在这篇文章中,我们将讨论Windows Server 2022 的新功能(new features of Windows Server 2022)。自从微软宣布更新的Windows Server版本以来,很多人都想知道他们将在Windows Server 2022中引入的新功能。服务器操作系统计划于 2021 年底向公众推出。但是,内部 beta 测试人员可以预览Windows Server 2022 的版本。
Windows Server 2022基于Windows Server 2019的坚实基础。而这一次,它主要关注三个关键要素,包括安全(Security)性、Azure 混合集成和管理(Azure hybrid integration and management)以及应用程序平台(Application Platform)。此外,Windows Server 2022 Datacenter Azure 版(Datacenter Azure Edition)可帮助您利用云的优势并减少停机时间。它结合了更多新功能,可增强安全性和整体性能。
下一个Windows Server会是什么?
下一个Windows Server将是 2022 年,并且都将在今年晚些时候发布。您可以期待这个新的Windows Server中的许多改进和新功能,尤其是在安全方面。现在让我们介绍一下Windows Server 2022的新功能。
Windows Server 2022 新功能
以下是Windows Server 2022中需要注意的新功能:
- 安全
- Azure 混合功能
- 应用平台
- AMD处理器的嵌套虚拟化
- 微软边缘浏览器
- 贮存
让我们描述一下Windows Server 2022(Windows Server 2022)中的上述新功能。
Windows Server 2022 – 有什么新功能?
1]安全
安全性一直是最新Windows版本的主要关注点,Windows Server 2022也是如此。它结合了跨Windows Server的安全功能,并支持多层安全性,以支持针对高级威胁和攻击的主动防御机制。以下是您可以在Windows Server 2022(Windows Server 2022)中期待的两个关键安全功能:
A] 安全连接
安全(Secure)连接对于服务器来说是必须的,也是非常需要的,尤其是在现代世界,每天都有一些新的网络攻击。为确保建立安全连接,以下是Windows Server 2022中包含的功能:
默认情况下,在 Windows Server 2022 中启用 HTTPS 和 TLS 1.3。(HTTPS and TLS 1.3 are enabled in Windows Server 2022 by default.)Internet 安全协议的最新版本是传输层安全(Transport Layer Security)( TLS ) 1.3。它通过加密数据确保两个端点之间的安全通信通道。现在,通过在Windows Server 2022上固有地启用HTPPS和TLS 1.3,它可以确保连接到服务器的客户端的数据是安全的。旧的加密机制被淘汰,并使用新的安全算法。
安全 DNS(Secure DNS)是另一个很好的增强功能,可确保安全连接。Windows Server 2022中的DNS 客户端(DNS Client)现在支持DNS-over-HTTPS ( DoH ) 。DoH使用HTTPS协议对(HTTPS)DNS请求进行加密,并保持流量私密,从而进一步增强安全性。此外,可以通过它防止窃听。
对于服务器消息块(Server Message Block)( SMB ) 加密和签名,Windows Server现在支持AES-256-GCM 和 AES-256-CCM 加密套件(AES-256-GCM and AES-256-CCM cryptographic suites)。强大(Strong)的加密是计算中的必要条件,因为对手不断寻找新的方法来破坏安全算法。使用AES-256-GCM和AES-256-CCM套件可确保更高级别的加密。虽然,仍然支持用于下级兼容性的AES-128 。
对于集群共享卷(Cluster Shared Volumes)( CSV ) 和存储总线层(Storage Bus Layer)( SBL ),Windows Server故障转移集群将支持严格且增强的加密和签名节点内存储通信。这基本上意味着用户现在可以使用Storage Spaces Direct对集群内部的东西向通信进行加密或签名。
在Windows Server 2022 Datacenter:Azure 版和受支持的Windows客户端中,除了 TLS 1.3 之外,(SMB over QUIC in addition to TLS 1.3)还支持 SMB over QUIC。它确保用户和应用程序可以安全地访问来自边缘文件服务器的数据。此外,移动和远程办公用户不再需要VPN来在Windows上通过(Windows)SMB访问他们的文件服务器。
B] 安全核心服务器
安全的核心服务提供了额外的安全层来应对新出现的威胁和挑战。它基于以下三个主要参数:
简化的安全性(Simplified Security)
配置安全核心服务器的安全功能不会很复杂。您可以从Windows Admin Center轻松配置Windows Server系统。
高级保护(Advanced Protection)
由于安全核心服务器完全利用了硬件、固件和操作系统功能,因此可以增强对持续和未来威胁的保护。它在以下领域有广泛的方法:
- 硬件信任根(Hardware root-of-trust):可信平台模块 2.0(Trusted Platform Module 2.0) ( TPM 2.0 ) 确保使用安全的核心服务器。它提供硬件信任根,可提高BitLocker等功能提供的安全级别。
- 固件保护:(Firmware Protection: )由于固件以更高的权限运行并且存在许多相关的安全漏洞,因此改进固件保护是当务之急。动态(Dynamic Root)测量(Measurement)信任(Trust)根( DRTM )技术、DMA保护、安全核心系统等功能可以提供固件保护。(DRTM)
- 基于虚拟化的安全性 (VBS):(Virtualization-based security (VBS): )安全核心服务器支持VBS和基于管理程序的代码完整性 ( HVCI )
预防性防御(Preventative Defense)
受保护的核心服务器主动防止系统受到攻击。
阅读:(Read:) 适用于商业和企业的 Windows 11 新功能。(Windows 11 for Business and Enterprise New Features.)
2] Azure 混合功能
Windows Server 2022中内置的Azure混合功能使您能够更有效地使用Azure 。以下是Windows Server 2022中新的(Windows Server 2022)Azure混合集成和管理功能:
- (Azure Arc)启用Azure Arc的Windows Server是一项值得期待的增强功能。如果混合计算机连接到Azure,则该计算机将作为Azure中的资源。
- (New)Windows Admin Center的(Windows Admin Center)新改进基本上使Windows Server 2022的管理更高效、更轻松。
- (Hotpatch)Windows Server 2022现在支持作为Azure Automanage一部分的Hotpatch。它基本上是一种新方法,使用户能够在新的Windows Server Azure 版(Windows Server Azure Edition)虚拟机 ( VM(VMs) ) 上安装更新。而且,它甚至不需要在安装后重新启动。
请参阅:(See:) Windows 11 中的新安全功能。(New Security Features in Windows 11.)
3]应用平台
在Windows Server 2022中, (Windows Server 2022)Windows 容器(Windows Containers)有各种平台增强功能。其中一项重大改进是Windows Container映像大小减少了多达 40%。这基本上会导致更快的启动时间和更好的整体性能。
现在可以使用组托管(Managed)服务帐户(Accounts)(gMSA)运行依赖于Azure Active Directory的应用程序。(Azure Active Directory)而且,这甚至不需要域加入容器主机。此外,Windows 容器(Windows Containers)现在提供对Microsoft 分布式事务控制(Microsoft Distributed Transaction Control)( MSDTC ) 和Microsoft 消息队列(Microsoft Message Queuing)( MSMQ ) 的支持。
(Windows Container)得益于多项增强功能,Kubernetes的(Kubernetes)Windows Container体验也得到了简化。例如,用于节点配置的主机进程容器、IPv6以及与Calico一致的网络策略实施。
Windows Server 2022对Intel Ice Lake处理器的支持使其能够为关键业务和大规模应用程序提供支持。此外,英特尔 Ice Lake上的(Intel Ice Lake)英特尔安全防护扩展(Intel Secured Guard Extension)( SGX )通过受保护的内存进一步增强了应用程序的安全性。
阅读(Read):Windows Server 2022 功能已删除或已弃用(Windows Server 2022 Features removed or deprecated)。
4] AMD处理器的嵌套(Nested)虚拟化
Windows Server 2022现在包含使用AMD处理器的嵌套虚拟化功能。嵌套虚拟化功能使用户能够在Hyper-V虚拟机 (VM)内运行Hyper-V 。它为您的环境提供了更多的硬件选择。
阅读(Read):Windows Server 2022 版本比较(Windows Server 2022 Editions compared)。
5]微软边缘浏览器
(Internet Explorer)在新的Windows Server 2022中, (Windows Server 2022)Internet Explorer现在被Microsoft Edge取代。新的Microsoft Edge基于(Microsoft Edge)Chromium源代码构建,并具有新的和增强的安全功能。用户现在可以使用带有服务器核心(Server Core)或服务器的(Server)Microsoft Edge以及桌面体验(Desktop Experience)安装选项。
6]存储
Windows Server 2022中有几个与存储相关的新功能,其中包括:
- 存储迁移服务
- 可调存储修复速度
- (Storage)独立服务器上带有存储(Storage)空间的存储总线缓存
- SMB 压缩
A] 存储迁移服务
由于对存储迁移服务的各种增强,从源位置到Windows服务器或 Azure 的存储迁移现在变得更加容易。您可以将本地用户和组迁移到新服务器,将存储迁移到或从故障转移集群以及独立服务器和故障转移集群等。它甚至允许从使用Samba的(Samba)Linux服务器迁移存储。
B]可调存储修复速度
存储空间直通中称为(Storage Spaces Direct)用户(User)可调存储修复速度的新功能基本上提供了对数据重新同步过程的更大控制。这会提高可用性、灵活性和效率。
C]独立服务器上带有存储(Storage)空间的存储(Storage)总线缓存
对于独立服务器,存储总线缓存现在可用。它提高了读写性能。然而,存储效率得以维持,运营成本保持在较低水平。
D] SMB 压缩
Windows Server 2022中的(Windows Server 2022)SMB压缩功能有所改进。它使用户或应用程序能够在通过网络传输文件时压缩文件,从而消除了手动压缩文件的需要。
如何下载Windows Server 2022 ISO
(Visit microsoft.com here)如果您想下载并试用Windows Server 2022 ,请(Windows Server 2022)在此处访问 microsoft.com。除了您的Windows Server 2022试用体验外,您还可以使用新的语言(Languages)和可选功能 ISO更轻松地(Optional Features ISO)按需(Demand)添加和管理语言和功能。下载(Download)这个ISO。此ISO仅在Windows Server 2022上可用,并结合了以前单独的按需(Demand)功能和语言包 ISO(Language Packs ISOs),并可用作 FOD和语言(Language)包存储库。
Windows Server 2022(Server 2022)何时发布?
正如微软(Microsoft)宣布的那样, Windows Server 2022将于 2021 年底发布。但是,如果部署计划有变化,您将很快收到通知。不过,Beta 测试人员的内部预览是可用的。
因此,您将在Windows Server 2022中获得所有这些新的和改进的功能。可以肯定的是,微软(Microsoft)确实在致力于增强主动安全措施。
Windows Server 2022 New Features: What's new and Download ISO
In this post, we аre going to discuss the new features of Windows Server 2022. Ever since Microsoft announced the newer Windows Server version, a lot of people are wondering about the new functionalities they will be introduced to in Windows Server 2022. The server OS is planned to be launched for the public by the end of 2021. However, the insider beta testers can preview the version of Windows Server 2022.
Windows Server 2022 is based on the solid base of Windows Server 2019. And this time, it is primarily focused on three key elements that include Security, Azure hybrid integration and management, and Application Platform. Furthermore, the Windows Server 2022 Datacenter Azure Edition assists you with utilizing the advantages of the cloud and reducing downtime. It has incorporated many more new features that will enhance security and overall performance.
What will the next Windows Server be?
The next Windows Server will be 2022 and is all set to release later this year. You can expect a lot of improvements and new functionalities in this new Windows Server, especially from the security front. Let us now describe the new features of Windows Server 2022.
Windows Server 2022 New Features
Here are the new features to look out for in Windows Server 2022:
- Security
- Azure Hybrid Capabilities
- Application platform
- Nested virtualization for AMD processors
- Microsoft Edge browser
- Storage
Let us describe the above new features in Windows Server 2022.
Windows Server 2022 – What’s new?
1] Security
Security has been the prime focus in the latest Windows builds, and so is the case with Windows Server 2022. It has combined security capabilities across Windows Server as well as supports multi-layer security to power an active defense mechanism against advanced threats and attacks. Here are the two key security features that you can look forward to in Windows Server 2022:
- Secure connectivity
- Secured-core server
A] Secure connectivity
Secure connectivity is a must and much needed for servers, especially in the modern world where every day there is some new cyberattack. To ensure the establishment of secure connections, here are the features that are incorporated in Windows Server 2022:
HTTPS and TLS 1.3 are enabled in Windows Server 2022 by default. The most recent version of the internet’s security protocol is Transport Layer Security (TLS) 1.3. It ensures a secure communication channel between two endpoints by encrypting data. Now, by enabling HTPPS and TLS 1.3 inherently on Windows Server 2022, it makes sure that the data of clients who are connected to the server is secured. The older cryptographic mechanisms are dropped off and new security algorithms are used.
Secure DNS is another good enhanced feature that ensures secure connectivity. DNS-over-HTTPS (DoH) is now supported by the DNS Client in Windows Server 2022. DoH ciphers DNS requests with the use of HTTPS protocol and keeps the traffic private, and that further enhances security. Also, eavesdropping can be prevented through it.
For Server Message Block (SMB) encryption and signing, AES-256-GCM and AES-256-CCM cryptographic suites are now supported in Windows Server. Strong encryption is a necessity in computing as adversaries keep finding new ways to break down security algorithms. The use of AES-256-GCM and AES-256-CCM suites ensures a greater level of encryption. Although, AES-128 for down-level compatibility is still supported.
For Cluster Shared Volumes (CSV) and the Storage Bus Layer (SBL), there will be rigid and enhanced encryption and signing intra-node storage communications supported by Windows Server failover clusters. This basically means that the users can now encrypt or sign east-west communications within the cluster itself using Storage Spaces Direct.
In Windows Server 2022 Datacenter: Azure Edition and the supported Windows clients, SMB over QUIC in addition to TLS 1.3 is supported. It makes sure that the users and applications have secured access to data from edge file servers. Additionally, there is no longer a need for a VPN for mobile and telecommuter users to access their file servers over SMB while being on Windows.
B] Secured-core server
Secured core serve provides an extra layer of security against emerging threats and challenges. It is based on three main parameters which are as follow:
- Simplified Security
- Advanced Protection
- Preventative Defense
Simplified Security
There will be no complexity in configuring the security features of secured core servers. You can easily configure Windows Server systems from the Windows Admin Center.
Advanced Protection
As secure core servers utilize the hardware, firmware, and operating system capabilities completely, there is enhanced protection against ongoing and future threats. It has a wide approach in areas that include:
- Hardware root-of-trust: Trusted Platform Module 2.0 (TPM 2.0) ensures the usage of secure core servers. It provides hardware root-of-trust that increases the security level provided by capabilities like BitLocker.
- Firmware Protection: As the firmware runs with higher privilege and there are a lot of security vulnerabilities associated, improvement in firmware protection is the need of the hour. The features like Dynamic Root of Trust of Measurement (DRTM) technology, DMA protection, Secured-core systems can provide firmware protection.
- Virtualization-based security (VBS): VBS and hypervisor-based code integrity (HVCI) are supported by secured core servers
Preventative Defense
Secured core servers proactively prevent the system from adversaries.
Read: Windows 11 for Business and Enterprise New Features.
2] Azure Hybrid Capabilities
The built-in Azure hybrid capabilities in Windows Server 2022 enable you to use Azure more efficiently. Here are the new Azure hybrid integration and management features in the Windows Server 2022:
- Azure Arc enabled Windows Server is an enhanced feature to look forward to. If a hybrid machine is connected to Azure, the machine is served as a resource in Azure.
- New improvements to Windows Admin Center basically make the management of Windows Server 2022 efficient and easier.
- Hotpatch which is a part of Azure Automanage is now supported in Windows Server 2022. It is basically a new method that enables users to install updates on new Windows Server Azure Edition virtual machines (VMs). And, it doesn’t even need a restart after installation.
See: New Security Features in Windows 11.
3] Application platform
In Windows Server 2022, there are various platform enhancements for Windows Containers. One of the vast improvements is that the Windows Container image size is reduced by up to 40 percent. This will basically result in faster startup time and better overall performance.
It is now possible to run applications dependent upon Azure Active Directory with group Managed Services Accounts (gMSA). And, that doesn’t even require domain joining the container host. In addition, Windows Containers offer support for Microsoft Distributed Transaction Control (MSDTC) and Microsoft Message Queuing (MSMQ) now.
Windows Container experience with Kubernetes is also simplified, thanks to several enhancements. For example, host-process containers for node configuration, IPv6, and consistent network policy implementation with Calico.
Windows Server 2022’s support for Intel Ice Lake processors enables it to offer support to business-critical and large-scale applications. Also, Intel Secured Guard Extension (SGX) on Intel Ice Lake further enhances application security with protected memory.
Read: Windows Server 2022 Features removed or deprecated.
4] Nested virtualization for AMD processors
Windows Server 2022 now incorporates a nested virtualization feature using AMD processors. The nested virtualization function enables users to run Hyper-V inside of a Hyper-V virtual machine (VM). It provides more hardware choices for your environment.
Read: Windows Server 2022 Editions compared.
5] Microsoft Edge browser
Internet Explorer is now being replaced by Microsoft Edge in the new Windows Server 2022. The new Microsoft Edge is built on Chromium source code and has new and enhanced security functions. Users can now employ Microsoft Edge with Server Core or Server along with Desktop Experience installation options.
6] Storage
There are several new storage-related features in Windows Server 2022 which include:
- Storage Migration Service
- Adjustable storage repair speed
- Storage bus cache with Storage Spaces on standalone servers
- SMB compression
A] Storage Migration Service
The storage migration from source locations to Windows server or Azure is now become easier due to various enhancements to storage migration service. You can migrate local users and groups to the new server, migrate the storage to or from failover clusters as well as standalone servers and failover clusters, etc. It even allows migrating storage from a Linux server utilizing Samba.
B] Adjustable storage repair speed
A new feature called User adjustable storage repair speed in Storage Spaces Direct basically provides offers greater control over the data resync process. This results in an improvement in availability, flexibility, and efficiency.
C] Storage bus cache with Storage Spaces on standalone servers
For standalone servers, the storage bus cache is available now. The read and write performance is improved by it. However, the storage efficiency is maintained and operational costs are kept low.
D] SMB compression
There are improvements to SMB compression capabilities in Windows Server 2022. It eliminates the need to manually zipping files by enabling a user or application to compress files when they transfer over the network.
How to download Windows Server 2022 ISO
Visit microsoft.com here if you want to download and try Windows Server 2022. In addition to your trial experience of Windows Server 2022, you can more easily add and manage languages and Features on Demand with the new Languages and Optional Features ISO. Download this ISO. This ISO is only available on Windows Server 2022 and combines the previously separate Features on Demand and Language Packs ISOs, and can be used as a FOD and Language pack repository.
When will Windows Server 2022 be released?
Windows Server 2022 is set to be released by the end of 2021 as announced by Microsoft. However, if there are changes in the deployment plan, you will be notified soon. An insider preview for beta testers is available though.
So, you will be getting all these new and improved features in Windows Server 2022. One thing is for sure that Microsoft is really working on the enhancement of proactive security measures.