Greetings everyone, from time to time it is better we go back to basics, especially if an easy task has not been done for years. For example, VM Templates, a really basic component that we keep using day to day, most of the time we will rely on that old great Template we produced years ago, as it was my case, still deploying and relying on my good old Windows Server 2016 Template.
How to create a Microsoft Windows Server 2022 Virtual Machine Template on vSphere 7.x
As I am aware a lot of you prefer a video with the step-by-step, I have recorded a 20-minute video with the whole process, comments, tips, etc. Hope you like it and find it useful.
NVMe Controller vs PVSCSI
I have received great input from al Qamar (Karl Wester-Ebbinghaus), if you have modern Hardware already, with NVMe, and RAID SSD, please make sure you select the new NVMe Controller instead of PVSCSI, it will give you the very best performance:
Hi Jorge I am not a VMware expert at all but happy to see that I follow your recommendations since Server 2016.
– consider to activate VBS with Windows Server 2022. This will inherit UEFI and secure boot enabling with a single click
– consider to use NVMe Controller
— al Qamar (Karl Wester-Ebbinghaus) Ⓥ (@tweet_alqamar) November 25, 2021
Quick What’s New in Windows Server 2022
First of all, this beast runs fast, compared with the boot time of a Windows Server 2016 I am used to, Windows Server 2022 boots extremely fast, and that is always good. Besides this, all the latest updates of Veeam Solutions include support for Windows Server 2022.
Microsoft Edge as a default Web Browser – Thank you!
Microsoft Edge is included with Windows Server 2022, replacing Internet Explorer. It is built on Chromium open source and backed by Microsoft security and innovation. It can be used with the Server with Desktop Experience installation options.
Nested Virtualization for AMD processors
Nested virtualization is a feature that allows you to run Hyper-V inside of a Hyper-V virtual machine (VM). Windows Server 2022 brings support for nested virtualization using AMD processors, giving more choices of hardware for your environments.
Security, like a ton of improvements
Microsoft Windows Server 2022 brings Security to another level, some of the functionalities will not be possible to achieve with normal server hardware we find today in the market, but will be extremely relevant from 2022 onwards. From the Security section on the Windows Admin Center we can see the next:
Secured-core server brings together powerful threat protection, providing multi-layered security across hardware, firmware, and operating system. It uses the Trusted Platform Module 2.0 and System Guard to securely boot Windows Server and minimize the risk of firmware vulnerabilities. It also includes virtualization-based security (VBS) features such as Credential Guard and Hypervisor Protected Code Integrity (HVCI). Credential Guard provides preventative defense for sensitive assets, and HVCI applies hardware-rooted security to prevent malware from tampering with the system.
Boot Direct Memory Access (DMA) protection is part of Kernel DMA Protection which protects Bitlocker keys and other secrets stored in memory while the operating system is running. The classic attack here is to plug a drive with malware into a port offering DMA on a running PC and read Bitlocker keys from memory. DMA offers fast data transfer, essentially directly into memory (as it says on the tin) but it also comes with this risk — Boot DMA mitigates it.
Better integration with VMware
These small changes started happening before, but I just noticed that Windows Server 2022 does not require the VMware Paravirtual, or the VMxnet3 driver, as it comes with them already, and btw, the whole driver update regarding VMware components, it will happen directly from the Windows Update.
Please let me know your comments, suggestions, and if this is useful to you.