| Feature |
Windows
NT Server 4.0 |
Windows
2000 Server |
| I.
File Services |
| Windows
NT File System (NTFS): An
advanced file system supporting file system
recovery, extremely large storage media, and
long file names |
Yes |
Yes |
| File
System Recovery: In
the event of a disk failure, the file system can
quickly undo or redo transactions as appropriate
to recover data, and return to a known
Functioning state |
Yes |
Yes |
| Distributed
File System (Dfs): Build
a single, hierarchical view of multiple file
servers and file server shares on a
network. Dfs makes files easier for users
to locate, and increases availability by
maintaining multiple files copies across
distributed servers. Enhancements in
Windows 2000 increase reliability and ease of
use. |
Yes |
Improved |
| Indexing:
Search for content
easily by creating indexes of the contents and
properties of document on your local hard drive
and on shared network drives. |
Yes |
Improved |
| Backup
and Recovery: Backup
and recovery features make it easier to backup
data and then recover data in the event of a
hard disk failure. Windows 2000 allows
back up to a single file on a hard disk and tape
media. |
Yes |
Improved |
| Disk
Defragmentation: Over
time, fragmentation can have a severe impact on
the performance of a busy file or web
server. These tools increase disks
availability and perfromance. |
|
New |
| Disk
Quotas: Set quotas on disk space usage per
user and per volume to provide increased
availability of disk space and help capacity
planning efforts. |
|
New |
| Dynamic
Volume Management: Add new volumes, extend
existing volumes, break or add a mirror, or
repair a RAID 5 array, while the server is
online, without impacting the end-user. |
|
New |
| Hierarchical
Storage Management: Automatically migrate
data that hasn't been recently accessed to less
expensive storage media, maximizing disk space
for the most heavily accessed data on the disk. |
|
New |
| File
Replication Service (FRS): Replicate data on
file shares and automatically maintain
synchronization between the copies. FRS
increases the performance and availability of
the Distributed File System. |
|
New |
| Encrypting
File System: Increase security of data on
the hard disk by encrypting it. This data
remains encrypted even backed up or archived. |
|
New |
| II.
Print Services |
| Ease
Driver Management: Allows users to connect
to printer and device drivers automatically and
take advantage of "point to point"
installation. |
Yes |
Yes |
| Priority
Printing: Prioritize critical print jobs or
defer printing to non-peak hours so that very
large jobs are run when demand for the printer
is low. |
Yes |
Yes |
| Enhanced
Metafile (EMF) Spooling: EMF
is a file format that reduces the size of files
sent from a client to the server, reducing
network traffic and quickly returning a client
machine to the application it was running. |
Yes |
Yes |
| Remote
Print Queue Administration: Monitor
the performance of a local or remote printer.
Set up counters to track performance
criteria, such as bytes printed per second, job
errors, or total pages printed. |
Yes |
Yes |
| Performance:
139%
performance improvement in Windows 2000 ensures
end-user productivity gains. |
Yes |
Improved |
| Color
Management:
Enhancements
in Windows 2000 ensure
better color accuracy, consistency, and color
mappings for printers. |
Yes |
Improved |
| Driver
Administration:
Easily
view
and manage printer drivers.
Control more driver properties from local
or remote locations in Windows 2000. |
Yes |
Improved |
| Internet
Printing:
Send
print jobs across the Internet to a URL. |
|
New |
| Web-based
Printer Administration: View
and manage printers from any browser |
|
New |
| Remote
Port Administration:
Remotely
manage and configure printer ports from any
Windows 2000 Professional desktop. |
|
New |
| Search
for and Connect to Printers from a desktop:
Publish
printers
in the Active Directory™ service, enabling
users to locate and connect to printers
based on criteria such as location, ability to
print color, or speed. |
|
New |
| III.
Web and Application Services |
| Transaction
Services: A
component-based transaction processing system
for developing, deploying, and managing
high-performing, scalable, and robust
enterprise, Internet, and Intranet and server
applications. |
Yes |
Improved |
| Message
Queuing Services (MSMQ):
Allows
creation of distributed, loosely-coupled
applications that can run reliably on unreliable
or intermittent networks.
In Windows
2000, Message Queuing version 2.0 makes use of
Active Directory, has vastly increased
transactional speed, and provides a stand alone
workgroup mode which allows MSMQ applications to
be installed and run stand alone from supporting
servers. |
Yes |
Improved |
| Internet
Information Services (IIS):
Integrated
Web services enable users to easily host and
manage Web sites to share information, create
Web-based business applications, and extend
file, print, media and communication services to
the Web. |
Yes |
Improved |
| Active
Server Pages (ASP) Programming Environment: Active
Server Pages is consistently rated the easiest,
highest performance web server-scripting
environment available. |
Yes |
Improved |
| Symmetric
Multi-Processor Scalability:
IIS
5.0 takes advantage of support for higher levels
of memory and more processors, by delivering
nearly linear web server scalability. |
Yes |
Improved |
| IIS
Application Protection: Application
protection keeps web applications running
separately from the web server itself,
preventing an application from crashing the web
server |
Yes |
Improved |
| Support
for the Latest Security Standards:
Build
secure Intranet, Extranet and Internet sites
using the latest standards, including:
56-bit and 128-bit SSL/TLS, Server Gated
Cryptography; and new in Windows 2000: Digest
Authentication, Kerberos v5 authentication, and
Fortezza |
Yes |
Improved |
| Distributed
Component Object Model (DCOM):
A
protocol that enables software components to
communicate directly over a network in a
reliable, secure, and efficient manner.
Previously called "Network OLE," DCOM
is designed for use across multiple network
transports, including Internet protocols such as
HTTP, and is designed to work with both Java
applets and ActiveX® components. |
Yes |
Updated
by COM+ |
| Component
Object Model + (COM+):
COM+
builds on COM's integrated services and
features, making it easier for developers to
create and use software components in any
language, using any tool.
Applications currently using COM or DCOM
technology will work in the COM+ environment. |
|
New |
| Enhanced
ASP Performance:
More
scalable ASP processing, improved ASP flow
control, and ASP Fast Path for scriptless
ASP files enable faster Web page processing. |
|
New |
| XML
Parser:
Create
applications that enable the Web server to
exchange XML-formatted data with both Microsoft
Internet Explorer and any server capable of
parsing XML. |
|
New |
| IIS
Reliable Restart:
Quickly stop and reliably
restart Web services without rebooting the
computer.
IIS can automatically restart even if a
misbehaving web application does cause a
failure. |
|
New |
| Web
Folders:
Web
Folders bring the richness of Windows to the
web, by using Web Document Authoring and
Versioning (WebDAV) to enable drag and drop web
publishing |
|
New |
| FTP
Session Restart:
Improves
file download performance by allowing users to
resume interrupted downloads at the point they
were stopped. |
|
New |
| Directory-Enabled
Applications:
Developers
can use a
number of standard interfaces to write
applications that utilize information stored in
Active Directory about users, other application
and devices.
This enables rich, dynamic applications
that are simpler to develop and easier to
manage. |
|
New |
| IV.
Networking and Communication Services |
| Routing
and Remote Access Service:
Connects remote workers, telecommuters, and
branch offices to the corporate network through
dial-up, leased line and Internet links. No
longer a separate download solution, it installs
through the server configuration wizard and is
easier to manage through MMC. |
Yes |
Improved |
| Virtual
Private Networking:
A full-featured gateway that encrypts
communications to securely connect remote users
and satellite offices over the Internet.
Now with an updated PPTP support and
advanced security with Layer 2 Tunneling
Protocol encrypted by IPSec.
Configurable as a basic or advanced
service. |
Yes |
Improved |
| Microsoft
Connection Manager Administration Kit and
Connection Point Services:
These
wizard-driven tools lets administrators
centrally configure and deploy customized remote
access dialers that can integrate
automatic-update phonebooks, custom connect
actions (like firewall authentication and client
virus inspection), driver updates and more.
Now with finer grained connection actions
and L2TP support, these reduce admin costs,
increase security, simplify remote access and
dramatically reduce support costs. |
Yes |
Improved |
| Internet
Authentication Service:
RADIUS
authentication, authorization and accounting
enable
centralized management of network access
policies, and improve capacity planning and
accounting of network costs.
Now with enriched policy management to
let you control who can access what, when and
how. |
Yes |
Improved |
| IP
Telephony: Support
for packet data telephony, Internet web site
integration, and complementary client software
services, provides a platform for enhanced
communications and Internet commerce. Now
integrated with Quality of Service to let you
control how this service is used in your
network. |
Yes |
Improved |
| Internet
Locator Service:
Easily
search
for other multimedia (i.e. video conferencing)
users on a WAN.
Previously available only as part
of Site Server, ILS now lets you securely
register and search for other multimedia
users on a WAN for multicast and multimedia
conferencing and is part of Windows 2000. |
Yes |
Improved |
| Multimedia
Networking Platform:
Integrated services for Windows Media™
Services, IP Telephony and traditional data
networking, complementary client software and
support for high performance networking.
Now with Quality of Service APIs to let
applications work better in busy networks. |
Yes |
Improved |
| Domain
Name System (DNS):
Now with Dynamic DNS support, systems
that get addresses from DHCP are automatically
registered in DNS.
Replication options with legacy DNS
systems and through Active Directory can
simplify and strengthen name replication
infrastructure. |
Yes |
Improved |
| Secure
network communications:
End-to-end
encrypted communications across your company
network using the IPSec standard.
Great for protecting sensitive internal
communications from intentional or accidental
viewing.
Active Directory provides central policy
control for its use to make it deployable |
|
New |
| Network
Address Translation (NAT):
Extensible
network address translation services empower
simpler network setup, improved network
security, and increased scalability of an
available pool network address |
|
New |
| Internet
Connection Sharing:
Simple
“Make New Connection” Wizard enables small
and growing organizations to quickly set up an
efficient network with secure Internet access. |
|
New |
| New
Connections Wizard:
A
step-by-step guide to making common connections
like dial-up to an ISP or private network,
connecting to a private network over the
Internet, receive incoming connections to a
private network (direct-dial or VPN), and
connecting to another computer. |
|
New |
| Directory
Enabled Networking: Manage
individual and group system policies, providing
more efficient, central, scalable management of
network devices, computers, clients and network
application services |
|
New |
| Plug
and Play: Automatically
detect and recognize newly installed components,
simplifying network system configuration and
reducing service down time. |
|
New |
| Network
Quality of Service:
Prioritize network application traffic
flows for greater network efficiency,
availability, and improved performance. |
|
New |
| V.
Infrastructure Services |
| Single
Sign-On:
Single sign-on to Windows-based network
resources improves password secrecy and
simplifies password management.
Windows 2000 delivers standards-based
single sign-on via Kerberos ver. 5. |
Yes |
Improved |
| Group
Policy: Group
policy allows central management of collections
of users, computers, applications, and network
resources instead of managing entities on a
one-by-one basis.
Integration with Active Directory
delivers more granular and flexible control. |
Yes |
Improved |
| V.1.
Active Directory |
| Integrated
Directory Services. Windows
2000 introduces the Active Directory service, a
scalable, standard-compliant directory service
that makes Windows 2000 easier to manage, more
secure, and more interoperable with existing
investments. |
|
New |
| Automated
Software Distribution: Integrated
with
Active
Directory, the automated software distribution
capabilities of IntelliMirror™ management
technology enable administrators automatically
distribute applications to users running Windows
2000 Professional based on their role in the
company. For example, all accountants can
automatically receive spreadsheet software. |
|
New |
| Open
APIs for Directory-enabled Applications: All
Active Directory functions are available through
LDAP, ADSI and MAPI for extending and
integrating with other applications,
directories, and devices. |
|
New |
| Multi-master
Replication: Active
Directory uses multi-master replication to
ensure high scalability and availability in
distributed network configurations.
“Multi-master”
means that each directory replica in the network
is a peer of all other replicas; changes can be
made to any replica and will be reflected across
all of them. |
|
New |
| Centralized
Management:
Active Directory Services centrally manage
Windows users, clients, and servers through a
single consistent management interface, reducing
redundancy and maintenance costs. |
|
New |
| Delegated
Administration: Active
Directory enables administrators to delegate
a selected set of administrative privileges to
appropriate individuals within the organization
to distribute the management and improve
accuracy of administration.
Delegation also helps companies reduce
the number of domains they need to support a
large organization with multiple geographical
locations. |
|
New |
| Transitive
Domain Trust:
Greatly reduce the number of trust
relationships required to manage users and
resources between Windows domains. |
|
New |
| Native
LDAP Support: Active
Directory is implemented as a high-performance,
native LDAP service that ensures
interoperability in extranet environments and is
ideal for supporting E-commerce applications. |
|
New |
| Domain
Name System (DNS):
The
Active Directory integrated, Internet
standards-based DNS service simplifies object
naming and location through Internet protocols,
and improves scalability, performance and
interoperability. |
|
New |
| V.2
Security |
| Designed
to Meet C2 Security:
C2
security, as defined by US security
certification standards, is generally
acknowledged to be highest level of security for
mainstream business operating systems. |
Yes |
Yes |
| Crypto
API:
Provides
Windows-based applications access to
cryptographic functions, public keys, credential
management and certificate validation functions. |
Yes |
Yes |
| Security
Configuration Toolset (SCTS): Reduce
costs associated with security configuration and
analysis of Windows-based networks.
In Windows 2000, use Group Policy to set
and periodically update security configurations
of computers. |
Yes |
Improved |
| Public
Key Infrastructure (PKI): The
Certificate Server is a critical part of a
public key infrastructure that allows customers
to issue their own x.509 certificates to their
users for PKI functionality such as
certificate-based authentication, IPSEC, secure
email, etc.
Integration with Active Directory
simplifies user enrollment |
Yes |
Improved |
| Smartcard
Support: Supports
logon via Smartcards “out-of-the-box” for
strong authentication to sensitive resources. |
|
New |
| Kerberos
Authentication: Full
support for Kerberos version 5 protocol provides
fast, single sign-on to Windows resources, as
well as other environments that support this
protocol. |
|
New |
| Active
Directory Integration: Active
Directory integration with the underlying
security infrastructure provides a focal point
of security management of users, computers and
devices making Windows 2000 easier to manage |
|
New |
| PKI
Group Policy Management: Centrally
manage Domain wide-PKI policies. Specify which
Certificate Authorities a client will trust,
distribute new root certificates, adjust IPSEC
policy or determine if a user will be required
to use smart cards to long onto a particular
system. |
|
New |
| Certificate
Mapping: Map
x.509 certificates to user accounts in the
directory, to authenticate the user using the
certificate and log them on using that account.
This is exceptionally useful for doing
business on the Internet or working with
partners on an Extranet. |
|
New |
| VI.
Terminal Services |
| Terminal
Services: Run
Windows-based applications on the server, and
access from a remote PC, Windows-based Terminal
or non-Windows device, over LANs, WANs or
low-bandwidth connections, through terminal
emulation software.
In Windows 2000, Terminal Services are up
to 20% more scalable and has dramatically
improved performance for both high and
low-bandwidth connections. |
Windows
NT Server 4.0, Terminal Server Edition |
Improved |
| Remote
Desktop Protocol (RDP) Performance:
The
native Terminal Services display protocol
performance has been dramatically improved for
both high and low-bandwidth connections |
Windows
NT Server 4.0, Terminal Server Edition |
Improved |
| Print
and Clipboard Redirection:
Allows
users to print, cut, copy and paste data from an
application running on Windows 2000 Terminal
Server to a local printer or application |
|
New |
| Remote
Administration Mode:
Safely
enable Terminal Services for remote
administration purposes.
Up to two concurrent sessions are
supported, with no impact on performance or
application compatibility. |
|
New |
| Remote
Control: Allows
administrators to provide remote help desk
support by viewing or taking control of a users
session.
This feature can also be enabled to allow
users to provide peer-to-peer support |
|
New |
| VII.
Reliability |
| Windows
File Protection:
Prevents
new software installations from replacing
essential system files. |
|
New |
| Driver
Certification:
Identifies
device drivers that have passed the Windows
Hardware Quality Labs test and warns users if
they are about to install an uncertified driver. |
|
New |
| Application
Certification:
Applications
certified to run on Windows 2000 Server are
tested by Microsoft to ensure high quality and
reliability. |
|
New |
| Kernel-Mode
Write Protection:
Helps
prev |
