What's new in Windows Server 2025

ITOpsTalk

26 Mar 202430:00

Summary

TLDRWindows Server 25 introduces several groundbreaking features, including secure SMB over QUIC for remote file sharing, security improvements like default SMB signing, and in-place OS upgrades via Windows Update. It also brings enhancements like Wi-Fi and Bluetooth support, a modern package manager (WiGet) for easy app installation, and Azure Arc integration for simplified hybrid cloud management. Additionally, it offers a flexible subscription-based purchasing model while maintaining traditional licensing options. The update focuses on security, ease of use, and cloud integration, aiming to streamline IT management in modern infrastructures.

Takeaways

😀 **SMB Over Quick (QUIC)**: Windows Server 25 introduces SMB support over QUIC, offering secure, fast file sharing over the internet without requiring a VPN, using TLS 1.3 encryption over port 443.
😀 **Enhanced SMB Security**: SMB signing is enabled by default to prevent relay attacks, phishing, and man-in-the-middle attacks, while also introducing stronger password retry limits to thwart brute-force attacks.
😀 **Simplified App Management with WinGet**: WinGet now serves as a package management tool for Windows Server, allowing easy installation, updates, and management of apps like SQL Server, Sysinternals tools, and others directly from the terminal.
😀 **OS Upgrades via Windows Update**: Windows Server 25 allows administrators to perform OS upgrades through Windows Update, streamlining the process and reducing friction for upgrading, especially in cloud environments like Azure.
😀 **Flexible Licensing Models**: Windows Server 25 introduces a new subscription-based purchasing model through Azure Commerce, alongside traditional perpetual licenses, offering flexibility to cloud-focused businesses.
😀 **Improved Azure Integration**: Azure Arc integration wizards are simplified, making it easier to manage hybrid cloud environments and deploy Windows Server 25 in Azure-based setups.
😀 **Bluetooth & Wi-Fi Support**: Windows Server 25 now supports Bluetooth and Wi-Fi, enabling connections for peripherals and devices like keyboards, mice, and networking in remote or branch office setups.
😀 **Security Hardening**: SMB firewall rules have been hardened, reducing the number of open ports and providing more granular controls for SMB dialects and NTLM, helping prevent security vulnerabilities.
😀 **Zero-Configuration Remote File Access**: With SMB over QUIC, users can access files remotely, such as from a coffee shop, without requiring changes to the client-side setup, as all server-side configurations are done in Windows Admin Center.
😀 **Group Policy Control for OS Updates**: Admins can use Group Policy to control Windows Server 25 OS updates, preventing unauthorized upgrades and ensuring that only approved versions are deployed across enterprise environments.
😀 **Streamlined Server Experience**: Windows Server 25 features a modernized user experience with improvements to both the server interface and overall administrative tools, offering a smoother and more intuitive management process.