MSDN Magazine: Windows Server / NT
All MSDN Magazine Topics
Test Run: Configuration Testing With Virtual Server, Part 2
Dr. James McCaffrey and Paul Despe - December 2008
Because Virtual Server is built upon a set of COM modules, you can automate the creation and testing of virtual machines. Here we use Windows PowerShell to run the tests.
Access Control: Understanding Windows File And Registry Permissions
John R. Michener - November 2008
Understanding the ACLs that govern permissions and rights before an operation is allowed to proceed is critical to enhancing security.
Test Run: Configuration Testing With Virtual Server, Part 1
Dr. James McCaffrey - September 2008
This time James McCaffrey sets up a virtual environment to use for configuration testing to introduce you to software configuration testing with Microsoft Virtual Server
IIS 7.0: Enhance Your Apps with the Integrated ASP.NET Pipeline
Mike Volodarsky - January 2008
Mike Volodarsky demonstrates how IIS 7.0 lets you add performance and security upgrades to PHP apps without touching a line of PHP code.
Look it Up: Managing Directory Security Principals in the .NET Framework 3.5
Joe Kaplan and Ethan Wilansky - January 2008
Here's an overview of the new System.DirectoryServices.AccountManagement class in the .NET Framework 3.5 and how it simplifies working with directory services.
Single Sign-On: A Developer's Introduction To Active Directory Federation Services
Keith Brown - November 2006
Use Active Directory Federation Services to allow other organizations to use your Web applications without the need for you to grant access explicitly.
Gathering MOSS: New Dev-Centric Features In Office SharePoint Server Keep Your Apps Rolling
Ted Pattison - August 2006
Microsoft Office SharePoint Server (MOSS) 2007 provides great portal and search features and much more, and Ted Pattison puts them to good use here.
WSS 3.0 Preview: Discover Significant Developer Improvements In SharePoint Services
Ted Pattison - July 2006
Got Directory Services?: New Ways to Manage Active Directory using the .NET Framework 2.0
Ethan Wilansky - December 2005
System.DirectoryServices is a managed code layer on top of Active Directory Service Interfaces, and you can employ it to better manage Active Directory from your code. Here Ethan Wilansky helps you get started.
What Gives You the Right?: Combine the Powers of AzMan and WSE 3.0 to Protect Your Web Services
Niels Flensted-Jensen - November 2005
In this article, Niels Flensted-Jensen demonstrates how you can combine new and existing Microsoft technologies with minimal new code to provide flexible authorization for individual Web service methods. Windows 2003 Authorization Manager, Web Service Enhancements 3.0, and Enterprise Library all play a part.
Stay Alert: Use Managed Code To Generate A Secure Audit Trail
Mark Novak - October 2005
In today's security-conscious environments, a reliable audit trail is a valuable forensic tool The Windows Server 2003 operating system provides features that let you enable a wide range of applications to make use of auditing functionality. This article looks at auditing from the operating system perspective and describes a sample managed code implementation that will allow you to add auditing to your own server applications.
Security Briefs: Credentials and Delegation
Keith Brown - September 2005
I get loads of security questions from friends and former students, and recently I've gotten a number of questions about building secure data-driven Web sites for internal enterprise systems. I've decided to answer them here to hopefully save you some headaches in your own projects.
App Lockdown: Defend Your Apps and Critical User Info with Defensive Coding Techniques
Kenny Kerr - November 2004
Whether you're storing database connection strings, user credentials, or logon info, you'll need to practice good defensive programming techniques to avoid those surprise situations in which your data is exposed. In this article, author Kenny Kerry shows you how.
Intrusion Prevention: Build Security Into Your Web Services with WSE 2.0 and ISA Server 2004
Dino Esposito - November 2004
Once you've addressed security in your code, it's time to look at the environment it runs in. Firewalls stop unauthorized traffic from getting into your network, and smart Web service-specific firewalls, like the one that comes with Internet Security and Acceleration (ISA) Server 2004, bring XML intrusion prevention to your system for that added layer of safety.
Web Parts: Use Windows SharePoint Services as a Platform for Building Collaborative Apps, Part 2
Jason Masterman and Ted Pattison - August 2004
Microsoft Office SharePoint Portal Server 2003, which is part of the Office System, lets you create and manage virtual servers, site collections, sites, workspaces, and users. You can also use the Windows SharePoint Services object model to design and implement user-targeted applications. In the second part of a two part series, the authors take a look at the WSS and SPS object models, Web Part Page anatomy, creating and deploying Web Parts, and Web Part security. They also discuss Web Part infrastructure and how to create custom Web Parts.
SharePoint: Use Windows SharePoint Services as a Platform for Building Collaborative Applications
Jason Masterman and Ted Pattison - July 2004
In this article the authors provide an in-depth examination of the architecture of SharePoint products and technologies: WSS and SPS. WSS provides the foundation for creating collaborative Web sites that support customization and personalization and SPS complements WSS by playing the role of a content aggregator. This article explains how.
Authorize It: Use Role-Based Security in Your Middle Tier .NET Apps with Authorization Manager
Keith Brown - November 2003
Authorization Manager in Windows Server 2003 represents a significant improvement in the administration of role-based security, making it more scalable, flexible, and easier to implement. Using Authorization Manager, you can define roles and the tasks those roles can perform. You can nest roles to inherit characteristics from other roles, and you can define application groups. In addition, Authorization Manager lets you use scripts to modify permissions dynamically, and it allows you to wrap your security logic in a security policy that can be stored in Active Directory. Authorization Manager also includes an easy-to-use API for running access checks. The author discusses all of these topics and demonstrates them with a working sample.
Windows Server 2003: Discover Improved System Info, New Kernel, Debugging, Security, and UI APIs
Matt Pietrek - June 2003
There's a lot to say about Windows Server 2003. First of all, it's the first operating system with built-in .NET Framework support, and it's the first 64-bit OS from Microsoft. But wait, there's more! There are lots of new features and APIs in this version as well. For instance, Windows Server 2003 features Hot Add Memory and a number of other arcane new tidbits. There are new APIs for handling threads, directories, and files, and new features like the low fragmentation heap for managing memory and system information. There's vectored exception handling and new UI APIs as well.OS internals expert Matt Pietrek takes a look at the additions he finds most interesting and useful so you'll have a good place to start when you dive into Windows Server 2003.
Resource File: Windows Media 9 Series Digital Rights Management
- May 2003
If you have an application that handles Windows Media content and you need an effective way to track content usage, Windows Media 9 Series now offers Digital Rights Management (DRM). It allows you to take advantage of the peer-to-peer distribution model and still redirect users back to your app once they have downloaded your content (prior to viewing).
Security Briefs: Exploring S4U Kerberos Extensions in Windows Server 2003
Keith Brown - April 2003
Building Web sites that provide services external to the corporate firewall is tricky. Usually it's not desirable to grant corporate domain accounts to external clients, and from a purely practical standpoint Kerberos does not work well over the Internet due to the typical configuration of client-side firewalls.
Security in IIS 6.0: Innovations in Internet Information Services Let You Tightly Guard Secure Data and Server Processes
Wayne Berry - September 2002
Security improvements have been a top priority in the evolution of IIS. IIS 6.0, which will be part of Windows .NET Server, has improved security features and a new approach to server configuration. New security-related tools for IIS, including IIS LockDown, make securing your server against attack easier than ever. The author explains how and why you can shut down services with IIS LockDown. He discusses limiting port access with TCP/IP filtering, controlling how files are served with extension mapping, what's new for Secure Sockets Layer, the use of URLScan, and more.
SENS: System Event Notification Services and WMI Enable Flexible, Efficient Mobile Network Computing
Aspi Havewala - August 2002
Networked applications must deal with a host of connection problems ranging from timeouts to congestion to unavailability. If these applications can check the current connection status and, when disconnected, cache transmissions, they become more efficient. Fortunately, both the System Event Notification System (SENS) and Windows Management Instrumentation (WMI) can send notifications to keep applications informed of network status. In this article, the author explains the use of several SENS interfaces, including ISensNetwork and ISensLogon, which trigger events for connects/disconnects and logons/logoffs, respectively. The author then shows how you can subscribe to each of these events, and follows with a discussion of when you might use WMI events instead.
Resource File: Skills Development
- August 2002
Web Q&A: XML Security Questions
Edited by Nancy Michell - June 2002
Security: Unify the Role-Based Security Models for Enterprise and Application Domains with .NET
Juval Lowy - May 2002
Role-based security allows administrators to assign access permissions to users based on the roles they play rather than on their individual identities. These privileges can be used to control access to objects and methods, and are easier to identify and maintain than user-based security. The .NET Framework provides two role-based security models, which are exposed as two namespaces: System.Enterprise-Services and System.Security.Permissions. Presented here is a comparison of the two options and a discussion of when each is the right choice. The author also demonstrates the process involved in setting up access security and discusses role memberships.
WMI and .NET: System.Management Lets You Take Advantage of WMI APIs within Managed Code
Zina Pozen - May 2002
Visual Studio .NET and the Microsoft .NET Framework SDK provide a new set of APIs and tools that let you consume Windows Management Instrumentation (WMI) data and events from managed .NET applications. After presenting an overview of what's new for WMI in the .NET Framework and the Visual Studio .NET environment, the author provides an in-depth exploration of the Management Extensions in Visual Studio .NET for Server Explorer. These extensions help you develop management-aware software and come in handy in a variety of distributed application development scenarios.
IIS 6.0: New Features Improve Your Web Server's Performance, Reliability, and Scalability
George Shepherd - March 2002
As the Web evolves, so does the role that Internet servers play. The Internet has seen the growth of e-commerce, B2B business, collaboration, streaming and other new media, and these new applications require new features to meet increasingly complex needs. Microsoft Internet Information Services (IIS) has many of the features today's mature Web sites need. This article outlines the features in the upcoming version 6.0 and discusses how they promote better scalability, reliability, and performance. Features such as Remote administration, caching, and metabase improvements, as well as custom isolation and security enhancements, make IIS 6.0 the Web server of the future.
Windows 2000 Loader: What Goes On Inside Windows 2000: Solving the Mysteries of the Loader
Russ Osterlund - March 2002
DLLs are a cornerstone of the Windows operating system. Every day they quietly perform their magic, while programmers take them for granted. But for anyone who's ever stopped to think about how the DLLs on their system are loaded by the operating system, the whole process can seem like a great mystery. This article explores DLL loading and exposes what really goes on inside the Windows 2000 loader. Knowing how DLLs are loaded and where, and how the loader keeps track of them really comes in handy when debugging your applications. Here that process is explained in detail.
SharePoint: SharePoint Portal Server Makes Your Intranet More Manageable and Easier to Navigate
Darrin Bishop - September 2001
Most large organizations have mounds of disjointed information in a variety of formats spread out across an enterprise. To make the most efficient use of that information, it must be readily accessible, easy to identify, and simple to navigate. SharePoint Portal Server 2001 unifies information by allowing members of any organization to create, share, and publish documents from a single access point. This article covers the services in SPS that can help an organization improve workflow and information management.
Fax Services: Send Any Printable File From Your Program in Windows 2000
Marcin Kaluza - August 2001
All versions of Windows 2000 have fax services built in, so sending faxes manually is as easy as setting fax options from the control panel. Faxes can also be sent programmatically in Windows 2000 using either COM Automation or the standard C API. The example in this article uses COM Automation with Visual Basic and MFC to programmatically manage faxing. The objects used for fax transmission, such as the FaxServer and FaxDoc objects, as well as their properties and methods, are explained. Because faxing of files you can't print can be problematic, this process is explained. Finally, this article implements a fax routing extension-a plug-in that exports standard functions and implements routing methods for processing received faxes.
Server Farms: Application Center 2000 Offers World-Class Scalability
Panos Kougiouris - May 2001
Application Center 2000 simplifies the deployment of a Microsoft .NET-based application to clusters, which are shared-nothing, loosely coupled computers that appear as one virtual computer. This allows all the computers in Application Center 2000 clusters to provide the same service or Web application at the same time. This article explains network load balancing and component load balancing for COM+ components with Application Center 2000. Accessing the features of Application Center 2000 though the MMC snap-in interface and the command-line interface for batching administrative tasks is also covered.
The VTrace Tool: Building a System Tracer for Windows NT and Windows 2000
Jacob R. Lorch and Alan Jay Smith - October 2000
This article describes the techniques used to construct VTrace, a system tracer for Windows NT and Windows 2000. VTrace collects data about processes, threads, messages, disk operations, network operations, and devices. The technique uses a DLL loaded into the address space of every process to intercept Win32 system calls; establishes hook functions for Windows NT kernel system calls; modifies the context switch code in memory to log context switches; and uses device filters to log accesses to devices.
Windows Sockets 2.0: Write Scalable Winsock Apps Using Completion Ports
Anthony Jones and Amol Deshpande - October 2000
Writing a network-aware application isn't difficult, but writing one that is scalable can be challenging. Overlapped I/O using completion ports provides true scalability on Windows NT and Windows 2000. Completion ports and Windows Sockets 2.0 can be used to design applications that will scale to thousands of connections. The article begins with a discussion of the implementation of a scalable server, discusses handling low-resource, high-demand conditions, and addresses the most common problems with scalability.
Marshalling Your Data: Efficient Data Transfer Techniques Using COM and Windows 2000
Richard Grimes - September 2000
The way you choose to transfer data is vitally important in a distributed application. Windows 2000 provides several new features that allow you to transfer data more efficiently. Lightweight handlers allow you to write smart proxies that can cache results and perform buffered reads and writes, minimizing the number of network calls. Windows 2000 also allows you to use pipe interfaces to transfer large amounts of data efficiently through a read-ahead facility. This article illustrates several ways to improve data transfer in Windows 2000 using these new features. It also reports the results of transfer time tests and provides recommendations for transferred buffer sizes.
Shelley Powers: Migrating Your ASP Apps from Windows NT 4.0 to Windows 2000
Shelley Powers - August 2000
In order to take advantage of new features in Windows 2000 and IIS 5.0, you must first migrate your Windows NT 4.0-based ASP applications to Windows 2000. This article provides a multi-step migration plan. It discusses how to install and configure IIS 5.0, set up security, migrate MTS packages to COM+ applications, and handle differences in the ASP object models. Also included are guidelines for setting up Visual Basic and Visual C++ for development in Windows 2000 and information on what to expect when moving ASP components to the new OS.
Security Briefs: Explore the Security Support Provider Interface Using the SSPI Workbench Utility
Keith Brown - August 2000
Wicked Code: Implementing Handler Marshaling Under Windows 2000: DeviceClient Sample App
Jeff Prosise - August 2000
Security Briefs: Understanding Kerberos Credential Delegation in Windows 2000 Using the TktView Utillity
Keith Brown - May 2000
Windows 2000: Asynchronous Method Calls Eliminate the Wait for COM Clients and Servers
Jeff Prosise - April 2000
Windows 2000 is the first version of COM to support asynchronous method calls, which permit clients to make nonblocking calls to COM objects and objects to process incoming calls without blocking the calling threads. COM clients benefit from asynchronous method calls because they can continue working while waiting for outbound calls to return. Objects benefit because they can queue incoming calls and service them from a thread pool. Our SieveClient and SieveServer sample apps demonstrate how to create and use asynchronous clients and servers in COM-based distributed applications.
House of COM: Performance Trade-offs of the Windows 2000 Component Execution Environment
Don Box - March 2000