Connecting Windows Server to Azure hybrid services
Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016
You can extend on-premises deployments of Windows Server to the cloud by using Azure hybrid services. These cloud services provide an array of useful functions, both for extending on-premises into Azure, and for centrally managing from Azure.
Using Azure hybrid services within Windows Admin Center, you can:
- Protect virtual machines and use cloud-based backup and disaster recovery (HA/DR).
- Extend on-premises capacity with storage and compute in Azure, and simplify network connectivity to Azure.
- Centralize monitoring, governance, configuration, and security across your applications, network, and infrastructure with the help of cloud-intelligent Azure management services.
While you can set up most Azure hybrid services by downloading an app and doing some manual configuration, many are integrated directly into Windows Admin Center to provide a simplified setup experience and a server-centric view of the services. Windows Admin Center also provides convenient intelligent hyperlinks to the Azure portal to see connected Azure resources as well as a centralized view of your hybrid environment.
Discover integrated services in the Azure hybrid services tool
The Azure hybrid services tool in Windows Admin Center consolidates all the integrated Azure services into a centralized hub where you can easily discover all the available Azure services that bring value to your on-premises or hybrid environment.
If you connect to a server with Azure services already enabled, the Azure hybrid services tool serves as a single pane of glass to see all enabled services on that server. You can easily get to the relevant tool within Windows Admin Center, launch out to the Azure portal for deeper management of those Azure services, or read more with documentation at your fingertips.
From the Azure hybrid services tool, you can:
- Backup your Windows Server from Windows Admin Center with Azure Backup
- Protect your Hyper-V Virtual Machines from Windows Admin Center with Azure Site Recovery
- Sync your file server with the cloud, using Azure File Sync
- Manage operating system updates for all your Windows servers, both on-premises or in the cloud, with Azure Update Management
- Monitor servers, both on-premises or in the cloud, and configure alerts with Azure Monitor
- Apply governance policies to your on-premises servers through Azure Policy using Azure Arc for servers
- Secure your servers and get advanced threat protection with Azure Security Center
- Connect your on-premises servers to an Azure Virtual Network with Azure Network Adapter
- Make Azure VMs look like your on-premises network with Azure Extended Network
Azure hybrid service regional support
The Windows Admin Center gateway can be registered in both public and private Azure clouds. Today, we support gateway registration in Azure Global, Azure China, and Azure US Government. When your gateway is registered, Windows Admin Center assumes that all other Azure operations, including the use of Azure hybrid services, will be done in that cloud.
The regional support for each Azure hybrid service is different. Broadly, these are the clouds supported for each Azure hybrid service in Windows Admin Center:
Azure hybrid service | Azure global | Azure China | Azure US Government |
---|---|---|---|
Azure Arc | yes | no | yes |
Azure Backup | yes | yes | yes |
Azure Extended Network | yes | yes | yes |
Azure File Sync | yes | yes | yes |
Azure Monitor | yes | yes | yes |
Azure Network Adapter | yes | yes | yes |
Azure Security Center | yes | yes | yes |
Azure Site Recovery | yes | yes | no |
Azure Update Management | yes | yes | no |
For a more detailed regional support breakdown for each service, see Azure products available by region.
Back up and protect your on-premises servers and VMs
Back up your Windows servers with Azure Backup You can back up your Windows servers to Azure, helping to protect you from accidental or malicious deletions, corruption, and ransomware. For more info, see Back up your servers with Azure Backup.
Protect your Hyper-V virtual machines with Azure Site Recovery You can replicate workloads running on VMs so that your business-critical infrastructure is protected in case of a disaster. Windows Admin Center streamlines setup and the process of replicating your virtual machines on your Hyper-V servers or clusters, making it easier to bolster the resiliency of your environment with Azure Site Recovery's disaster recovery service. For more info, see Protect your VMs with Azure Site Recovery and Windows Admin Center.
Use synchronous or asynchronous block-based replication to a VM in Azure using Storage Replica You can configure block-based or volume-based replication on a server-to-server level using Storage Replica to a secondary server or VM. Windows Admin Center allows you to create an Azure VM specifically for your replication target, helping you to right-size and correctly configure storage on a new Azure VM. For more info, see Server-to-server replication with Storage Replica.
Extend on-premises capacity with Azure
Extend storage capacity
Sync your file server with the cloud by using Azure File Sync Sync files on this server with Azure file shares. Keep all your files local or use cloud tiering to free up space and cache only the most frequently used files on the server, tiering cold data to the cloud. Data in the cloud can be backed up, eliminating the need to worry about on-premises server backup. Additionally, multi-site-sync can keep a set of files in sync across multiple servers. For more info, see Sync your file server with the cloud by using Azure File Sync.
Migrate storage to a VM in Azure using Storage Migration Service Use the step-by-step tool to inventory data on Windows and Linux servers and then transfer the data to a new Azure VM. Windows Admin Center can create a new Azure VM for the job that is right-sized and correctly configured to receive the data from your source server. For more info, see Use Storage Migration Service to migrate a server.
Extend compute capacity
Create a new Azure virtual machine without leaving Windows Admin Center From the All Connections page within Windows Admin Center, go to Add and select Create new under Azure VM. You can even domain-join your Azure VM and configure storage from within this step-by-step creation tool.
Leverage Azure to achieve quorum on your failover cluster with Cloud Witness Instead of investing in additional hardware to achieve quorum on a 2-node cluster, you can use an Azure storage account to serve as the cluster witness for your Azure Stack HCI cluster or other failover cluster. For more info, see Deploy a Cloud Witness for a Failover Cluster.
Simplify network connectivity between your on-premises and Azure networks
Connect your on-premises servers to an Azure Virtual Network with Azure Network Adapter Let Windows Admin Center simplify setting up a point-to-site VPN from an on-premises server into an Azure virtual network.
Make Azure VMs look like your on-premises network with Azure Extended Network Windows Admin Center can set up a site-to-site VPN and extend your on-premises IP addresses into your Azure vNet to let you more easily migrate workloads into Azure without breaking dependencies on IP addresses.
Centrally manage your hybrid environment from Azure
Monitor and get email alerts for all the servers in your environment with Azure Monitor for Virtual Machines You can use Azure Monitor, also known as Virtual Machines Insights, to monitor server health and events, create email alerts, get a consolidated view of server performance across your environment, and visualize apps, systems, and services connected to a given server. Windows Admin Center can also set up default email alerts for server health performance and cluster health events. For more info, see Connect your servers to Azure Monitor and configure email notifications.
Centrally manage operating system updates for all your Windows Servers with Azure Update Management You can manage updates and patches for multiple servers and VMs from a single place, rather than on a per-server basis. With Azure Update Management, you can quickly assess the status of available updates, schedule installation of required updates, and review deployment results to verify updates that apply successfully. This is possible whether your servers are Azure VMs, hosted by other cloud providers, or on-premises. For more info, see Configure servers for Azure Update Management.
Improve your security posture and get advanced threat protection with Azure Security Center Azure Security Center is a unified infrastructure security management system that strengthens the security posture of your data centers, and provides advanced threat protection across your hybrid workloads in the cloud - whether they're in Azure or not - as well as on premises. With Windows Admin Center, you can easily set up and connect your servers to Azure Security Center. For more info, see Integrate Azure Security Center with Windows Admin Center (Preview).
Apply policies and ensure compliance across your hybrid environment with Azure Arc for servers and Azure Policy Inventory, organize, and manage on-premises servers from Azure. You can govern servers using Azure policy, control access using RBAC, and enable additional management services from Azure.
Clusters versus stand-alone servers and VMs
Azure hybrid services work with Windows Servers in the following configurations:
- Stand-alone physical servers and virtual machines (VMs)
- Clusters, including hyper-converged clusters certified by the Azure Stack HCI, and Windows Server Software-Defined (WSSD) programs
Services for stand-alone servers and VMs
This is the complete list of Azure services that provide functionality to stand-alone servers and VMs:
- Backup your Windows Server from Windows Admin Center with Azure Backup
- Protect your Hyper-V Virtual Machines from Windows Admin Center with Azure Site Recovery
- Sync your file server with the cloud, using Azure File Sync
- Manage operating system updates for all your Windows servers, both on-premises or in the cloud, with Azure Update Management
- Monitor servers, both on-premises or in the cloud, and configure alerts with Azure Monitor
- Apply governance policies to your on-premises servers through Azure Policy using Azure Arc for servers
- Secure your servers and get advanced threat protection with Azure Security Center
- Connect your on-premises servers to an Azure Virtual Network with Azure Network Adapter
- Make Azure VMs look like your on-premises network with Azure Extended Network
Services for clusters
These are the Azure services that provide functionality to clusters as a whole:
- Monitor a hyper-converged cluster with Azure Monitor
- Protect your VMs with Azure Site Recovery
- Deploy a cluster cloud witness
Other Azure-integrated abilities of Windows Admin Center
Add Azure VM connections in Windows Admin Center You can use Windows Admin Center to manage your Azure VMs as well as on-premises machines. By configuring your Windows Admin Center gateway to connect to your Azure VNet, you can manage virtual machines in Azure using the consistent, simplified tools that Windows Admin Center provides. For more info, see Configure Windows Admin Center to manage VMs in Azure.
Add an layer of security to Windows Admin Center by adding Microsoft Entra ID authentication You can add an additional layer of security to Windows Admin Center by requiring users to authenticate using Microsoft Entra identities to access the gateway. Microsoft Entra authentication also lets you take advantage of Microsoft Entra ID’s security features like conditional access and multifactor authentication. For more info, see Configure Microsoft Entra authentication for Windows Admin Center.
Manage Azure resources directly through Azure Cloud Shell embedded in Windows Admin Center Leverage Azure Cloud Shell to get a Bash or PowerShell experience within Windows Admin Center to give you easy access to Azure management tasks. For more info, see Overview of Azure Cloud Shell.
Additional References
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for