What is Server Core?A Server Core installation, a new installation option available with Windows Server 2008, provides a scaled-down, minimal environment for runing specific server roles. It reduces the maintenance and management requirements and, due to the lesser binary footprint, minimizes the relative OS attack surface. All configuration and maintenance of a Server Core installation is done entirely through command line interface windows, or by connecting to the machine remotely using Microsoft Management Console (via the Remote Server Administration Tools or RSAT). Notepad and a few control panel applets, such as Regional Settings, are available, however.
A server running a Server Core installation supports the following server roles:
Active Directory Domain Services (AD DS), Active Directory Lightweight Directory Services (AD LDS), DHCP Server, DNS Server, File Services, Hyper-V, Print Services, Streaming Media Services, Web Server (IIS)
The Server Core installation option installs only the subset of the binary files that are required by the supported server roles. For example, the Explorer shell is not installed as part of a Server Core installation. Instead, the default user interface for a server running a Server Core installation is the command prompt.
What’s new in the Server Core installation option?
The Server Core installation option of Windows Server 2008 requires initial configuration at a command prompt. A Server Core installation does not include the traditional full graphical user interface. Once you have configured the server, you can manage it locally at a command prompt or remotely using a Terminal Server connection. You can also manage the server remotely using the Microsoft Management Console (MMC) or command-line tools that support remote use.
Benefits of a Server Core installation
The Server Core installation option of Windows Server 2008 provides the following benefits:
Reduced maintenance. Because the Server Core installation option installs only what is required to have a manageable server for the AD DS, AD LDS, DHCP Server, DNS Server, File Services, Print Services, and Streaming Media Services roles, less maintenance is required than on a full installation of Windows Server 2008.
Reduced attack surface. Because Server Core installations are minimal, there are fewer applications running on the server, which decreases the attack surface.
Reduced management. Because fewer applications and services are installed on a server running the Server Core installation, there is less to manage.
Less disk space required. A Server Core installation requires only about 1 gigabyte (GB) of disk space to install and approximately 2 GB for operations after the installation.
Steps for configuring a Server Core installation
The following procedures explain how to configure a computer running a Server Core installation. The steps include:
- Setting the administrative password
- Setting a static IP address
- Joining a domain
- Activating the server
- Configuring the firewall
1. Setting the administrative password
When your computer starts for the first time after the installation completes, press CTRL+ALT+DELETE. Type Administrator for the user name and leave the password blank.
The system will inform you that the password has expired and will prompt you to enter a new password. Type an appropriate password.
2. Setting a static IP address
At a command prompt, type the following:
netsh interface ipv4 show interfaces
Make a note of the number shown in the Idx column of the output for your network adapter. If your computer has more than one network adapter, make a note of the number corresponding to the network adapter for which you wish to set a static IP address.
3. Joining a domain
At a command prompt, type:
netdom join /domain: /userd: /passwordd:*
Where:
ComputerName is the name of the server that is running the Server Core installation.
DomainName is the name of the domain to join.
UserName is a domain user account with permission to join the domain.
When prompted to enter the password, type the password for the domain user account specified by UserName.
If you need to add a domain user account to the local Administrators group, type the following command:
net localgroup administrators /add \
Restart the computer by typing the following at a command prompt:
shutdown /r /t 0
To rename the server
Determine the current name of the server with the hostname or ipconfig command.
At a command prompt, type:
netdom renamecomputer /NewName:
Restart the computer.
4. Activate the server
At a command prompt, type:
slmgr.vbs -ato
If activation is successful, no message will return in the command prompt.
5. Configure the firewall
To configure the firewall
Use the netsh advfirewall command. For example, to enable remote management from any MMC snap-in, type the following:
netsh advfirewall firewall set rule group="Remote Administration" new enable=yes
Server Roles
After the Server Core installation is complete and the server is configured, you can install one or more server roles. The Server Core installation of Windows Server 2008 supports the following server roles:
Active Directory Domain Services (AD DS), Active Directory Lightweight Directory Services (AD LDS), DHCP Server, DNS Server, File Services, Hyper-V, Print Services, Streaming Media Services, Web Server (IIS)
I'll try to cover the topic of managing a Server Core installation and installing additional server roles on Server Core with another post.
No comments:
Post a Comment