Stuart Kwan and Active Directory (May 17, 2005)
Published: May 19, 2005
Please note:Portions of this transcript have been edited for clarity
Introduction
Anne_MSFT (Moderator):
Welcome to today’s chat with Stuart Kwan. Stuart is the Director of Program Management for Identity and Access technologies, including Active Directory, Active Directory Federation Services, and Microsoft Identity Integration Server.
We will try to answer as many questions as we can today. Participants should type their questions, click "Submit a question," and click "Send." Those posts will go into a private queue, from which our experts will draft answers and repost questions in the upper window with their answers. (To confirm: if you clicked "Submit a question" when you posted, you don’t need to resubmit. We’ll get to them as soon as we can before the end of the chat (10a Pacific Daylight Time).
We will post a transcript of the upper window within a few days at http://www.microsoft.com/technet/community/chats/trans/default.mspx.
We are pleased to welcome our experts for today. I will have them introduce themselves now.
DES_MSFT (Expert):
Hi. I'm Don Schmidt, Lead Program Manager for Active Directory Federation Services.
Asaf_MSFT (Expert):
My name is Asaf, Lead Program Manager for Active Directory.
Stuart_MSFT (Expert):
Hi I'm Stuart Kwan, the Director of Program Management for the Identity and Access team in Windows Server. I've been part of the Active Directory team since it's inception, shipping Windows 2000 and Windows Server 2003. Thank you for joining us this morning!
Andreas_msft (Expert):
My name is Andreas Luther, I am the Group Program Manager of the Identity Integration Server (MIIS).
Matthias_msft (Expert):
Hi, I'm Matthias Leibmann, Program Manager in the Microsoft Identity Integration Server group.
Mas_MSFT (Expert):
Hello folks. I'm Mas Libman a Program Manager on the Active Directory team.
Anne_MSFT (Moderator):
Let’s begin the chat!
Start of chat
DES_MSFT (Expert):
Q: how does the recent msft-sun announcement in this area impact the plans for ADFS, MIIS or any other identity related features
A: This has no impact on the version of ADFS scheduled to ship in R2. That code is already in beta2. The new protocols will be implemented in a future version of Microsoft's Identity and Access Management platform software.
Asaf_MSFT (Expert):
Q: Are there any limits to the numbers of users in a single directory?
A: It is only limited by the available resources, there are no internal limits.
DES_MSFT (Expert):
Q: I understand that the current implmentation of ADFS is meant for passive clients like a browser. Is there any way to use it with a smart client such as a Windows Forms application?
A: Correct, current version of ADFS is designed for Browser clients only. However, I do not understand what you mean by a Windows Forms application. ADFS can support Forms based authentication and provide secure access to an ASP.NET app.
Harini [ADFS] (Expert):
Q: For ADFS the sp1 server 2k3 is a "must" ???
A: The ADFs s/w is only available on R2. To install R2 yes SP1 is a must.
Andreas_msft (Expert):
ADFS is used for authentication, e.g., for WebSSO and for federated scenarios. MIIS is used for user provisioning with bussiness rules and for directory synchronization. They complement each other.
DES_MSFT (Expert):
Q: How will ADAM work with ADFS? Will it just consist of an API support or will there be support for ADAM principals in the ADFS UI?
A: ADFS can support principals in AD or ADAM. However, for ADAM the variety of authentication mechanisms that ADFS can support is more limited, and ADAM principals cannot be used for Windows app (like Sharepoint) that require Windows Impersonation for access control.
Matthias_msft (Expert):
Q: Are there any White Papers on the business value/ROI for ADFS or MIIS? Has Microsoft posted their business value/ROI for ADFS or MIIS?
A: There's a whitepaper on the Microsoft internal implementation of MIIS on IT Showcase/microsoft.com, it contains some information on ROI. Additional customer information on MIIS implementations are also availble on microsoft.com/MIIS, I'm not sure if they contain ROI information, please check the out. Regards ADFS: ADFS is not shipped yet and so we don't have any public ROI information available yet.
Anne_MSFT (Moderator):
Q: Is R2 serving as a "gateway" to what is coming in Longhorn?
A: If this question is about AD, please repost. Thanks.
DES_MSFT (Expert):
Q: How (if at all) does XACML fit into the ADFS plans?
A: ADFS shipping in R2 only supports SAML based security tokens. However, the underlying WS-* protocols can work with any type of security token, so we are considering whether XrML or XACML would be useful to support in future versions.
Mas_MSFT (Expert):
Q: What are the most frequently encountered isues when doing an in-place upgrade from AD 2000 to 2003?
A: We have a Web cast that details how to upgrade your AD 2000 environment to 2003 including discussion of common issues to be aware of. Go to http://go.microsoft.com/fwlink/?LinkId=43994 to see the recording!
Harini [ADFS] (Expert):
Q: Will AD Federation Services and/or Identity and Access Mgmt be included in the SBS version of R2? Is there definitely going to be an SBS version of R2?
A: This is currently under investigation
DES_MSFT (Expert):
Q: Can both a legacy non-claims aware appl and a claims aware app be used across the same federated services?
A: Yes. The account partner will be configured to send all the claims necessary for both types of apps at the resource partner. There is no restriction in the SAML security token that it can only be used with either a claims or non-claims aware app.
Andreas_msft (Expert):
Q: Do you see overlap in the uses of ADFS and MIIS - how and why would a customer use them together?
A: ADFS is used for authentication, e.g., for WebSSO and federated scenarios. MIIS is used for provisioning based on business rules and directory synchronization. They complement each other.
Matthias_msft (Expert):
Q: What is Microsoft's position with respect to Tivoli FIM? Is there a comparable product on the MSFT side?
A: The life cycle management of identities is managed within the Microsoft IDA platform by MIIS. The current shipping version is MIIS 2003 that covers a comparable feature set to TIM. Is there a specific functionality you're looking for regards IDM?
Harini [ADFS] (Expert):
Q: For internet using of adfs is possible to use kerberos and x509 certificates?
A: What exactly do you mean by internet using? Does it mean clients connecting from internet? Clients connecting from internet can authenticate using x509 certificates or forms based authentication.
Andreas_msft (Expert):
Q: Will MIIS functionality be included in the Longhorn OS or will MIIS continue to be a seperate product? Or some mixture of the two perhaps?
A: MIIS today is available in two versions: The Enterprise version, which is solded as a separate product, and IIFP, which is available as a free download. Since IIFP is free, we see this as an extension of Windows Server. The current plan is that the same strategy is planned for the next release of MIIS.
Stuart_MSFT (Expert):
Q: Related to the recent announcements at Digital ID World, will ADFS be required to get an InfoCard from AD or will AD natively provide an "Identity Provider" and "Security Token Service" in Longhorn?
A: ADFS provides native support for federated WebSSO in AD. It takes the form of a server role that is distinct from the domain controller. Having ADFS as a separate server role is very useful when considering the extranet topologies that are usually the case when deployed federated identity solutions. It's too early to say what form the STS will take.
Matthias_msft (Expert):
Q: When will we see a proper workflow engine in MIIS? Not something like the bolted on application shipped with the 2nd iteration of the reskit.
A: We're currently working on integrating workflow in our next major MIIS release (MIIS Gemini). This engine will integrate within the MIIS provisioning process and offer full set of workflow services, including approvals, etc.
Harini [ADFS] (Expert):
Q: What are the browser/OS combos exptected to be supported with ADFS (Mac OSX, Win9X, Firefox, Netscape) for example MIIS password sync will not work for Mac IE clients
A: We are trying to be as generic as possible. We have currently tested with firefox, sapphire using mac osx
Asaf_MSFT (Expert):
Q: With the large changes coming down the pipe with Longhorn and other technologies, where is Microsoft planning on bringing AD? We have seen several major changes from AD in 2000 to AD in 2003 and what can we expect for Longhorn?
A: For Longhorn we're looking to introduce a read-only domain controller, reduce domain controller reboots, and separate the domain administrator from the local machine administrator accounts.
Anne_MSFT (Moderator):
For those just joining us, today’s chat is with Stuart Kwan. Stuart is the Director of Program Management for Identity and Access technologies, including Active Directory, Active Directory Federation Services, and Microsoft Identity Integration Server. To post a question, please click "Submit a question," type your question, and click "Send." That way, we can track which questions we still need to answer.
DES_MSFT (Expert):
Q: ADFS and WebSSO only works with IIS, so it´s only IIS/SSO. What about other WebServers?, What about "application" server?
A: ADFS can support most any application running on IIS -- pure web apps, ASP.NET apps, even apps like Sharepoint WSSv2 that require NT Impersonation and ACLs. We are working with 3rd party vendors to build ADFS compliant Web SSO vendors for all the popular other Web servers and J2EE applications that run on them.
Mas_MSFT (Expert):
Q: We will be migrating from domains to AD and are using exchange 5.5 shortly. Can you provide a link to a best practise documentation?
A: We have a whitepaper that details how to migrate from NT4 domains to AD 2003. http://www.microsoft.com/windowsserver2003/evaluation/whyupgrade/nt4/nt4domtoad.mspx
Matthias_msft (Expert):
Q: How is MSFT positioning MIIS with respect to virtual directory solutions such as Octet String's?
A: It all depends what you try to accomplish. MIIS is primarly targeted for Identity process integration scenarios. With that its focus is to provide a rich set of rules that are applied to identities to accomplish scenarios such as HR provisioning. In addition to that MIIS can build a aggregated view of all identities in the enterprise that can be published as an access point. With that I believe MIIS provides a super set of functinality that Virtual Directories provide.
Krish[msft] (Expert):
Q: Do you think X.509 and form based authentication is the "only" way to authenticate over the internet?
A: We currently support these two methods of authentication for access from outside the intranet. Forms and SSL Client authentication
DES_MSFT (Expert):
Q: Can you go into more detail what the Microsoft/Sun web sso announcment will really mean to us? What will this enable?
A: Sun and Microsoft published two specifications that allow (a) two Web SSO implementations to identify what protocols they speak, and (b) allow authentication of users from an WS-* (or Liberty) based Identity Provider to a Liberty (or WS-*) based Target Service (aka Service Provider). Microsoft and Sun have demonstrated that we are committed to building products that will allow this interop between our product lines. We are publishing the specs and encouraging other vendors to build similar products.
Stuart_MSFT (Expert):
Q: Do you talk with other vendors to support ADFS in their SSO Products?
A: Yes, we have worked with many other software vendors on WS-Federation interoperability. Check out http://www.microsoft.com/presspass/press/2004/may04/05-25IMVRallyPR.mspx.
Rahul (Expert):
Q: [Harini] Thanks. your answer is enught! another quest.: is there any know problem about integration oF adfs end ADAM??
A: There are no problems about integration oF adfs end ADAM
Krish[msft] (Expert):
Q: Is there any restriction on where ADFS runs, i.e, can it run on a DC, on a domain member server, on a stanalone server, or on an appl server (like sharepoint) in any of these combinations?
A: ADFS can run on all machines that the R2 install will support
Matthias_msft (Expert):
Q: It seems like finding training (classrom style and even books) on MIIS is difficult and sparse. Is Microsoft doing anything to change that?
A: Today there's training on MIIS available from the Oxford Computer group. This is a well received class and we worked closley with OXG on the training material. Is there some additional training/information you like to see?
DES_MSFT (Expert):
Q: Is ADFS the feature set of R2 that will allow attributes that exist in an instance of ADAM to be bound to a user in AD? Or will that functionality remain in MIIS only? (sorry for repost)
A: ADFS will enable security tokens to be constructed for users from AD -- and with a Custom Claim Transform plug-in module -- additional attributes from ADAM can be added to the security token. So this is one way that attributes from multiple stores can be bound to a single user. However, I am not sure if that is what you are aksing about. Can you be more specific? thx -- des
Stuart_MSFT (Expert):
Q: For Stuart: I asked you this at DEC, but I wanted to ping you again -- is there a firmer idea on your side of exactly what "Claims-Based Access Controls" are? Should we as architects begin to plan for this in our designs?
A: You can definitely explore the claims-based model by reading up on the web services security related specifications, such as WS-Security, WS-Trust, WS-MetadataExchange, WS-Policy, and WS-SecurityPolicy. We haven't made any announcement yet on design reviews we'll be holding on this topic. Stay tuned.
Matthias_msft (Expert):
Q: ADFS and MIIS...Will there be some kind of integration in Gemini? Allowing one to create claims, etc. based on OU changes in the existingly connected organizations?
A: There is a lot of synergy with MIIS and ADFS. Regards the level of integration we are finalizing right now the scenarios, but you can expect based on the natural synergy that both will greatly complement/integrate.
Asaf_MSFT (Expert):
Q: Does Microsoft plan to enhance AzMan to use ADAM principals in a similar fashion that it uses AD principals? Right now ADAM principals are only supported in code and only the SID gets displayed in the AzMan MMC.
A: We haven't announced anything along these lines, but we would love to hear your feedback.
DES_MSFT (Expert):
Q: What additional tools/utilities will Longhorn Server ship with, to make ADFS management easier?
A: The current version of ADFS is limited to Web Servers because it only supports the WS-Federation Passive Requester Profile. ADFS can directly support IISv6, and with Web SSO agents from 3rd party vendors it can support other web servers (eg Webshpere, UNIX, ...). A future version of ADFS will support the Active Client Profile ... and thus will be able to support richer .NET applications, Web Services and active SOAP/XML aware clients.
Matthias_msft (Expert):
Q: Is it envisioned to add whitepages kind of an interface in the next version of MIIS?
A: We will provide web services interfaces with MIIS Gemini that will allow to build applications such as white pages much easier than today. Regards shipping a white pages out of the box, this is an option we're persueing, but haven't finalized.
DES_MSFT (Expert):
Q: Will future versions of ADFS only work with IIS or are there plans to have it work with other applications that aren't web based?
A: The current version of ADFS is limited to Web Servers because it only supports the WS-Federation Passive Requester Profile. ADFS can directly support IISv6, and with Web SSO agents from 3rd party vendors it can support other web servers (eg Webshpere, UNIX, ...). A future version of ADFS will support the Active Client Profile ... and thus will be able to support richer .NET applications, Web Services and active SOAP/XML aware clients.
Krish[msft] (Expert):
Q: Is possible use browser like Safari and Apple Mac for interction with ADFS? The must is just "java script"?
A: The design of ADFS only requires the browser support SSL, javascript and secure cookies
Matthias_msft (Expert):
Q: Will it be possible in a future version of MIIS to run (some version of the) Identity Manager remotely?
A: MIIS Gemini will offer remote functionality for management tasks. If, or how much this will be the ID Manager that exists today is still under investigation regards new functioanlities such as workflow integration.
Stuart_MSFT (Expert):
Q: Is Microsoft going to provide Virtual Directory functionality in the near future, complementing MIIS?
A: We've made no announcements in this area, but we'd love to hear your feedback on the scenarios that you'd like to enable with Virtual Directory functionality.
Anne_MSFT (Moderator):
Q: I hope the text from this chat will be available somewhere (either on betaplace or technet)?
A: Yes. It will be on http://www.microsoft.com/technet/community/chats/trans/default.mspx.
Krish[msft] (Expert):
Q: Please explain how the URI is used and with what type of ADFS transaction?
A: The URI is used to uniquely identify the following components on the ADFS federation server trust policy
Account stores, Account partners and resource partners
Asaf_MSFT (Expert):
Q: Hello, I can't enable my firewall in windows xp service pack 2 hawkieyei: windows firewall cannot be displayed because the associated service is not running. Do you want to start windows firewall/internet ics service?
A: This is an off-topic question for the current chat, sorry.
Anne_MSFT (Moderator):
Q: Hello, I can't enable my firewall in windows xp service pack 2 hawkieyei: windows firewall cannot be displayed because the associated service is not running. Do you want to start windows firewall/internet ics service?
A: This chat is about Active Directory. If this question is about Active Directory, please clarify. Thanks.
Krish[msft] (Expert):
Q: When an account partner is created we need to install local the x509 cer, is possible to by pass this using SMART CARD for example?
A: Yes the certificate chain for the account partner is installed to the Federation Store in the local machine however the private key of that certificate is not required on the resource side so a smart card will not be required and is not useful
Anne_MSFT (Moderator):
Q: There was a private newsgroup for Win2003R2. While I can attach to the newsgroup, I see no messages and I cannot post any either. Is this newsgroup still active?
A: This chat is about Active Directory. Do you have a question about AD?
Matthias_msft (Expert):
Q: will gemini include built-in run-profile scheduling rather than relying on external triggers & wmi?
A: That is a feature that is on the current list for MIIS Gemini. However regards priorities such as workflow integration we can not commit to this feature at that point.
DES_MSFT (Expert):
Q: Is the "Custom Claim Transform plug-in module " the means by which you can add ADAM attributes (from multiple instances) to a single AD security token? Is that function currently available or is MIIS designated to provide that functionality?
A: This is a plug-in that could be written for ADFS. It is not part of MIIS. ADFS does not currently include a finished plug-in since it would need to be different for every customer. We may ship a sample as part of the ADFS SDK.
Matthias_msft (Expert):
Q: In the future, will there be an MA connecting to AzMan, allowing MIIS to create (provision, deprovision, modify, etc) security groups in AzMan?
A: An MA for AzMan is under investigation for MIIS Gemini.
Justin_MSFT (Moderator):
Q: Regarding MIIS training, the Oxford group is the ONLY option and that seems odd. Why is there only one company giving the training and why is it not Microsoft? Also, why are there zero books available at bookstores on MIIS?
A: Currently, documentation for MIIS is only available on the web at http://www.microsoft.com/windowsserversystem/miis2003/techinfo/default.mspx, but it's good to know there is demand for books too. Some of the same documentation is available for downloaded.
Matthias_msft (Expert):
Q: Are there any plans to provide a generic LDAP MA in MIIS?
A: Yes, a Generic LDAP MA is on the priority list right after the Host (RACF, ACF2, TopSecret) and ERP (SAP, PeopleSoft) MAs.
DES_MSFT (Expert):
Q: Why do you handle in the MS-SUN protocol only authentication and attributes? whats wrong with authorisation?
A: This is not restricted to only the specifications recently announced by Sun-Microsoft. All the WS-Federation Passive Requestor Profile compliant vendors also only support authentication and attribute statment. We want to provide interoperability and we felt that authentication and sending claims -- that could be used to make authorization statements -- was more than sufficient for version one products, since there is not yet industry-wide agreement on the best format for authorization data. XrML and XACML might be better suited for this purpose than SAML authorization statements. More research is being conducted by all of us in this area. Stay tuned.
Krish[msft] (Expert):
Q: is possible to log the Federation Service authentication package?
A: Can you describe what you mean by logging. Yes it is possible to provide debug logging output of the Federation Service Auth package by means of registry
Stuart_MSFT (Expert):
Q: When will support ADFS Active Client Profile?
A: We have not yet announced the timeline for Active Profile support. Stay tuned.
Asaf_MSFT (Expert):
Q: Is there any documentation on PolyArchy?
A: You can start with the whitepaper: http://research.microsoft.com/users/marycz/chi2002poly.pdf There are other links on research.microsoft.com including a tech preview..
Matthias_msft (Expert):
Q: Are you able to confirm yet that Gemini will have more flexibility around the use of mv reference types? (ie. currently not able to create references through rules extensions)
A: Yes, confirmed. This will be accomlished by a featuer called Computed Attributes and Relationship engine, that will allow you to compute and all kind of reference relationships between MV objects and apply them to connected systems.
Stuart_MSFT (Expert):
Q: Re: virtual directories, clients tend to look at them closely when they don't want to commit to the infrastructure changes demanded by the implementation of MIIS. How's that for a starting point?
A: Steve, what infrastructure changes are you referring to wrt MIIS implementation? MIIS does not require agents to be deployed on the managed systems.
Matthias_msft (Expert):
Q: Are there any plans to make MIIS into something that can be used as a true metadirectory? (LDAP accessible). Or do we still need to use something else for metadirectory services? (i.e. ADAM) If ADAM is the direction, any plans to make it more manageable?
A: LDAP access to MIIS data will need to be accomplished via AD/ADAM. The plan is exposing the aggregated identity data in Gemini via web servcies.
Krish[msft] (Expert):
Q: Hi , i have a ASP web application that use a 4 ADAM LDAP istance in NLB . Now i would like use LDAP over SSL for connect my application to LDAP and all traffic.
A: We have currently not tested a configuration where the ADAm store is in an NLB however the ADFS snapin lets you configure ldap over ssl for an ADAM store
DES_MSFT (Expert):
Q: Is MSFT participating in the US gov's eAuth project? If so, how?
A: We have been in communcation with GSA and other agencies involved in the eAuth project for over a year. They have mostly focused on bringing released products into their testing labs. With ADFS release in R2 we hope to change this.
Stuart_MSFT (Expert):
Q: Will MS make a roadmap for ADFS and MIIS available online? After getting my last 4 questions answered it seems that everything is on the discussion table. By when will there be some guideline available? If it will be...
A: Stay tuned. :-)
Stuart_MSFT (Expert):
Q: Regarding Virtual Directories: I see them mostly as load balancing proxies, and for securing subsets of directory data (I my view you could use a meta-directory instead in most scenarios, especially considering current products use some form of cache)
A: I agree, you can use metadirectory in many of these scenarios.
Asaf_MSFT (Expert):
Q: Have Microsoft published any AD performance indicators relating to the benefit of using 64-bit Windows on domain controllers?
A: We do not have any 64-bit DC case studies published yet, but the main benefit is the ability to keep a larger DIT file in memory due to being able to address more physical memory on a 64-bit machine.
Matthias_msft (Expert):
Q: Regarding MIIS MAs: would it be possible to publish which MAs you are planning to release and about when (some kind of roadmap)?
A: Certainly. As soon as the list is finalized we can work on publishing it on the MIIS web site.
Krish[msft] (Expert):
Q: [Krish] I would like to log the auth package load by Local Security Authority... yes mybe some settings in the registry...
A: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\WebSso\Parameters]
"DebugLevel"=dword:ffffffff
Matthias_msft (Expert):
Q: Is there a list available (roadmap) what standard MA's MIIS Gemini will provide?
A: As soon as the list is finalized we will work on publishing it to microsoft.com/miis
DES_MSFT (Expert):
Q: I'm confused then. How are attributes in an ADAM schema supposed to be added to an AD security token in R2? Or is this functionality not included in R2? I'd be happy to move to PM's if you'd like a more detailed explanation.
A: AD & ADAM schemas really have very little to do with this. ADFS claims can be populated by default from either AD or ADAM attributes ... but the DS schemas are not directly related to the type of claim in the security token. With custom modules attributes from other LDAP directories, or databases, could be added to claims in the security token. I don't know what else to tell you.
Krish[msft] (Expert):
Q: [Krish] ok thanks!
A: It will create the log file adfsap.log in %windir%\temp
Mas_MSFT (Expert):
Hey everyone, we're getting near the end of today's chat and wanted to get a quick poll of how you felt today's chat went.
Did you find today's Web chat helpful/intersting?
Asaf_MSFT (Expert):
Q: In 64-bit Windows, is there a way to control exactly how much of the ntds.dit gets loaded into memory, or is this controlled automatically?
A: This is controlled automatically, there isn't any direct way, but you could look at the I/O rates or other secondary effects.
Stuart_MSFT (Expert):
Q: Stuart - re: virtual dirs -- the infrastructure changes for a meta product are pretty big regardless of the product ("thick infrastructure"). Virtual directories allow you to bypass a lot of that by touching the source data stores directly.
A: Doesn't MIIS touch the source data stores directly too?
DES_MSFT (Expert):
Q: still curious about interoperation with Shibboleth, SAML/SAML2, and the Fed's eAuthentication......
A: ADFS to be released in R2 is based on WS-Federation Passive Requestor Profile and a SAML token. We recently demonstrated how a future version could interoperate with a subset of the Liberty ID-FF profile. Similarly we are discussing with the Shibboleth community how to achieve interop in this space. I am sure it can be done, but cannot comment on when it might happen.
DES_MSFT (Expert):
Q: DES..basically one should be able to put anything in the claims!!!
A: Is this a question? :) If so, answer is yes.
Matthias_msft (Expert):
Q: Gemini...is there a separate beta program for that? or the same beta as for MIIS will continue?
A: There will be a seperate Beta program for MIIS Gemini.
Matthias_msft (Expert):
Q: Is there a beta site for MIIS Gemini and where to subscribe if you want to join it?
A: There will be a seperate Beta program available for Gemini in the future. It will be announced via microsoft.com/miis.
Anne_MSFT (Moderator):
Thank you for joining us today to chat with Stuart Kwan. Stuart is the Director of Program Management for Identity and Access technologies, including Active Directory, Active Directory Federation Services, and Microsoft Identity Integration Server. We will post the transcript of the upper window for this chat in a few days at http://www.microsoft.com/technet/community/chats/trans/default.mspx.
Please join us on June 15 at 10a (Pacific) with Bob Muglia. Bob is the Senior Vice President for the Windows Server Division, and is responsible for all versions of Windows Server and Microsoft’s management products. Learn about Bob’s long-term vision for server operating systems, and why he believes that Microsoft is the company that is and will continue to lead the industry in server operating systems and platforms.
Thanks, all!