Descubre todo sobre: Novedades de Windows 7 David Nudelman MVP Windows Desktop Experience 28/09/2010 STEP220
Download ReportTranscript Descubre todo sobre: Novedades de Windows 7 David Nudelman MVP Windows Desktop Experience 28/09/2010 STEP220
Descubre todo sobre: Novedades de Windows 7 David Nudelman MVP Windows Desktop Experience 28/09/2010 STEP220 SecondNug www.secondnug.com Microsoft Learning Springboard www.microsoft.com/springboard David Nudelman Co-fundador de la comunidad IT Pro de SecondNug Microsoft MVP – Windows Desktop Experience Microsoft Learning IT Manager Advisory Council STEP (Springboard Series Technical Expert Panel) Equipo TechNet Spain en Twitter y Facebook Moderador de los foros de TechNet en Espanol Senior Microsoft Consultant – Ultima Business Solutions David Nudelman User Experience Desktop Interface Windows Aero® User Experience - Includes fluid animation and transparent glass Basic and Classic Themes - Classic theme turns off Windows Aero for a more Windows 2000– like UI Dynamic Scaling - For higher dots-per-inch (DPI) screens, Windows Aero can scale up the desktop experience so that low DPI–aware controls and applications can still be used. Windows Flip and Flip 3D Windows Flip - Update to the ALT+TAB feature Shows live thumbnails Windows Flip 3D - Windows Logo key +TAB Three-dimensional, stacked view Windows 7 Superbar QuickLaunch and Taskbar combined Pin applications Jump Lists Live Taskbar Thumbnails Desktop Gadgets Windows Sidebar removed All gadgets reside directly on the desktop Gadgets offer the same functionality and interface The Start Menu Search applications, documents, and more Frequently and recently used applications on the left Common folders and utilities on the right Recent documents now attached to application as a submenu Presentation Mode Automatically detects wired and wireless connections to presentation devices Options for disabling screensaver and desktop background Press WIN+P for an instant menu Windows SuperFetch and ReadyBoost SuperFetch - Memory manager for Windows 7 - Analyses and optimizes memory usage ReadyBoost - Uses nonvolatile flash storage device to boost system performance - Uses Windows SuperFetch to store cache of performance-critical data for fast access - Significantly outperforms conventional disk media - Cache data is compressed (2:1) and encrypted Windows Explorer Libraries User-defined collections of data Helps reduce problems with storing data in multiple locations Library locations are indexed Default libraries: - Documents - Music - Pictures - Videos Dynamic Driver Provisioning Store drivers centrally on deployment servers, separate from images Install drivers dynamically or assign sets of drivers based on basic input/output system (BIOS) information Reduce size of images Reduce number of images maintained Don’t need to update images when introducing new hardware into environment VHD Image Management and Deployment Microsoft Virtual Hard Disk (VHD) file format is a publicly available format specification. Used by: - Microsoft® Windows® Server 2008 Hyper-V™ - Microsoft® Virtual Server - Microsoft® Virtual PC Windows 7 adds support for virtual disks in Disk Management Native VHD boot allows Windows image in a VHD file to boot on physical machine Windows 7 Security User Access Control (UAC) Previous binary UAC control now scalar Granular level of control with Group Policy Number of tasks for standard user increased Perceived “annoyance” of UAC tweaked so users now control level Group policy options improved Previous non-administrative tasks requiring administrative rights changed Internet Explorer 8 Protected Mode Protecting users - Protect users against social engineering and privacy exploits - Protect users against browser-based exploits - Protect users against Web server exploits New Features - InPrivate Browsing - SmartScreen Filter - Domain Highlighting - Cross-Site Scripting (XSS) Filter - Internet Explorer Protected Mode Multiple Active Firewall Profiles Domain, Public, and Private firewall profiles can now all be active at the same time No configuration required to enable feature All firewall configuration should be managed with Group Policy or netsh.exe This... becomes this Windows Service Hardening Continues concept of per-service security identifier, which allows access control lists for certain areas of a service Allows partitioning of the service into public and private actions, reducing the options of malware that could attempt to use the protected service Many services no longer run under the LocalSystem context but instead run under either LocalService or NetworkService, which both have fewer rights BitLocker Drive Encryption Hard-disk encryption technology using the Advanced Encryption Standard Automatic 200-MB hidden boot partition New Key Protectors Domain Recovery Agent (DRA) Smart card – data volumes only BitLocker™ Drive Encryption requirements: A Trusted Platform Module (TPM) 1.2 or later (unless USB-keyonly mode is used) A system BIOS compliant with version 1.2 or later Trusted Computing Group BitLocker To Go™ Permits encryption of removable media using Windows® BitLocker® Devices can be unlocked with password or smartcard Backwards compatible With smart cards, Smart Card Plug and Play should be implemented Recover data from any BitLocker To Go device when accessible. For Windows® XP or Windows® Vista, users will need to run BitLockerToGo.exe Network Network Location Type Allows Windows to automatically configure security and other settings based on the type of network to which the computer is connected. Windows network location types: - Domain - Public - Private Network and Sharing Center Provides a clear and concise status of all of the computers’ network connections Displays visually whether connected to networks Assists in troubleshooting connectivity problems Network Map helps users visualize connected networks Wireless Support Layer 2 network authentication, such as 802.1x, ensures that only appropriate users or devices are allowed to connect to a protected network. Data secure at radio transmission level. Single sign-on (SSO) feature executes Layer 2 network authentication at the appropriate time given the network security configuration. Increased manageability through Group Policy objects. Netsh command enables automation and scripting. Wireless diagnostics capabilities as part of the extensible Network Diagnostics Framework (NDF). IPv6 Natively supports TCP/IP version 6 (IPv6) IPv6 transition technologies that allow clients in TCP/IP version 4 (IPv4) networks to handle IPv6 in different scenarios: - Native IPv6 - Teredo - Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) - 6to4 Security Enhancements Better Quality of Service IPSec is automatically supported DirectAccess Enables remote users to securely access enterprise shares, Web sites, and applications without connecting to a virtual private network (VPN). Establishes bidirectional connectivity with a user’s enterprise network every time a user’s DirectAccessenabled portable computer connects to the Internet. IT administrators can manage remote computers outside the office, even when computers are not connected to the VPN. BranchCache BranchCache™ is available when combining Windows 7 computers with Windows Server 2008 R2 servers. Enables content from file and Web servers on a wide area network (WAN) to be cached on computers at a local branch office. Improves application response time and reduces WAN traffic. Cached content can either be distributed across peer client computers (Distributed Cache mode) or centrally hosted on a server (Hosted Cache mode). Mobile Broadband Driver-based model for mobile broadband devices Previous Windows versions required third-party software, which can be difficult to manage Interface in Windows 7 is the same regardless of the mobile broadband provider, reducing the need for training and management efforts DNS Security Extensions DNS offers no inherent security, making it vulnerable to spoofing and other attacks. Domain Name System Security Extensions (DNSSEC) provides: - Origin authority - Data integrity - Authenticated denial of existence Introduces four new resource records: - DNSKEY - RRSIG - NSEC - DS User Functionality Group Policy Configuration Many more Group Policy settings available for Windows 7 Notable settings include: - Power management - Blocking device installation - Security settings - Printers - UAC User Profiles Namespace of user-specific folders isolated for user and application data User profiles stored in the “Users” folder in root folder of the system drive Fewer nested folders to ease navigation Folder names are more intuitive to the data contained Local and LocalLow folders contain application data that does not roam with the user Roaming folder contains application-specific data that are machine independent and roam with the user profile All User profiles equate to the Public profile Folder Redirection Client-side technology that provides the ability to change the target location of predetermined folders found within the user profile Separates user data from profile data, which decreases user logon times Windows 7 allows redirection of 10 folders from a user profile . Language Support Multilingual User Interface (MUI) architecture separates the language resources for the UI from the binary code of the operating system Allows changing of languages without changing core binaries of Windows 7 Languages are applied as language packs containing localization resources Windows 7 MUI implementation consists of: - Language-neutral binaries - Language packs Mobility Power Management Promotes the use of sleep, which is faster and more reliable than previous versions More control over how computers manage power Simpler and more reliable power-management experience Default power plans: - Balanced - Power Saver - High Performance Windows® ReadyDrive™ Hybrid hard disk drives contain traditional hard disk and integrated nonvolatile flash memory that acts as a high-performance cache. Significant power savings when running on battery because hard drive spins up only when write buffer fills up. No user action or configuration required. Windows Mobility Center Most frequently used portable computer settings in a single location Allows Tablet PC users to rotate display Offline Files Delta synchronization instead of per-file synchronization Quicker synchronization and less network traffic Local cache stored and encrypted on a per-user basis Transparent offline-to-online transition Consistent view of namespace whether online or offline Client-side cache no longer marks down entire Distributed File System (DFS) namespace if target server goes offline; instead, only links to unavailable server are marked as offline Diagnostics and Recovery Built-In Diagnostics Disk Diagnostics detects impending disk failures and guides users through data backup, disk replacement, and data restoration procedures. Memory Diagnostics and Microsoft Online Crash Analysis detects crashes due to failing memory, provides guided support, and prompts the user to schedule memory test. Resource Exhaustion Detection and Recovery warns users when critical resources are low—before a hang or crash occurs. System Restore Allows recovery from a greater range of changes Uses shadow copy instead of file filter system Improves integration with other aspects of backup and recovery STEP220 http://tinyurl.com/STEP220 David Nudelman http://www.facebook.com/windows7guy http://linkedin.com/in/dnudelman @dnudelman / @Technet_es Q&A Gracias!