Stuck supporting out-of-date Windows Servers, what options do I have?
-
@IRJ said in Stuck supporting out-of-date Windows Servers, what options do I have?:
-
This goes without saying but VLAN them unto a separate network and allow whitelist only traffic.
-
Setup a bastion host in this network to administer from. So setup a Windows Server 2019 server only allow incoming RDP traffic to that. Then specifically allow that server exclusively to RDP to your 2008R2 servers
-
Setup some type of tool that completely locks down processes and doesnt allow any files to be created on the instances
https://www.symantec.com/products/data-center-security
- You could also setup an alternate directory for this domain and create a trust (or dont).
This pretty much sums it up.
-
-
Another option that wasn't mentioned is migrating the 2008R2 servers to Azure. Once migrated into Azure, you get security updates for 3 more years after the January 14, 2020 end of support.
-
@magicmarker said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Another option that wasn't mentioned is migrating the 2008R2 servers to Azure. Once migrated into Azure, you get security updates for 3 more years after the January 14, 2020 end of support.
That’s just putting a band-aid on something that you will to have to deal with again.
-
@black3dynamite said in Stuck supporting out-of-date Windows Servers, what options do I have?:
That’s just putting a band-aid on something that you will to have to deal with again.
Time value money. Why not kick the can down the road and invest in an area of the company that actually produces growth instead?
-
@StorageNinja said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@black3dynamite said in Stuck supporting out-of-date Windows Servers, what options do I have?:
That’s just putting a band-aid on something that you will to have to deal with again.
Time value money. Why not kick the can down the road and invest in an area of the company that actually produces growth instead?
And maybe it will be the next IT's guy's problem down the road!
-
@scottalanmiller said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@StorageNinja said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@black3dynamite said in Stuck supporting out-of-date Windows Servers, what options do I have?:
That’s just putting a band-aid on something that you will to have to deal with again.
Time value money. Why not kick the can down the road and invest in an area of the company that actually produces growth instead?
And
maybeit will be the next IT's guy's problem down the road!...if you plan your cards right.
-
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad? -
@magicmarker said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Another option that wasn't mentioned is migrating the 2008R2 servers to Azure. Once migrated into Azure, you get security updates for 3 more years after the January 14, 2020 end of support.
Well played Microsoft...
-
I didn't know about this, but apparently its old news...
-
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
-
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
Upgrades or updates?
Of course windows isn't perfect, but Windows 10 upgrades in my experience has been pretty damned awesome. updates for Windows 10 have been only slightly less so.
Now server updates - that's another matter.
-
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Any reasonably mature Linux distro is light years ahead of M$ for updates.
-
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
I think they are good now and the method works extremely well. Users literally don't have to do anything to stay up to date. For upgrades, it's handled automatically, all the user has to do is schedule it when prompted to by Windows.
Actually, doing nothing on Win10 presently is the a good bet. You'll get updates when needed (avoiding those occasional breaking changes that all OSs get), but not immediately (like you do when you hit the "check for updates" button, which gives you the latest updates, as it should).
It's only when you start doing things "your" way without knowing what you are doing that things go bad, generally.
But then again, I don't know if the context is business or home use. It depends. But if business, you use business-methods of controlling updates, and you avoid all issues anyways... and is also seamless to the user, completely. Which makes both options excellent presently.
-
The problem isnt really updates itself. It's all the erroneous shit that comes included with Windows. That most people have running and they dont want / need.
-
@IRJ said in Stuck supporting out-of-date Windows Servers, what options do I have?:
The problem isnt really updates itself. It's all the erroneous shit that comes included with Windows. That most people have running and they dont want / need.
Or the updates to the extra shit that no one wants.
-
@Obsolesce said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
I think they are good now and the method works extremely well. Users literally don't have to do anything to stay up to date. For upgrades, it's handled automatically, all the user has to do is schedule it when prompted to by Windows.
Actually, doing nothing on Win10 presently is the a good bet. You'll get updates when needed (avoiding those occasional breaking changes that all OSs get), but not immediately (like you do when you hit the "check for updates" button, which gives you the latest updates, as it should).
It's only when you start doing things "your" way without knowing what you are doing that things go bad, generally.
But then again, I don't know if the context is business or home use. It depends. But if business, you use business-methods of controlling updates, and you avoid all issues anyways... and is also seamless to the user, completely. Which makes both options excellent presently.
I have yet to work with any sort of Windows patch management that doesn't require much more management time on my part than any reasonable flavor of linux. Linux you set the updates to go, and you can forget about it for 99.99% of the time. Windows always seems to require manual intervention to not break things. Most recent example is the update that broke Access databases. Not that I think Access is a good platform to run a business on in the first place, but many do run on it
-
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@Obsolesce said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
I think they are good now and the method works extremely well. Users literally don't have to do anything to stay up to date. For upgrades, it's handled automatically, all the user has to do is schedule it when prompted to by Windows.
Actually, doing nothing on Win10 presently is the a good bet. You'll get updates when needed (avoiding those occasional breaking changes that all OSs get), but not immediately (like you do when you hit the "check for updates" button, which gives you the latest updates, as it should).
It's only when you start doing things "your" way without knowing what you are doing that things go bad, generally.
But then again, I don't know if the context is business or home use. It depends. But if business, you use business-methods of controlling updates, and you avoid all issues anyways... and is also seamless to the user, completely. Which makes both options excellent presently.
I have yet to work with any sort of Windows patch management that doesn't require much more management time on my part than any reasonable flavor of linux. Linux you set the updates to go, and you can forget about it for 99.99% of the time. Windows always seems to require manual intervention to not break things. Most recent example is the update that broke Access databases. Not that I think Access is a good platform to run a business on in the first place, but many do run on it
Was that a Windows Update or an application update that broke it? I know in Windows both happen.
-
@Dashrender said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@Obsolesce said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
I think they are good now and the method works extremely well. Users literally don't have to do anything to stay up to date. For upgrades, it's handled automatically, all the user has to do is schedule it when prompted to by Windows.
Actually, doing nothing on Win10 presently is the a good bet. You'll get updates when needed (avoiding those occasional breaking changes that all OSs get), but not immediately (like you do when you hit the "check for updates" button, which gives you the latest updates, as it should).
It's only when you start doing things "your" way without knowing what you are doing that things go bad, generally.
But then again, I don't know if the context is business or home use. It depends. But if business, you use business-methods of controlling updates, and you avoid all issues anyways... and is also seamless to the user, completely. Which makes both options excellent presently.
I have yet to work with any sort of Windows patch management that doesn't require much more management time on my part than any reasonable flavor of linux. Linux you set the updates to go, and you can forget about it for 99.99% of the time. Windows always seems to require manual intervention to not break things. Most recent example is the update that broke Access databases. Not that I think Access is a good platform to run a business on in the first place, but many do run on it
Was that a Windows Update or an application update that broke it? I know in Windows both happen.
That one was a Windows Update.
-
@Dashrender said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@travisdh1 said in Stuck supporting out-of-date Windows Servers, what options do I have?:
@FATeknollogee said in Stuck supporting out-of-date Windows Servers, what options do I have?:
Not to threadjack...
Now that I've experienced Fedora WS & Server updates, why do/does Windows updates suck so bad?Microsoft has never been good at upgrades. You'd think they would have it figured out by now, but nope.
Upgrades or updates?
Of course windows isn't perfect, but Windows 10 upgrades in my experience has been pretty damned awesome. updates for Windows 10 have been only slightly less so.
Now server updates - that's another matter.
Well we know you enjoy praising Windows 10 so this lip service shouldn't surprise anyone.