Google Enhances Its Windows and Active Directory Hosting Offerings

Google announced on Wednesday that it's making it easier for organizations with Windows operating systems and Microsoft applications to move them onto its Google Cloud Platform (GCP).

For instance, organizations can use their existing Windows client and server software licensing on Google's infrastructure via Google's sole-tenant nodes, which is now available in some regions at the beta-testing stage. Licensing transfers will work with Windows Server 2008 R2 Service Pack 1 and newer servers (but not Windows Server 2019), as well as Windows 7 SP1 x64 and Windows 10 Enterprise x64 clients.

Sole-tenant nodes is a Google Compute Engine option that appears to be similar to the "dedicated" (nonshared) infrastructure option available on Microsoft Azure. Here's how a Google document defined it:

Sole-tenant nodes are physical Compute Engine servers that are dedicated to hosting VM instances only for your specific project; that is, these servers are dedicated to just your workloads.

It's possible to move the licensing for Microsoft applications, such as Exchange Server and SharePoint Server, onto the GCP, too. However, for those applications, organizations would instead use the Microsoft License Mobility for Google Cloud Platform option, according to this Google document.

Workloads can get moved to the GCP using Google's Velostrata migration tool. In a "couple of weeks," Google plans to add the capability to move "Microsoft workloads that require sole tenancy, and to automatically apply existing licenses," Google's announcement explained. 

Google's Active Directory Managed Service
In addition, Google announced its Managed Service for Microsoft Active Directory, which is currently at the alpha test level. It's Microsoft's Active Directory identity and access management solution hosted from Google's servers, perhaps equivalent to Microsoft's Azure Active Directory service. Google described it as a "highly available hardened service running actual Microsoft Active Directory." Organizations can connect their local Active Directory environments to Google's managed service. Google currently offers this sign-up page to get notified when Managed Service for Microsoft Active Directory will be available at the beta-test stage.

Google also announced that its Cloud SQL service, which provides access to a relational database server (such as MySQL or PostgreSQL), as managed by Google, has been expanded to also include support for Microsoft SQL Server. Cloud SQL support for Microsoft SQL Server is currently at the alpha release level, but pricing is already listed.

For more information on Google's hosting support for Microsoft software, see Google's "Windows on Google Cloud Platform" landing page.

Other Google Identity Management News
Google announced other identity and access management news on Wednesday. For instance, its Identity Platform service for adding identity and access management protections to applications is now "generally available." Identity Platform is renamed from the earlier "Cloud Identity for Customers and Partners" product name.

Also, Google's Cloud Identity security solution is getting new features, such as single sign-on with password vaulting, automated lifecycle management for employees and a new dashboard. These features "will be generally available in the coming months," Google indicated.

Google also announced the launch of the BeyondCorp Alliance, which consists of "endpoint security and management partners" working on device security. The initial alliance participants include Check Point, Lookout, Palo Alto Networks, Symantec and VMware.

BeyondCorp is a zero-trust security model for devices that was started by Google. It's used to avoid virtual private networks for remote access. BeyondCorp has become a "context-aware access" service that's offered from the GCP, providing proxy services and single sign-on access, as well as device security policies.

Lastly, Google announced that context-aware access capabilities have been added to its Cloud Identity-Aware Proxy service at the general availability stage. Context-aware access capabilities also were added to the Cloud Identity service at the beta-testing stage. The new capabilities add protections for accessing Google's G Suite productivity apps.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.


  • Surface and ARM: Why Microsoft Shouldn't Follow Apple's Lead and Dump Intel

    Microsoft's current Surface flagship, the Surface Pro X, already runs on ARM. But as the ill-fated Surface RT showed, going all-in on ARM never did Microsoft many favors.

  • IT Security Isn't Supposed To Be Easy

    Joey explains why it's worth it to endure a little inconvenience for the long-term benefits of a password manager and multifactor authentication.

  • Microsoft Makes It Easier To Self-Provision PCs via Windows Autopilot When VPNs Are Used

    Microsoft announced this week that the Windows Autopilot service used with Microsoft Intune now supports enrolling devices, even in cases where virtual private networks (VPNs) might get in the way.

  • Most Microsoft Retail Locations To Shut Down

    Microsoft is pivoting its retail operations to focus more on online sales, a plan that would mean the closing of most physical Microsoft Store locations.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.