Windows Server 2016

Nano Web-Based GUI Management Tools Preview


In today’s Ask the Admin, I’ll show you how to set up the web-based server management tools for Windows Server 2016 TP4.

As part of the buzz around Windows Server Nano at last year’s Ignite conference, a set of web-based GUI management tools were also announced. While largely intended to make managing the headless Nano easier, the tools can also be used to manage Server Core. It’s important to understand that while in preview, the tools cannot be installed locally but are accessed from the Azure management portal. Microsoft may make the tools available as part of Azure Stack at a later date.

A server is required to act as a gateway to the devices you’d like to manage, so that might be a significant drawback. Don’t forget that these tools are designed for convenience and largely for big DevOps environments that will be deploying Nano in the future. If that’s not you, these tools might not be the right fit. Additionally, considering the tools are still in preview, setup involves jumping through enough hoops that unless you really need these tools right now, it might not be worth the effort.

Sponsored Content

Maximize Value from Microsoft Defender

In this ebook, you’ll learn why Red Canary’s platform and expertise bring you the highest possible value from your Microsoft Defender for Endpoint investment, deployment, or migration.

In this preview, the tools offer the following features:

  • View and change system configuration
  • View performance across various resources and manage processes and services
  • Manage devices attached to the server
  • View event logs
  • View the list of installed roles and features
  • Use a PowerShell console to manage and automate

Before starting, you’ll need a minimum of two servers on the same local network. One server will act as a Server management tools gateway, and the second will be the server you want to manage using the tools. For the purposes of this demo, both servers will be deployed in Azure. For more information on how to deploy Windows Server VMs in Azure, see Deploy VMs Using Azure Resource Manager on Petri.

Server management tools topology (Image Credit: Microsoft)
Server management tools topology (Image Credit: Microsoft)

The server to be managed must be running Windows Server 2016 TP4 or later. The gateway server can be running Windows Server 2016 TP4 or Windows Server 2012 R2 with the Windows Management Framework (WMF) 5.0 installed. Both servers are members of an Active Directory domain.

Create a new Server management tools connection

To manage a server using the tools, you need to set up a connection object in Azure.

  • Log in to the Azure management portal here.
  • Click + NEW in the panel on the left.
  • In the New panel, type server management tools in the search box.
  • Click Server management tools from the list of search suggestions to search for the tools.
  • In the Everything panel, click Server management tools in the list of results.
  • In the Server management tools pane, click Create.
  • In the Create Server management tools panel, enter the computer name, FQDN or private IP address of the Windows Server 2016 you want to manage.
  • In the Resource group menu, either select an existing resource group (RG) or click +NEW and type the name of a new group.
  • This is the first time we’re using the web-based GUI tools, so type a name for a new Server management tools gateway.
  • Select a location. At the time of writing only East US and Central US are supported.
  • Click Create.

Configure the gateway and add credentials

Once the connection has been created, a panel will appear in the management portal window showing the connection’s details. You’ll notice an error ‘Gateway not detected.’ To connect the gateway to the server specified during setup, you’ll need to perform some extra steps:

  • Click the Gateway not detected error message in the portal window.
  • In the Gateway configuration pane, click Generate a package link.
  • Click the copy icon to the right of the generated link.
  • Log in to the Windows Server VM that you’ve designated to be the Server management tools gateway and paste the link into a browser window.
  • Unzip the downloaded file and run the GatewayService.msi package.
  • Accept the license agreement in the installer window and then click Install.
Configuring the gateway and connection credentials (Image Credit: Russell Smith)
Configuring the gateway and connection credentials (Image Credit: Russell Smith)
  • Click Finish once the install has completed.
  • Back in the Azure management portal, click Refresh in the gateway configuration pane and you should be prompted to add management credentials for the connection.
  • Click Manage as in the gateway connection pane.
  • Enter a local administrator username and password credentials of the server you plan to manage and click OK. Note that by default you cannot make WinRM connections using the built-in administrator account.

Connection notes

If the server you want to manage is not part of an Active Directory domain, you’ll need to add the server’s IP address to the Windows Remote Management (WinRM) TrustedHosts list on the gateway server using the set-item PowerShell cmdlet, replacing with the IP address of the server you want to manage.

set-item wsman:\localhost\client\trustedhosts -concatenate –force

Note that you if you specify an IP address using the set-item cmdlet, you must also specify an IP address when creating the connection object in Azure, as opposed to a computer name or Fully Qualified Domain Name (FQDN).

Related Topics:


Don't have a login but want to join the conversation? Sign up for a Petri Account

Comments (0)

Leave a Reply

IT consultant, Contributing Editor @PetriFeed, and trainer @Pluralsight. All about Microsoft, Office 365, Azure, and Windows Server.
External Sharing and Guest User Access in Microsoft 365 and Teams

This eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

You will learn:

  • Who should be allowed to be invited as a guest?
  • What type of guests should be able to access files in SharePoint and OneDrive?
  • How should guests be offboarded?
  • How should you determine who has access to sensitive information in your environment?

Sponsored by:

Office 365 Coexistence for Mergers & Acquisitions: Don’t Panic! Make it SimpleLive Webinar on Tuesday, November 16, 2021 @ 1 pm ET

In this session, Microsoft MVPs Steve Goodman and Mike Weaver, and tenant migration expert Rich Dean, will cover the four most common steps toward Office 365 coexistence and explain the simplest route to project success.

  • Directory Sync/GAL Sync – How to prepare for access and awareness
  • Calendar Sharing – How to retrieve a user’s shared calendar, or a room’s free time
  • Email Routing – How to guarantee email is routed to the active mailbox before and after migration
  • Domain Sharing – How to accommodate both original and new SMTP domains at every stage

Aimed at IT Admins, Infrastructure Engineers and Project Managers, this session outlines both technical and project management considerations – giving you a great head start when faced with a tenant migration.the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

Sponsored by: