one on NTFS and one on ReFS. ReFS file is created in less than a second while the previous NTFS merge demo is still going on. The NTFS file will take …. quite a while.

Demo 3:

Disk Manager open on one S2D node: 20 SATA disks + 4 Samsung NVMe disks. The S2D cluster has 5 nodes. There is a total of 20 NVMe devices in the single pool – a nice tidy aggregation of PCIe capacity. The 5 node is new so no rebalancing has been done.

Lots of VMs running from a different tier of compute. Each VM is running DiskSpd to stress the storage. But distributed Storage QoS is limiting the VMs to 100 IOPs each.

Optimize-StoragePool –FriendlyName SSDi is run to bring the 5th node into the cluster (called SSDi) online by rebalancing. Extents are remapped to the 5th node. The system goes full bore to maximize IOPS – but note that “user” operations take precedence and the rebalancing IOPS are lower priority.

Storage Management in the Private Cloud

Management is provided by SCOM and SCVMM. This content is focused on S2D, but the management tools also work with other storage options:

SOFS with shared JBOD
SOFS with SAN
SAN

Roles:

VMM: bare-metal provisioning, configuration, and LUN/share provisioning
SCOM: Monitoring and alerting
Azure Site Recovery (ASR) and Storage Replica: Workload failover

Note: You can also use Hyper- Replica with/without ASR.

Demo:

He starts the process of bare-metal provisioning a SOFS cluster from VMM – consistent with the Hyper-V host deployment process. This wizard offers support for DAS or shared JBOD/SAN; this affects S2D deployment and prevents unwanted deployment of MPIO. You can configure existing servers or deploy a physical computer profile to do a bare-metal deployment via BMCs in the targeted physical servers. After this is complete, you can create/manage pools in VMM.

File server nodes can be added from existing machines or bare-metal deployment. The disks of the new server can be added to the clustered Storage Spaces pool. Pools can be tiered (classified). Once a pool is created, you can create a file share – this provisions the virtual disk, configures CSV, and sets up the file system for you – lots of automation under the covers. The wizard in VMM 2016 includes resiliency and tiering.

Monitoring

Right now, SCOM must do all the work – gathering a data from a wide variety of locations and determining health rollups. There’s a lot of management pack work there that is very hardware dependent and limits extensibility.

Microsoft reimagined monitoring by pushing the logic back into the storage system. The storage system determines health of the storage system. Three objects are reported to monitoring (PowerShell, SCOM or 3rd party, consumable through SMAPI):

The storage system: including node or disk fails
Volumes
File shares

Alerts will be remediated automatically where possible. The system automatically detects the change of health state from error to healthy. Updates to external monitoring takes seconds. Alerts from the system include:

Urgency
The recommended remediation action

Demo:

One of the cluster nodes is shut down. SCOM reports that a node is missing – there isn’t additional noise about enclosures, disks, etc. The subsystem abstracts that by reporting the higher error – that the server is down. The severity is warning because the pool is still online via the rest of the S2D cluster. The priority is high because this server must be brought back online. The server is restarted, and the alert remediates automatically.

Hardware Platforms

Storage Spaces/JBODs has proven that you cannot use just any hardware. In my experience, DataON stuff (JBOD, CiB, HGST SSD and Seagate HDD) is reliable. On the other hand, SSDs by SanDisk are shite, and I’ve had many reports of issues with Intel and Quanta Storage Spaces systems.

There will be prescriptive configurations though partnerships, with defined platforms, components, and configuration. This is a work in progress. You can experiment with Generation 2 VMs.

S2D Development Partners

I really hope that we don’t see OEMs creating “bundles” like they did for pre-W2008 clustering that cost more than the sum of the otherwise-unsupported individual components. Heck, who am I kidding – of course they will do that!!! That would be the kiss of death for S2D.

FAQ

The Importance of RDMA

Demo Video:

They have two systems connected to a 4 node S2D cluster, with a sum total of 1.2 million 4K IOPS with below 1 millisecond latency, thanks to (affordable) SATA SSDs and Mellanox ConnectX-3 RDMA networking (2 x 40 Gbps ports per client). They remove RDMA from each client system. IOPS is halved and latency increases to around 2 milliseconds. RDMA is what enables low latency and low CPU access to the potential of the SSD capacity of the storage tier.

Hint: the savings in physical storage by using S2D probably paid for the networking and more.

Questions from the Audience

DPM does not yet support backing up VMs that are stored on ReFS.
You do not do SMB 3.0 loopback for hyper-convergence. SMB 3.0 is not used … Hyper-V just stores the VMs on the local CSVs of the S2D cluster.
There is still SMB redirecting in the converged scenario, A CSV is owned by a node, with CSV ownership balancing. When host connects to a share, it is redirected to the owner of the CSV, therefore traffic should be balanced to the separate storage tier.
In hyper-convergence, the VM might be on node A and the CSV owner might be on another node, with extents all over the place. This is why RDMA is required to connect the S2D nodes.
Which disk with the required extents do they read from? They read from the disk with the shorted queue length.
Yes, SSD tiering is possible, including write-back cache, but it sounds like more information is yet to be released.
They intend to support all-flash systems/virtual disks

Technorati Tags: Event Notes,Windows Server 2016,Storage,Storage Spaces,Failover Clustering,System Center,VMM

Reminder: Webinar on ODX for Hyper-V and VAAI for vSphere Storage Enhancement

Here’s a reminder of the webinar by StarWind that I am co-presenting with Max Kolomyeytsev. We’ll be talking about offloading storage operations to a SAN using ODX for Wnidows Server & Hyper-V and VAAI for vSphere. It’s a great piece of functionality and there are some things to know before using it. The session starts at tomorrow at 19:00 UK/IE time, 20:00 CET, and 14:00 EST. Hopefully we’ll see you there!

Technorati Tags: Events,Hyper-V,VMware,VMM,Storage

Microsoft News – 13 March 2015

Quite bit of stuff to read since my last aggregation post on the 3rd.

Windows Server

Enable and Use Remote Commands in Windows PowerShell: For when you get the error “Unable to connect to the server using Windows PowerShell Remoting”.

Hyper-V

KB3031598: Hyper-V host crashes and has errors when you perform a VM live migration in Windows 8.1 and Windows Server 2012 R2. Wait before deploying, as with all hotfixes, unless this issue is breaking stuff for you (test and decide).
Update Emulex VMQ Issue – They finally did it: It’s only taken 1.5 years for Emulex/HP to sort this disaster out. Choose better hardware 🙂
Best practices for migrating a datacenter from VMware to Microsoft Hyper-V: From the System Center Virtual Machine manager team.
Checking and Correcting Virtual Hard Disk Fragmentation: By Ben Armstrong
How Hyper-V Backup Got Better in 2012 R2 (but now requires a SCSI controller): By Ben Armstrong
Hyper-V and "Event ID: 58 – The disk signature of disk 2 is equal to the disk signature of disk 0": By Ben Armstrong

Windows Client

Sluggish Tablet Market Will See Some Windows 10 Gains This Year: By 2019, IDC expects Android to lead with 62.9 percent of the tablet market. iOS will show weaker growth (23.0 percent), while Windows will gain "significant share" (14.1 percent) yet still remain in third place, according to IDC.
Microsoft to accelerate its release pace for Windows 10 preview: Microsoft appears to be on the verge of releasing an updated Windows 10 preview build. And this time, the company says, it’s serious about picking up the pace.
MDT 2013 Update 1 Preview – What’s Changed: In case you missed it at, the new preview of MDT 2013 Update 1 is now available for download from the Connect website. This new release works with the new ADK preview for Windows 10, which is available on the download center.

Azure

New A10/A11 Azure Compute Sizes: Two new high-spec standard A series VMs
Reduce RTO by using Azure Traffic Manager with Azure Site Recovery: Using Microsoft’s load balancer to failover name resolution of external services from primary site to Azure. Clever stuff!
Simplifying Virtual Machine Troubleshooting using Azure Log Collector: The Azure Log Collector extension can collect and upload logs from Cloud Service instances or Virtual Machines without requiring to log into the remote Virtual Machine.
Introducing Email notifications for Azure Site Recovery: Email notifications are a new feature for Azure Site Recovery that allows you to easily monitor the replication health of your protected virtual machines.
Azure Active Directory Solutions Architecture White Paper: This white paper describes the Microsoft Azure Active Directory Identity and Access Management solutions offered to customers of Azure, Office 365, Intune, Microsoft CRM and all Microsoft Online services.
Azure AD Conditional Access preview updated: Now supports On-Premises and Custom LOB apps: Conditional Access is powerful policy based evaluation engine that lets you create access rules for any Azure AD connected application. More sensitive apps can be assigned stricter policies, such as requiring Multi-Factor Authentication (MFA) from a registered device while less sensitive apps can have more open policies.
Final Word on IOPS in Azure: Striping multiple data disks.
Planned Maintenance – Azure Style: How Microsoft does maintenance.
ADFS Publishing via Azure Traffic Manager: He doesn’t say but I think the endpoint of Damian’s post is to make a geo-resilient ADFS farm.
New Active Directory Assessment Intelligence Pack in Azure Operational Insights: Designed to assess the risk and health of AD environments on premises, in the cloud or hybrid, it will scan weekly, and present information as a monthly rollup. The report provides a prioritized list of recommendations tailored to your environments.
Replicating Hyper-V Virtual Machines to Microsoft Azure: A post I wrote for Petri.com
5 Reasons Why I Like Microsoft Azure RemoteApp: An edited post of an article I wrote for Petri.com
How to preserve the drive letter for protected virtual machines that are failed over or migrated to Azure: Azure use will the next available drive letter for the temp drive.

Office 365

What’s new: February 2015: Lots of new stuff.

Intune

March updates coming this week to Microsoft Intune: Should be live now.
Conditional Access for SharePoint Online with Microsoft Intune: With this feature, you can restrict access to SharePoint Online to only those users who have enrolled their devices in management with Microsoft Intune and are compliant with IT policy.

Miscellaneous

Revenue and usage numbers for Microsoft’s most important new business: Following up the revelations of the not-so-secret methods of sales to hit targets.

Technorati Tags: Microsoft,Hyper-V,Windows Server 2012 R2,Networking,Hardware,System Center,VMM,Windows 10,MDT,Deployment,Azure,Cloud,Cloud Computing,Hybrid Cloud,DR,Storage,Active Directory,Remote Desktop Services,Office 365,Intune

Microsoft News – 3 March 2015

Here’s the latest in the Microsoft world!

Hyper-V

Enabling Secure Boot on Linux with the Windows Technical Preview: Making use of Generation 2 VM security.

System Center

Choose between differencing disks or dedicated disks: New functionality for SCVMM/WAP.

Azure

Real World Site debugging using Application Insights on an Azure Website: Video where they cause some real errors in an Azure Website and then root-cause the issues by instrumenting the production site with Application Insights.
Azure Disk IOPS and Virtual Machines in IaaS Part II: How many IOPS can be squeezed out of these machines.
Configure Single Sign-On to Enterprise Apps using Azure Active Directory: VERY useful for controlled access to third-party SaaS.
Microsoft Azure Network Security Whitepaper version 3 is now available: This updated white paper provides information on how customers can use Azure’s native network security features to help protect their information assets.
Create Reports of Your Automation Activity: Due to the importance of the automated tasks, it’s important for you and your team to be up-to-date on how your runbooks are performing.
Announcing Azure Preview Portal Improvements (February Update): This post contains a detailed description of the changes.
SQL Server High Availability in Windows Azure Iaas: When deploying SQL Server in Windows Azure you must consider how to minimize both planned and unplanned downtime.
Using Azure Key Vault to Encrypt Data in the Cloud: Azure Key Vault gives organizations access to Hardware Security Module (HSM) appliances in the cloud, providing the ability to better secure VMs and SQL Server data.

Office 365

3 Ways to Connect to the Office 365 Reporting Service from Excel: One option for viewing Office 365 reports using Microsoft Excel.
Microsoft cracks down on sell-and-go Office 365 VARs: Microsoft is worried about O365 implementation rates at large customer sites where O365 is sold as a bundle, and not necessarily seen as essential by the customer/partner.

Miscellaneous

What Would Steve Jobs Have Done With Microsoft? A post by me on Petri.com

Technorati Tags: Microsoft,Hyper-V,Windows Server 2016,Linux,System Center,VMM,WAP,Azure,Cloud,Cloud Computing,Hybrid Cloud,Storage,Active Directory,Networking,Security,PowerShell,Scripting,SQL,Office 365,Licensing

Microsoft News – 26 February 2015

In today’s cloudy link aggregation I have news on Windows Server (2003 end of life to Azure), Private Cloud bugs, Azure, and Office 365.

Windows Server

Be Prepared for Tomorrow’s Business: Prioritize Your Windows Server 2003 Migration: Although 75% of IT professionals are aware that support for Windows Server 2003 is ending July 14, 2015, there are still a lot of questions about just how urgent the need to move is.

System Center

Hotfix for known issues in Update Rollup 5 for System Center 2012 R2 Virtual Machine Manager: Whoda thunk it? An update rollup from Microsoft has issues. How weird!!!! But instead of making it too easy by withdrawing and re-publishing the offending update, they’ve released a hotfix. Hmm how fantastic for anyone that charges by the hour and thinks of looking for the update!

Azure

Microsoft Azure Disaster Recovery Replication Methods: A post I wrote for Petri.com
Enabling Hyper-V to Azure DR Replication: A post I wrote for Petri.com
Create and pre-configure Azure virtual machines the easy way with PowerShell: Yet another post on this subject. I haven’t tested/looked at the code but I have yet to see a fully working example, anywhere.
Sunny and Swarmy in Azure: Microsoft is joining Docker, Inc. in announcing the beta releases of Docker Machine and Docker Swarm on Azure and Docker Machine support on Hyper-V.

Office 365

Utilizing Office 365 Staged Migration to Mitigating Risk: A very low risk alternative to the cutover scenario if the Hybrid configuration is not an option.

Technorati Tags: Microsoft,Windows Server 2003,Azure,System Center,VMM,Storage,DR,PowerShell,Scripting,Linux,Office 365

Microsoft News – 16 February 2015

I was away on vacation for a little bit, photographing eagles in Poland. And then I came back and had to dive deep into Azure Site Recovery to prep a training class.

I’m back in the normal swing of things so here we go …

Hyper-V

Getting Hyper-V Integration Components via Windows Update: A post I wrote for Petri.com
Hyper-V and Wireless networking: Ben Armstrong explains why your Wi-Fi NIC or DHCP might not be working correctly with Hyper-V virtual machines.
Troubleshooting Hyper-V Networking: A post by me on Petri.com
Hot Memory Resize with Windows 10: You can hot-resize memory of vNext guest OS VMs with static memory.
Memory Demand in Windows 10: You can easily see actual memory usage of a guest OS VM with static memory.
Docker on Ubuntu on Hyper-V 2012 R2: Application containers in virtual machines.

Windows Server

Using PowerShell to select Physical Disks for use with Storage Spaces: Using PowerShell speeds up your deployment.
New version of Microsoft Assessment and Planning 9.2: Get information for a migration or upgrade.
Why 1.6 million people will miss Microsoft’s Windows Server 2003 date with fate: Article I was interviewed for on The Register.

Windows Client

Microsoft Announces FIDO 2.0 Support Coming to Windows 10: Fast IDentity Online (FIDO) Alliance – transitioning away from passwords and to a stronger form of identity.

System Center

Hyper-V local storage available for placement in SCVMM: Avoid VMs being accidentally placed on host-local storage, e.g. the D: drive on bare-metal-deployed hosts.
Cumulative Update 4 for System Center 2012 R2 Configuration Manager: Now available.
Some disks are not enumerated when you try to add them to a Data Protection Manager disk pool: When you have disks that are physically attached to a server that is running Microsoft System Center 2012 Data Protection Manager (DPM 2012 or DPM 2012 R2), the disks are displayed in Disk Management as expected, however when you try to add them to the Data Protection Manager disk pool, Data Protection Manager may not enumerate some of the disks.
How to work with Hyper-V network virtualization and Hyper-V replicas in VMM 2012: Although VMM 2012 does not manage Hyper-V replicas natively without ASR, you can still use Hyper-V replica PowerShell cmdlets to automate Hyper-V replica-related operations. Such operations include failing over a VM by using a Hyper-V replica but without using ASR.
Update Rollup 5 is released for System Center 2012 R2: Exercise caution and read ALL of the installation instructions.

Azure

Exploring the Azure RemoteApp User Experience: With Azure RemoteApp, you can run Windows applications in the cloud and deliver them to your users on iOS, Mac OS X, Android in addition to Windows, and Windows Phone.
Managing On-Premises Systems with Azure Automation: Thanks to the Windows PowerShell Remoting feature, Azure Automation can not only manage your Azure resources at an infrastructural level, but also reach inside VMs and execute commands. Think of this as SMA in the cloud, without having to install WAP.
New set of Hybrid Cloud Test Environments: A set of topics for hybrid cloud test environments are now published.
Replicate Azure Pack IaaS Workloads to Azure using ASR: he integration of ASR and Azure Pack also enabled Service Providers to offer DR as a value added service, opening up new review streams and the ability to offer better Service Level Agreements (SLA) to their end customers.
Managing Traffic for Workloads in Azure: Huge solution, a few clicks.
Load balancing workloads in Azure: Expensive solution made affordable and easy by Azure.
New Azure Backup update supports offline disk shipment and increases the number of backup copies and retention policies in Windows: Seriously good update.

Office 365

What’s new – January 2015: Office has gone x-plat and more.

Intune

How to Set Up Per-App VPN using Microsoft Intune: IT Professionals can specify which managed apps can use VPN on an Intune managed iOS device and makes the connection experience seamless for the user by abstracting the steps taken to connect to a VPN server when accessing corporate documents.
February update to Microsoft Intune: New Intune standalone (cloud only) features were made available as part of this service.

Miscellaneous

Proposed bill limits reach of US search warrants on overseas servers: Proposal to save US owned public clouds from bankruptcy caused by ill-thought-out spying.

Technorati Tags: Microsoft,Windows Server 2012 R2,Windows 10,Windows Server 2016,Hyper-V,Virtualisation,Networking,PowerShell,Scripting,MAP,Windows Server 2003,Security,System Center,Configuration Manager,VMM,RDS,Azure,Hybrid Cloud,Cloud,Cloud Computing,Office 365,Intune

Microsoft News – 20 January 2015

I’ve let the news build up a little bit. I think the holiday lull is starting to lift.

Hyper-V

Hyper-V Script to move everything off of a physical disk: Drain anything that is located on a particular disk.
Announcing DSC resources to deploy Hyper-V converged virtual network: This is an interesting third-party offer. I am wary of deep integrations such as this because I am worried about lock-ins that prevent upgrades when/if there are significant changes from Microsoft.

Windows Server

You are invited to participate in the Windows Server 2003 Modernization offering: The Partner Technical Services team is excited to share a new initiative focused on helping you migrate from Windows Server 2003 before end of support.
Work Folders for iOS – iPad App Release: Great add-on for iOS, giving businesses their own version of DropBox based on WS2012 R2 file servers and Workplace Join.
Win2012R2: STOP 0x133 and STOP 0x9E caused by too many NBLs in a DPC: Microsoft has been seeing an increase in STOP 0x133 (on non-clustered) and 0x9E (on clustered) cases, where the root cause is that there are too many NBLs indicated in a DPC. This causes the DPC watchdog timer to expire, resulting in mentioned STOP errors.
Announcing Message Analyzer 1.2: I really dislike this replacement for NetMon. It’s too difficult to use, even after you’ve sat through a briefing. My advice to Microsoft: start from scratch … again.

Windows Client

Windows 10: What We Know So Far: I’ll give a hoot about Cortana when it works outside of 4 or so countries. Microsoft should either fix that limitation or move the developers to something more important than a gadget feature.

System Center

Configuring VMM logical switch with bandwidth limit virtual port: Enable VM QoS.
Monitoring Text and CSV log files in System Center Operations Manager: Very useful.
Cluster overcommit algorithm in System Center 2012 R2 Virtual Machine Manager: This article describes four approaches for the System Center Virtual Machine Manager (SCVMM) cluster overcommit algorithm in Microsoft System Center 2012 R2 Virtual Machine Manager.

Azure

Try ExpressRoute Free of Charge with this Promotion: Microsoft launched a promotional offer for Azure ExpressRoute, making it easier to get started with fast, private network connections between your on-premises environment and Azure.
New Application Insights functionality on Azure Websites with the Application Insights Website extension: This feature is designed to help development teams get 360° views of their applications across Availability, Performance and Usage with fast & powerful troubleshooting, diagnostics and usage insights.
Saving Money with Microsoft Azure Virtual Machines: In this article I will look at some methods you can employ to save money when you deploy virtual machines into Microsoft Azure.
Microsoft Azure App Enables Workplace Join Connections for Android Devices: Give controlled Android users access to on-premises resources with a hybrid cloud service.
Azure AD Workplace Join, now with Android Support: The official announcement.
Connect servers directly to Operational Insights: Easy to set up from-the-cloud server management.
How to easily spin up an Azure AD Premium Trial: So you’d like to demo Azure AD to your customers or want to get the feel of it? Perhaps you have Azure via MSDN and would like to spin it up on the fly for a demo environment?

Office 365

Participate in the Office 365 Practice Accelerator for SMB offering: A new initiative focused on helping Microsoft partners learn the fundamental deployment principles and processes that lead to repeatable successful deployments of O365 for Small and Medium customers.

Intune

Enrolling iOS Devices Via Apple Configurator In Microsoft Intune: A step-by-step. Been a while since I did this, but it was easier than enrolling Windows Phone!

Events

#GlobalAzure Bootcamp 2015: The 2015 #GlobalAzure Bootcamp kicks off on April 25th and you can participate and organize a location too!

Miscellaneous

Paul Thurrott’s last post on WinSuperSite.com: It’s the end of an era for that important site. But Paul continues tomorrow on thurrott.com.
Blue Whale Web Partners with Paul Thurrott to Launch Thurrott.com Technology News Site: So I am now a work colleague of Paul Thurrott!!! Thurrott.com has launched as a sister site of Petri.com and Paul is also writing news articles for the site.

Technorati Tags: Microsoft,Hyper-V,Virtualisation,PowerShell,Scripting,Windows Server 2003,Active Directory,Networking,Windows 10,System Center,VMM,Operations Manager,Failover Clustering,Azure,Cloud,Cloud Computing,Hybrid Cloud,Office 365,Intune,Events