Cloud

  • Windows Server 2016 VM Licensing Considerations

    remote desktop licensing

    As recently as the releases of Windows Server 2012, Windows Server 2012 R2, Windows Server 2014 and Windows Server 2014 R2, the Standard and Enterprise editions have been licensed much the same way by Microsoft by counting CPU's. However, with Windows Server 2016, while there is no difference with these previous versions in regard to editions, licensing changed.

    With regard to licensing, the change with Windows Server 2016, as with a number of other products, Microsoft has shifted from licensing based on the number of processors to the number of cores for a more accurate accounting. This is a big shift from the previous editions of Windows Server and applies to both Standard and Datacenter versions.

    Additionally, with the arrival of Windows Server 2016 previous feature parity is no longer available. Earlier versions of Windows Server operating systems basically included the same available features with the exclusion of VM licensing. Below is a quick list of categories and further information regarding availability between these two main editions.

    Windows Server 2016 edition Licensing model CAL requirements Pricing Open NL ERP (USD)
    Datacenter Core-based Windows Server CAL $6,155
    Standard Core-based Windows Server CAL $882

    With this newer licensing model, Microsoft has also changed somewhat with regard to licensing VM's. Again, the cores must be licensed but the number of VM's will vary based on the edition and cores to be licensed. Licensing rights for Windows Server 2016 Standard Edition only provides for all physical cores in the server to be licensed and includes only 2 OSE's or Hyper-V containers. In the instance of additional OSE's or Hyper-V containers, Microsoft allows for multiple licenses to be assigned to the same cores.

    And here's a summary of features for the affected levels of VM support:

    Feature Datacenter Standard
    OSEs / Windows Server containers with Hyper-V isolation Unlimited 2
    Windows Server containers without Hyper-V isolation Unlimited Unlimited
    Shielded Virtual Machines

    That table gives you a thumbnail of how the new licensing model affects VM's and their licensing. Standard has minimum limits and shielded VMs cannot be used. Here's a full explanation:

    • When all physical cores on a server are licensed, with a minimum of 8 cores per physical processor and a minimum of 16 core licenses per server.
    • Datacenter provides rights to use unlimited Operating System Environments (OSEs) or Hyper-V containers and Windows Server containers on the licensed server.
    • Standard provides rights to use up to two Operating System Environments (OSEs) or Hyper-V containers and unlimited Windows Server containers on the licensed server.
    • For each additional 1 or 2 VM's in a Standard OS edition, all the physical cores in the server must be licensed again.

    When considering core-based licensing, Windows Server and System Center 2016 are licensed by physical cores, not virtual cores. Therefore, customers need only to inventory and license the physical cores on their processors.

    Windows Server 2016 will support nested virtualization where a VM runs inside a VM.

    Windows Server 2016 Datacenter licensing allows for unlimited virtualization and so would easily cover this scenario. Windows Server 2016 Standard Edition licensing is designed for no-to-low-virtualization scenarios and supports up to two virtual machines. A virtual machine running inside a virtual machine counts as two virtual machines from a licensing perspective so any additionally nested VMs would require additional licensing of all cores on the physical server.  

    What does it all mean? Microsoft licensing for the Standard edition provides for two VM's to be licensed at a minimum. For more VM's to be hosted, additional licenses must be purchased. With the Datacenter edition of Windows Server 2016, an unlimited number of VM's are licensed. This means you should be prepared to license additional VM's on standard if you need more than two of them but that may still be cheaper than a licensed server for Datacenter. In fact, you may be able to add more than a few depending on the capacity of the server. However, remember the licensing is by cores so a high-end server will be licensed accordingly and Datacenter may end up being the best choice, especially for those servers used for VM farms.

    To understand licensing for Standard even more, here's a description of what you'll need when adding additional VM's on server with a Standard server OS. Even if you have as few as eight cores on the physical server, you must license for the minimum of sixteen. That means if you want an additional VM on the server beyond the 2 allowed, you must license for the minimum of sixteen cores again on that server, but you get rights to 2 more VM's. Also, when considering core licensing and VM's with the Standard Edition, if you have 4 processors on the server, the same conditions apply. You will be licensing the minimum of 32 cores for each 2 VM's you want to run on Standard edition. This can be cheaper but it bears checking the pricing and considering the growth of your VM environment over time since the Datacenter Edition may be the better option over time.

    Licensing for Windows Server 2016 and hosted VM's requires extra considerations. It's well worth gaining a thorough understanding of requirements for core licensing, especially with the Standard edition of Windows Server 2016. To learn more about Microsoft Windows Server 2016 licensing, contact our experts at RoyalDiscount.com - Your online source for cheap OEM, Retail & Cloud products


  • What's the Difference Between Azure AD Premium P1 vs P2?

    Azure Active Directory

    Microsoft offers its domain management software, Active Directory, as a product in Azure services which provides all the same security features as an on-premise implementation. The Azure product can be used on its own or as a hybrid implementation with an on-premise AD structure, making it a highly valuable feature of Azure.

    Azure AD is present with all kinds of virtual and cloud services since security is an important feature in Azure. Since AAD is already functional in Azure and can be extended into an existing Active Directory structure, it's important to understand the compatibility of additional versions which may already be in use. Either as a stand-alone product or an extension to the cloud, AAD is very important for organizational security, especially with integration into Office 365 and remote user sign-on.

    The variation of tools in Azure AD replaced Dirsync and Azure AD Sync so that cloud and on-premise implementations mesh with each other seamlessly. Synchronization between the two is a key component for security as is AD Connect which is another integration tool that provides development and management of services for the use of single-user identities and single sign-on access including on-premise applications, cloud-based applications and Office 365.

    With the Azure AD services, items in Active Directory are kept synchronized so that information about resource and identity security is up-to-date. Additionally, authentication methods in a wide variation are equally available in AAD including cloud authentication with Hash Synchronization, pass-through authentication and ADFS (federated authentication). Azure AD Connect Health monitors AD resources from the Azure portal for centralized management.

    The premium additions of Azure AD are important to understand as these provide enterprise level tools for organizations in need of higher security measures, especially in Azure. While subscription services like Office 365 and Azure are automatically provided in Azure AD, these premium editions include important additional features for security and resource management. The premium versions are P1 and P2 and include these additional features to those basic in Azure AD.

    • Azure AD Premium P1 - is an enterprise level edition which provides identity management for on-premise users, remote users and hybrid users accessing applications both locally and over the cloud. This edition includes support for self-service identity, access management, administration of dynamic groups including self-service group management, as well as Microsoft Identity Manager which is a suite of on-premise identity and access management tools.
    • Azure AD Premium P2 - is an edition includes all of the features of Azure AD Premium P1 with the addition of Identity Protection and Privileged Identity Management (PIM). Identity Protection provided management of conditional access to apps and critical data. PIM enhances management of privileged accounts tied to administrative access to resources.

    A deeper dive into these editions is necessary for better understanding of available features offered in each one.

    One of the important factors in using a premium edition of AAD is dynamic group administration. IT administrators can receive many security group membership requests but the use of dynamic groups in premium editions provides for management with policies. Assigning policies to user ID's means that group memberships are included based on assigned criteria and no additional requests are necessary.

    The Premium P2 tier differs from the alternate P1 tier with added Identity Protection and Privileged Identity Management (PIM) which increase security measures to meet the toughest of expectations. Azure AD Identity Protection adds improved reporting of risk events so organizations can further assess potential vulnerabilities for all identities with the function of blocking or remediating these security risks with adaptive actions. PIM provides additional information about administrative accounts which allows for higher protection and lower risk of security breaches with this level of accounts. The Privileged Identity Management package clearly identifies Azure AD Administrators, adds a just-in-time administrative access for Office 365, provides reports about administrative access history and changes to admin assignments and sends alerts about access to privileged accounts.

    Azure AD Premium P2 is especially important in environments where a shift has occurred to mobile-based applications. In these computing environments, traditional security measures such as firewalls are ineffective for the protection of a cloud domain since there is no perimeter.

    azure AD active directory p1 vs p2

    Considering the roles individuals possess in organizations coupled with mobile factors, higher levels of security for identities becomes paramount. Regular users often access data from multiple devices on a variety of networks while making decisions about storage and sharing. Organizational IT retains less and less control of how data is protected. Additionally, privileged access can be assigned based on job title and little else while working outside specific network boundaries so that security audits are much harder to achieve with SaaS-based applications and systems. Access often is retained by users even after job changes occur.

    Both of the additional functions of Privileged Identity Management and Identity Protection included in Azure AD Premium P2 perform the necessary functions to manage the changing roles present in cloud-based environments. Identity Protection alone gathers information from the internet which offers trend material for security concerns regarding vulnerabilities and role history. Based on this information remediation recommendations are provided based on user trends which can be assessed for adjustments. Risk severity calculations are obtained for determining events such as:

    • Leaked credentials
    • Sign-ons from infected devices or suspicious activity via unknown IP addresses and unfamiliar locations
    • The nature of user lock-out events

    Suspicious log-ons can be assessed and risk-based policies applied in reaction to security breaches of credentials in addition to changing bad credentials or blocking identified attacks.

    PIM creates a workflow automated for user requests for elevated access. MFA (multi-factor authentication) is required for additional privileges after which the new access will time-out within a pre-determined time. Microsoft uses the same method with customer Office 365 subscriptions.

    PIM and Identity Protection provide additional security for IT teams to manage and account for risks with improved effectiveness, making it a step up for enterprise-class customers in need of these features. The additional protection keeps Azure customers ahead of the curve for avoiding costly, damaging intrusions while managing access with less overhead.

    To learn more about Azure Active Directory Premium editions, contact our experts at RoyalDiscount.com - Your online source for Microsoft Azure Cloud products.


  • What is Azure Active Directory?

    azure active directory

    What is Azure AD

    Active Directory is Microsoft's domain management software which controls all security functions within an organization affecting log-ins, password, accounts and security permissions to apps and data resources. Azure Active Directory is an extension for on-premises Active Directory implementations or can stand alone as a security product for Azure implementations that are not already part of a domain.

    When using any kind of virtual or cloud resources, security controls are extremely important and AAD is the foundation for providing access controls even in hybrid implementations so that an on-premise presence and a cloud presence will work together on the same AD infrastructure. This is even more important when considering use for application development and integration with Office 365 especially when used remotely.

    Microsoft provides a wide range of tools in Azure AD Connect which replaces older versions of identity integration tools such as DirSync and Azure AD Sync. With this latest version of Azure AD security and identity are synchronized when used together between the cloud and on-premise implementations. AD Connect is also an integration tool that allows for the use of single-user identities and single sign-on access (SSO) whether it's in the office, on the cloud, or using Office 365.

    Azure AD provides synchronization of user IDs, groups and other Active Directory objects so that all of these elements are present and up-to-date between the cloud and physical locations used by organizations. There are a variety of authentication methods which can be used especially in hybrid solutions. Choices can be made between such cloud authentication methods as Password Hash Synchronization or pass-through authentication and even federated authentication (AD FS). Additionally, Azure AD Connect Health allows for monitoring of Active Directory resources from a centralized location within the Azure portal.

    Editions

    As with all Microsoft products, there are a variety of editions for Azure Active Directory which provide sign-on and other security and identity needs. Subscription services to Microsoft Products like Office 365 and Microsoft Azure automatically provide for Azure Active Directory ase. This free edition of Azure Active Directory allows for management of user IDs, groups and synchronization with on-premise Active Directory implementations with all available sign-on capabilities for Azure, Office 365 and a wide range of SaaS applications including Google Apps and Dropbox among a few examples.

    There are a few different addition levels of which an organization should be aware. These are Azure Active Directory Basic, Azure Active Directory Premium P1, and Azure Active Directory Premium P2

    • Azure AD Basic - This edition is centered around cloud-based implementations for application access and self-service identity management which includes group-based access management, self-service password reset and Azure AD Application Proxy.
    • Azure AD Premium P1 - this is an enterprise level edition which provides identity management for on-premise users, remote users and hybrid users accessing applications both locally and over the cloud. This edition includes support for self-service identity, access management, administration of dynamic groups including self-service group management, as well as Microsoft Identity Manager which is a suite of on-premise identity and access management tools.
    • Azure AD Premium P2 - this edition includes all of the features of Azure AD Premium P1 with the addition of Identity Protection and Privileged Identity Management (PIM). Identity Protection provides management of conditional access to apps and critical data. PIM enhances management of privileged accounts tied to administrative access and other resources.
    • Additional versions are available in a pay-as-you-go editions such as Azure AD B2C for ID and access control of public apps. Also, Azure Multi-Factor Authentication can be implemented on a per-user or per-authentication basis.

    Benefits of Azure AD

    Azure AD provides a wide range of benefits when used in both cloud-based and hybrid implementations (where on-premise and cloud resources are used together), assisting with:

    1. Single identity creation and management of all users within an entire organization while providing synchronization of users, groups and devices via Azure AD Connect.
    2. Leverage of Azure AD's reliable HA for enterprise-class cloud presence with access management solutions.
    3. Control application security access with enforced rules-based policies that stretch across cloud-based applications and on-premise resources using Multi-Factor Authentication.
    4. Reduce support interaction and increase user productivity with the Azure AD MyApps portal to engage self-service password reset as well as manage group and application access requests.
    5. With Azure AD Application Proxy, a host of pre-integrated SaaS apps allow single sign-on access to a wide range of deployed apps within an organization.

    Additional considerations regarding synchronization, authentication and health monitoring in relation to Azure AD Connect enhance the overall benefits for organizations. Synchronization links on-premise and cloud-based resources and, in conjunction with password write-back, keeps user IDs, groups and other objects, including passwords, seamlessly up-to-date. Authentication methods with hybrid identity solutions in mind, including cloud authentication features such as Password Hash Synchronization / Pass-through Authentication or federated authentication (AD FS), provide effective security solutions. Health monitoring is available in a centralized location within the Azure portal where Azure AD Connect provides viewing of all activity.

    Intended Users

    Azure AD is a cloud-based integrated Active Directory implementation which can be used at all levels within an organization just like an on-premise AD forest structure. User-classes include the following:

    • IT administrators - with Azure AD Connect, admins can provide integration to existing Windows Server AD environments so that current on-premise resources and apps can be synchronized and managed with SaaS apps provided from the cloud. With increased security solutions, an organization can provide greater single sign on access and identity management for numerous apps hosted in cloud-based SaaS environments as well as those hosted on-premise. IT admins will find improved security over cloud-hosted resources with strengthened security, managed access control, collaborative enhancements and automated user identity lifecycle for assurance that compliance and security requirements are met.
    • App Developers - key app and SQL developers will find Azure Active Directory, no matter the edition in use, includes a wide array of tools for integration with the latest identity management solutions. SSO self-service and access control management features allow developers a wider range of options for delivery of important apps.
    • Office 365, Azure, or Dynamics CRM Online customers - tenants for these cloud-based products already use Azure AD so it can be put to use immediately with user access to cloud-base apps.

    Getting Started with Azure AD

    Administrators and developers can sign-up for 30-day trials of Azure AD to learn more about usage and implementation of the product.

    For a quick start, sign onto the Azure Portal where you can access Azure AD and create a new basic-tenant. To begin, you'll need a valid license and Global Administrator access in your portal account.

    Creation of a new tenant for Azure Active Directory can be easily and quickly achieved. Here are some instructions for a fast start at building your Azure AD environment:

    1. Sign into the Azure portal using a Global administrator account as noted above in the requirements.
    2. Select Azure Active Directory from the portal dashboard.
    3. Choose create resources.
    4. Then select identity and Azure Active Directory. At this point, the create directory page will appear.
    5. Next, enter your organizational name.
    6. Then enter the organizational domain name.
    7. Lastly, choose the country or region which should already be set to United States and then select create.

    The tenant will now be created with the domain matching the entries from the organizational and domain names.

    To further manage the tenant, especially if this is for testing purposes, deletion can be completed very easily. Simply log onto the Azure portal and select Azure Active Directory and then the name of the tenant you have created where you can select to delete the directory on the tenant page. The tenant and all associated information will be deleted if you make this choice so make sure this action is taken with care.

    Conclusion

    Azure Active Directory provides an entire organization with an impressive range of tools for internal support well as user productivity. With SSO and a variety of self-service tasks available to users, password resets and security access requests to applications and resources all can be completed without interaction with a helpdesk. Azure Active Directory also provides an extended, consistent, synchronized management apparatus into cloud-hosted resources and apps for strengthened security and delivery at improved cost.

    To learn more about Azure Active Directory, contact our experts at RoyalDiscount.com - your online source for cheap OEM, Retail & Cloud products.


  • How to Connect to Azure VM to RDP (Remote Desktop Protocols)

    azure vm rdp connection

    Azure cloud services are perfect for hosting VM's and offer ways for businesses to drive IT costs lower. The advantages of VM's cannot be minimized so creating and accessing them are very important to get up and running as soon as possible as well as gaining access to them with Remote Desktop. If you are getting started with Azure here are instructions to accomplish creation of a VM and then connect to your virtual environment.

    For anyone in need of testing VM's, Remote Desktop is part of the mix of helpful tools for using Azure hosting services or even developing a virtual footprint.

    • Everything begins with accessing the Azure Portal and creating a virtual machine. Once an account is established on Azure, it is then time to lay some foundations with testing over a remote connection.
    • Within the dashboard, build a VM by clicking on New from the menu.
    • This action will bring you to a choice of operating systems. After clicking your choice, you are then presented with a form where you will name and configure your VM.
    • Among the other settings you will choose are type of disk (SSD or HDD), the login credentials, the type of subscription, a resource group type and name, as well as the region where the VM will reside. Be aware that SSD is costlier than HDD if budget is a concern. If this is a test configuration, it may be best to stay with a HDD configuration and put your money into SSD-based VM's for your high-end server needs.
    • The next step in the process is choosing your machine type. There will be several choices based on subscription and your choice of disk types. Once you have chosen the type and the amount of vCPU and memory, you're ready to move to the next step.
    • Networking is the third step, where you will be presented with options to define your virtual network, subnet and other settings. The Auto-Shutdown feature is helpful because up-time is part of you cost in Azure. If the VM is not needed at all times, then this choice can cut costs, especially in a developmental environment. If you choose this setting you can define when the VM will be shutdown.
    • Once you complete all these steps, you are presented with a summary at which point you confirm and launch the VM creation process. After the VM build is completed, you are ready to begin working in your Azure environment. Once the VM is running, RDP (Remote Desktop) is now a primary tool to manage your virtual machine.

    However, if you first try to use the connect button, you may find that it will be grayed out. In this case, you need to configure a Network Inbound Rule which will allow connectivity to the machine (via the firewall created with the VM). Creating these rules can be very important since you may have a variety of security configurations and concerns. The main idea is to create a rule that you will be able to use for a number of different VM's. Also, regarding security, consider how many different IP addresses will be allowed to connect to your VM environment. For security purposes, the fewer addresses you allow the better, so plan appropriately.

    To access Network Inbound Rules, find Network Security Group in your Azure Portal dashboard. You may well find that applying some basic rules to your future VM's will be helpful. To complete creating the rule, you will need the port number used by RDP which is 3389. With this inbound rule now defined, you can use RDP to connect to your VM.

    When using RDP be aware that there are a number of options available. These can range from local accounts to domain logons. It will be up to you to use Azure's security to manage what accounts will have access over RDP to your VM's. Policies can be set in place which allow regular users frequent access via domain accounts over the RDP client. Accounts used for support and management can be placed in a separate policy since these may have administrative access. Other account level access can also be managed through security policies which you can create.

    Here are some quick instructions to connect with the RDP client:

    • From your Azure dashboard, click into Virtual Machines.
    • Select a VM to log onto with RDP.
    • There will be a connect symbol to click at the top of the VM page.
    • Clicking the symbol will trigger the "Connect to Virtual Machine" page from which you choose options and then click to "Download RDP file".
    • Once downloaded, click to open the file and connect (there may be a notice that the file is from unknown publisher but this is not unusual).
    • The Windows security page will appear where you will enter login credentials for the local VM or domain account you intend to use.

    Note that, unless the VM is a domain controller you will either use a local VM account or a domain user account. This means that if you are using a local account, you will enter the name of your VM as the domain name (vmname\username). Otherwise, if the VM is a domain member, you will enter the domain name and account (domain\username). In both cases there should be a password for the account being use which you already have. If your VM is a domain controller you must login with the credentials for a domain administrator account. Click "Yes" to verify connectivity and you should be logged onto your VM.

    VM's are extremely handy tools for creating virtual desktops and servers, so when you begin your Azure experience make sure you understand how to create and access them. Using security best practices will help you manage users accessing the virtual network appropriately while keeping intrusions to a minimum. Because of the nature of the VM's, RDP becomes an essential way to access them, so managing inbound rules with security groups and appropriately assigning user account security policies is most important. However, you can create and run VM's very quickly in your environment with little trouble and begin building your virtual network.

    To learn more about Azure products, RDP or RDS, contact the cloud experts at RoyalDiscount.com.


  • RDS Licensing

    remote desktop licensing (rds)

    Accessing your remote server implementations is highly important. With Microsoft server 2016, this is accomplished with Remote Desktop Services so that administrators can access and manage servers. This management is especially vital when servers exist in the cloud as virtual deployments. However, RDS is subject to licensing so let's take a look at how this process works as well as how you can implement license access to your virtual server environment. Before we get into how to setup the license server, let's discuss the types of licensing and other requirements.

    Licensing Modes and Other Concerns

    Every server comes with two Client Access Licenses (CAL) for accessing the operating system which is useful depending on the number of people who will log on your VM's. To start your RDS licensing, make sure you install the RDS role on all your servers. Next you need to make sure you have a license server installed on your network within 120 days of implementation or RDS will stop functioning. Once you have your license server installed then you must activate it and add your purchased CALs.

    With RDS licensing, there are two different modes which you can use. First is per user mode which means you must purchase a CAL for each and every person who will be using RDS to access your VM's. In this mode it does not matter how many devices are being used, but rather the number of users that are licensed. You must make sure that your CALs are added so that affected users can all log on and manage servers remotely. Using this mode, a licensed user can even use more than one device at a time since the licenses are associated with specific accounts. A server will accept any and all connections in this mode, however it is important to remember to buy the correct number of licenses and that they remain current with the agreement.

    The second mode of licensing is per device. Since licenses can be expensive, if you have a large number of people who will be accessing VM's but not constantly, then you may want to consider CALs per device. Licensing on a per device basis means that only a certain number of devices will be allowed connection via RDS at any given time. Your pool of CALs will provide the access until they are all used up, then other users will not be able to logon and will have to wait for an available CAL. But multiple users can still login from the same device if you wanted to purchase one license for a specific computer to be used for the purposes of RDS access.

    Other details to keep in mind for your Remote Desktop Services licensing are as follows:

    • CALs must be the same Windows server version as that to which the user or device will be connecting.
    • Your chosen RDS licensing server must be version 2016. Licenses for any previous versions can be hosted on Windows server 2016. The compatibility runs backward but not forward, meaning that a licensing server using Windows server 2012 could not host licenses for Windows server 2016.
    • There is no way to convert old licenses to 2016.
    • Upgrading the license server requires the need to delete the license database and then upgrade the server. This means it's better to create a new server and install the licensing role with the newest CAL version.

    Installing Remote Desktop License Manager

    Installing the Remote Desktop licensing role is a straightforward process, especially if you have installed roles on servers previously. A best practice is to install the license server on your domain, commonly done on domain controllers. Here are the instructions to follow:

    1. From Server Manager, click on the RDS node.
    2. Then click on RD licensing.
    3. Where you are logged on, click Next and Add RDS Manager
    4. Soon after you have added the role it will complete installation.
    5. Activate RD licensing by opening the Remote Desktop Licensing Manager (open Server Manager, click Tools, click Remote Desktop Services, click RD Licensing Manager).
    6. Right-click on the name of your RD license server and then left click on activate server.
    7. A wizard will appear and you will click next, then leave the next setting on "Automatic connection if the license server is connected to the Internet".
    8. Enter all the required information and any optional information that you wish to include, then click Next.
    9. Note that Start Install Licenses Wizard now will be checked by default so you can just click Next.
    10. Another welcome page will appear on which you can click Next to view the license program page where you will pick the type of license to be installed. Here you must choose the type of license which has been purchased, then click Next.
    11. Now you will be given the opportunity to enter all of the license codes which have been purchased. Once complete click Next.
    12. At this point, you will see all of the licenses by description in the right window pane when you click on the license server on the list in the left pane.

    License Management

    There are several considerations of which you should be aware for managing your licenses:

    • Any new licenses purchased must be added to the RDS license server from the Remote Desktop Licensing Manager where you will use much the same process to add them.
    • Once you have installed your license manager, if you see a yellow triangle warning beside your server you may need to add the licensing server to your active directory domain (if you have not done so already, which is a good reason to install it on a domain controller). To add the licensing server, simply right-click on your server list and select review configuration where you will have the option to add it to an Active Directory group. This action should resolve your problem. You can also confirm that your license server is correctly added to the proper AD group by using Active Directory Users and Computers (ADUC) to navigate to built-in groups and checking the subgroup for Terminal Server License Servers.
    • Otherwise there may be times when you need to migrate your CALs to another server. This is done from the Licensing Manager where you will right-click on the name of the licensing server and then select manage licenses. This action will open a wizard and you will click Next on the welcome page and then choose the first option on the Action Selection page. You can then choose that you are replacing your license server and, after clicking Next, you will enter the name or IP address of the replacement server. At this point you will be required to enter in your server key or agreement number, then confirm all the licenses you are migrating by adding all of them, then click Next. The licenses will be transferred to the new license server. If the new license server is offline, you will have to obtain the license server ID by logging onto the new server and obtaining it from the license server properties and entering the information into the wizard on your original license server.
    • You may also need to remove specific license packs from your license server. This is done by accessing the license server database with PowerShell (use the command: Get-WmiObject Win32_TSLicenseKeyPack, to see the list of license packs, then use the number of the license pack, or PackKeyID, with the command: wmic /namespace:\root\CIMV2 PATH Win32_TSLicenseKeyPack CALL UninstallLicenseKeyPackWithId [PackKeyID]). Once these series of commands are completed, you will need to rebuild the database either manually or automatically using the wizard from right clicking on the server name in the license manager. Choose manage licenses and this time in the action selection page choose the second choice for rebuild database. After you click next you will confirm that the database will be deleted after which you have the opportunity to reinstall your licenses with the wizard. Rebuilding manually means that you must stop the licensing services and rename the database file from TLSlic.edb to something like TLSlic.old, then restart the service.

    Those are the basics for understanding CALs for RDS, installing the Remote Desktop license manager and managing your CALs. To learn more about Azure Services, VM's and Remote Desktop Client access, contact our experts at RoyalDiscount.com- Your online source for cheap OEM, Retail & Cloud products.


  • Azure VMs: 7 Reasons to Switch to Azure Virtual Machines

    Azure VMs: Pricing, Licensing & Features

    Azure storage and VM volumes provide the incredibly useful platform many businesses choose today for cloud solutions. Highly available, well-maintained and adaptable - all with cost in mind, Azure makes VM infrastructures easier than ever to improve business profitability with lower overhead. Azure VM servers can be brought online in minutes and configured for maximum business growth. Here's why businesses look to Azure's platform for VM infrastructure:

    1. OS Flexibility

    Operating systems are chosen with business need in mind. No longer do many businesses operate a single operating system on their servers. With VM servers now a staple of IT environments, Azure's flexible OS offerings make implementation of variable VM infrastructures easier than ever to accomplish. Azure VMs now support more than Windows Server, including Linux, IBM, Oracle, SQL Server, and SAP. Extending data center effectiveness is a breeze with all the choices available from Azure VMs making virtualization an unequaled IT investment for many business organizations.

    azure vm computer

    2. Resource Scalability

    All businesses are concerned with the cost of IT hardware. Scaling hardware can be difficult with budget constraints, especially with costly servers. Starting new projects and implementations can be challenging due to high costs. Arrival of high-end equipment can delay IT progress even further, let alone damaged shipments

    With Azure VMs, scalability creates a nimbler business model. Servers can be put into production in minutes rather than weeks, so development teams can complete requirements of testing and staging of new applications without delays from hardware.

    With a few developed image templates, even large projects can be underway in far less time than it takes to order, deliver and rack servers Scaling is fast and efficient while adhering to organizational goals and policies.

    3. Flexible VM Pricing

    Azure pricing is based on subscriptions which can be adjusted at need. No longer do companies need to waste time counting total cost with licenses or specialized equipment. Azure VMs are cost-efficient and easily maintained, reducing cost of ownership far below that of physical servers.

    Based on subscription need, the number of Azure VMs can easily be increased or decreased. A temporary need for additional VMs no longer requires years of financial commitment due to asset life-cycle. A temporary VM can be created and removed without the long-term consequences that physical servers require, especially when considering the cost of support. This reality is especially important when special application requirements call for faster, more powerful computing resources. The cost of the server is no longer spread out over five years but, instead, costs only for what the business needs for a specific time, meaning a drastic savings for companies and their IT commitments.

    Using Reserved Instances for VM in Azure can also reduce cost further. While these reserved instances require some commitment, they can be canceled or shifted as needed, unlike physical servers which are assets that stay on financial books for years and can only be disposed of at a loss. Reserved instances create virtual assets that can be shifted and changed as needed at costs that are even lower than pay-as-you-go plans. Combined with scalability and operating system flexibility, Azure VMs completely change the foundation of a company's IT resources.

    4. Reduction in Overhead & Costs

    IT organizations no longer need a commitment to larger employee support staffing. Budgets are reduced and more stable, creating higher profitability. Streamlined IT staffing no longer burdens the company, allowing for improved support margins and higher productivity. VMs ease the effects of such financial bottlenecks and Azure provides all the benefits of this relief with far fewer headaches for corporate management.

    5. Increased Security

    Azure puts a premium on security at all levels and VMs are no different. Azure Resource Manager ensures companies control access to VMs. Meanwhile, backup or failover goals are easily achieved with Azure Backup or Azure Site Recovery. Safe, well-maintained datacenters with encrypted connections ensure far better up-time and recovery in the event of site outages.

    azure virtual machine secured

    7. Ease of Use

    With templates, Azure VMs can be put into production far faster than with conventional servers. Customers can create their own templates and maintain them or make use of standard ones on Azure Resource Manager. New VMs can be available in minutes rather than weeks creating a nimble IT business model all businesses can enjoy. Development plans are much simpler, especially with migration and planning tools available in Azure Resource Manager making implementation far faster than ever so companies can relieve all internal bottlenecks whether they be support or budgetary in nature.

    7. The Benefits of Azure

    Microsoft's cloud platform has grown and widened in usefulness in recent years, rivaling or surpassing that of competitors. Azure provides a solid VM platform with a wide range of server offerings to satisfy all levels of need. Redundancy and business consistency make VM infrastructure even more effective than ever. Data centers with a wide-range of products complete with high-availability and many related offerings present even the largest of customers with the necessary options for VM infrastructure whether companies need general-use computing, memory optimized VMs, as well as burstable and compute optimized VMs.

    Add SQL instances with the latest features as well as backup and recovery options created for any business class in mind and Azure VMs become a prized asset in an era of increased competition. The latest of the Azure cloud is maintained, patched and secured, leaving management assured of business consistency.

    VMs are now the foundation of cost-efficient IT business models. Microsoft Azure VM instances are a widely used, effective cloud-based model every business can use to achieve lower costs, higher profits, better security, and business consistency while creating a nimble business environment. Find the right VMs for any budget and needs to begin creating a more robust IT infrastructure with Azure and its wide range of VMs.

    To learn more about Azure VMs, contact our experts at  RoyalDiscount.com - your online source for cheap OEM, Retail & Cloud products.


  • The Definitive Guide To Microsoft Azure

    microsoft azure transferring files

    What was once called Windows Azure is now known as Microsoft Azure and if you like to keep up-to-date with current tech-related news, you have probably heard the name a lot. Perhaps though, you have heard about it but have no idea what it actually is. In this post, our definitive guide to Microsoft Azure, we will outline the basics and some important specifics about Microsoft Azure, lifting the lid on what it is used for and why it is important.

    What Then Is Microsoft Azure?

    Microsoft Azure is the computing giant's cloud computing service which in a very similar way to both Google's Cloud Platform and Amazon Web Services, otherwise known as AWS.

    Now before you think you know what we mean when we say Cloud Computing, it's worth pointing out we don't mean that very open-to-interpretation term that is tagged on to every and any consumer service that stores your data and personal data on a remote server somewhere in America.

    Microsoft Azure is actually cloud computing in the form of a service designed for anyone from big organisations and companies to individual users who want to benefit from it.

    In the past, it was normal for organizations and companies to handle the hosting of their own infrastructure. So a company would have its own hardware that handled its own server, be it a web or email server. If it required more power, the company would need to purchase more hardware. The company would also need to pay for a solid internet connection for its customers to use and an individual to take care of hardware administration. As an alternative, many web hosting companies offer hosting for business services using their server hardware inside their own data centres, at cost.

    Cloud computing however, works in something of a different way though. Instead of running your own hardware or paying to use hardware in another company's data centre, you essentially pay to access a directory of resources provided by Google, Amazon, or in this case, Microsoft.

    This gives you the option to host whatever you want, whether it is user directories, virtual machines, servers for storing files, databases, email servers or web servers.

    If you need further computing resources, there is no need to buy new hardware, because as and when you need it, the 'cloud' can share with you the hardware and assigning the work automatically. You only pay for the amount of resources you require and not a set amount of hardware servers, stored away somewhere.

     

    How You Can Use Microsoft And Why You Might Want To

    When you use cloud computing via Microsoft Azure, it costs less upfront. There is no need to spend a lot of money, for instance, on setting up your own data centre, filling it with the necessary hardware and then hiring a workforce to run it. There is also never a risk of paying too much for more hardware than you require and likewise, there is no risk on buying not enough or not having the resources you require.

    Rather you just host the resources you require in the cloud through Microsoft Azure. You pay for what you use, when you use them. When you require more, it can be set up to automatically expand to take on the greater demand. Whereas, if you do not need quite as much, you won't be paying for resources you aren't using.

    This is why everything from an organisation or business's public access websites to their mobile app services to their company email server are being held via cloud computing.

     

    azure cloud hosting

     

    What Can You Do With Microsoft Azure?

    On its website, there is a full directory consisting of numerous services available for you to use, including backups, file storage, databases, full virtual machines and web and mobile app services.

    The reason its name was changed from Windows Azure to Microsoft Azure when it was developed and expanded to handle more than Windows. In fact, you are able to run both Linux and Windows virtual machines with Azure, as you require.

    When you start to browse through the directory of services, you will be see you can use Azure to do just about anything. Anything you need to do that Azure can't do directly, you can create a Linux or Windows virtual machine to host and use whatever software you need. If you wanted or needed to, you could host a Linux or Windows desktop in the cloud using a virtual machine and set up a remote connection to it. This is just another example of how you can use cloud computing resources.

    In the next part of our post we will now take a look at some more of the specifics of Azure and how it can be used. We will cover:

    • Azure Backup
    • Azure VM
    • Azure Active Directory
    • SQL In Azure
    • Major Benefits Microsoft Azure Brings To Businesses

    Azure Backup

    As the name suggests, Azure Backup is a service that enables you to protect or backup data into Microsoft's cloud. This service can be used therefore to replace any existing off-site or on-site backup facilities you may already have with a solution based in the cloud that is not only affordable, but secure and reliable.

    This service offers various components that you can download and use either in the cloud or on an appropriate server or computer. The particular agent or component you use will depend on the what you need to backup or protect. All of the available components of Azure Backup can be used for backing up data into a vault for Recovery Services within Azure.

    Why Would You Backup With Azure?

    Normal solutions for backup have developed to use the cloud merely as a static storage location in in a similar way to tapes and disks or an endpoint. Although this is a simplistic approach it is also restrictive and therefore translates to an inefficient and rather expensive backup solution because it doesn't make use of any underlying cloud platform.

    Further to this, other backup solutions are expensive as you end up paying a lot for storage that is not useful for you or storage that is the wrong kind. Also, they are inefficient as they do not provide you with the amount or kind of storage you require or administrative tasks involved with running them take up too much time.

    Azure Backup, on the other hand, delivers key benefits such as:

    • Auto Storage Management
    • Unlimited Scaling
    • Multiple Storage Options
    • Unlimited Data Transfer
    • Data Encryption
    • Application-Consistent Backup
    • Long-Term Retention

     

    azure portal

     

    Azure Active Directory

    Azure AD or Azure Active Directory is cloud-based identity and directory management service. It is a combination of application access management, advanced identity governance and core directory services. Azure Active Directory also provides a comprehensive and platform based on standards that allows developers to offer access control for applications based on central rules and policy.

    Azure AD for IT administrators provides an easy and cost-effective solution for business partners and employees to access numerous SaaS applications in the cloud via an SSO or single-sign on. Applications such as Concur, DropBox, Salesforce.com and Office365.

    Azure AD for developers of applications, enables you to focus your attention on building your applications by making it simpler and quicker to create integrations world-class identity management solutions utilized by literally millions of individuals and organizations throughout the world.

    With Azure Active Directory, there is also a whole identity management capability suite that includes:

    • Security monitoring and alerting
    • Rich auditing
    • Application usage monitoring
    • Role-based access control
    • Privileged account management
    • Self-service group management
    • Self-service password management
    • Device registration
    • Multi-factor authentication

    What Are Azure Virtual Machines?

    Azure Virtual Machines or Azure VM gives you the versatility to virtualise a wide array of computing solutions, such as data centre extensions, application running, development and testing. It gives the freedom of open source software that has the configuration you require. Consider this like another rack in your data centre, that gives you the ability to deploy a specific application not in the weeks it took in the past, but in mere seconds.

    You Get More Choice

    When it comes to Azure VM it's all about the range of choice you have. You can choose either Windows or Linux and then can choose whether you want it to be in the cloud on the premises or both.

    Scaled To What You Require

    A Combination of supercomputer performance with the cloud's scalability. Scale it from either one virtual machine to thousands. You can easily scale worldwide, to be closer to your customers, thanks to the increase in regional Azure data centres.

    SQL Azure

    You may have heard of SQL Azure - it is an important part of Windows Azure and is a services suite that provides data services web services infrastructure and hosted computing. This component of Azure, combines cloud computing service functionality with an SQL Server's complete relational database functionality. This is service is hosted from Microsoft data centres across the world.

    This is normally a good option when you require the services of a database. However, there are few aspects of business that SQL Azure would be particularly useful for:

    Collaborating - SQL Azure can be used to help establish a hub for collaboration, by storing your data in the cloud. In order to share information access across various boundaries within organisations, from one branch office to another etc. When you make use of hosted services, you can keep your data safe and secure, while eliminating roadblocks on the network.

    Scale - One of the biggest advantages of cloud computing is being able to add infrastructures when required. This makes it easier for you to scale up and expand or scale down the capacity of an application as and when it is necessary. Which is especially useful when there are dramatic changes to hosted application peak usage.

    Consolidation - As the relational database functionality need increases and starts to trickle down to specific work groups and departments, it can be a challenge to database sprawl internal management. With SQL Azure you can consolidate simplified management, turn-key provisioning with work group and departmental databases, to enable administrators can meet the needs of departments much easier.

    Hosted Applications - If you have already started using Windows Azure to host various workloads, it will be easy to integrate workloads of hosted relational databases. It can also assist in maximizing performance of applications by decreasing the volume of traffic on the network.

    Cost-Effective - It depends on the workloads you want to install, but cloud computing offers a PAYG model that may be the most effective approach in terms of expense.

    Major Benefits Microsoft Azure Brings To Businesses

    Now that we have discussed a little more about Microsoft Azure, it is worth understanding the actual benefits it can give businesses.

    Microsoft Azure Is Very Fast In All The Important And Best Ways

    In any business, speed is crucial and is generally seen as a advantage over competition. Azure benefits businesses in speed in three specific ways -

    • Deployment Speed
    • Operation Speed
    • Scalability Speed

    Even the most experienced and successful cloud providers would find it virtually impossible to compete against a business with all three functions firmly in place.

    Microsoft Azure Helps Increase Business Agility

    Businesses that make use of Azure have faster cycles for deployment than those using solutions on-premises. This enables them to become more iterative and benefit from greater amounts of responsive feedback while they develop applications.

    This then provides them with the opportunity to explore technology outcomes in a way that will suit the objectives of their business.

    In terms of finances – these cycles enable a measure of suitability without a complex infrastructure set up or outlay that costs too much.

    Business agility, we are sure you can see, is about failing faster, but growing quicker, rather than only maintaining standards.

     

    azure hosting security

     

    Your Global Reach Can Be Matched By Azure

    If your clients need data capabilities built for a worldwide scale, it can be hard if you are just relying on traditional data centres. In this regard Azure offers a huge advantage in that it can adapt to coincide with the utilisation and performance requirements of your business. This then reduces the necessity for a team to monitor behaviours and rather, focus on your business objectives.

    From the point of view of users, their experience will always be great and how great it is will not be determined by their location.

    While there is an argument that smaller organisations are the only kinds of businesses that can exploit this scale. This is not strictly true. BP, for example, only recently utilised this functionality of Azure as a migration driver.

    The Integration Development Environment

    Along with what we have already stated Azure benefits from Visual Studio – the leading development environment in the world. Which really is a game-changer. This means the dramatic reduction in the learning curb that comes with using a new platform. This is great in two important ways:

    It helps you to avoid a skill mismatch

    Enables teams to be deployed quickly and to learn while they work on a project or task.

    As part of this integration, Azure shows the willingness of it to adapt to what developers need. From a day to day perspective, developers are who benefit the most from Azure.

    The Full Integration Delivery Pipeline Provided By Azure

    When trying to show the true benefits of using Azure that Google and AWS don't provide,, it is more about the whole package rather than just the storage.

    So when you look at Azure from the perspective of architecture, you need a unified delivery pipeline. When it comes to Azure, this is:

    • Source control
    • Unit testing
    • Integration testing
    • Delivery
    • Go live tools

    Along with this, many could argue that it would benefit businesses to make use of specific tools from a variety of different providers. Ensuring greater ease of use for the majority of providers through APIs etc. Although, when it comes to fears regarding issues of integration and improved continuity, you are in a better position when all the tools you are using are all in the same place.

    When it comes to future updates though, Azure does this in a way that is still of benefit to others in their pipeline. This ensures that there is going to be long-term success.

    Azure Solves The Problem of Recovery Disasters

    If you have a business that has a worldwide footprint, you may need a solution that coincides with your need to transfer data on a global scale. Along with this, the CSOs have a stronghold to maintain so that disaster recovery capabilities are considered, including objectives for recovery points and locations for fail-overs. Azure has this covered.

    They do this by having:

    • Fail-over options on a global and regional level
    • Standby models both cold and hot
    • Capabilities for rolling reboots

    All of these can be worked with straight from the box. Which puts them far ahead of the standard options available from on-premises platforms.

    Although the topic of data recovery may not always be considered the most important business decision, a company could face disastrous legal implications if they are separated from their data at all for even just a day.

    Flexible Expenditure

    Although it is perceived to be cheaper than using private cloud computing, Azure isn't really. This is not a problem, though. One particular advantage of computing in the cloud with Azure is you're able to test band new solutions and how they impact, in a cost-effective way. Once you have finished this, you are then able to scale the areas that give the best outcomes for your business in a very tactful way.

    Increase Your SQL Databases' Return On Investment - While your costs may increase, your ROI is likely to improve, while decreasing the amount you pay for resources that are inefficient. When you choose to make changes to revenue models or experience differences from season to season, you only need to adapt things in your Azure Portal. Your CFO will see this as a success in the long-term.

     

     

    Using Azure To Become Securer

    One of the most important and impactful parts of Azure's security is the facility for seamless and secure logging on and off for users. Whether that is with regards to business to consumer or business to business.

    Users have easy access to all relevant platforms without having to remember complicated passwords, using Azure SSO. By doing this, you are able to decrease the chance for hackers to access important accounts, while enabling controls that are device and location specific.

    Azure Can Help You Meet Compliance Regulations

    Taking the bigger picture into consideration, organizations do not want to consider that solutions they choose or their data is meeting policies based on locations or meeting industry standards.

    It is likely that you would rather focus in on the outcomes of business.

    The heritage of Microsoft enables them to provide platforms suiting this requirement constantly, and have taken on all the heavy lifting. Particularly within sectors such as finance, which with data policies and GDPR, they have been able to establish solutions that give great scope with maintaining the sovereignty

    You Can Deploy Azure Absolutely Anywhere

    Unlike other cloud providers, such as Amazon Web Services for instance, that try to push of a future where cloud-first is a way of life in business, others consider it to be more appropriate to adopt a more hybrid model.

    Microsoft built the Azure Stack offering, with the above in mind, as a way to ensure their customers and clients benefit from all of the different benefits we have mentioned above and Additionally to practices and patterns. This is done while making use of wide array of providers of proven hardware for all their requirements on-premises.

    Moving forward, as a business you can select exactly where you want your data to reside. The change can actually be a lot easier than you suggest when choosing to press on with Azure.

    For more information on Microsoft Products or Services, contact our team at Royal Discount. Your source for Microsoft software and licensing. Reach our azure licensing desk directly at 1-877-292-7712.


  • Comparison Guide for Microsoft Office Versions

    Office Computer

    Microsoft created Office in a wide range of versions to fit many different needs. Each version is built to address the main needs for a user-class, whether home, business or academic. But with so many versions you may wonder which version is best for you. With that in mind, here is a guide to assist in your choice between Office versions.

    First, all versions of Microsoft Office have the staple applications, Word, Excel, PowerPoint and OneNote. These applications are in wide usage in many industries with Word and Excel formatted documents some of the most the common standards. For basic versions you will have what you need to accomplish regular tasks with these basic applications. PowerPoint is a great tool for making all kinds of presentations even for students. OneNote is a handy application which can be used for a large variety of activities, even capturing recordings and video. Additionally, all Microsoft Office versions offer product support.

    All Microsoft Office 365 versions have some additional features and licensing. Regarding the latter point, Office 365 is an annual subscription regardless of whether the version is Home, Personal or University. However, these versions vary in the number of devices on which the subscription can be used. Office 365 Home can be used on up to five PCs, Macs or tablets as well as 5 phones. Office 365 Personal is less expensive but only offers use on one computer device and 1 phone. Meanwhile, Office 365 University can be licensed for two computers and 2 phones.

    In addition to being subscription-based, all Office 365 versions offer some extras that may not be available on other Office version. Office 365 includes Outlook, Publisher and Access as well as 1TB of cloud storage via OneDrive for either five users (Home version) or 1 user (Personal and University). Additionally, Office 365 subscribers have sixty free minutes of Skype per month for between five users (Home) and one user (Personal and University). Finally, Office 365 offers continually up-to-date applications, so subscribers have all the latest features at their fingertips.

    All other versions of Microsoft Office 2016 are one-time purchased licenses at varying prices depending on your need. None of these one-time purchase version offers Ccoud storage, Skype minutes or continual updates (meaning when the license is expired, or Office 2016 is no longer supported, you may not receive any new updates). Each version is licensed for one computer only.

    Office Home and Student 2016 (PC and Mac versions) offers the same staple of applications that will keep you working on any common tasks you have. As mentioned above, these applications are Word, Excel, PowerPoint and OneNote.

    Office Home and Business 2016 (PC and Mac versions) have the same licensing and four main applications but add Outlook for your email needs. Business-class users can take advantage of robust email functions in Outlook, whether organization is small or large, to track calendar events and tasks as well as use domain-branded emailing, especially when email is hosted by the company. Outlook greatly enhances the collaborative features of the other Office applications in the version bundle.

    For those users with additional needs, Office Professional 2016 offers the same applications as the Home and Business versions (without support for Mac). Additional included applications are Publisher and Access. Professional users in need of database services without server availability can make use of Access to build a business database. Meanwhile, Publisher offers users the ability to create high-quality documents of all kinds from brochures to posters and much more.

    Microsoft Office is a robust group of applications offered in a variety of packages to meet anyone's needs. Office 365 subscription packages offer suitable extras for home, school and business use. One-time licensed versions can offer all the necessary applications while adding more applications for business-class users. Regardless of the version you need, you can rest assured that Microsoft Office will meet your needs with powerful, versatile applications. Meanwhile, Access and Publisher both extend the ability of the high-end business-class users with additional resources.

    For additional clarification of the offered versions, view of the Microsoft Office comparison guide in the table below:

    office comparison chart

    Office offers just what you need so purchase only what you need. The Office version guide pictured above should clarify what you need based on cost, type of licensing and applications or extra features offered. To learn more about Microsoft Office and what applications best benefit you, contact our experts at RoyalDiscount.com - your online source for cheap OEM, Retail & Cloud products.


  • What's the Difference? Azure Backup Vault Vs Site Recovery

    azure vault azure site recovery

    Business consistency needs vary from organization to organization. Larger IT organizations with heavier dependency on applications require more robust business consistency and disaster recovery. However, smaller, less dependent IT implementations may not need as intensive plans for data back-up and recovery as enterprise-class customers. Microsoft Azure provides two different models from which to choose with its recovery services

    · Backup Vault or the newer Azure Recovery Services Vault

    · Site Recovery Services

    The names of these two services suggest they cover the same needs, but they are different models. Backup Vault is used to perform backups that most organizations currently use. With Azure, the Backup Vault/Azure Recovery Services Vault replaces older technology with backup to the cloud. With Backup Vault more granular backup and restoration can be done down to individual files.

    Meanwhile, Site Recovery services is a different model for business recovery altogether. Site Recovery services replicates entire site data, physical servers, VMs and even network services. In this manner, an entire site has redundancy for high availability, failover and failback services. With a Site Recovery subscription, business consistency is achieved through replication either from an on-premise to cloud model or a cloud to cloud model.

    The distinction between Backup Vault and Site Recovery services is that, while both operate by storing data to the cloud for business consistency and disaster recovery, they achieve similar goals differently. Backup Vault uses the traditional method of backup but without the necessity of tape, using the Azure cloud instead. Site Recovery services achieves business consistency by site replication and failover/failback operations.

    Azure Backup Vault

    Azure Backup Vault is a backup solution most familiar to IT personnel where data is backed up so that it can be restored as necessary. The traditional method was to backup to tapes and send them off site. With Azure Backup Vault, tapes and tape drives are no longer necessary as data is backed up to the Azure cloud-based vault. Cost is reduced through the elimination of older equipment and the reduction of restoration time with backed up data always available.

    Backup Vault works as a cloud-to-cloud implementation where cloud-based VMs and data can be backed-up to the Backup Vault without disruption to services. Additionally, on-premise physical servers and VMs can be backed up to the Azure Backup Vault by installing an agent to handle the management of backup policies.

    A wide array of backup components may be used with Backup Vault to accomplish business consistency and disaster recovery goals. Azure Backup (MARS) agent is used for on-

    premise physical and VM server to backup data just like a traditional backup paradigm but without the need for a backup server. System Center DPM provides a wider variety of backup options including Linux OS backups from VMs and even options for on-premise tapes. Azure Backup Server has as many options as System Center DPM without tape support. Azure IaaS VM Backup will backup VM servers but only allows for restoration at the server level.

    Scenarios for the various components differ with some overlap. Also, Linux support among these various components differs, but all are effective ways to protect data for business consistency using a traditional backup model. For more information about Backup Vault components as well as specific OS and application backup support, contact your representative at Royal Discount.

    Azure Recovery Services Vault

    Azure Site Recovery is a new service with more advanced options for large instances and enterprises. Backup Vaults are still supported but can no longer be created since it was based on Azure Service Manager as an early version of the vaults. Recovery Services Vaults are the second version in which Azure Resource Manager model features were introduced. As such, Recovery Services Vault contains features not available in the original Backup Vault. Upgrades to Recovery Services Vault are available and retain backup data as part of the upgrade process.

    New features in Recovery Services Vault include:

    · Enhanced security features for backup that allow for data recovery even if production and backup servers are compromised

    · Central monitoring of hybrid IT environments which extends monitoring of assets from Azure IaaS VMs to on-premise assets from a central point.

    · Role-Based Access Control: there are three built-in roles to manage recovery points in Azure Recovery Services Vault so backup and restore user controls can be enforced.

    · All types of Azure VMs are protected: Premium Disks, Managed Disks and Encrypted VMs are all protected in the new Azure Resource Manager model. Upgraded vaults will retain former Service Manager recovery points while gaining the ability to configure protection policies for the upgraded Resource Manager-based VMs.

    · Instantly restore data from IaaS VMs: whereas Service Manager-based IaaS VMs in Backup Vault could only be restored to the VM level, new Resource Manager-based IaaS VMs can be restored down to the folder and file level within the VM. This new feature provides faster data restoration for both Windows and Linux OS VMs.

    Azure Site Recovery Services

    Site Recovery Services follows a more robust model for business consistency and disaster recovery by allowing full site replication for failover and failback events. With redundant sites, even down to network configurations, business consistency meets high availability standards for larger, more technically dependent organizations.

    With Site Recovery Services, a wide range of requirements can be met and managed to include even manual intervention for more specialized applications. Microsoft has tested many widely used applications and workloads for replication and site recovery. Site Recovery Services even provides burst services for high-demand operational time-frames along with a large number of tools to assess, manage and monitor assets for optimal business consistency.

    Why Choose Backup Vault/Recovery Services Vault?

    Vault-based backup and recovery deployments follow a traditional model of business consistency and disaster recovery by backing up data in a variety of policies, some even with tape systems. On-premise, hybrid implementations without the need for high availability can easily manage backups. Upgrading to Recovery Services Vault for Resource Manager-based features improves backup management and security while retaining the components to allow for flexible backup models that use either cloud or tape backup technology. Additional security features in Recovery Services Vault provide advanced restoration even for compromised systems.

    Why Choose Site Recovery Services?

    With high availability needs, an organization is able to use Site Recovery Services to meet higher demands for business consistency and disaster recovery. Sites are replicated even to the network level while a wide range of applications and workloads can be accommodated for failover/failback events, testing new applications, and increased workload demands all while retaining security through encrypted connections. Site Recovery Services meets the needs for the highest of IT environment demands at cost.

    To determine your business consistency and disaster recovery needs, consider the dynamics of your organization and the demands placed on your IT environment. If high availability for your site is a priority, then Azure Sire Recovery Services may fit your needs. If high availability is not an issue, you may find Azure's vault-based technology to be the best answer for data protection. Consider upgrading your existing Backup Vault to Recovery Services Vault to leverage new, advanced features. Have questions? Learn more at https://www.royaldiscount.com/ - To request more information on cloud services, speak with our Microsoft licensing experts at 1-877-292-7712.


  • Azure Site Recovery Migration & Deployment Guide

    azure site recovery migration

    Starting from the Beginning

    All the research has been completed. All the decisions have been made to use Azure Site Recovery. Now the real work begins with planning the deployment. Beyond creating an Azure Portal account and budgeting for cloud storage and other services, decisions must now be made to execute the move to the cloud and/or site recovery. Current information is needed for determining what VM servers can be migrated or replicated to the cloud.

    Fortunately, new and old customers of Azure services alike can take advantage of one tool to assist with planning and completing a Site Recovery implementation. The Site Recovery Deployment Planner for VMware and Hyper-V presents a handy set of features that easily assists with planning your Site Recovery project, so you can successfully complete the project while meeting all the requirements defined for business consistency and disaster recovery.

    How the Deployment Planner Assists

    The latest version of the planner is now available for enterprise customers and provides insights into an IT environment. The tool delivers enterprise customers with three key types of information:

    1. Customers with either VMware and/or Hyper-V VMs can determine the scope of their on-premises network requirements based on their current number of servers and application demands.

    2. The planner also assists with calculating storage requirements for satisfactory replication to Site Recovery storage.

    3. Also, the planner assesses infrastructure needs for test failover or application failovers.

    With these key data points, customers can determine their precise infrastructure requirements to estimate their total costs involved for meeting disaster recovery needs. With the tool, total cost estimates and licenses can be determined for an associated subscription with currency specified to generate a report that includes needs and pricing for compute, storage, network and Site Recovery. The tool's reporting can be completed without installing any software or creating a negative impact on the existing VM environment since it collects performance data directly from VM environment host servers (either Hyper-V or VMware hosts).

    Information Gathered by the Deployment Planner Tool

    By using the planner, the following information will be extracted to discover infrastructure topography and meet project objectives with precision:

    · Compatibility Assessment - VM servers are assessed for eligibility for use in Azure with Site Recovery

    · Network bandwidth needs versus Recovery Point Objects (RPO) - this provides estimates for required bandwidth for delta replication, expected throughput for Site Recovery between on-premises equipment to Azure, what RPO can be achieved given existing bandwidth, and any impact to RPO for choosing a lower bandwidth.

    · Required Microsoft Azure infrastructure - determine the following factors based on VMs: type of storage needed (standard or premium), the total number of accounts necessary (standard or premium) when setting up replication, storage-account placement of all VMs, how many cores will be needed for test and application failovers, and Azure VM size recommendations for on-premise VMs

    · Required on-premise infrastructure - the required free storage of volumes for Hyper-V volumes for successful replication, copy frequency maximums for Hyper-V replication and requirements for the number of process and configuration servers for VMware replication to Azure scenarios.

    · Guidance for initial replication batching - the planner determines the number of VMs that can be initially replicated.

    · Estimates for disaster recovery (DR) cost with Azure - specifics for total DR cost with detailed cost analysis for each VM

    · Determining growth estimates - future demands for on-premise workload and demand growth are assessed for future planning and budget projections.

    Deployment Planner Modes and Output

    The planner runs in three modes to generate effective reports, so enterprise customers can create the most complete picture of their IT needs and the scope of the project:

    1. Profiling mode gathers information for on-site VM equipment and existing VMs to gain an overall profile of performance by connecting to host servers for Hyper-V or VMware hosted VMs. A number of performance counters are gathered over several days up to a month for an accurate picture of site needs for storage, compute, network, and Site Recovery infrastructure as well as bandwidth discovery.

    2. The planner summary mode generates a report from the data created while in profiling mode. A generated report in the form of a spreadsheet details: current information, creates recommendations, determines storage needs, details which VMs are compatible and which are not, assesses Hyper-V requirements for storage and batching as well as provides cost estimates.

    3. Network bandwidth is determined with the Throughput Calculation mode. With this mode, bandwidth needs, and recommendations are provided even if throttling is necessary.

    With the Azure Site Recovery Deployment Planner, enterprise-class customers can achieve all expectations and requirements from Microsoft Azure for best outcomes of deployment. To learn more about Microsoft Azure Site Recovery and the Deployment Planner for VMs, contact our experts at RoyalDiscount.com - Your online source for cheap OEM, Retail & Cloud products.