Windows Server software-defined datacenter

Applies To: Windows Server 2019, Windows Server 2016

heading image

What is Windows Server software-defined datacenter?

Software-defined datacenter (SDDC) is a common industry term that generally refers to a datacenter where all of the infrastructure is virtualized. Virtualization is the key, and it simply means that the hardware and software in the datacenter expand beyond a traditional one-to-one ratio. With a software hypervisor emulating hardware, operating systems and applications can be abstracted away from physical hardware, and multiplied to form elastic resource pools of processors, memory, I/O and networks.

Microsoft's implementation of the SDDC consists of the Windows Server technologies highlighted in this article. It starts with the Hyper-V hypervisor that provides the virtualization platform upon which networking and storage are built. Security technologies, developed for the unique challenges of virtualized infrastructure, mitigate internal and external threats. With PowerShell built into Windows Server, and the addition of System Center and/or Operations Management Suite, you can program and automate provisioning, deployment, configuration and management.

The technologies built into Windows Server and System Center are the main building blocks of the Windows Server SDDC experience. But even though it's a virtualized platform, it still requires the right hardware underneath. Microsoft partners participating in the Windows Server Software-Defined (WSSD) Solutions and the Azure Stack HCI Solutions programs can help your enterprise acquire the right hardware and get it up and running on day zero.

Video iconWatch a video to learn more about Microsoft's SDDC

poster iconDownload a poster size .pdf file of this page

Azure Stack HCI solutions

Building your Windows Server software-defined datacenter on the right hardware infrastructure is a crucial first step to success. That's why we've partnered with 15 partners to create Microsoft-validated SDDC designs and best practices for deployment.

Microsoft partners offer an array of solutions that work with Window Server 2019 via the Azure Stack HCI program and Windows Server 2016 via the Windows Server software-defined (WSSD) program to deliver high-performance, hyper-converged, storage and networking infrastructure. Hyper-converged solutions bring together compute, storage, and networking on industry-standard servers and components for improved datacenter intelligence and control.

Learn iconLearn more about Azure Stack HCI Solutions

Learn iconLearn more about WSSD Solutions

Windows Server virtualized technologies

The remainder of this topic lists the Windows Server SDDC technologies and provides links to the documentation for each. The technologies are listed in the table below:

Available Windows Server SDDC technologies

Virtualize anything heading bar

Windows Server, hyper-converged

Windows Server Virtualization technologies include updates to Hyper-V, Hyper-V Virtual Switch, and Guarded Fabric and Shielded Virtual Machines (VMs), that improve security, scalability, and reliability. Updates to failover clustering, networking, and storage make it even easier to deploy and manage these technologies when used with Hyper-V.

Image for spacing purposes onlyWindows Server, hyper-converged infrastructure diagram

Learn iconLearn more about Windows Server, Hyper-converged

Hyper-V hypervisor

Hyper-V is a hypervisor-based virtualization technology for Windows. The hypervisor is core to virtualization. It is the processor-specific virtualization platform that allows multiple isolated operating systems to share a single hardware platform.

Hyper-V hypervisor diagramHyper

Learn iconLearn more about Hyper-V Hypervisor

Guest clustering with shared VHDX

Image of a line for spacing purposes

Flexible and secure, and not bound to the underlying storage topology, Shared VHDX removes the need to present the physical underlying storage to a guest OS. The new Shared VHDX supports online re-size.

Image for spacing purposes onlyGuest clustering and shared VHDX diagram

  • Shared VHDX can reside on a Cluster Shared Volume (CSV) on block storage, or on SMB file-based storage.
  • Protected: Shared VHDX supports Hyper-V Replica and host-level backup.

Learn iconLearn more about Guest Clustering with Shared VHDX

Hyper-V Replica

Image of a line for spacing purposes

Integrated software-based VM replication across the network with certificates. Not bound to server, network or storage hardware on either site.

Image for spacing purposes onlyHyper-V Replica diagram

No need for other virtual machine replication technologies, reducing costs.

  • Handles live migration automatically.
  • Simple configuration and management — either through Hyper-V Manager, PowerShell, or with Azure Site Recovery.

Learn iconLearn more about Hyper-V Replica

Connect everything banner

Network Controller

Image of a line for spacing purposes

A centralized, programmable point of automation to manage, configure, monitor, and troubleshoot virtual and physical network infrastructure in your datacenter.

Image for spacing purposes onlyNetwork Controller diagram

Administrators use a Management Tool that interacts directly with Network Controller. Network Controller provides information about the network infrastructure, including both virtual and physical infrastructure, to the Management Tool.

Learn iconLearn more about Network Controller

Datacenter Firewall

Image of a line for spacing purposes

When deployed and offered as a service, tenant administrators can install and configure firewall policies to help protect virtual networks from unwanted traffic from Internet and intranet networks.

Image for spacing purposes onlyDatacenter Firewall diagram

The service provider administrator or the tenant administrator can manage the Datacenter Firewall policies via the network controller.

Learn iconLearn More about Datacenter Firewall

Switch Embedded Teaming

Image of a line for spacing purposes

SET is an alternative NIC Teaming solution that you can use in environments that include Hyper-V and the Software Defined Networking (SDN) stack.

Image for spacing purposes onlySwitch Embedded Teaming diagram

Learn iconLearn more about Switch Embedded Teaming

Software Load Balancing

Image of a line for spacing purposes

SLB enables multiple servers to host the same workload, providing high availability and scalability. Scale out load balancing capabilities using SLB VMs on the same Hyper-V servers you use for your other VM workloads. SLB supports the rapid creation and deletion of load balancing endpoints for Cloud Service Provider operations. SLB supports tens of gigabytes per cluster, provides a simple provisioning model, and is easy to scale out and in.

Image for spacing purposes onlySoftware Load Balancing diagram

Learn iconLearn more about Software Load Balancing

storage diagram

Storage Spaces Direct

storage Image of a line for spacing purposes

Using industry-standard servers with local-attached drives, Storage Spaces Direct provides highly available, highly scalable software-defined storage at a fraction of the cost of traditional SAN or NAS arrays. Its architecture radically simplifies procurement and deployment.

Image for spacing purposes onlyStorage Spaces Direct diagram

Storage Spaces Direct introduces the new Software Storage Bus and leverages many of the features you know today in Windows Server, such as Failover Clustering, Cluster Shared Volumes (CSVs), Server Message Block (SMB) 3, and Storage Spaces.

Learn iconLearn more about Storage Spaces Direct

Storage Quality of Service

Line for spacing purposes

Centrally monitor and manage storage performance for virtual machines using Hyper-V and the Scale-Out File Server roles, improving storage resource fairness between multiple virtual machines.

Image for spacing purposes onlyStorage Quality of Service diagram

Storage QoS is built into the Microsoft software-defined storage solution provided by Scale-Out File Server and Hyper-V using SMB3 protocol. A new Policy Manager provides central storage performance monitoring.

Learn iconLearn more about Storage QoS

Storage Replica

Storage Image of a line for spacing purposes

Disaster recovery and preparedness make possible zero data loss, with the ability to synchronously protect data on different racks, floors, buildings, campuses, cities, and countries with more efficient use of multiple datacenters.

Image for spacing purposes only storage replica diagram

Synchronous replication

  1. Application writes data
  2. Log data is written and the data is replicated to the remote site
  3. Log data is written at the remote site
  4. Acknowledgement from the remote site
  5. Application write acknowledged

t & t1 : Data flushed to the volume, logs always write through

Learn iconLearn more about Storage Replica

security diagram

Guarded fabric

security Image of a line for spacing purposes

As a cloud service provider or enterprise private cloud administrator, you can use a guarded fabric to provide a more secure environment for VMs. A guarded fabric consists of one Host Guardian Service (HGS) - typically, a cluster of three nodes - plus one or more guarded hosts, and a set of shielded virtual machines (VMs).

guarded fabric diagramGuarded fabric diagram

Learn iconLearn more about guarded fabric

Shielded VMs

security Image of a line for spacing purposes

The data and state of a shielded VM are protected against inspection, theft and tampering, from both malware and datacenter administrators.

Image for spacing purposes onlyshielded diagram

  • Shielded VMs will only run in fabrics designated as owners of the VM.
  • Shielded VMs are encrypted by BitLocker, or other means, so that only designated owners can run them.
  • Running VMs can be converted to shielded.

Learn iconLearn more about shielded VMs

Host Guardian Service

security Image of a line for spacing purposes

Host Guardian Service holds the keys to legitimate fabrics, as well as encrypted virtual machines.

Image for spacing purposes onlyguardian diagram

Learn iconLearn more about the Host Guardian Service

Device Health Attestation

security Image of a line for spacing purposes

Attestation enables enterprises to raise the security bar of their organization to hardware monitored and attested security, with minimal or no impact on operation costs.

Image for spacing purposes onlyattestation diagram

Hardware trusted mode, shown above, provides the highest level of assurance, with TPM v2.0 hardware rooted trust and compliance with code-integrity policy for key-release.

Learn iconLearn more about Device Health Attestation

management diagram

PowerShell Desired State Configuration

management Image of a line for spacing purposes

Windows PowerShell Desired State Configuration is a configuration management platform built into Windows that is based on open standards. DSC is flexible enough to function reliably and consistently in each stage of the deployment lifecycle (development, test, pre-production, production), as well as during scale-out.

Image for spacing purposes onlyDesired State Configuration diagram

DSC supports "continuous deployments," so you can deploy configurations over and over without breaking anything.

  • DSC configurations only apply settings that have changed from the original for faster deployments.
  • DSC can be used on-premises, in a public, or in a private Cloud environment.
  • You can integrate DSC with any Microsoft or non-Microsoft solution as long as you can execute a PowerShell script on the target system.

Learn iconLearn more about PowerShell DSC

System Center VMM

management Image of a line for spacing purposes

Virtual Machine Manager is part of the System Center suite, used to configure, manage and transform traditional datacenters to provide a unified management experience across on-premises, service provider, and the Azure cloud.

Image for spacing purposes onlyVirtual Machine Manager diagram

  • Datacenter: Configure and manage datacenter components as a single fabric in VMM.
  • Virtualization hosts: VMM can add, provision, and manage Hyper-V and VMware virtualization hosts and clusters.
  • Networking: VMM provides network virtualization, including support for creating and manage virtual networks and network gateways.
  • Storage: VMM can discover, classify, provision, allocate, and assign local and remote storage.

Learn iconLearn more about System Center VMM

Windows Admin Center

management Image of a line for spacing purposes

Windows Admin Center is a locally deployed, browser-based, management tool set that enables on-premises administration of Windows Servers with no Azure or cloud dependency. Windows Admin Center gives IT Admins full control over all aspects of their Server infrastructure, and is particularly useful for management on private networks that are not connected to the Internet.

Image for spacing purposes onlyarchitecture diagram

Publishing the web server to DNS and setting up the corporate firewall can allow you to access Windows Admin Center from the public internet, enabling you to connect to, and manage, your servers from anywhere with Microsoft Edge or Google Chrome.

Learn iconLearn more about Windows Admin Center