This document provides guidance for deploying guarded hosts and shielded virtual machines (VMs). The systems described in this document must run:
- Windows Server 2016 Technical Preview 5 (build #14300)
- Optionally, a fabric management system such as Virtual Machine Manager (VMM) in System Center 2016 Technical Preview 5.
This document provides guidance for the deployment of a guarded fabric, that is, the Host Guardian Service (HGS) plus guarded hosts, on which shielded VMs can run. With a guarded fabric, hosting providers and private cloud operators can offer their tenant administrators greater protections for tenant virtual machines, decreasing the risks from malware or from compromised storage, networks, and host administrators. You should consider a guarded fabric as one element in your overall security strategy.