{"id":6821,"date":"2015-11-18T12:00:00","date_gmt":"2015-11-18T12:00:00","guid":{"rendered":"https:\/\/blogs.technet.microsoft.com\/windowsserver\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/"},"modified":"2024-03-11T09:20:37","modified_gmt":"2024-03-11T16:20:37","slug":"protecting-your-datacenter-and-cloud-november-update","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/","title":{"rendered":"Protecting your datacenter and cloud: November update"},"content":{"rendered":"\n<p><em>This post was authored by the Windows Server Security and Assurance Team<\/em><\/p>\n\n\n\n<p>Six months ago, in a previous blog post \u201cProtecting your datacenter and cloud from emerging threats\u201d we introduced our strategy and direction on how Microsoft can help customers protect their datacenter and private cloud from emerging threats.<\/p>\n\n\n\n<p>In this post, we\u2019ll cover the great progress that was made since May 2015 in each of the areas we were focusing on and what offerings are already available for you to better secure your environment.<\/p>\n\n\n\n<p><strong>Landscape shifts that affect the way we think about security<\/strong><\/p>\n\n\n\n<p>Looking at the datacenter and cloud through security lenses, there are two major aspects that we need to pay attention to.<\/p>\n\n\n\n<p>1. Virtualization is everywhere and increasing number of high value assets such as domain controllers and company sensitive workloads are virtualized. While operationally this makes a lot of sense, from a security point of view, this shift increases the attack vectors ten-fold as anyone that has access to the storage, backup, network, hosts or fabric controller where these Virtual Machines are running can compromise them.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-1.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>2. Gaining administrative rights is a common attack vector. We trust our administrators but when their accounts are compromised through any of the ways attackers use today (such as phishing and malware), the attackers gain unprecedented access to the environment and can then stay in the system for a long time undetected.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-2.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p><strong>Principles for security and assurance solutions<\/strong><\/p>\n\n\n\n<p>We have established a few key guiding principles that drive our work in security and assurance:<\/p>\n\n\n\n<p>\u2022 Assume breach: analyze the environment to determine how an attack may propagate and make changes to contain any compromise by preventing lateral movement of the attacker inside the environment.<br>\u2022 Protect existing environments without requiring major upgrades and re-architecture of your datacenter or hosting infrastructure.<br>\u2022 Support the extension of your datacenter into the Azure cloud while bringing the Azure security and security operations to the datacenter and private cloud.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><a href=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-3.png\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-3.png\" alt=\" \" \/><\/a><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p><strong>Focus areas for datacenter and private cloud security<\/strong>:<\/p>\n\n\n\n<p>Given the \u201cAssume Breach\u201d mindset and the desire to protect existing environments, we focused our initiatives on three main areas:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Protecting Virtual Machines (Workloads) from attacks through the private cloud or service provider fabric<\/li>\n\n\n\n<li>Privileged Access Management to address threats that occur with compromised administrator credentials<\/li>\n\n\n\n<li>Threat detection and response<\/li>\n<\/ul>\n\n\n\n<p>Since May, 2015 we have continuously delivered security solutions in the form of cloud services, released products and technical previews so that you can start evaluating and using these solutions to protect your environment.<\/p>\n\n\n\n<p><strong>Protecting Virtual Machines (Workloads) from fabric attacks<\/strong><\/p>\n\n\n\n<p>With the shift to virtualization, most of us are running critical and high value workloads as virtual machines. Consider your identity infrastructure (e.g.:&nbsp; Domain controllers) or your most sensitive business applications that have access to customer data running as VMs.<\/p>\n\n\n\n<p>This leads to new attack vectors that did not exist in the past. Any administrator on the storage, network, management tools and host has access to these Virtual Machines. This includes not only the highly trusted administrators but also people that have access to the disks, network controllers, patching and so on\u2026<\/p>\n\n\n\n<p>To put it plainly, if we \u201cassume breach\u201d of a datacenter administrator, it can lead to a lateral movement attack, where all the virtual machines running in that datacenter are accessible to the attacker who is then able to stealthily access sensitive information and inject malicious executables.<\/p>\n\n\n\n<p>In Windows Server 2016 Technical Preview 4 and System Center Virtual Machine Manager 2016 Technical Preview 4, we are enabling an end to end solution for Shielded Virtual Machines that protects all \u201cGeneration 2\u201d Windows virtual machines (Starting from Windows Server 2012\/Windows 8) on storage, and on the network, and allows running the virtual machine only on Guarded Hosts that are hardened so that even an administrator on the host where the virtual machine is running will require to break protection techniques applied to the host in order to compromise the virtual machine data.<\/p>\n\n\n\n<p>In parallel, Azure customers can take advantage of the new Azure Disk Encryption that enables encryption of Windows Virtual Machines using BitLocker Drive Encryption and Linux Virtual Machines using DM-Crypt.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-4.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p><strong>Privileged Access Management<\/strong><\/p>\n\n\n\n<p>Security experts tell us that compromised administrator privileges are the common attack vector. Once an attacker gains access to an administrator account, they can escalate their privilege to create backdoors and eventually control an entire Active Directory domain.<\/p>\n\n\n\n<p>There are best practices and solutions that will considerably increase the security of your organization to avoid compromise and contain the extent of the damage in case that happens:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>There are no perpetual administrators.<\/li>\n\n\n\n<li>Administration accounts are separate from user accounts (accounts that are used for email, web browsing, where the number of applications and attack vectors is higher\u2026).<\/li>\n\n\n\n<li>Administration should be done from designated hardened machines.<\/li>\n\n\n\n<li>Logging of administration actions helps early discovery and forensic investigations of malicious behavior.<\/li>\n\n\n\n<li>Usage of two factor authentication and role based administration significantly increases the resiliency should an account or its credential be compromised.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-5.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>To help customers manage and secure their Privilege Access, in Aug. 2015, we released <a href=\"http:\/\/www.microsoft.com\/en-us\/server-cloud\/products\/microsoft-identity-manager\/\">Microsoft Identity Manager <\/a>2016 (MIM 2016). This supports:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Privileged user and account discovery<\/li>\n\n\n\n<li>Workflow management: elevated just-in-time administrator access including automatic authorization, Azure Multi-Factor authorization and manual authorization.<\/li>\n\n\n\n<li>Reporting and auditing specific to privileged access management<\/li>\n<\/ul>\n\n\n\n<p>The focus is protecting privileged administrative access for applications in existing Windows Server environments, so that there is no need to change your groups or access control rules in order to deploy MIM 2016 Privileged Access Management in your organization.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-6.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>At the same time, we also introduced the <a href=\"https:\/\/azure.microsoft.com\/en-us\/documentation\/articles\/active-directory-privileged-identity-management-configure\/\">Azure AD Privileged Identity Management <\/a>to apply Privileged Access Management and monitoring to Microsoft Online Services, such as Azure AD and Office 365.<\/p>\n\n\n\n<p>These solutions enable you to control your administration workflows on-premises and in the cloud. MIM 2016 provide Windows PowerShell, SOAP and REST based APIs so that you can call from existing trouble ticket or service desk automation systems into these solutions.<\/p>\n\n\n\n<p>For hardened administration workstations, we highly recommend that you take a look at the <a href=\"https:\/\/technet.microsoft.com\/en-us\/library\/dn986865(v=vs.85).aspx\">Windows 10 Device Guard <\/a>solution. This enables you to completely lock down machines that administrators use to access servers and sensitive workloads. Device Guard helps harden these workstations against malicious code that could execute while an administrator is accessing the most sensitive areas of your organization.<\/p>\n\n\n\n<p>In addition, we are releasing our first version of <a href=\"https:\/\/gallery.technet.microsoft.com\/Just-Enough-Administration-6b5ad370\">Just Enough Administration <\/a>to enable PowerShell based \u201cRole Based Access Control\u201d. This is released as part of the Windows Management Framework 5.0 and will be available for Windows Server 2008 R2\/Windows 7 and later versions so that you can deploy it in existing environments.<\/p>\n\n\n\n<p>Just Enough Administration (JEA) is all about removing administration privilege from as many user accounts as possible while still allowing them to do their job. If for example, someone is responsible for DNS management on the domain controller, they should be able to restart the DNS services and flush the DNS but they should not need to be domain administrators to do so. In the first version of JEA, we provide a flexible role-based administration framework. We also provide specific guidance on how to use JEA on domain controllers and for general server maintenance.<\/p>\n\n\n\n<p><strong>Threat detection and response<\/strong><\/p>\n\n\n\n<p>This brings us to the detection and forensics. We know that the attackers are clever, and they learn and adapt. We also know that accuracy is important so that you don\u2019t find yourself drowning in false positive investigations.<\/p>\n\n\n\n<p>Two great offerings are now publically available from Microsoft:<\/p>\n\n\n\n<p>The first is <a href=\"http:\/\/www.microsoft.com\/en-us\/server-cloud\/products\/advanced-threat-analytics\/\">Microsoft Advanced Threat Analytics<\/a>. This is an on-premises platform that uses Active Directory network traffic and SIEM data to discover and alert on potential threats. ATA\u2019s high-accuracy detection is enabled by a combination of its unique deterministic detection engine, network and entities resolution engine and world-class machine learning algorithms. This combination also allows ATA to map the potential impact of the attacker and tell the attack story in a clear and actionable Attack Timeline.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-7.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The second is <a href=\"https:\/\/microsoft.com\/OMS\">Microsoft Operations Management Suite (OMS)<\/a> Security and Compliance. This processes security logs and firewall events from on-premises and cloud environments to analyze and detect malicious behavior. Using this capability, an IT pro can review suspicious behavior and decide whether further investigation is required and then use deep search capabilities to track and investigate the issues.&nbsp; OMS Security and Compliance is a scalable cloud service that ingests and indexes multi-TB of data each day. We can use the power of the cloud to correlate this data with information such as malicious internet IP addresses from our cyber-crime unit as well as information from industry partnerships, government sources and others.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-8.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Last but not least, the upcoming <a href=\"https:\/\/azure.microsoft.com\/en-us\/blog\/making-the-cloud-more-secure\/\">Azure Security Center <\/a>will enable you to fully secure your Azure properties from one portal. This will empower you to prevent, detect, and respond to threats with increased visibility into, and control over, the security of your Azure resources.<\/p>\n\n\n\n<p>The Azure Security Center includes:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Centralized Security Management with visibility, focused recommendations and control over the security state of cloud deployments.<\/li>\n\n\n\n<li>Rapid Deployment of Integrated Best-in-Class Technologies from a rich partner ecosystem.<\/li>\n\n\n\n<li>Effective Advanced Threat Detection using behavioral analytics, machines learning and fusion of signals from Microsoft products and services, partner solutions, and global threat intelligence.<\/li>\n\n\n\n<li>Guided Investigation for fast triage and shorter time to remediate by building the attack timeline and reducing noise.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/cloudblogs.microsoft.com\/wp-content\/uploads\/2018\/03\/tp4-9.png\" alt=\" \" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p><strong>In summary<\/strong><\/p>\n\n\n\n<p>Driven by the \u201cAssume Breach\u201d combined with the experience of running a public cloud and the need to address emerging threats in existing datacenter environment, we have been working tirelessly on a stream of security solutions that can help customers take action to increase their security stance.<\/p>\n\n\n\n<p>Solutions that were still in development in May are now publically available for use and we will continue to work tirelessly to help you secure your environment both in the datacenter and private and public cloud.<\/p>\n\n\n\n<p>We believe that the set of solutions and capabilities that we are bringing forth clearly shows our commitment to help our customers be secure in their existing datacenter and private cloud all the way to their workloads that are running in Azure.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This post was authored by the Windows Server Security and Assurance Team Six months ago, in a previous blog post \u201cProtecting your datacenter and cloud from emerging threats\u201d we introduced our strategy and direction on how Microsoft can help customers protect their datacenter and private cloud from emerging threats.<\/p>\n","protected":false},"author":685,"featured_media":20670,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"msxcm_post_with_no_image":false,"ep_exclude_from_search":false,"_classifai_error":"","_classifai_text_to_speech_error":"","footnotes":""},"post_tag":[],"product":[991],"content-type":[964],"solution":[967],"coauthors":[926],"class_list":["post-6821","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","product-windows-server-2016","content-type-updates","solution-security","review-flag-1593580427-982","review-flag-1-1593580431-223","review-flag-2-1593580436-936","review-flag-4-1593580446-763","review-flag-5-1593580451-829","review-flag-7-1593580462-674","review-flag-8-1593580467-311","review-flag-machi-1680214151-210","review-flag-new-1593580246-692","review-flag-partn-1593580283-870"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Protecting your datacenter and cloud: November update | Microsoft Windows Server Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Protecting your datacenter and cloud: November update | Microsoft Windows Server Blog\" \/>\n<meta property=\"og:description\" content=\"This post was authored by the Windows Server Security and Assurance Team Six months ago, in a previous blog post \u201cProtecting your datacenter and cloud from emerging threats\u201d we introduced our strategy and direction on how Microsoft can help customers protect their datacenter and private cloud from emerging threats.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Windows Server Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/WindowsServer\" \/>\n<meta property=\"article:published_time\" content=\"2015-11-18T12:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-03-11T16:20:37+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1170\" \/>\n\t<meta property=\"og:image:height\" content=\"640\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Microsoft Windows Server Team\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@WindowsServer\" \/>\n<meta name=\"twitter:site\" content=\"@WindowsServer\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Microsoft Windows Server Team\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 min read\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\"},\"author\":[{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/author\/microsoft-windows-server-team\/\",\"@type\":\"Person\",\"@name\":\"Microsoft Windows Server Team\"}],\"headline\":\"Protecting your datacenter and cloud: November update\",\"datePublished\":\"2015-11-18T12:00:00+00:00\",\"dateModified\":\"2024-03-11T16:20:37+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\"},\"wordCount\":1675,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\",\"name\":\"Protecting your datacenter and cloud: November update | Microsoft Windows Server Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp\",\"datePublished\":\"2015-11-18T12:00:00+00:00\",\"dateModified\":\"2024-03-11T16:20:37+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp\",\"width\":1170,\"height\":640,\"caption\":\"a woman sitting on a table\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Protecting your datacenter and cloud: November update\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/\",\"name\":\"Microsoft Windows Server Blog\",\"description\":\"Your Guide to the Latest Windows Server Product Information\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#organization\",\"name\":\"Microsoft Windows Server Blog\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2019\/08\/Microsoft-Logo.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2019\/08\/Microsoft-Logo.png\",\"width\":1,\"height\":1,\"caption\":\"Microsoft Windows Server Blog\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/WindowsServer\",\"https:\/\/x.com\/WindowsServer\",\"https:\/\/www.linkedin.com\/showcase\/microsoft-cloud-platform\/\",\"https:\/\/www.youtube.com\/user\/MSCloudOS\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Protecting your datacenter and cloud: November update | Microsoft Windows Server Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/","og_locale":"en_US","og_type":"article","og_title":"Protecting your datacenter and cloud: November update | Microsoft Windows Server Blog","og_description":"This post was authored by the Windows Server Security and Assurance Team Six months ago, in a previous blog post \u201cProtecting your datacenter and cloud from emerging threats\u201d we introduced our strategy and direction on how Microsoft can help customers protect their datacenter and private cloud from emerging threats.","og_url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/","og_site_name":"Microsoft Windows Server Blog","article_publisher":"https:\/\/www.facebook.com\/WindowsServer","article_published_time":"2015-11-18T12:00:00+00:00","article_modified_time":"2024-03-11T16:20:37+00:00","og_image":[{"width":1170,"height":640,"url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.png","type":"image\/png"}],"author":"Microsoft Windows Server Team","twitter_card":"summary_large_image","twitter_creator":"@WindowsServer","twitter_site":"@WindowsServer","twitter_misc":{"Written by":"Microsoft Windows Server Team","Est. reading time":"7 min read"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/"},"author":[{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/author\/microsoft-windows-server-team\/","@type":"Person","@name":"Microsoft Windows Server Team"}],"headline":"Protecting your datacenter and cloud: November update","datePublished":"2015-11-18T12:00:00+00:00","dateModified":"2024-03-11T16:20:37+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/"},"wordCount":1675,"commentCount":0,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#organization"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/","url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/","name":"Protecting your datacenter and cloud: November update | Microsoft Windows Server Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp","datePublished":"2015-11-18T12:00:00+00:00","dateModified":"2024-03-11T16:20:37+00:00","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#primaryimage","url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp","contentUrl":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2024\/03\/Two-people-in-front-of-a-laptop-2.webp","width":1170,"height":640,"caption":"a woman sitting on a table"},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/2015\/11\/18\/protecting-your-datacenter-and-cloud-november-update\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/"},{"@type":"ListItem","position":2,"name":"Protecting your datacenter and cloud: November update"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/","name":"Microsoft Windows Server Blog","description":"Your Guide to the Latest Windows Server Product Information","publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#organization","name":"Microsoft Windows Server Blog","url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2019\/08\/Microsoft-Logo.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-content\/uploads\/2019\/08\/Microsoft-Logo.png","width":1,"height":1,"caption":"Microsoft Windows Server Blog"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/WindowsServer","https:\/\/x.com\/WindowsServer","https:\/\/www.linkedin.com\/showcase\/microsoft-cloud-platform\/","https:\/\/www.youtube.com\/user\/MSCloudOS"]}]}},"word_count":1666,"msxcm_display_generated_audio":false,"msxcm_animated_featured_image":null,"distributor_meta":false,"distributor_terms":false,"distributor_media":false,"distributor_original_site_name":"Microsoft Windows Server Blog","distributor_original_site_url":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog","push-errors":false,"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/posts\/6821","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/users\/685"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/comments?post=6821"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/posts\/6821\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/media\/20670"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/media?parent=6821"}],"wp:term":[{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/post_tag?post=6821"},{"taxonomy":"product","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/product?post=6821"},{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/content-type?post=6821"},{"taxonomy":"solution","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/solution?post=6821"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/windows-server\/blog\/wp-json\/wp\/v2\/coauthors?post=6821"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}