Windows Server 2008 R2 new features – the complete list – Part 2: Active Directory

Home Blog Windows Server 2008 R2 new features – the complete list – Part 2: Active Directory

4sysops - The online community for SysAdmins and DevOps

    ,   5

Active Directory Domain Services in Windows Server 2008 R2 support a new forest functional level. I am not sure if all of the features described here require the R2 functional level. I will try to find out more about this issue soon. The better PowerShell support is probably the most important enhancement. However, my favorite new feature is the new Recycle Bin.

Contents
  1. Powershell Cmdlets
  2. Active Directory Administrative Center
  3. Recycle Bin
  4. Offline Domain Join
  5. Managed Service Accounts
  6. Authentication Assurance
Latest posts by Michael Pietroforte (see all)

Powershell Cmdlets

They replace the current Active Directory command line tools. There are about 85 Active Directory-related PowerShell cmdlets

Active Directory Administrative Center

windows-2008-r2-active-directory-administrative-center2The Active Directory Administrative Center is a new task-oriented user interface for the Active Directory Services. You can perform similar tasks as with the Active Directory Users and Computers console (ADUC). It is based on the new PowerShell cmdlets and displays the PowerShell commands that correspond to the tasks performed with the GUI.

Recycle Bin

Accidently deleted Active Directory objects can be restored from the Recycle Bin. (Requires R2 functional level)

Offline Domain Join

windows-2008-r2-djoin.exe Admins can automate the joining of a Windows 7 machine to a domain during deployment with an XML file. The target computer can be offline during the deployment process. The tool that is used to join the domain is djoin.exe.

Managed Service Accounts

If the password of an account that is used as identity for services is changed by an admin, the managed service account feature will update all services automatically. (Requires R2 functional level)

Authentication Assurance

Authentication Assurance provides an authentication mechanism that allows administrators to map specific certificates to security groups using certificate policies. Users logged on with a smart card, USB token, or some other type of certificate logon method can be distinguished in this way. This feature can be used to grant external users access to corporate resources using Active Directory Federated Services. (Requires R2 functional level)

Subscribe to 4sysops newsletter!

Sander Berkouwer described the new Active Directory features in more detail.

Articles in serieswindows server 2008 R2
Related Articles
5 Comments
  1. Active Directory 14 years ago

    nice post

    Reply
  2. Pravin 14 years ago

    What is the schema version in Windows 2008 R2.

    Br,
    Pravin

    Reply
  3. hebron 12 years ago

    Dear Admin,

    How to restore Active Directory from Win 2003R2 to Win 2008?

    Thanks
    Hebron

    Reply
  4. sivaram 10 years ago

    win server 2008 r2 schema version is 47

    Reply

Leave a reply

Your email address will not be published.

*

© 4sysops 2006 - 2023

CONTACT US

Please ask IT administration questions in the forums. Any other messages are welcome.

Sending

Log in with your credentials

or    

Forgot your details?

Create Account