MCI1 course cons|sts of S Lxams Lxam1 W|ndows Seven Dep|oyment Lxam Code (70680) Lxam2 W|ndows Server 2008 Network Infrastructure Conf|gur|ng Lxam Code (70642) Lxam3 W|ndows Server 2008 Act|ve D|rectory Conf|gur|ng Lxam Code (70640) Lxam4 W|ndows Server 2008 App||cat|on Infrastructure Conf|gur|ng Lxam Code (70643) LxamS W|ndows Server 2008 Lnterpr|se Adm|n|strator Lxam Code (70647) 8ook source www4sharedcom]d|r]kG|Cbnp]MCI1htm| assword pak|stan Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Lecturer no1 llrsL module ls relaLed Lo Wlndows 7 ln Lhls course Lhere are malnly Lwo operaLlng sysLems one ls Wlndows 7 and second one ls Wlndows 2008 Server 82 Wlndows 2008 Server 82 ls Lhe mosL recenL release of MlcrosofL ln Lhe markeL aL Lhls Llme Cn cllenL slde flrsL Wlndows vlsLa were used buL Lhere were some lssues ln Wlndows vlsLa LhaL ls why Wlndows 7 ls released ln CcLober 2009 lL ls a facL LhaL new producLs ln a markeL fulflll Lhe requlremenLs of lndusLrles beLLer Lhan old ones llrsL lecLure ls abouL Wlndows 7 deploymenL buL before golng Lo Lhls we wlll dlscuss anoLher module called operaLlng sysLem fundamenLals reclsely you can say Wlndows 7 fundamenLals 8elng a sysLem admlnlsLraLor whaL Lhe lndusLry wlll expecL from you or whaL ls Lhe work of a sysLem admlnlsLraLor and whlch Lools ln Lhe operaLlng sysLem you can use Lo run lL properly ln any envlronmenLs? 1he [ob of Lhe sysLem admlnlsLraLor ls Lo ensure buslness conLlnulLy 8ecause of any company lmporLanL Lhlng ls buslness AL Lhe end of Lhe day Lhe lmporLanL Lhlng for a company ls money maklng lor all Lhese Lhlngs Lhe proper work of Lhe lnformaLlon Lechnology deparLmenL ls necessary lL means LhaL a company needs Lhe work of a sysLem admlnlsLraLor or neLwork admlnlsLraLor Some companles buslness ls noL l1 orlenLed buL Lhelr buslness process needs Lhe work of l1 deparLmenL lor example 8anks does noL glve l1 servlces buL for Lhelr processes Lo run properly Lhey need l1 deparLmenL because Lhelr daLa bases wlll run on a compuLer Lhelr accounL sysLem ls sLored ln a compuLer Lhelr bllllng sysLem ls on compuLer so lf Lhe compuLer wlll noL work Lhen Lhelr buslness wlll noL conLlnue now lL ls Lhe responslblllLy of a sysLem admlnlsLraLor Lo flnd ouL Lhose compuLers whlch are asseL for a buslness means lf Lhose compuLers wlll noL work or down Llme comes Lhen buslness wlll noL conLlnue Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
uown Llme means when Lhe buslness ls ouL of servlce lor example lf compuLer sLop worklng for an hour on whlch bllllng sysLem or credlL cards are avallable Lhen bllllng sysLem or credlL card process wlll noL work SomeLlmes we see LhaL A1M machlne ls ouL of servlce means lL's Lhe down Llme of LhaL compuLer Lhen you cannoL make any LransacLlon uown Llme suffer Lhe cusLomers and Lhe company wlll lose LrusL of cusLomers All Lhese lssue wlll handle a person called sysLem admlnlsLraLor whlch ls responslble for buslness conLlnulLy 1here are Lwo approaches wlLh a sysLem admlnlsLraLor 1 eact|ve Approach ln 8eacLlve Approach lf problem occurs Lhen Lhey wlll Lake acLlons oLherwlse no preparaLlon for LhaL problem ln advance lor example lf llghL ls gone Lhen Lhey wlll check Lhe generaLors lf fuel ls noL avallable Lhen Lhey brlng fuel from Lhe bazaar and Lhen sLarL lL 2 roact|ve Approach ln proacLlve approach you musL be menLally prepared for all problems and you musL Lake approprlaLe soluLlons for Lhose problems lor example ln CorvlL a person ls already prepared Lo sLarL Lhe generaLors lf Lhe llghL ls gone means Lhe admln offlcer has glven Lhls responslblllLy Lo a person lf Lhls problem occur Lhen you wlll provlde Lhls soluLlon lL ls called roacLlve Approach ln roacLlve Approach Lhe sysLem admlnlsLraLor flrsL ldenLlfy Lhe sysLems and Lhen he makes a repllca (means copy) Cne sysLem wlll offer servlces whlle Lhe oLher wlll be ln sLandby mode lf a problem occurs ln Lhe runnlng sysLem Lhen Lhe sLandby compuLer wlll Lake over and wlll provlde servlces ln Lhls case Lhe down Llme wlll be very less ln some buslnesses down Llme ls less affordable and ln some buslnesses down Llme ls noL affordable A buslness ln whlch down Llme ls noL affordable Lhen sysLem admlnlsLraLors make clusLers or real Llme repllca CosL wlll lncrease by decreaslng down Llme CperaLlng sysLems Lools are malnly dlvlded lnLo Lwo caLegorles 1 D|agnost|c ulagnosLlc means problem lndlcaLor lL wlll noL glve soluLlons buL wlll glve an apparenL way Lo solve Lhls problem lor example LhermomeLer only checks Lhe LemperaLure lL does noL glve any Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
medlclne 1he sysLem admlnlsLraLor knowledge ls checked when all Lhe dlagnosLlc sLeps glves no resulL 2 1roub|e Shoot|ng 1rouble shooLlng ls done Lhrough dlagnosLlc Lool uevlce manager (devmgmLmsc) ls a Lool or conLrol panel ls a Lool 1herefore dlagnosLlc ls LhaL Lool whlch lndlcaLes Lhe problem and wlll noL glve any soluLlon CperaLlng sysLem malnly conslsLs of Lwo Lhlngs llrsL one ls dev|ce dr|vers and second one ls serv|ces lf your devlce drlvers ls ok and also your servlces ls runnlng Lhen lL means LhaL your operaLlng sysLem ls worklng properly 8uL lf Lhe operaLlng sysLem ls noL worklng properly Lhen you wlll check Lhese Lwo devlce drlvers and servlces llrsL dlagnosLlc Lool ls ms|nfo32 lL glves lnformaLlon abouL sysLem SLeps 1ype ms|nfo32 ln Wlndows 7 run wlndow and press ok Cllck on componenLs Cllck on prob|em dev|ces (lf you check Lhe message so lL wlll be wrlLLen LhaL Lhe devlces are dlsabled lL does noL know LhaL how Lhese devlces wlll be enabled? lf you rlghL cllck here noLhlng wlll happen) now cllck on software env|ronment Cllck on serv|ces ( lL wlll glve lnformaLlon abouL servlces whlch one ls sLarL and whlch ls sLop buL you cannoL sLarL or sLop any servlce from here) lL ls a very good Lool you can say lL ls a laboraLory of a compuLer where all klnds of LesLs can be done ?ou can also check sysLem summary by cllck on Lhe sysLem summary opLlon ?ou can also check baslc lnformaLlon of hardware by cllcklng on Lhe hardware resources opLlon 1hls Lool Lells you a blg plcLure abouL Lhe devlces and also abouL Lhe servlces Lventvwr ls anoLher Lool whlch glves more deLall abouL a problem lL also glves lnformaLlon abouL new problems llke lf new vlruses are come LvenLs vlewer means evenLs can show and evenLs are slmply messages lor Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
example lf you booL your sysLem someLlmes message dlsplay LhaL cerLaln servlces are falled Lo sLarL 1hese messages are saved ln a place called wlndows log flles
Steps 1ype eventvwr ln run wlndow and press ok AfLer execuLlng Lhls command you wlll see dlfferenL log flles llke AppllcaLlon securlLy sysLem eLc buL we are malnly concern wlLh sysLem 1hese logs are dependenL on machlne operaLlng sysLem SecurlLy log can only be vlewed by sysLem admlnlsLraLor lf you open Lhe logs you wlll see evenLs 1here are many caLegorles of evenLs buL Lhree are very lmporLanL le error lnformaLlon and warnlng because Lhey are relaLed wlLh Lrouble shooLlng lnformaLlon evenLs only glve slmple lnformaLlon or reporLlng lL ls sLored ln a log because someLlmes lnformaLlonal evenLs solve your problem ?ou have Lo remember evenL lds especlally of sysLem logs lor example 7036 ld Lells LhaL serv|ce status change lL wlll glve lnformaLlon whlch one servlce ls sLop and whlch one ls sLarL means when Lhe sLaLus change of whlch servlce AnoLher evenL ld 6008 whlch Lells abouL un expected shutdown lf you wanL Lo sLarL or sLop Lhe servlces Lhen you wlll run anoLher Lool called serv|cesmsc AnoLher dlagnosLlc Lool ls perfmon lL ls used Lo monlLor or LesL hardware's and sofLware's SLeps 1ype perfmon ln run wlndow and press ok Cllck on Lhe performance monlLor (lL wlll show cpu memory uLlllzaLlon ln graphs reporLs eLc lL can also show you LhaL how much load a processor galn when you are worklng ln some appllcaLlons llke word or noLepad) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Lecture no2 W|ndows 7 dep|oyment Insta||at|on prerequ|s|tes or m|n|mum hardware requ|rements of w|ndows 7 rocessor 1 Clga herLz 8AM 1 C8 ard ulsk (lree Space) 13 C8 As a professlonal you should noL keep your sysLem on Lhese mlnlmum requlremenLs 8ecause you wlll lnsLall oLher appllcaLlons also 13 C8 of free space on a hard dlsk ls mlnlmum requlremenL and 20 C8 ls recommended 1hls space ls requlred on LhaL parLlLlon on whlch you are lnsLalllng wlndows 7 Insta||at|on 1ypes 1here are Lwo Lypes of lnsLallaLlon 1 Manua| Insta||at|on ln Manual lnsLallaLlon we wlll aLLend Lhe lnsLallaLlon process 2 Automat|c Insta||at|on ln AuLomaLlc lnsLallaLlon you wlll noL aLLend Lhe lnsLallaLlon process fully 1he lndusLry ln whlch you wlll work as a sysLem admlnlsLraLor can be of Lwo Lypes Cn ls vendor company and Lhe oLher ls cusLomer company vendor Company ls LhaL company whlch provldes compuLers and Lhelr servlces Lo Lhe cusLomers for example uell CusLomer Company ls LhaL company whlch uses LhaL compuLe for Lhelr buslness for example banks 8equlremenLs of CusLomer Company does noL change rapldly buL Lhe requlremenLs of Lhe vendor Company changes very rapldly Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
lor example lf Lhere are 200 brand new machlnes are you are asked Lo lnsLall wlndows 7 on all 1hen auLomaLlc lnsLallaLlon ls Lhe besL meLhod Lo use because lL ls Llme savlng you can lnsLall wlndows 7 only ln one day 8uL Lhe quesLlon ls how brand new sysLems wlll booL because Lhere ls no operaLlng sysLem on lL Lhelr hard dlsk ln blank Second quesLlon when you normally lnsLall CS Lhen you provlde source of operaLlng sysLem LhaL ls lnserLlng operaLlng sysLem Cu ln Lhe Cu 8CM now for 200 machlnes wlll you need 200 operaLlng sysLem Cu's? Cf course no leL us assume LhaL your lnsLallaLlon process wlll perform from one locaLlon and lL only requlres one operaLlng sysLem Cu and Lhls locaLlon ls called ulsLrlbuLlon Server whlch dlsLrlbuLe wlndows 7 Lo cllenL compuLers ?ou wlll perform lnsLallaLlon on dlsLrlbuLlon server by yourself lL ls noL auLomaLlc whlle lnsLallaLlon on cllenL compuLers wlll be performed by dlsLrlbuLlon server rerequ|s|tes of d|str|but|on server Cn dlsLrlbuLlon server we requlre a servlce Lhrough whlch we lnsLall operaLlng sysLem on cllenL compuLers and Lhls servlce ls called w|ndows dep|oyment serv|ce or WuS 1hls servlce were lnLroduced ln wlndow server 2003 wlLh Lhe name 8lS (8emoLe lnsLallaLlon Servlces) equ|rements of WDS We need Lhree servlces whlch are requlred or you can say LhaL Lhese are Lhe pre requlslLes of WuS 1 AuS (AcLlve ulrecLory Servlces) 2 unS (uomaln name SysLem) 3 uC (uynamlc osL ConflguraLlon roLocol) 4 n1lS arLlLlon on WuS Server 8emember LhaL every MlcrosofL operaLlng sysLem ls runnlng ln one of Lhe Lwo envlronmenLs le Workgroup (decenLrallze managemenL of resources) and Doma|n (cenLrallze managemenL of resources) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
lf you wanL Lo use Wlndows ueploymenL Servlces (WuS) Lhen envlronmenL musL be domaln ?ou can make domaln envlronmenL by lnsLalllng AcLlve ulrecLory 1echnlcally you can use WuS for a slngle sysLem also buL MlcrosofL recommend LhaL lf you have 30 or more machlnes Lhen use WuS oLherwlse do manual lnsLallaLlon C||ent Mach|nes rerequ|s|tes 8ooLable nlC (lnslde booLable nlC Lhere ls chlp called 8ooL 8om or xL booL 8om lL means re 8ooL LxecuLlon LnvlronmenL lf Lhls chlp ls avallable Lhen lL ls booLable nlC) now a day all deskLop compuLers come wlLh Lhls supporL lf Lhere ls no xL 8CM on cllenL compuLer Lhen you cannoL use WuS When you booL cllenL compuLer press l12 for booL menu and Lhen selecL booL from neLwork adapLer Note 8ooLable Cu ls one for whlch you don'L need operaLlng sysLem Lo run whlle for non booLable Cu Lo run you need an operaLlng sysLem reparat|on of D|str|but|on Server llrsL of all you wlll lnsLall Wlndows 2008 Server 82 on your compuLer 1hen you wlll lnsLall neLwork servlces (AuS unS uC eLc) from Server Manager ln admlnlsLraLlve Lools ln wlndows 2008 server unS uC eLc are called 8oles Cllck on Server Manager Cllck on 8oles Cllck on Add 8oles Cllck on Server 8oles SelecL AcLlve ulrecLory Servlces uC and unS Cllck on conflrmaLlon Cllck on lnsLall lf you are uslng Wlndows 2008 Server 81 Lhen Lhe conflrmaLlon opLlon wlll noL be vlslble aL LhaL Llme when you don'L dlsable uC lv6 sLaLeless mode Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
now we have Lo lnsLall WuS lL ls noL necessary LhaL WuS uC AuS unS musL be lnsLalled on Lhe same sysLems ?ou can lnsLall WuS on one sysLem and AuS uC unS on oLher sysLem buL Lhe domaln musL be Lhe same 8uL you requlre n1lS parLlLlon on LhaL machlne on whlch WuS ls lnsLall 1he maln advanLage of uslng WuS ls Llme savlng Steps for |nsta|||ng WDS Cllck on Server Manager Cllck on 8oles Lhen Add 8oles SelecL Wlndows ueploymenL Servlce (Lhere are Lwo componenLs of WuS one ls 1ransporL Server and oLher ls ueploymenL Sever 1ransporL Server ls one whlch push operaLlng sysLem and ueploymenL Server sLores Lhe lnformaLlon Lherefore selecL boLh componenLs) Cllck on lnsLall MlcrosofL has developed a new flle formaL whlch ls WlM (Wlndows lmaglng lormaL) avallable ln Wlndows 7 Cu 1he sole purpose of maklng Lhls formaL ls remoLe lnsLallaLlon 1here are Lwo flles wlLh Lhls formaL wlLhln Lhe sources folder of wlndows 7 Cu Cne ls booLwlm and oLher ls lnsLallwlm ln Lhls case booLwlm ls LhaL flle whlch sLarLs Lhe machlne and Lhe acLual wlndows ls lnsLalllng by lnsLallwlm Conf|gurat|on of WDS Cllck on sLarL Lhen wlndows deploymenL servlces lL wlll show a warnlng slgn LhaL server ls noL yeL conflgured 8lghL cllck on lL and selecL conflgure server cllck nexL ?ou wlll see cremoLe lnsLall (n1lS parLlLlon ls requlred for Lhls flle ln case of 8lS Lhls folder ls noL allowed Lo sLore on C drlve buL now lL wlll glve only a warnlng buL you can sLore lL on C drlve) SelecL drlve for Lhls folder and cllck nexL now Lhere are Lwo opLlons 4 Do not ||sten on port 67 (noLe we have lnsLalled Lwo uC one uC ls lnsLalled when we selecL add 8ole and oLher uC ls wlLhln Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Lhe WuS whlch ls lnsLalled wlLh WuS 1he uC wlLhln WuS ls noL compleLe lL glves parLlal supporL and work slmllar wlLh normal uC Lvery appllcaLlon has a porL number on Lhe lnLerneL l1 has 21 11 has 80 unS has 33 and uC has 67 now Lhere are Lwo uC so whlch one wlll work 8y selecLlng Lhls opLlon you are sLopplng WuS uC 4 Conf|gure DnC opt|on 60 to kLC||ent (when you selecL Lhls opLlon lL Lells Lhe cllenL LhaL afLer geLLlng l address also Lake an lmage from Lhls compuLer When uC and WuS are lnsLalled on one compuLer Lhen make lL a rule of Lhumb Lo selecL Lhese Lwo opLlons) AfLer cllcklng nexL Lhere are Lhree opLlons 4 Do not respond to any c||ent computer (lL means LhaL don'L sLarL WuS servlces rlghL now lor example lf you planned Lo sLarL deploymenL on Monday buL everyLhlng ls ready on lrlday Lhen selecL Lhls opLlon noL Lo sLarL servlces yeL for securlLy reasons because lf you don'L check Lhls opLlon and somebody plug ln hls LA1C Lhen lnsLallaLlon wlll sLarL) 4 espond on|y to known c||ent computers (lL Lells Lhe server Lo respond or glve lmage Lo only Lhose compuLer whlch you know now how Lhe compuLer wlll be known Lo Lhe server one Lhrough hls name whlch ls noL avallable aL Lhls Llme second l address whlch ls also noL avallable aL Lhls Llme so Lhere musL be a mechanlsm Lhrough whlch server know compuLers before lnsLallaLlon 1here are uulu or Culu of each compuLer whlch wlll provlde you by manufacLurer or vendor and Lhese lus are wrlLLen on Lhe caslng or you can see lL ln 8lCS uulu means unlversally unlque ldenLlfler and Culu sLands for Clobally unlque ldenLlfler lL conslsLs of 32 characLers 1hls process ln whlch you glve uulu or Culu of cllenL compuLers Lo Lhe dlsLrlbuLlon server Lo become known Lo lL ls called pre sLaglng 4 espond to a|| (known and unknown) c||ent computers (lL means LhaL respond Lo every one or glve lmage Lo every LhaL connecL Lo Lhe neLwork ) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
or unknown c||ents not|fy adm|n|strator and respond after approva| (lL means LhaL lf you selecL Lhls checkbox Lhen dlsLrlbuLlon server wlll noL re[ecL lnsLallaLlon on unknown compuLers buL lL wlll lnsLall CS when admlnlsLraLor allow lL for lnsLallaLlon 1he unknown devlces lnsLallaLlon wlll be pendlng ln a folder called pendlng devlces ln a hlerarchy ln Lhls folder when admlnlsLraLor rlghL cllck on lLs Culu and selecL Approve Lhen lnsLallaLlon wlll sLarL ) Cllck nexL now ln Lhe hlerarchy Lhere wlll be Lwo folders one ls booL lmage and anoLher one ls lnsLall lmage 8lghL cllck on booL lmage and selecL add booL lmage Lhen browse for wlndows 7 Cu and cllck on booLwlm flle 8lghL cllck on lnsLall lmage folder Lhen selecL add lnsLall lmage browse for wlndows 7 Cu and cllck on lnsLallwlm flle AfLer creaLlng Lhese Lwo lmages now ln uC you wlll glve l addresses LhaL can be asslgned Lo cllenL compuLers durlng lnsLallaLlon now booL your cllenL compuLer and press l12 Lo go Lo booL menu and from Lhls menu selecL booL from neLwork adapLer lnsLallaLlon wlll sLarL Note lf you wanL Lo creaLe an lmage of Lhe runnlng envlronmenL ln whlch along wlLh operaLlng sysLem appllcaLlon sofLware's (word v8 llash eLc) wlll also be lnsLalled 1hen for Lhls you wlll use a Lool lMACLx lMACLx ls a WlM creaLor and modlfler (ClMACLx/capLure) you wlll geL lMACLx ln WAlk (Wlndows AuLomaLed lnsLallaLlon klL) whlch can be downloaded from mlcrosofcom buL unforLunaLely genulne wlndow check wlll be done All porL numbers can be vlewed ln a flle CwlndowssysLem32drlverseLcservlces lor AcLlve ulrecLory lnsLallaLlon an acLlve neLwork connecLlon ls requlred lf you are worklng on a slngle compuLer wlLhouL neLwork Lhen lnsLall a loop back adapLer as Co Lo devlce manager by wrlLlng Lhe command ln run (devmgmLmsc) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
x now to Ass|gn UUID or GUID to D|str|but|on Server Cllck on AcLlve ulrecLory users and compuLers 8lghL cllck on compuLer SelecL new compuLer Clve any name Lo compuLer Cllck nexL Lhen enLer uulu or Culu ln Lhe LexL fleld now to conf|gure DnC Cllck on uC ln AdmlnlsLraLlve Lools 8lghL cllck on lv4 SelecL new scope 8lghL Cllck on scope SelecL acLlvaLe and glve l address range now to start WDS Serv|ces Cpen WuS 8lghL cllck and selecL All 1asks Cllck on new Cllck on sLarL servlces lf you wanL Lo modlfy some opLlons of WuS Lhen open WuS rlghL cllck on lL and selecL properLles Lecture no3 D|sk Management 1here are Lwo Lypes of dlsks wlLh reference Lo operaLlng sysLem 1 8aslc ulsk 2 uynamlc ulsk ln 8as|c D|sks we made parLlLlons whlle ln Dynam|c d|sks we made volumes Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
1here are Lwo Lypes of parLlLlons on 8aslc ulsk le pr|mary part|t|on and extended part|t|on We make prlmary parLlLlon because lL sLarLs our machlne 8ooL flles are sLored on prlmary parLlLlon ?ou can only mark prlmary parLlLlon as acLlve by rlghL cllcklng on LhaL parLlLlon and you cannoL make an exLended parLlLlon as acLlve 1here are LoLal number of parLlLlons are four lL means LhaL maxlmum numbers of parLlLlons are 4 ?ou cannoL make more Lhan four parLlLlons because of archlLecLural llmlLaLlons lf you wanL Lo make only prlmary parLlLlons Lhen only four drlve leLLers wlll be dlsplay ln Lhe compuLer 8uL lf you wanL Lo dedlcaLe separaLe drlves for markeLlng flnance 8 l1 supporL securlLy means for seven deparLmenLs 1hen you can make exLended parLlLlon LxLended parLlLlon glves you Lhe ablllLy Lo make more Lhan four drlves (noL parLlLlon) arLlLlon lnformaLlon ls sLored ln a Lable called parLlLlon Lable 1he slze of parLlLlon Lable ls 64 byLes Cne parLlLlon descrlpLlon consumes 16 byLes 1haL ls why 16 x 4 64 1herefore you can only make four parLlLlons lL ls noL necessary LhaL only operaLlng sysLem can reslde on a prlmary parLlLlon whlch ls acLlve Cn acLlve parLlLlon only booL secLor on whlch booL conflguraLlon daLa ls sLored ?ou can lnsLall operaLlng sysLem on oLher loglcal drlves also 8ASlC ulsk cannoL glve some advance or enLerprlse feaLures 1haL feaLures are |mproved performance and fau|t to|erance (ablllLy of a sysLem Lo conLlnue work of one of Lhe sysLem componenL fallure) uynamlc dlsk were lnLroduced ln wlndows 2000 Dynam|c D|sk provldes Lhese Lwo feaLures one ls lmproved performance and second one ls faulL Lolerance ln dynamlc dlsk volume lnformaLlon ls sLored ln 1 M8 daLa base lL ls for larger Lhan 64 byLes Cpen dlsk managemenL by uslng dlskmgmLmsc command from run wlndow lor hard dlsk or sLorage admlnlsLraLlon Lhere are Lwo Lools Cne ls D|sk Management and Lhe oLher ls D|skpart command Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
ulsk managemenL ls a graphlcal Lool whlle dlskparL ls a command llne Lool for dlsk admlnlsLraLlon ulsk parL glves advance admlnlsLraLlon of sLorage devlces lL ls lnLroduced ln wlndows 2003 1ypes of volumes ln uynamlc ulsk 1 Slmple volume (requlre 1 dynamlc dlsk) 2 Spanned volume (requlre 2 32 dynamlc dlsks) 3 SLrlped volume (requlre 2 32 dynamlc dlsks) 4 Mlrror volume (requlre only 2 dynamlc dlsks) 3 8Alu3 volume (requlre 3 32 dynamlc dlsks) ?ou can converL 8ASlC ulsk Lo u?nAMlC ulsk wlLhouL loss of daLa buL all daLa wlll be losL when you converL uynamlc dlsk lnLo 8aslc dlsk 8ecause you can accommodaLe 64 byLes ln 1 M8 8uL you cannoL sLore 1 M8 daLa lnLo 64 byLes 8y graphlcal Lool you can make Lhree prlmary parLlLlon and one exLended parLlLlon ln 8aslc ulsk lf you wanL Lo devlaLe from Lhls sLrucLure Lhen you wlll use ulskparL Lool Steps for mak|ng part|t|on |n 8as|c D|sk 8lghL cllck on dlsk CreaLe new Clve slze of parLlLlon Asslgn drlve leLLer lormaL drlve and cllck flnlsh ln Lhls case you can make Lhree prlmary parLlLlon and one exLended parLlLlon ln order Lo run Lhe CS or Lo make Lhe hard dlsk usable you musL make prlmary parLlLlon lL means LhaL prlmary parLlLlon ls necessary whlle exLended ls noL necessary Steps for mak|ng vo|umes |n Dynam|c D|sk Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
1 S|mp|e vo|ume ls [usL llke parLlLlon 8lghL cllck on Lhe allocaLed space and selecL make new slmple volume follow Lhe sLeps and cllck flnlsh 2 Spanned vo|ume requlres aL leasL Lwo dynamlc dlsks 8lghL cllck on Lhe dlsk and selecL spanned volume Add dlsks for spanned volume Lhen selecL space flrsL from one dlsk Lhen selecL space from anoLher dlsk for spanned volume lL wlll show Lhls comblned space wlLh one drlve leLLer Spanned volume ls Lhe only volume LhaL comblnes unequal spaces lL wlll nelLher glve lmproved performance nor faulL Lolerance lL glves only Lhe ablllLy Lo use scaLLered space on dlfferenL dlsks lf you remove one hard dlsk Lhen Lhe whole drlve become un accesslble 3 Str|pe vo|ume glves lmproved performance ln read and wrlLes operaLlon SLrlp volume Lakes equal space from each dlsk lor example lf you wanL Lo copy a flle of 3 M8 on sLrlpe volume of Lwo dlsks Lhen flrsL 64 k8 wlll sLore on dlsk 1 and nexL 64 k8 wlll be sLored on dlsk 2 and so on unLll Lhe whole flle ls copled lL means LhaL 23 M8 ls sLored on dlsk 1 and 23 M8 ls sLored on dlsk 2 8oLh hard dlsks are lndependenL of each oLher boLh hard dlsks head ls used ln readlng and wrlLlng ln a flle LhaL ls why lL wlll glve fasL read and wrlLe response 4 M|rror vo|ume glves faulL Lolerance feaLure and lmproved performance only ln read operaLlons Mlrror volume requlres only Lwo dynamlc dlsks Cne flle wlll be copled ln boLh hard dlsks LhaL ls why lf one hard dlsk ls falled Lhe flle ls sLlll avallable on oLher hard dlsk LhaL ls why lL ls called faulL Lolerance Mlrror volume uses 30 slze for faulL Lolerance When you rlghL cllck on Lhe dynamlc dlsk and selecL new mlrror volume 1hen selecL boLh dlsk and glve space for example 300 M8 from one and 300 M8 from oLher buL lL wlll show only 300 M8 ln Lhe LoLal volume because lL use anoLher 300 M8 for faulL Lolerance 8oLh dlsks wlll have same drlve leLLer for mlrror volume Mlrror volume can be made by Lwo ways Cne meLhod ls Lo creaLe mlrror by slmply cllck on one dynamlc dlsk and selecL creaLe mlrror volume Second meLhod ls rlghL cllck on already creaLed volume wlLh daLa and selecL add Lo mlrror LlLher boLh dlsks wlll have unallocaLed space (for Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
creaLlng mlrror) or one dlsk has unallocaLed space (add Lo mlrror) for mlrror volume 1here ls a dlfference beLween backup and faulL Lolerance laulL Lolerance ls Lhe fallure of a componenL (hard dlsk) whlle backup ls dlsasLer recovery (flood flre earLh quake) 3 AIDS vo|ume ls noL posslble ln cllenL verslon of operaLlng sysLem laulL Lolerance ls a server slde feaLure ?ou can only make 8Alu3 volume ln server verslon of operaLlng sysLem lL requlres mlnlmum 3 hard dlsks lor example we have 3 dlsks and we wanL Lo make 8Alu3 volume LeL's Lake a space 600 M8 from Lhese 3 hard dlsks lL wlll lnLernally dlvlde each hard dlsk ln Lhree sllces ln Lwo sllces lL wlll keep daLa and on one sllce lL wlll sLore sLrlpplng lnformaLlon SLrlpplng lnformaLlon ls used for daLa recovery So on 3 hard dlsks LoLal space ls for 8Alu3 volume ls 1800 M8 ln whlch 1200 M8 for daLa and 600 M8 for sLrlpplng lnformaLlon lf one dlsk ls falled lLs daLa can be recovered on Lhe basls of sLrlpplng lnformaLlon buL lf Lwo hard dlsks are falled Lhen you cannoL recover daLa ln 8Alu3 wasLage of space ls very mlnlmum as compared Lo oLhers
D|skpart Commands ulskparL command ls used for advance managemenL of dlsks ln C1 (Cul based arLlLlon 1able) you can make 128 parLlLlons Steps 1ype cmd ln 8un wlndow now Lype D|skpart ln command llne lnLerface and press enLer ulskparL ||st d|sk (press enLer lL wlll show all Lhe avallable dlsks ln Lhe sysLem) ulskparL ||st vo|ume (press enLer lL wlll dlsplay all volumes on all dlsks) ulskparL se|ect d|sk 2 (press enLer lL wlll selecL hard dlsk 2 and now all operaLlons wlll be performed on dlsk 2 ln Lhls case) ulskparL create vo|ume s|mp|e s|ze S00 (press enLer 1hls command wlll creaLe a slmple volume on dlsk 2) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
ulskparL create vo|ume str|pe s|ze 300 d|sk 0 1 (press enLer 1hls command wlll creaLe a sLrlpe volume from Lwo dlsks 0 and 1 because mlnlmum requlremenL for sLrlpe volume ls 2 and wlll Lake equal slze of 300 from boLh dlsks) ulskparL create vo|ume m|rror s|ze 2S0 d|sk 0 2 (press enLer lL wlll creaLe a mlrror volume on Lwo dlsks 0 and 2 because mlrror volumes requlre only Lwo dlsks for maklng volumes lL wlll Lake equal slze from boLh dlsks) ulskparL se| vo| 1 (press enLer lL wlll selecL volume 1) ulskparL add d|sk 2 (press enLer lL wlll perform add mlrror meLhod of creaLlng mlrror volume ln whlch one ls exlsLlng volume 1 and lL wlll Lake un allocaLed space from dlsk 2) ulskparL create vo|ume ra|d s|ze 200 d|sk 0 1 2 (press enLer 8ald3 requlres aL leasL 3 hard dlsks lL wlll Lake 200 M8 space from each drlve for maklng rald volume buL Lhls command only works on server noL on cllenL) ulskparL se|ect d|sk 1 (press ok uesk 1 wlll be selecLed because for spanned volume flrsL we Lake slmple volume and Lhen exLend lL Lo spanned volume ?ou cannoL make spanned volume dlrecLly) ulskparL deta|| d|sk (press ok lL wlll dlsplay deLall lnformaLlon abouL dlsk 1 because ln flrsL command we have selecLed dlsk 1) ulskparL se|ect vo|ume 2 (press ok ln Lhls command we have selecLed volume 2 on dlsk 1 because lL ls a slmple volume) ulskparL extend s|ze S00 d|sk 0 (press ok 1hls command wlll creaLe spanned volume from dlsk 1 and dlsk 0 ulsk 1 ls already selecLed and we exLend lL on dlsk 0) ulskparL ass|gn |etter I (press enLer lL wlll asslgn drlve leLLer ! Lo Lhe selecLed volume) ulskparL deta|| vo|ume (press enLer 1hls command wlll show lnformaLlon abouL selecL volume) ulskparL create part|t|on pr|mary s|ze S00 (press enLer lL wlll creaLe prlmary parLlLlon of 300 M8 on 8ASlC dlsk) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
ulskparL create part|t|on extended s|ze 400 (press enLer lL wlll creaLe exLended parLlLlon on baslc dlsk of slze 400 M8) ulskparL create part|t|on |og|ca| s|ze 200 (press enLer lL wlll creaLe a loglcal parLlLlon wlLhln exLended space of slze 200 M8) Note lf drlve leLLers ls flnlshed Lhen lnsLead of asslgnlng leLLer you wlll use mounL polnL as (ulskparLasslgn mounL c folder name (enLer) Lectuer4 Scr|pt|ng ulskparL ls baslcally used for scrlpLlng ScrlpL ls a flle ln whlch commands are wrlLLen LogeLher and saved as a baLch flle wlLh baL exLenslon SLeps Cpen a noLe pad flle WrlLe Lhe followlng commands SelecL dlsk 1 CreaLe parLlLlon prlmary slze 200 CreaLe parLlLlon exLended slze 300 CreaLe parLlLlon loglcal slze 100 Save Lhls flle LesLbaL ln C drlve now flrsL selecL C drlve Lhen wrlLe Lhe followlng command C ulskparL /s LesLbaL (press enLer lL wlll creaLe Lhe above parLlLlons on dlsk 1) ?ou can expand a parLlLlon by asslgnlng more space from oLher drlves unallocaLed space by uslng shrlnklng wlLhouL loss of daLa
Network sett|ng 1o seL properLles of a neLwork ls called neLwork seLLlng ln wlndows 2008 Lhere ls a mandaLory supporL of lv6 Some of Lhe uLlllLles ln wlndows 2008 use lv6 llke dlrecL access and wlndows meeLlng space uefaulL proLocol of wlndows 2008 ls lv6 lor example lf you Lype cplng loopback (enLer) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
lv4 ls a 32 blL address and lv6 ls 128 blL address lv4 sLrucLure ls represenLed ln doLed declmal formaL whlle lv6 sLrucLure ls represenLed ln hexadeclmal formaL ln lv4 each ocLaLe ls separaLed by doL () whlle ln lv6 each 16 blLs block ls separaLed by colon () lv4 address 19216811 lv6 address 43 f 3 c 210 lf ln lv6 conLlguous 0's are presenL Lhen lL ls represenLed by colon only lor example l 00000003 Lhen you can wrlLe lL as l3 lv6 ls also called nexL generaLlon address Network propert|es selecL lv6 lf you are uslng wlndows meeLlng space lf mulLlple neLwork connecLlons are avallable Lhen you can seL prlorlLy lor Lhls press AL1 key on Lhe keyboard menu wlll be dlsplayed Lhen cllck on advance opLlon Lhen cllck on advance seLLlng and use arrow keys Lo move up Lhe connecLlon ln Lhe prlorlLy llsL ?ou can vlew baslc lnformaLlon abouL a neLwork by selecLlng neLwork properLles you wlll see Lhe followlng Lhlngs I Address lL ls an lv4 address of Lhe compuLer Subnet Mask lL ls used Lo flnd ouL neLwork ln subneL mask all Lhe neLwork blLs are 1 and hosL blLs are 0 Defau|t gateway lL ls Lhe address of a rouLer DNS Server unS converL name lnLo l address Dev|ce Management 1here are Lwo caLegorles of devlces Cne ls called lug and lay devlces and Lhe oLher ls called non lug and lay devlces 1ype devmgmLmsc (MlcrosofL console) ln run wlndow Lo enLer lnLo devlce manager Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
|ug and |ay dev|ces has Lhe quallLy LhaL Lhere drlvers are already lnsLalled ln Lhe operaLlng sysLem lf you run devmgmLmsc Lhen a llsL of plug and play devlces wlll be dlsplayed 8lghL cllck on each drlve and selecL properLles Lhen you can perform some operaLlons llke updaLe drlver rollback or dlsable drlver eLc Non |ug and |ay dev|ces need drlvers Lo be lnsLalled for worklng 1hese are noL already lnsLalled you have Lo lnsLall Lhem when you plug lL 1o vlew non plug and play devlces cllck on Lhe vlew opLlon ln Lhe menu and Lhen selecL show hldden devlces AfLer Lhls non plug and play devlces wlll be dlsplayed ln Lhe devlce manager Cllck on any non plug and play devlce selecL properLles Lhen cllck on drlvers and Lhen cllck sLop lf you wanL Lo sLop Lhe devlce emote Management lf you wanL Lo perform managemenL of a sysLem whlch ls avallable ln oLher counLry or aL some remoLe locaLlon Lhen you wlll use remoLe managemenL lL ls lnLroduced ln wlndows 2003 8u (8emoLe ueskLop roLocol) ls always runnlng beLween sysLems afLer esLabllshlng a remoLe deskLop sesslon 1hls proLocol uses a porL number 3389/1C llrsL of all you wlll check connecLlvlLy of Lwo sysLems by uslng plng command ulsable flre wall on LargeL compuLer lor remoLe logglng you wlll need Lo know l address or name of Lhe LargeL compuLer ?ou wlll enable Lhe opLlon of allowlng remoLe access opLlon on Lhe LargeL compuLer ?ou can go Lo Lhe remoLe seLLlng by presslng wlndows key+ ause break key Lhen cllck on remoLe seLLlngs Lhen check elLher second opLlon or Lhlrd opLlon for allowlng access now Lype mstsc (M|crosoft term|na| serv|ces c||ent) ln Lhe compuLer from where you wanL Lo esLabllsh remoLe sesslon AfLer Lhls you wlll glve l address or name of Lhe LargeL compuLer 1hen cllck on opt|ons Lhen cllck on exper|enced tab Lhen selecL LAn (10 mega blLs per second) Lhen cllck on advance tab and selecL connecL and don'L warn me for fasL logglng Lhen cllck on connect buLLon When you enLer Lo Lhe LargeL compuLer lL wlll be log off lf you wanL Lo remoLely log on Lo server machlne and Lhe oLher user ls also logged ln Lhen you wlll do Lhls by Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
cllcklng by adm|n|strat|ve too|s Lhen selecL remote desktop serv|ces Lhen cllck on remote desktop sess|on host conf|gurat|on Lhen cllck restr|ct each user to a s|ng|e sess|on and selecL lL No ?ou can copy and pasLe flles from remoLe compuLer Lo your compuLer because ln wlndows 2008 cllpboard ls shared Lecture noS 8ranchCache lL ls a new feaLure of Wlndows 2008 Server 82 LhaL speeds up branch offlce access Lo flles hosLed on remoLe neLworks by uslng a local cache 1hls feaLure ls noL avallable ln prevlous verslon of Wlndows 2008 Server 81 and ln oLher operaLlng sysLems llke wlndows server 2003 lor example lf a company have a cenLral offlce ln karachl and branch offlce ln eshawar 8ranch offlce users wanLs Lo access some daLa from cenLral offlce Lhen a requesL ls senL by one of Lhe branch offlce compuLers Lo Lhe cenLral offlce server 1he daLa ls dellvered Lo Lhe branch offlce compuLer by cenLral offlce now lf anoLher compuLer wanLs Lhe same daLa from cenLral offlce Lhen he wlll noL senL a requesL Lo Lhe cenLral offlce server lnsLead Lhe cllenL checks Lhe cache on Lhe branch offlce LAn Lo deLermlne wheLher Lhe requesLed daLa ls already cached lf Lhe daLa ls cached already a check ls made Lo see lf Lhe daLa ls up Lo daLe and wheLher Lhe cllenL has permlsslon Lo access lL lf Lhe daLa ls noL already cached Lhe daLa ls reLrleved from Lhe server and placed ln Lhe cache on Lhe branch offlce LAn 1hls Lechnlque ls called 8rachCache 8uL ln 8ranchCache only lnLerneL daLa ls sLored 8ranchCache reduces Lrafflc on WAn llnk and speeds up Lhe response Llme 8rachCache for network f||e ls anoLher feaLure of 8ranchCache LhaL sLores non web relaLed daLa le only sLores lnLernal neLwork flles and folders 8ranchCache cover web daLa ln branch offlce ln order Lo cache (sLore) cenLral slde daLa Lwo Cache Modes are used ln branch offlce 1 D|str|buted Cache Mode ln dlsLrlbuLed Cache Mode Lhe cenLral offlce daLa ls sLored only on cllenL compuLers runnlng wlndows 7 on Lhe branch offlce neLwork When a cllenL runnlng Wlndows 7 reLrleves conLenL over Lhe WAn lL places LhaL conLenL lnLo lLs own cache lf anoLher 8ranchCache Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
cllenL runnlng Wlndows 7 aLLempLs Lo access Lhe same conLenL lL ls able Lo access LhaL conLenL dlrecLly from Lhe flrsL cllenL raLher Lhan havlng Lo reLrleve lL over Lhe WAn llnk When lL accesses Lhe flle from lLs peer lL also coples LhaL flle lnLo lLs own cache 1he advantage of d|str|buted cache mode |s LhaL you can deploy lL wlLhouL havlng Lo deploy a server runnlng Wlndows Server 2008 82 locally ln each branch offlce 2 nosted Cache Mode ln hosLed Cache Mode Lhe cenLral offlce daLa ls only sLored ln Lhe hard dlsk of a dedlcaLed server ln branch offlce osLed Cache mode uses a cenLrallzed local cache LhaL hosLed on a branch offlce server runnlng Wlndows Server 2008 82When cllenLs needs LhaL daLa Lhey wlll only requesL Lo Lhe dedlcaLed server lnsLead of sendlng requesLs Lo Lhe cenLral offlce 1he advantage of nosted Cache mode over ulsLrlbuLed Cache mode ls LhaL Lhe cache ls cenLrallzed and always avallable osLed Cache mode requlres a compuLer runnlng Wlndows Server 2008 82 be presenL and conflgured properly ln each branch offlce ?ou musL conflgure each 8ranchCache cllenL wlLh Lhe address of Lhe 8ranchCache hosL server runnlng Wlndows Server 2008 82 uependlng on whlch 8ranchCache mode ls used LhaL cache ls elLher hosLed on a server runnlng Wlndows Server 2008 82 or ln a dlsLrlbuLed manner among cllenLs runnlng Wlndows 7 on Lhe branch offlce neLwork 1he 8ranchCache feaLure ls avallable only on compuLers runnlng Wlndows 7 LnLerprlse and ulLlmaLe edlLlons 8ranchCache can cache only daLa hosLed on Wlndows Server 2008 82 flle and Web servers ?ou cannoL use 8ranchCache Lo speed up access Lo daLa hosLed on servers runnlng Wlndows Server 2008 81 Wlndows Server 2003 or Wlndows Server 2003 82 Steps for 8ranch Cache |n nosted Cache Mode at 8ranch off|ce Co Lo Server Manager Cllck on 8ole Lhen cllck on add 8ole (for lnsLalllng flle servlces and 8ranchCache for neLwork flles) Check llle Servlces ln Lhe llsL and cllck nexL SelecL 8ranchCache for neLwork flles Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Cllck flnlsh now for lnsLalllng 8ranchCache cllck on leaLures Cllck on Add leaLure SelecL 8ranchCache and cllck on lnsLall Steps for enab||ng c||ents for 8ranchCache at branch off|ce ln order Lo lnsLall 8rachCache on cllenL compuLers aL branch offlce you have Lo modlfy group pollcy ln Lhe domaln envlronmenL Lhere ls defaulL group pollcy 1herefore modlfy Lhls pollcy and lL wlll be auLomaLlcally applled on cllenL compuLers 1ype gpmcmsc (Lhls ls a uLlllLy whlch ls used Lo modlfy group pollcy) ln run wlndow and press enLer AfLer applylng Lhls command group pollcy managemenL snap ln wlll be dlsplayed expand lL Cllck on domaln Lhen cllck on group pollcy ob[ecLs now rlghL cllck on defaulL domaln pollcy and choose edlL Cllck on compuLer conflguraLlons Cllck on ollcles Cllck on AdmlnlsLraLlve 1emplaLes Cllck on neLwork Cllck on 8ranchCache now aL Lhe rlghL hand slde wlndow flve opLlons wlll be dlsplayed 8lghL Cllck on 1urn on 8ranchCache and choose edlL SelecL Lhe enable radlo buLLon Lo enable lL now rlghL cllck on set 8ranchCache d|str|buted cache mode and choose edlL SelecL enable radlo buLLon Lo enable lL now rlghL cllck on set 8ranchCache hosted cache mode and choose edlL SelecL enable radlo buLLon Lo enable lL lor hosLed mode you wlll enLer lCun (lully Cuallfled uomaln name 1o check lCun rlghL cllck on compuLer selecL properLles and check Lhe pc name Lhen check domaln name and comblne boLh whlch ls called lCun) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
8lghL cllck on Conf|gure 8ranchCache for network f||es and choose edlL Cllck on Lhe enable radlo buLLon 8ranchCache becomes acLlve when Lhe roundLrlp laLency Lo a compaLlble server exceeds 80 mllllseconds 8lghL cllck on Set ercentage Cf D|sk Space Used or C||ent Computer Cache and choose edit Cllck on enable radlo buLLon Lhe cache slze defaulLs Lo 3 of Lhe LoLal dlsk space of Lhe cllenL compuLer FirewaII lor securlLy of Lhe sysLem we normally use Lhree Lools Cne ls AnLl vlrus second one ls wlndows defender and Lhlrd one ls flrewall Ant| V|rus ls used Lo proLecL Lhe sysLem from vlruses whlle w|ndows defender proLecLs Lhe sysLem from spyware (unwanLed sofLware) and f|rewa|| conLrol access Lo your compuLer from ouLslde Cllck on wlndows flrewall ln conLrol panel and you can make lL off or on ln Lhe seLLlngs W|ndows |rewa|| w|th Advanced Secur|ty CreaLe a rule ln Advance seLLlngs ?ou can creaLe Lwo Lypes of rules ln flrewall Cne ls called lnbound 8ule and Lhe oLher ls called CuLbound 8ule 1he process for conflgurlng lnbound rules and ouLbound rules ls essenLlally Lhe same SelecL lnbound rule and Lhen cllck new 8ule 1hls opens Lhe new lnbound 8ule Wlzard now selecL Lhe Lype of rule you wanL creaLe ?ou can selecL beLween a program porL predeflned or cusLom rule ?ou would creaLe a cusLom rule lf you wanLed a rule LhaL applled Lo a parLlcular servlce raLher Lhan a program or porL ?ou can also use a cusLom rule lf you wanL Lo creaLe a rule LhaL lnvolves boLh a speclflc program and a seL of porLs lor example lf you wanLed Lo allow Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
communlcaLlon Lo a speclflc program on a cerLaln porL buL noL oLher porLs you would creaLe a cusLom rule lf you declde Lo creaLe a program rule you Lhen need Lo speclfy a program for whlch Lhe rule applles lf you choose a porL rule you musL choose wheLher Lhe rule applles Lo Lhe 1C or Lhe uu proLocol ?ou musL also speclfy porL numbers ln Lhe nexL sLep you speclfy whaL acLlon Lo Lake when Lhe flrewall encounLers Lrafflc LhaL meeLs Lhe rule condlLlons A||ow the connect|on allows Lhe connecLlon lf Lhe Lrafflc meeLs Lhe rule condlLlons 8|ock the connect|on blocks Lhe connecLlon lf Lhe Lrafflc meeLs Lhe rule condlLlons nexL seL Lo All l addresses and flnlsh lL
Lecture no6 8|tLocker 8lLLocker ls a securlLy feaLure LhaL provldes encrypLlon of full volume (drlve) daLa whlch ls confldenLlal Lo Lhe company LncrypLlon prevenLs daLa from readlng unLll decrypLlon 8efore 8lLLocker LlS (LncrypLlon llle SysLem) were used Lhls ls a parL of Lhe n1lS 8uL LlS only provldes flle level encrypLlon whlle 8lLLocker provldes drlve or volume level encrypLlon
easons of us|ng 8|tLocker lf a compuLer ls sLolen from Lhe company whlch have confldenLlal daLa relaLed Lo Lhe buslness of Lhe company lL ls very cruclal lf Lhls daLa ls reached lnLo Lhe hands of a compeLlng organlzaLlon unlversal serlal bus (uS8) flash devlces presenL a slmllar problem eople ofLen use Lhem Lo Lransfer lmporLanL daLa from home Lo Lhe workplace 8ecause Lhese devlces are small Lhey are easy Lo mlsplace Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
When one of Lhese devlces ls losL Lhere ls a chance LhaL some senslLlve daLa may flnd lLs way lnLo Lhe hands of a compeLlng organlzaLlon 8lLLocker handles Lhese problems lf you losL a compuLer your daLa wlll be un accesslble Lo oLher persons lf Lhey wanL Lo reLrleve lL lL prevenLs an aLLacker from recoverlng daLa from a sLolen compuLer WlLhouL Lhe 8lLLocker encrypLlon key Lhe daLa sLored on Lhe volume ls lnaccesslble 8lLLocker sLores Lhe encrypLlon key for Lhe volume ln a separaLe safe locaLlon Steps Cllck on 8lLLocker urlve LncrypLlon ln ConLrol anel Cllck 1urn Cn 8lLLocker wlzard wlll be sLarLed now lL wlll ask a meLhod how Lo unlock Lhe drlve LhaL ls by uslng a password or use SmarL card or AuLomaLlcally unlock Lhe drlve on Lhls compuLer SelecL any one of Lhe above opLlons and cllck nexL now lL wlll ask how do you wanL Lo sLore your recovery key 1he followlng opLlons wlll be avallable 4 Save Lhe recovery key Lo a uS8 llash drlve 4 Save Lhe recovery key Lo a flle 4 rlnL Lhe recovery key SelecL any one of Lhe above and cllck on save Cllck nexL SLarL encrypLlng
D|rectAccess ulrecLAccess ls an auLomaLlc connecLlvlLy soluLlon LhaL allows cllenLs runnlng Wlndows 7 Lo connecL seamlessly Lo Lhe corporaLe lnLraneL Lhe momenL Lhey esLabllsh a connecLlon Lo Lhe global lnLerneL lL ls Lhe feaLure of wlndows server 2008 82 on server slde and wlndows 7 on cllenL slde Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
ulrecLAccess ls an alwayson lv6 lsec vn connecLlon lf a properly conflgured compuLer ls able Lo connecL Lo Lhe lnLerneL ulrecLAccess auLomaLlcally connecLs LhaL compuLer Lo a properly conflgured corporaLe neLwork D|fference between D|rectAccess and 1rad|t|ona| VN 1he connecLlon process ls auLomaLlc and does noL requlre user lnLervenLlon or logon 1radlLlonally users musL lnlLlaLe vn connecLlons Lo Lhe corporaLe lnLraneL manually ulrecLAccess ls bldlrecLlonal wlLh servers on Lhe lnLraneL (Company) belng able Lo lnLeracL wlLh Lhe cllenL runnlng Wlndows 7 ln Lhe same way LhaL Lhey would lf Lhe cllenL was connecLed Lo Lhe local area neLwork (LAn) ln many LradlLlonal vn soluLlons Lhe cllenL can access Lhe lnLraneL buL servers on Lhe lnLraneL cannoL lnlLlaLe communlcaLlon wlLh Lhe cllenL ulrecLAccess provldes admlnlsLraLors wlLh greaLer flexlblllLy ln conLrolllng whlch lnLraneL (Company neLwork) resources are avallable Lo remoLe users and compuLers 1he followlng four sLeps musL be keep ln mlnd whlle uslng ulrecLAccess 1 ldenLlfy cllenL compuLers 2 Conflgure neLwork lnLerfaces 3 ldenLlLy lnfrasLrucLure servers (uC unS) 4 ldenLlfy AppllcaLlon Servers now to |nsta|| D|rectAccess Co Lo Server Manager and cllck on leaLures Cllck on Add leaLures SelecL ulrecLAccess ManagemenL Console ln Lhe llsL and cllck nexL AfLer lnsLallaLlon press close buLLon now to |nsta|| CA (Cert|f|cate Author|ty) Co Lo Server Manager and cllck on 8oles Cllck on Add 8oles Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
SelecL AcLlve ulrecLory CerLlflcaLe Servlces from Lhe llsL and cllck nexL Slmply cllck nexL nexL and Lhen cllck on lnsLall now to Issue Cert|f|cate 1ype mmc command ln Lhe run wlndow Cllck on llle menu and selecL Add/8emove Snapln SelecL cerLlflcaLe and cllck add buLLon SelecL compuLer accounL and cllck nexL Cllck on llnlsh and Lhen cllck ok now open Lhe console cllck on personal Cllck on cerLlflcaLe and aL Lhe rlghL slde rlghL cllck and selecL All Lasks now cllck on 8equesL new CerLlflcaLe and cllck nexL Cllck nexL and selecL uomaln ConLroller llnally cllck on Lnroll now lf you wanL Lo check wheLher Lhe cerLlflcaLe ls asslgned or noL 1o check cllck on sLarL buLLon Lhen selecL CerLlflcaLe AuLhorlLy and Lhen cllck on cerLlflcaLe lssued now aL Lhe rlghL slde you wlll see Lhe compuLer name rov|de two consecut|ve L|ve ub||c I's and mu|t|p|e network Connect|on lor ulrecLAccess company need Lo purchase Lwo llve publlc l's from any lS now lnsLall Lwo neLwork adapLers because ulrecLAccess wlll noL work on slngle neLwork adapLer (for pracLlce you can lnsLall loop back adapLer 1o lnsLall loopback adapLer go Lo devlce manager by Lyplng devmgmLmsc command ln Lhe run wlndow now rlghL cllck and selecL legacy hardware and cllck on neLwork adapLer cllck on nexL Lhen selecL MlcrosofL and Lhen selecL loopback adapLer and lnsLall lL) now rlghL cllck on one connecLlon and asslgn one llve publlc l and Lhen cllck on Lhe advance buLLon and glve anoLher llve publlc l 1hls connecLlon wlll be used for lnLerneL now rlghL cllck on Lhe oLher connecLlon and glve sLaLlc l 1hls connecLlon wlll be used for company own neLwork Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
1urn Cn |rewa|| lor ulrecLAccess you need Lo Lurn on Lhe flrewall ln Lhe compuLer Cllck on conLrol panel Lhen selecL flrewall and Lurn lL on lf noL enabled now to Make C||ents and Group Cllck on sLarL buLLon and selecL AcLlve ulrecLory users and CompuLers Cllck on compuLer and aL Lhe rlghL slde rlghL cllck and selecL new Clve name Lo Lhe compuLe and cllck nexL Lhen flnlsh Slmllarly add requlred number of compuLer now rlghL cllck and selecL new group Clve name Lo Lhe group and cllck ok now rlghL cllck on Lhe group and selecL properLles Cllck on members Cllck on llnd now and selecL Lhe members from Lhe llsL and add Lhem now to Conf|gure D|rectAccess Cllck on sLarL buLLon and selecL ulrecLAccess ManagemenL Console Cllck on seLup ln sLep 1 cllck on conflgure buLLon Cllck on Advance buLLon Cllck on llnd now buLLon SelecL your group and cllck on Add 1hen ln sLep 2 cllck on conflgure buL you cannoL go forward lf you haven'L Lwo publlc l's Mob|||ty Cpt|ons (Cff||ne ||e) Cffllne llles ls a feaLure relevanL Lo porLable compuLers LhaL allows conLenL LhaL ls sLored on shared folders Lo be cached Lemporarlly on moblle compuLers so LhaL lL can sLlll be accessed and worked on when Lhe moblle compuLer ls no longer connecLed Lo Lhe offlce envlronmenL When Lhe compuLer reconnecLs Lo Lhe envlronmenL LhaL hosLs Lhe shared folder Lhe offllne conLenL ls synced updaLlng Lhe conLenL on servers and cllenLs as necessary Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
?ou can use Lhe Cffllne llles feaLure Lo ensure access when a cllenL compuLer ls ouL of Lhe offlce or when a Lemporary dlsrupLlon such as a wlde area neLwork (WAn) llnk falllng beLween a branch offlce and a head offlce blocks access Lo speclally conflgured shared folders When a user makes a flle avallable for offllne access Wlndows 7 sLores a copy of LhaL flle wlLhln a local cache When Lhe flle server LhaL hosLs Lhe flle ls no longer avallable such as when a user dlsconnecLs from Lhe neLwork Lhe user can conLlnue Lo work wlLh Lhe flle sLored wlLhln Lhe local cache When Lhe flle server LhaL hosLs Lhe flle becomes avallable Wlndows 7 synchronlzes Lhe copy of Lhe flle ln Lhe cache wlLh Lhe copy of Lhe flle hosLed on Lhe shared folder Steps Cpen flle properLles Cllck on Advance buLLon Cllck on Share flle Cllck on Cachlng SelecL Cffllne seLLlngs 1here wlll be opLlon for manual cachlng auLomaLlc cachlng and no cachlng and also a check box for opLlmlzaLlon performance SelecL your approprlaLe opLlon and cllck flnlsh
Manag|ng W|ndows Update rocess 1he Wlndows updaLe conLrol panel ls Lhe prlmary Lool you use Lo manage sofLware updaLes on cllenLs runnlng Wlndows 7 1hrough Lhls conLrol panel a user wlLh AdmlnlsLraLor prlvlleges ls able Lo check for updaLes change updaLe seLLlngs revlew lnsLalled updaLes and revlew hldden updaLes Steps Cllck on wlndows updaLes ln conLrol panel Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Cllck on Lurn on wlndows updaLes whlch ls recommended now cllck on change seLLlngs Lhe followlng opLlons wlll be dlsplayed 389aII Upda9e8 Au942a9icaIIy (Rec422e3ded) Wlndows updaLe lnsLalls updaLes auLomaLlcally aL Lhe Llme speclfled 1hls ls Lhe defaulL seLLlng for Wlndows updaLe 4w3I4ad Upda9e8 Bu9 Le9 Me Ch448e Whe9her T4 389aII 1hem updaLes are downloaded Lo Lhe compuLer and Lhe user ls noLlfled LhaL Lhe updaLes are avallable for lnsLallaLlon Check F4r Upda9e8 Bu9 Le9 Me Ch448e Whe9her T4 4w3I4ad A3d 389aII The2 1he user ls noLlfled LhaL updaLes are avallable for download and lnsLall
Lecture no7 Mon|tor|ng and Cpt|m|zat|on lL ls a proacLlve approach Lo monlLor Lhe performance of your sysLem and prepare a basellne Lo convlnce manager of your company for up gradaLlon or replaclng of componenLs 1here are some Lermlnologles assoclaLed wlLh performance monlLorlng 1hey are Cb[ect Ma[or componenLs of a sysLem ls called ob[ecL lor example 8AM ard ulsk rocessor ls ob[ecLs Cb[ecLs can be hardware or sofLware Counter 1o check dlfferenL aspecLs of Lhe same ob[ecL ls called counLer Instance MulLlple of Lhe same ob[ecL ls called lnsLance 8ott|eneck When Lhe componenL ls overloaded Lhen lL ls called boLLleneck 8ase||ne Average performance ls called basellne lL convey average load 1here are Lwo Lypes of monlLorlng whlch are 1 ea| 1|me Mon|tor|ng 8eal Llme monlLorlng means Lo monlLor Lhe sysLem ob[ecLs aL Lhe presenL momenL lL ls slmllar when you are waLchlng a llve maLch 1ype erfmon ln Lhe run wlndow Lhen cllck on + slgn Lo open counLers ln Lhe performance monlLor Cllck on processor and selecL processor Llme cllck on add and Lhen ok 2 Log Mon|tor|ng Log MonlLorlng means Lo record or save Lhe monlLorlng lnformaLlon 1ype perfmon ln Lhe run wlndow Lhen cllck on Lhe Data co||ector sets Lhen cllck on user def|ned Lhen r|ght c||ck and selecL new Lhen selecL Data Co||ector SeL Lhen g|ve name Lhen create manua||y cllck on next Lhen cllck on create data |ogs selecL performance counter Lhen cllck next Lhen add counter cllck ok Lhen next cllck samp|e |nterva| Lhen Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
next and selecL root d|rectory and cllck f|n|sh 8uL Lhe Log monlLor wlll be sLop unLll you sLarL lL by rlghL cllcklng and selecL sLarL Command ||ne Mon|tor|ng Second meLhod Lo monlLor Lhe performance of a sysLem ls by uslng commands llrsL Lype cmd ln Lhe run wlndow Lo enLer ln Lhe command llne lnLerface C typeperf "processor (_1ota|)processor t|me" (press enLer) ln Lhe above command processor ls an ob[ecL _LoLal ls an lnsLance and processor Llme ls a counLer Ctypeperf "memory (_tota|)pages]sec" (press enLer) 8uL when you enLer Lhls command lL wlll glve an error message because ln case of memory Lhere ls no lnsLance Lherefore doesn'L use _LoLal ln memory ob[ecL now agaln run memory ob[ecL wlLh processor ob[ecL ln Lhe followlng command Ctypeperf "processor (_1ota|)processor t|me" memorypage]sec" (press enLer) ?ou can also enLer lnsLance number of processor lf Lhere are mulLlple processor ln your sysLem lnsLead of LoLal lor example Ctypeperf "processor (3)processor t|me" (press enLer) 1|p you can converL resulLs of a command Lo a flle as CIConf|gtest|og (enter)
Commands for Log mon|tor|ng C |ogman create counter test c "processor(1)processor t|me (press enLer) 1he log flle ls by defaulL ln sLop mode you wlll sLarL lL ln command prompL as C|ogman start test (press enLer) C|ogman stop test (press enLer lf you wanL Lo sLop lL) 1hese log flles wlll be sLored ln Lhe rooL dlrecLory of logs flles
8ackup and estore A SysLem lmage ls a copy of all Lhe flles and folders on Lhe sysLem dlsk (and oLher speclfled hard dlsks) on a compuLer ?ou can use a SysLem lmage backup Lo resLore Lhe compuLer Lo exacLly whaL lLs conflguraLlon was when Lhe SysLem lmage backup was creaLed Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
uo noL sLore your backups on a separaLe parLlLlon on a slngle hard drlve on your compuLer lf you lose Lhe hard drlve due Lo hardware fallure or afLer a vlrus aLLack you also lose your backup ln wlndows server 2003 ntbackup command were used Lo sLarL a backup process buL lL has been dlsconLlnued now ln wlndows server 2008 wbadm|nmsc command ls used Lo sLarL a backup process Cn server 2008 wlndows backup ln noL lnsLalled by defaulL whlle ln wlndows 2003 lL ls by defaulL lnsLalled now to Insta|| 8ackup |n Server 2008 Co Lo server manager and cllck on feaLures Cllck on add feaLure SelecL wlndows server backup Cllck lnsLall now to take 8ackup |n W|ndows 7 8ackup source and desLlnaLlon can'L be same ?ou can selecL Lhe followlng as backup desLlnaLlon A second internal hard drive An exLernal hard drlve uvu8CM uS8 flash drlves neLwork locaLlon un the 8ackup w|zard Cpen ConLrol anel cllck backup and resLore and cllck seLup backup Cllck nexL SelecL a desLlnaLlon volume for example a second lnLernal hard dlsk drlve or a uS8 exLernal hard dlsk drlve Cllck nexL Cn Lhe SeL up 8ackup page selecL LeL Me Choose Cllck nexL Cllck sLarL backup
DnC (Dynam|c nost Conf|gurat|on rotoco|) We can asslgn l addresses Lo Lhe compuLer by Lwo ways 1hey are
1 Manua| I Conf|gurat|on (Stat|c I) 2 Automat|c I Conf|gurat|on (Dynam|c I)
uC glves flexlblllLy or ease of admlnlsLraLlon Lo Lhe sysLem admlnlsLraLor ln Manual l conflguraLlon we wlll cllck on Lhe properLles of Lhe neLwork adapLer and glve l address manually whlch ls called SLaLlc l address lf you have 310 compuLers Lhen lL ls easy Lo manually asslgn l addresses Lo Lhem
8uL lf you have a large envlronmenL havlng 1000 of compuLers Lhen lL ls qulLe dlfflculL Lo asslgn l addresses manually 1here musL be an easy way Lo perform Lhls Lask and Lhe easy way ls Lo use uC server ln uC or AuLomaLlc l ConflguraLlon Lhe l addresses are auLomaLlcally asslgned Lo Lhe cllenL compuLers whlch are called uynamlc l address
lor Lhe flrsL Llme when a compuLer needs l address from uC LhaL has no l address of uC nor does lL have lLs own l address Lhen lL broadcasL uC ulscover packeL on Lhe neLwork 1hese uC dlscover packeL ls reached Lo all Lhe devlces on Lhe neLwork lf Lhe uC server lles ln Lhe broadcasL domaln of Lhe cllenL Lhen lL wlll accepL Lhe cllenL requesL and asslgn lv4 l address Lo Lhe cllenL CommunlcaLlon beLween cllenL and uC sever occurs ln four sLeps whlch ls also called DCA (ulscovery Cffer 8equesL AcknowledgmenL)
1 C||ent 8roadcast DnC D|scover acket ln Lhe flrsL sLep Lhe cllenL compuLer send a message on Lhe neLwork Lo flnd ouL Lhe uC server 1hls message ls called uC ulscover Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Message whlch ls broadcasLed by cllenL compuLer CllenL broadcasL because when a cllenL does noL know l address of uC server Lhen Lhe only way wlLh Lhe cllenL Lo communlcaLe and flnd ouL Lhe uC server ls Lo broadcasL
2 DnC Server Un|cast DnC Cffer acket to the c||ent ln Lhe second sLep when uC server recelves Lhe cllenL uC ulscover message Lhen Lhe uC server glve reply and sends a message wlLh Lerms and condlLlons and avallable l address Lo Lhe cllenL whlch ls called uC Cffer
3 DnC C||ent send a DnC request message to the DnC server ln Lhe Lhlrd sLep when Lhe cllenL compuLer recelves Cffer from uC server lL accepL Lhe offer and send a requesL Lo Lhe uC server Lo glve me Lhe l address conLalned ln Lhe uC Cffer message
4 DnC Server sends a DnC Ack message to the DnC c||ent ln sLep number four when uC server recelves cllenL requesL message 1hen lL checks Lhe avallablllLy of Lhe requesLed l address ln pool lf lL ls sLlll avallable Lhen uC server sends an Ack (AcknowledgmenL) message Lo Lhe cllenL LhaL you can use Lhls l address
Note now a quesLlon arlses LhaL how Lhe uC server knows LhaL Lhls packeL ls for me? 1he answer ls LhaL when a cllenL sends a requesL Lo Lhe uC server lL sends also porL number 68 whlch ls used for uC requesL Cne server slde porL 68 ls used 8oLh are well known porL numbers I Lease Lease means for a speclflc amounL of Llme 1he defaulL Llme for leaslng l addresses ls 8 days buL you can lncrease or decrease Lhe lease Llme Lease Llme means LhaL afLer Lhls Llme cllenL wlll release Lhe currenL l address and wlll requesL for new l address from uC server lf Lhe uC server ls onllne Lhen lL wlll agaln asslgn l address Lo Lhe cllenL buL lf Lhe uC server ls noL avallable Lhen agaln lL wlll walL for half Llme Lhen walL for 873 less Llme explres AfLer Lhls lf cllenL dld noL flnd Lhe uC server Lhen lL sLarLs searchlng of anoLher uC server on Lhe neLwork Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
8enef|t of Lease Durat|on 8ecause of lease duraLlon cllenL conflguraLlon wlll be updaLed auLomaLlcally Lo reflecL changes ln neLwork lnfrasLrucLure
Insta||at|on of DnC Server
re equ|s|tes of DnC 1here are Lwo pre requlslLes for uC lnsLallaLlon 1 SLaLlc l address musL be asslgned Lo Lhe compuLer 2 Server based operaLlng sysLem musL be lnsLalled on Lhe compuLer
lf your compuLer fulfllls Lhese Lwo crlLerla Lhen you can lnsLall uC server on your compuLer Steps of DnC Insta||at|on Co Lo Server Manager and cllck on 8oles Cllck on Add 8oles SelecL uC Server from Lhe llsL Cllck on conflrmaLlon buLLon ( lf you are uslng 81 Lhen dlsable sLaLeless mode of uC 8ecause afLer LhaL conflrmaLlon buLLon wlll be vlslble) Cllck lnsLall and Lhen close Steps of DnC Conf|gurat|on Cllck on sLarL buLLon go Lo admlnlsLraLlve Lools Cllck on uC servlces 8lghL cllck on scope and selecL new scope Clve name Lo Lhe scope (you can glve any name) Clve range of l addresses (you can deflne a pool of l addresses here) Cllck on nexL Add excluslon and delay (lf you wanL Lo exclude some l addresses from Lhe l pool add Lhem ln Lhe excluslon now uC wlll never asslgn Lhese l addresses Lo Lhe cllenLs SubneL delay ln mllllseconds means LhaL uC server wlll asslgn l addresses Lo cllenL ln random amounL of Llme ln order Lo avold dupllcaLlon of ls) Cllck on nexL buLLon ueflne Llme for Lhe lease duraLlon whlch ls 8 days by defaulL and cllenL wlll send renew requesL afLer 30 Llme of Lhe lease Means ln case of 8 days cllenL wlll send renew requesL afLer 4 days Cllck on nexL and Lhen flnlsh Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Act|vate Scope 8y defaulL Lhe scope ls dlsable you have Lo acLlvaLe lL because wlLhouL acLlvaLlon uC wlll be unable Lo asslgn l addresses Lo Lhe cllenLs 8lghL cllck on Lhe scope SelecL acLlvaLe lf you wanL Lo check wheLher uC server has asslgned l address or noL cllck on Lhe leases folder eservat|ons lf you wanL Lo asslgn Lhe same l address Lo Lhe cllenL every Llme when he requesLs for renewal Lhen you wlll deflne reservaLlons SelecL cllenL reservaLlons 8lghL cllck and selecL new reservaLlon Clve name Asslgn l and MAC addresses
lf you wanL Lo release Lhe l address by force from Lhe cllenL Lhen glve Lhe followlng command ln command prompL Ipconf|g ]re|ease lf you wanL Lo renew l address of a cllenL use Lhe followlng command Ipconf|g ]renew 1o show all deLalls of Lhe compuLer on Lhe neLwork Lhen use Lhe command Ipconf|g ]a||
DnC Cpt|ons uC opLlons provlde cllenLs wlLh addlLlonal conflguraLlon parameLers More Lhan 60 uC sLandard opLlons are avallable buL mosL common are 003 defaulL gaLeway address of Lhe rouLer 006 unS address 013 unS sufflx (CorvlLcom) 044 Wlns address (for name resoluLlon neL8los name resoluLlon) 046 node Lypes Steps of sett|ng opt|ons 8lghL cllck on scope Conflgure opLlon 003 rouLer 006 unS Server Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
Add addresses for boLh unS name CorvlLcom 044 wlns server 0x8
DnC Database uC daLabase ls sLored ln wlndows sysLem32 dhcp dhcpmdb ln every daLabase log flles ls musL sLored wlLh lL 1here are Lwo advanLages of log flle Cne lL lmprove performance and Lhe second one ls Lhe recovery 1he log flle ls [S0|og uC sLores lnformaLlon flrsL ln log flles Lhen Lransfer lL Lo Lhe daLabase IS0chk lL ls a check polnL flle ln whlch Lhe uC checks Lhe flle LhaL how many ls Lransferred and how many remalns from log flle Lo Lhe daLabase IS lL ls a reserved log flle lf Lhe log flle ls full Lhen lL uses Lhe reserved flle for savlng lnformaLlon
8ackup and estore of DnC lL ls very easy ln 2008 server ?ou can only wrlLe Lhe followlng command C netsh dhcp server backup dhcpbackup (press enter) ln sysLem32 Lhls back up ls sLored wlLh Lhe name of dhcpbackup flle lf someLhlng ls happen Lo Lhe dhcp Lhen you can resLore Lhe backup flle of dhcp ?ou can resLore Lhe dhcp backup by Lhe followlng command C netsh dhcp server restore dhcpbackup (press enter) AfLer resLorlng Lhe dhcp backup you have Lo sLop Lhe dhcp and agaln sLarL Lhe dhcp ln order Lo funcLlon properly as C net stop dhcpserver (press enter) C net start dhcpserver (press enter)
When a compuLer wanLs Lo communlcaLe wlLh dhcp Lhen he broadcasL 8uL lf Lhere ls rouLer lnslde Lhe cllenL and dhcp server 1hen as we know LhaL rouLer does noL allow broadcasL Lhen whaL should be done 1here are Lwo soluLlons for Lhls one 8lC1342 CompllanL 8ouLer buL Lhere ls no rouLer 1he second meLhod ls Lo lmplemenL Dhcp e|ay Agent lL converLs Lhe cllenL broadcasL lnLo a unlcasL so LhaL lL can pass from rouLer Lo reach Lo Lhe dhcp server lf you wanL Lo check whlch l ls asslgned Lo whlch compuLer Lhen you can check lL from aud|t |og whlch ls placed ln Lhe dhcp folder ln sysLem32 Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
AIA (Automat|c r|vate I Address) lf Lhere ls a neLwork ln whlch 3 or 7 compuLers and you selecL obLalns l auLomaLlcally 8uL Lhere ls no dhcp server Lhen Lhese compuLers asslgn AlA addresses and broadcasL Lo each oLher 1he AlA address ls 169234xy 1o check Lhe l address before asslgnlng ls called confllcL deLecLlon
MAC ||ter|ng lL ls Lhe feaLure of server 2008 82 ln whlch you can fllLer Lhe compuLers by MAC address lf LhaL compuLer ls comes ln Lhe allow llsL Lhen dhcp wlll asslgn l address oLherwlse dhcp wlll noL asslgn any l address Lo Lhls compuLer lf you wanL Lo sLop a compuLe from belng asslgnlng an l address Lhen add Lhe MAC address ln Lhe deny llsL of fllLerlng SLeps Cllck on lllLerlng 1here are Lwo opLlons one ls Allow and Lhe oLher ls ueny 8lghL cllck on Allow and selecL new fllLer Clve MAC address of Lhe compuLer you wanL Lo allow and also glve descrlpLlon ress ok now rlghL cllck on Lhe ueny and selecL new fllLer Clve MAC address of Lhe compuLer you wanL Lo deny Cllck ok
Super Scope lf your uC l pool ls flnlshed Lhen you can creaLe anoLher pool and comblne Lhem wlLh Lhe help of super scope
Lecture no2 Doma|n Name System uomaln name SysLem ls used for name LranslaLlon lnLo l address or you can say LhaL lL ls used for name resoluLlon AcLlve ulrecLory cannoL work wlLhouL unS unS converL name of Lhe compuLer lnLo l address unS works ln a hlerarchy unS use lCun (lully Cuallfled uomaln name) unS only Lells Lhe l Lo oLhers When we wanL Lo communlcaLe wlLh a compuLer we glve name raLher Lhan l address because lL ls dlfflculL Lo remember l address as compared Lo names lor example wwwyahoocom 1hls name ls only for Lhe beneflL of Lhe human lL ls LranslaLed lnLo an l address Lo reach Lhe desLlnaLlon 1he LranslaLlon process of a name ls called name 8esoluLlon Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
name resoluLlon sLarLs from rlghL Lo lefL 1here ls anoLher " AfLer com buL lL ls hldden 1hls dot ls called root |eve| doma|n When a requesL ls senL Lo Lhe rooL domaln for LranslaLlon lL forwards Lhls requesL Lo com domaln whlch ls called top |eve| doma|n Com passes Lhe requesL Lo yahoo domaln whlch ls called 2 nd |eve| doma|n ?ahoo Lhen sends Lhe requesL Lo www whlch ls called host name SLrucLure of Lhe unS ls dlsLrlbuLed over Lhe lnLerneL lL means LhaL Lhe name resoluLlon Lask ls noL asslgned Lo only compuLer raLher lL ls dlsLrlbuLed over Lhe lnLerneL DNS uer|es 1here are Lwo Lypes of querles ln unS 1 ecurs|ve uery lL goes from unS cllenL Lo unS server lLs answer ls compleLe means processlng ls compleLe 2 Iterat|ve uery lL goes from unS server Lo unS server lLs answer ls noL compleLe means lLs reply ls referral lLeraLlve query ls used Lo reach from one unS Lo anoLher unS lL keeps Lhe reply for 60 mlnuLes ln hls cache
now to Insta|| DNS Cllck on server manager Cllck on 8oles Cllck on Add 8ole SelecL unS Server from Lhe llsL Cllck on lnsLall one uaLabase of unS ls called Zone Cr parLlLlon of uomaln name Space represenLed by uomaln name ls called Zone When you cllck on Zone Lhen you wlll see Lwo zones one ls lorward Lookup Zone and 8everse Lookup Zone orward Lookup one sends name and geL l address of Lhe compuLer Whlle everse Lookup one sends l address and geL name of Lhe compuLer now Lhe quesLlon arlses LhaL lf we know l address of Lhe compuLer Lhen why we need name of Lhe compuLer 1he answer ls LhaL lf flrewall ls lnsLalled on Lhe compuLer Lhen flrewall sLop or allow Lrafflc on Lhe basls of name LhaL ls why reverse lookup zone ls used Lo converL l address ln Lhe name Steps to create a zone SelecL lorward Lookup Zone 8lghL cllck on lL and selecL new zone Clve name Lo Lhe zone Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
now rlghL cllck on Lhe newly creaLed zone CreaLe a new hosL Clve name Lo Lhe hosL Clve l address Lo Lhe hosL esource ecords 8esource records are Lhe unS daLabase enLrles Lo answer unS cllenL querles name Lype and daLa 1he cllenL query ls always shown under Lhe name LlLle unS server answer always shown under Lhe daLa LlLle ln Lype dlfferenL Lypes of records ls shown Common records ln unS are A (name Lo l) 18 (reverse of A) S8v Mx MS SCA eLc one 1ypes 1here are four Lypes of Zone Lhey are 1 r|mary DNS one lL ls a sLandard zone whlch ls wrlLeable Steps to create r|mary one 8lghL cllck on Lhe lorward Lookup zone SelecL Lo creaLe a new zone SelecL rlmary Zone from Lhe llsL uncheck Lhe checkbox below because Lhen lL wlll go Lo Lhe acLlve dlrecLory lnLegraLed unS zone 2 Secondary DNS one lL ls also a sLandard zone whlch ls read only lor secondary zone lL ls necessary LhaL you allow zone Lransfer ln prlmary zone 8lghL cllck on zone selecL zone Lransfer Lab and check zone Lransfer check box 8ecause all Lhe enLrles of Lhe prlmary zone wlll be copled Lo Lhe secondary zone and lf Lhe prlmary zone go down Lhen secondary zone can be acLed as prlmary zone Steps to create Secondary one CreaLe a zone SelecL lLs Lype secondary now glve l address of Lhe masLer unS server Clve l address and cllck on nexL Conflgure noLlflcaLlon auLomaLlcally Clve l of prlmary unS
3 Act|ve D|rectory Integrated DNS one lL ls also a wrlLeable zone 1o make AcLlve ulrecLory lnLegraLed zone Lhe machlne musL be a uomaln ConLroller 8CuC (read only domaln conLroller) feaLure ls only avallable ln server 2008 82 1he domaln conLroller musL be wrlLeable noL read only because lL ls more secure 1here ls a securlLy Lab ln Lhe Au lnLegraLed zone lL ls a mulLl Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
masLer sLrucLured ln case of Au lnLegraLed zone unS daLabase wlll be repllcaLed as a parL of domaln repllcaLlon 4 Stub one lL ls by naLure secondary lL has no daLabase of lLs own lLs loads Lhe daLabase from masLer unS lL only Lakes selecLlve records noL Lhe compleLe daLabase 1hree records nS SCA and Clue A wlll Lransfer lnLo sLub zone SLub ls read only unS uses porL 33 for communlcaLlon and lL uses boLh 1C and uu proLocols uynamlc unS (uunS) ls used Lo auLomaLlcally updaLe l addresses ln unS when changed by uC ?ou wlll enable uunS opLlon ln Lhe Zone properLles Lo secure only
Lecture no3 everse Lookup one uomaln name SysLem (unS) servers can enable cllenLs Lo deLermlne Lhe unS name of a hosL based on Lhe hosLs l address by provldlng a speclal zone called a reverse lookup zone A reverse lookup zone conLalns polnLer (18) resource records LhaL map l addresses Lo Lhe hosL name Some appllcaLlons such as secure Web appllcaLlons rely on reverse lookups A reverse lookup Lakes Lhe form of a quesLlon such as Can you Lell me Lhe unS name of Lhe compuLer LhaL uses Lhe l address 192168120? A speclal domaln Lhe lnaddrarpa domaln was deflned ln Lhe unS sLandards and reserved ln Lhe lnLerneL unS namespace Lo provlde a pracLlcal and rellable way Lo perform reverse querles ln reverse lookup zone Lhe l address ls wrlLLen ln reverse order
Dynam|c Updates |n DNS WlLh Wlndows Server 2008 a uC server can enable dynamlc updaLes ln Lhe unS namespace for any one of lLs cllenLs LhaL supporL Lhese updaLes lf Lhe cllenLs are belong Lo Lhe pre2000 famlly of compuLers Lhen Lhey are unaware of Lhe dynamlc updaLes Lherefore uC can do Lhls work Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
?ou have Lo enable Lhls opLlon ln Lhe uC properLles 1hen cllck on unS Lab ln Lhe uC properLles and mark Lhe checkbox of dynamlc updaLe unS NSLCCkU ulsplays lnformaLlon LhaL you can use Lo dlagnose uomaln name SysLem (unS) lnfrasLrucLure 1here are Lwo mode of nslookup Lhey are lnLeracLlve and nonlnLeracLlve Non|nteract|ve mode ls useful when only a slngle plece of daLa needs Lo be reLurned 1he synLax for nonlnLeracLlve mode ls C nslookup pc1corvlLcom (press enLer) Interact|ve mode provldes deLall lnformaLlon abouL a unS ln order Lo dlagnose Lhe synLax ls C nslookup (press enLer) pc1corvlLcom (press enLer) seL Lypens (press enLer) seL Lypesoa (press enLer) qulL (press enLer) ?ou can run nslookup Lool on unS cllenL ecord 1ypes Mx record Lype ls responslble for resolvlng mall server name ln Mx we glve domaln name as lnpuL and Mx resolve LhaL lnLo mall server CnAML record Lype resolves name lnLo name 1hls helps when runnlng mulLlple servlces (llke an l1 and a web server each runnlng on dlfferenL porLs) from a slngle l address Lach servlce can Lhen have lLs own enLry ln unS (llke fLpexamplecom and wwwexamplecom) fLpexamplecom CnAML wwwexamplecom wwwexamplecom A 1920223 When an A record lookup for fLpexamplecom ls done Lhe resolver wlll see a CnAML record and resLarL Lhe checklng aL wwwexamplecom and wlll Lhen reLurn 1920223 WINS (W|ndows Internet Name Serv|ce) lL ls used for name resoluLlon llke unS 8uL unS ls only concerned wlLh lCun (lully Cuallfled uomaln name pc1corvlLcom) whlle WlnS concern wlLh flaL records such us pc1 mclLp or CorvlL eLc lL was used for neL8lCS for backward compaLlblllLy now to Insta|| WINS Cllck on server manager Cllck on feaLures Cllck on add feaLure Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
SelecL WlnS Server from Lhe llsL Cllck on nexL Cllck on lnsLall Cllck on close Net8ICS Name neL8lCS ls an acronym for neLwork 8aslc lnpuL / CuLpuL SysLem lL provldes servlces relaLed Lo Lhe sesslon layer of Lhe CSl model allowlng appllcaLlons on separaLe compuLers Lo communlcaLe over a local area neLwork lL ls a 16 characLers name ln whlch 13 characLers are user deflned and 16 Lh characLer ls servlce speclflc Cn Lhe cllenL compuLers rlghL cllck on Lhe adapLer selecL properLles Lhen cllck on advance and selecL wlns Lab now glve l address of wlns server and press ok now open wlns server cllck acLlve reglsLraLlon and Lhen dlsplay reglsLraLlon Wlns server ls needed ln Lwo cases 1 When cllenLs belongs Lo pre2000 famlly of operaLlng sysLem 2 When cllenL runnlng neL8lCS appllcaLlon
Secur|ty SecurlLy ls Lhe degree of proLecLlon agalnsL danger damage loss and crlmlnal acLlvlLy 1here are a number of securlLy concerns whlch are 1 Authent|cat|on lL means Lo verlfy a person 1here are Lhree sLraLegles used for auLhenLlcaLlon le who Lhe person know (username and password) who Lhe person has (A1M card eLc) who Lhe person ls (Lye Scan or 1humb scan) AuLhenLlcaLlon guaranLees LhaL daLa was noL alLered durlng Lransmlsslon Lxample of auLhenLlcaLlon ls kerberos 2 Conf|dent|a||ty confldenLlallLy ls Lhe prlnclple LhaL an lnsLlLuLlon or lndlvldual should noL reveal lnformaLlon Lo a Lhlrd parLy Lxample of confldenLlallLy ls 8lLLocker 3 Integr|ty lnLegrlLy means when you cannoL change Lhe conLenLs Mu3 ls Lhe example of lnLegrlLy 4 Ant| ep|ay AnLlreplay ls Lhe concepL of noL allowlng an lnLercepLed packeL message Lo be senL Lo Lhe reclplenL mulLlple Llmes wlLhouL Lhe orlglnal sender knowlng lSec uses sequenLlal counLers Lo guaranLee LhaL packeLs are recelved and processed ln order 3 Non epud|at|on nonrepudlaLlon ls Lhe concepL of ensurlng LhaL a parLy ln a dlspuLe cannoL repudlaLe or refuLe Lhe valldlLy of a sLaLemenL or conLracL
Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
ISec (I Secur|ty) lnLerneL roLocol securlLy (lsec) ls a framework of open sLandards for proLecLlng communlcaLlons over lnLerneL roLocol (l) neLworks Lhrough Lhe use of crypLographlc securlLy servlces lsec supporLs neLworklevel peer auLhenLlcaLlon daLa orlgln auLhenLlcaLlon (uses kerberos shared key and CA) daLa lnLegrlLy (Mu3 SA1) daLa confldenLlallLy (encrypLlon uLS 3uLS) and replay proLecLlon lL adds new headers wlLh 1C/l packeL 1here are Lwo sub proLocols of lSec 1hey are 1 Authent|cat|on neader (An) AuLhenLlcaLlon eader (A) provldes auLhenLlcaLlon lnLegrlLy and anLl replay for Lhe enLlre packeL (boLh Lhe l header and Lhe daLa payload carrled ln Lhe packeL) lL does noL provlde confldenLlallLy whlch means lL does noL encrypL Lhe daLa 1he daLa ls readable buL proLecLed from modlflcaLlon 2 Lncapsu|at|on Secur|ty ay|oad (LS) 1he maln [ob of LS ls Lo provlde Lhe prlvacy we seek for l daLagrams by encrypLlng Lhem An encrypLlon algorlLhm comblnes Lhe daLa ln Lhe daLagram wlLh a key Lo Lransform lL lnLo an encrypLed form 1hls ls Lhen repackaged uslng a speclal formaL and LransmlLLed Lo Lhe desLlnaLlon whlch decrypLs lL uslng Lhe same algorlLhm
Lecture no4 ISAkM (Internet Secur|ty Assoc|at|on key Management rotoco|) lL ls a proLocol for esLabllshlng securlLy assoclaLlons (SA) and encrypLlon keys ln an lnLerneL envlronmenL ulffle ellman ls used Lo generaLe keys ln lSec 1he encrypLlon keys are always changlng 1here are Lwo phases of lSAkM hase 1]Ma|n Mode Maln Mode ls also called hase 1 ln whlch a secure negoLlaLlon esLabllshed called (SA) beLween Lwo compuLers 1he lSAkM SA ls used Lo proLecL securlLy negoLlaLlons hase 2]u|ck Mode Culck mode ls also called hase 2 esLabllshes a secure channel beLween Lwo compuLers Lo proLecL daLa
SLeps 1ype mmc ln run wlndow and press enLer Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Cllck on flle selecL Add 8emove Snapln Cllck on lSec pollcy managemenL and cllck on add buLLon Cllck on l SecurlLy MonlLor and cllck add buLLon now make a pollcy (Lhere are rules lnslde pollcy Lhen Lhere are fllLers or condlLlons lnslde a rules) 8lghL cllck on l SecurlLy ollcy Cllck on creaLe l SecurlLy Cllck nexL Lhen glve any name Lo Lhe pollcy Cllck nexL and Lhen flnlsh now rlghL cllck on Lhe newly creaLed pollcy and selecL properLles Cllck on rules Lhen cllck on Add Cllck on nexL Lhen selecL All neLwork connecLlons Cllck on nexL now cllck on Add buLLon Lo creaLe fllLer Clve any name Lo Lhe fllLer Cllck on add Lhen cllck on nexL SelecL a speclflc l address SelecL my l address ln desLlnaLlon Cllck on proLocol any and cllck on nexL Cllck on flnlsh and cllck ok SelecL Lhe newly creaLed fllLer and cllck on fllLer acLlon Cllck on add and glve any name Lo Lhe fllLer acLlon Cllck on nexL and selecL negoLlaLe securlLy Cllck on nexL and selecL don'L allow unsecured communlcaLlon Cllck on nexL and selecL lnLegrlLy and encrypLlon Cllck on nexL and Lhen cllck on flnlsh now cllck on securlLy rule wlzard Cllck on use Lhe Cllck flnlsh Lhen cllck on ok now rlghL cllck and selecL asslgn lf you cllck on Lhe l securlLy monlLor AcLlve pollcy Maln mode SecurlLy assoclaLlon Culck mode SecurlLy assoclaLlon Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Note ln 1ransport mode Lhe communlcaLlon peers and lSec peers are compuLers whlle ln 1unne| mode Lhe communlcaLlon peers are compuLers and Lhe lSec peers are rouLers
emote Access 1here are Lwo ways Lhrough whlch we can communlcaLe ln a neLwork Cne ls lnLerneL and Lhe oLher ls S1n (ubllc SwlLch 1elephone neLwork) S1n ls secure as compared Lo lnLerneL buL lL ls more cosLly 8ouLlng and remoLe access ls a uLlllLy ln wlndows for remoLe access Insta||at|on of out|ng and emote Access on Server Cllck on 8oles and selecL Add 8oles Cllck on neLwork pollcy and access servlces Cllck on nexL and selecL rouLlng and remoLe access Cllck on conflrmaLlon and Lhen cllck on lnsLall now open lL and rlghL cllck and selecL conflgure and enable rouLlng and remoLe access Cllck on nexL and Lhen cllck on remoLe access Cllck on dlal up Lhen selecL from a speclfled range Cllck on nexL and selecL new Clve a range and cllck on ok Cllck on nexL Lhen selecL no Cllck on nexL and Lhen flnlsh now you wlll add a modem ln server 2008 8lghL cllck on porLs and selecL properLles SelecL modem Lhen cllck on conflgure Cllck on remoLe access and selecL ok Lhen cllck on apply A||ow users Co Lo Lhe AcLlve ulrecLory Servlces Cllck on user properLles and selecL ulal ln Cllck on allow access and cllck on apply Lhen ok Create a new connect|on on network Cllck on creaLe new connecLlon Cllck on connecL Lo Lhe workplace Clve Lelephone number Clve user name and password Cllck connecL
Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
Ca|| back Co Lo Lhe AcLlve ulrecLory Servlces Cllck on user properLles SelecL dlal ln Cllck on callback opLlon SelecL seL by caller Cllck on apply Lhen ok Ca||back secur|ty Co Lo Lhe AcLlve ulrecLory Servlces Cllck on user properLles SelecL dlal ln SelecL always call back Lo Clve your Lelephone number Cllck on apply and Lhen ok Ass|gn|ng Is through DnC Cpen rouLlng and remoLe access 8lghL cllck and selecL properLles Cllck on lv4 and selecL dynamlc uC 8elay agenL Clve l address of uC server now resLarL by rlghL cllcklng and selecL all Lasks SelecL resLarL
Lecture noS V|rtua| r|vate Network (VN) vn ls used for long dlsLance connecLlvlLy lL ls cheaper Lhan 8emoLe access because Lhe medlum ls lnLerneL noL S1n 8eglsLered llve publlc l ls needed for vn server buL Lhere ls no compulslon of llve l on cllenL slde SLaLlc l ls Lhe baslc requlremenL of vn ?ou can connecL mulLlple users on Lhe same llnk ln vn whlch ls noL posslble ln remoLe access ln remoLe access you need a separaLe llne for each user ln vn Lhe connecLlons are made on vlrLual porLs MulLlple connecLlons per physlcal medlum ls Lhe advanLage of vn and lL ls posslble due Lo Lhe vlrLual porLs of vn Less secure as compared Lo remoLe access because Lhe medlum ls lnLerneL buL you can say LhaL vn ls secure because lL uses lSec for securlLy lL ls cleared LhaL vn ls lnherenLly lnsecure because medlum ls Lhe lnLerneL vn ls Lhe only way Lo connecL prlvaLe neLworks uslng lnLerneL
Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
r|vate I ranges accord|ng to C 1918 10000/8 1721600/12 19216800/16 lor example lf Lhere are Lwo neLworks of CorvlL one ln Lahore and Lhe oLher ls ln lslamabad lf Lhese Lwo neLworks have prlvaLe addresses and wanL Lo communlcaLe Lhrough lnLerneL 1hen lL ls noL posslble wlLhouL vn because vn make lL posslble LhaL prlvaLe neLworks can communlcaLe uslng lnLerneL Insta||at|on of VN Co Lo server manager Cllck on 8oles Lhen add roles SelecL neLwork pollcy and access servlces Cllck nexL SelecL rouLlng and remoLe access server Cllck on nexL Cllck lnsLall now glve a llve publlc l Lo vn server Clve l Lo cllenL and assume LhaL boLh are on lnLerneL now open 8ouLlng and 8emoLe Access from admlnlsLraLlve Lools 8lghL cllck on lL and selecL conflgure and enable Cllck on nexL and choose cusLom conflguraLlon Cllck on nexL selecL vn access SelecL a connecLlon and Lhen selecL from a speclfled range opLlon Clve ls range and cllck nexL now selecL no use rouLlng and remoLe access opLlon Cllck on ok and Lhen flnlsh A||ow users perm|ss|ons Cllck on AcLlve ulrecLory users and compuLer ln Lhe admlnlsLraLlve Lools 8lghL cllck on user and selecL properLles SelecL dlalln and cllck on Allow access Cllck on apply and Lhen ok now lf you Lry Lo plng Lhe sysLem lL wlll glve no reply from Lhe hosL 1herefore open Lhe rouLlng and remoLe access selecL lv4 and cllck on general now rlghL cllck on connecLlon and press deleLe 1he lnLerface wlll be deleLed Connect through mstsc Make a connecLlon on cllenL compuLer as under Cllck on seLup a new connecLlon Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Cllck on connecL Lo workplace and selecL nexL Cllck on use my lnLerneL connecLlon and selecL l wlll seLup lnLerneL connecLlon laLer Clve l address of vn server Clve username and password and cllck on nexL Cllck on creaLe and Lhen close VN protoco|s 1 lkLv2 2 SS1 3 1 4 L21 Connect on 1 Co Lo Lhe properLles of Lhe cllenL adapLer Cllck on securlLy Lab and selecL 1 ln Lype of vn Cllck ok and Lhen connecL Connect on L21 8lghL cllck on neLwork connecLlon and selecL properLles SelecL securlLy Lab SelecL L21 Cllck on advance seLLlng Clve shared key MCl12008 Cllck on connecL Shar|ng When you puL a dollar slgn ($) aL Lhe end lL ls called hldden sharlng Command C hosLname (press enLer lL wlll dlsplay name of Lhe compuLer) C neL vlew pc1 (press enLer lL wlll show shared flles and folders) C mkdlr LesL (press enLer lL wlll creaLe a folder named LesL) C neL share LesLc LesL (press enLer lL wlll make LesL folder shared) C neL vlew pc1 (press enLer lL wlll show shared folders on pc1) C mkdlr lshaq (press enLer lL wlll creaLe a folder named lshaq) C neL share lshaq$c lshaq (press enLer lL wlll make lshaq folder as hldden shared) C neL vlew pc1 (press enLer lL wlll show you shared folders buL noL hldden shared) When you Lype pc1lshaq ln run wlndow and press enLer lL wlll glve an error message because Lhls folder ls hldden shared lf you wanL Lo open lL place a dollar Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
slgn ($) afLer Lhe folder name as pc1lshaq$ (press enLer) lL means LhaL Lhe person who knows Lhe name of Lhe hldden shared folder can open lL oLherwlse compuLer wlll noL show hldden shared folders Some folders are hldden shared by defaulL whlch ls called admlnlsLraLlve hldden buL admlnlsLraLor cannoL glve permlsslons Lo oLher users lL ls [usL a faclllLy for Lhe admlnlsLraLor llke C$ u$ eLc AdmlnlsLraLor can glve cllenL only Lhe permlsslon of prlnL$ Note lf you wanL Lo shuLdown Lhe cllenL compuLers remoLely Lhen Lhe followlng command ls used buL you musL be Lhe admlnlsLraLor of Lhose cllenLs shuLdown l (press enLer) now add Lhe compuLers llke pc1 pc2 eLc and press ok 1here are Lwo Lypes of permlsslons 1 Share perm|ss|ons lL ls used only for remoLely access) 2 N1S perm|ss|ons lL ls local permlsslon lL ls applled on boLh cases Lveryone group ls called speclal ldenLlLy LhaL represenL all
Act|ve D|rectory CenLrallze reposlLory LhaL ls sLore lnformaLlon abouL ob[ecLs normally when you check Lhe sysLem properLles lL wlll elLher be ln a domaln or ln a workgroup ln a workgroup sysLems are lndependenL of each oLher lf Lhere are 10 users ln Lhe workgroup Lhen on each sysLem you wlll creaLe 10 users accounL Workgroup performs decenLrallze managemenL of resources 10 compuLers are normally recommended for a workgroup Doma|n lnLroduced flrsL Llme ln wlndow n1 of slze 40 M8 whlch provlde cenLrallze managemenL of resources ln a domaln one user one accounL and unlversal resource access now Lop level ls foresL lnslde foresL Lhere are Lrees and lnslde Lrees Lhere are domalns orest ls Lhe collecLlon of Lrees or domalns 1ree ls Lhe collecLlon of domalns has parenL chlld relaLlonshlp now to make system as Doma|n lnsLall server based operaLlng sysLem lnsLall AcLlve ulrecLory now your sysLem wlll become a domaln Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Doma|n 1ypes 1here are Lhree Lypes of domaln 1 oot Doma|n flrsL domaln of a foresL ls called rooL domaln Cnly one rooL domaln ls posslble ln a foresL lnsLallaLlon of rooL domaln creaLes a foresL 8ooL domaln ls also a parenL domaln When rooL domaln crashed Lhen Lhe foresL ls also crashed buL lf oLher domaln crashed Lhen lL wlll noL affecL foresL 2 arent Doma|n domaln ls lnsLalled elLher as a parenL or a chlld 1here can be mulLlple domalns ln a foresL Lvery parenL domaln ls noL a rooL domaln buL every rooL domaln ls a parenL domaln llrsL domaln of a Lree ls called parenL domaln lnsLallaLlon of parenL domaln creaLes a Lree 3 Ch||d Doma|n
no of foresL 1 noL of Lrees 3 no of domalns 3 1ypes of Doma|n 1 Doma|n Contro||er (DC) 1he machlne on whlch acLlve dlrecLory ls lnsLalled ls called uomaln ConLroller lf lL ls Lhe flrsL domaln lnsLalled Lhen lL ls uomaln ConLroller ln Lhls case lL ls used a acom bacom ccom dccom ecom 8ooL domaln arenL domaln Chlld domaln loresL 1ree Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
proper noun uomaln ls Lhe concepLual Lhlng lL physlcally exlsLs because of Lhe uomaln ConLroller Cnly one domaln can be lnsLalled on one compuLer 2 Add|t|ona| Doma|n Contro||er (ADC) When you lnsLall a second domaln for load balanclng Lhen lL ls called AddlLlonal uomaln ConLroller lL ls also wrlLable llke uomaln ConLroller lf Lhe uomaln ConLroller falls Lhen AddlLlonal uomaln ConLroller can be used 3 ead Cn|y Doma|n Contro||er (CDC) lL ls also used for load balanclng buL lL noL wrlLeable lL ls only read only Log|ca| Structure of AD loresL 1ree uomaln Cu hys|ca| Structure of AD S|tes Subnets Doma|n Contro||ers Lecture no2 Act|ve D|rectory Au ls Lhe cenLrallze reposlLory LhaL sLore lnformaLlon abouL ob[ecLs users and compuLers are Lhe classes of ob[ecLs Cb[ecLs properLles ln Au are called aLLrlbuLes lor example lasL name ls Lhe aLLrlbuLe of Lhe user class Classes aLLrlbuLes value seL and Lhelr aLLrlbuLe Lypes are sLored ln a place called schema Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
All Lhe Lrees ln one foresL have same schema A collecLlon of Lrees or domalns have same conflguraLlon schema and global caLalog ls called foresL Note when user logs ln on Lhe cllenL sysLem he enLers username and password 1he username ls senL Lo Lhe uC where lL ls checked wlLh a password and encrypL wlLh some number and send lL Lo Lhe cllenL Lo decrypL lL lf Lhe cllenL decrypLs LhaL password Lhen lL ls allowed for log on ln Clobal CaLalog values are sLored whlle ln Schema only aLLrlbuLes are sLored Act|ve D|rectory art|t|ons 1here are four parLlLlons of AcLlve ulrecLory 1 Schema parLlLlon (foresL speclflc) 2 ConflguraLlon parLlLlon (foresL speclflc) 3 uomaln uaLa arLlLlon (domaln speclflc) 4 AppllcaLlon arLlLlon (conflgurable) When you make changes ln Schema parLlLlon or conflguraLlon parLlLlon Lhen Lhese changes are repllcaLed ln Lhe whole foresL States of Server base operat|ng system 1here are Lhree sLaLes of server base operaLlng sysLem 1 SLand alone server (workgroup) 2 Member server (no acLlve dlrecLory) 3 uomaln conLroller (acLlve dlrecLory lnsLalled) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
lf you run dcpromo command Lhen lL wlll nelLher remaln sLand alone server nor member server Insta||at|on of Act|ve D|rectory 1ype dcpromo command ln Lhe run wlndow SelecL advance check box nexL page wlll show you operaLlng sysLem compaLlblllLy keep lL unchanged and cllck on nexL now Lhere are four posslblllLles 4 loresL Lree domaln (rooL domaln)uC 4 1ree uomaln (parenL domaln) uC 4 Chlld uomaln uC 4 AuC / 8CuC now lf you check Add a domaln conLroller Lo an exlsLlng domaln under Lhe exlsLlng foresL Lhen lL means LhaL you are golng Lo creaLe ADC ]CDC lf you check creaLe a new domaln ln an exlsLlng foresL under Lhe exlsLlng foresL opLlon Lhen lL means LhaL you are creaLlng ch||d doma|n lf you have marked creaLe a new domaln Lree rooL lnsLead of a new chlld domaln check box under exlsLlng domaln foresL Lhen lL means LhaL you are creaLlng parent doma|n lf you check creaLe a new domaln ln a foresL opLlon Lhen lL means LhaL you are creaLlng root doma|n SelecL Lhe lasL opLlon creaLe a new domaln ln a foresL and cllck on nexL Clve name Lo Lhe domaln (CorvlLcom or LesLcom) and cllck nexL now lf you selecL wlndows server 2008 82 ln Lhe domaln funcLlonal level Lhen you can use new feaLures of AcLlve ulrecLory Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
llke recycle bln eLc buL your cllenLs musL be wlndows 7 or wlndows vlsLa 1herefore selecL wlndows server 2003 and cllck on nexL SelecL unS server check box lf you wanL Lo lnsLall unS also and cllck nexL Cllck on yes and agaln cllck on yes now lL wlll show daLabase folder log flles folder and Sysvol folder (sLore group pollcy) and Lhelr locaLlons now lL wlll ask username and password lL ls requlred lf your AcLlve ulrecLory ls crashed Lhen all of user accounL wlll also be crashed Lhen you can resLore acLlve dlrecLory by uslng Lhls username and password Cllck on nexL Lhen nexL and selecL Lhe 8ebooL on compleLlon check box When Lhe lnsLallaLlon compleLe Lhen Lhe sysLem wlll be resLarLed Impact of Act|ve D|rectory Insta||at|on 8efore Lhe lnsLallaLlon of Au all Lhe user accounLs are sLored ln Lhe compuLer managemenL ?ou can go Lo compuLer managemenL by uslng compmgmtmsc command AfLer lnsLalllng Au all Lhe user accounLs are Lransferred Lo Lhe AcLlve ulrecLory by cllcklng AcLlve ulrecLory Servlces and Lhe cllck on users Lo vlew Lhe users accounL AcLlve ulrecLory daLabase flle ls nLdsdlL (CwlndowsnLdsnLdsdlL) where dlL sLands for dlrecLory lnformaLlon Lree and has 10M8 slze Log flle ls edb edbchk ls checkpolnL flle and res1 res2 are reserved flles Some servlces are also creaLed llke Au uomaln servlces and Au web servlces afLer Au lnsLallaLlon Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
egsvr32 schmmgmtd|| ls Lhe command Lo go Lo Lhe schema where you see Lwo Lhlngs classes and aLLrlbuLes
Act|ve D|rectory Ma|ntenance 1 8ackup onllne (servlces sLarL) 2 8esLore a AuLhorlLaLlve resLore uS8M (ulrecLory 8esLore Mode) b non AuLhorlLaLlve resLore uS8M (ulrecLory 8esLore Mode) 3 Move offllne (servlces sLopped) 4 uefrag a Manual offllne (servlces sLopped) b AuLomaLlc onllne (servlces sLarL) ln wlndows server 2008 82 you don'L need Lo rebooL Lo offllne AuS llke wlndows server 2003 Ut|||ty for tak|ng 8ackup of AD Wbadmlnmsc ls used Lo Lake a backup buL Lhls faclllLy ls noL lnsLalled by defaulL flrsL you have Lo lnsLall backup servlces Cllck on server manager Lhen selecL leaLures Lhen Add leaLures Lhen selecL wlndows server backup Lhen cllck on nexL and Lhen lnsLall now Lype wbadmlnmsc command ln Lhe run wlndow Lhen selecL backup once cllck on nexL now selecL dlfferenL opLlons Lhen selecL cusLom cllck on add lLem Lhen selecL sysLemsLaLe cllck on local drlve and selecL Lhe drlve for backup cllck ok Lhen cllck nexL and Lhen cllck on backup Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
1ype wbadm|n get vers|ons command ln Lhe command llne Lo show Lhe name of Lhe backup because Lhe backup name ls generaLed by Lhe compuLer lLself ln daLe Llme formaL Lecture no3 Act|ve D|rectory Ma|ntenance AcLlve ulrecLory ls ln Lhe form of pages A process whlch ls called garbage collecLlon process deleLes unused flles from AcLlve ulrecLory afLer every 12 hours lor malnLenance you musL sLop Lhe AcLlve ulrecLory servlces 1here are Lwo meLhods Lo sLop Au servlces one ls graphlcal LhaL ls cllck on admlnlsLraLlve Lools Lhen cllck on servlces Lhen rlghL cllck on acLlve dlrecLory domaln servlces and cllck on sLop Second meLhod Lo sLop Au servlces ls from command llne LhaL ls Commands for AD database and |og f||es movement to another dr|ve CneL sLop nLds (cllck enLer) Lhen cllck on yes (lL wlll sLop daLabase servlces of Au) C nLdsuLll (press enLer) nLdsuLll acLlvaLe lnsLance nLds (press enLer) nLdsuLll flles (press enLer) llle malnLenance move db Lo [ (press enLer 1hls wlll move daLabase Lo [ drlve) llle malnLenance move logs Lo [ (press enLer lL wlll move log flles Lo [ drlve) llle malnLenance qulL (press enLer) C neL sLarL nLds (press enLer AfLer movemenL agaln sLarL Au daLabase servlces) Defrag or Compress AD database C nLdsuLll (press enLer) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
nudsuLll acLlvaLe lnsLance nLds (press enLer 8uL before dolng Lhls sLop Au daLabase servlces by neL sLop nLds command oLherwlse lL wlll glve error) nLdsuLll flles (press ok) llle malnLenance compacL Lo e (press enLer lL wlll compress lL Lo e drlve) llle malnLenance qulL (press ok) estore of AD 1here are Lwo Lypes of resLore Cne ls called auLhorlLaLlve resLore and Lhe oLher ls called non auLhorlLaLlve resLore When Lwo uC's are worklng ln Lhe same domaln Lhen auLhorlLaLlve lssue comes lor example lf Lwo uc's uC1 and uC2 are worklng ln a domaln 1here are 93 user accounLs on uC1 suddenly boss called you LhaL l have flred 3 persons LhaL ls why deleLe Lhe accounLs of Lhese persons Lherefore you have deleLed buL before LhaL you have Laken a backup yesLerday AfLer 2 hours 8oss agaln call you and Lold you LhaL l have Laken my declslon back so agaln add Lhese 3 persons accounLs ?ou wlll resLore Lhe backup on uC1 buL ln Lhls case Lhe verslon ld's of uC1 are older and uC2 have laLesL verslon ld's 1he uC who have laLesL verslon ld's are ln full power now Lo glve back Lhe power Lo uC1 you wlll ralse Lhe verslon ld's of uC1 Lhrough a meLhod called Author|tat|ve restore lor resLorlng Lhe Au you wlll rebooL your sysLem Lhen press l8 and selecL dlrecLory servlces resLore mode Lhen selecL oLher user 1ype wbadmlnmsc ln Lhe run wlndow and press ok Lhen cllck on 8esLore Lhen selecL Lhls server press nexL Lhen selecL sysLem sLaLe Lhen cllck on conflrmaLlon and Lhen cllck on resLore 1hls meLhod ls called non author|tat|ve restore ln Lhls case Lhere ls only one uC ln Lhe domaln so Lhere ls no need of auLhorlLy or author|tat|ve restore llrsL perform Lhe wbadmlnmsc process as menLloned above 1hen go Lo cmd and Lype c nLdsuLll (press enLer) nLdsuLll acLlvaLe lnsLance nLds (press enLer) nLdsuLll auLhorlLaLlve resLore (press enLer) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
AuLhorlLaLlve resLore resLore ob[ecL dcCorvlL dccom (press enLer) Cllck on yes (lL wlll ralse verslon ld's of uC1 by one lakh ln order Lo noL overrlde Lhe prevlous one) 8ebooL Lhe sysLem
Cperat|on Master Some changes wlll only be performed on a speclflc uC noL on all 1haL ls why AcLlve ulrecLory ls slngle masLer generally Slngle masLer operaLlon can be performed on a slngle uC 1here are cerLaln roles wlLh LhaL uC 8oles 1 Schema MasLer one per foresL 2 uomaln namlng MasLer one per foresL 3 uC (rlmary uomaln ConLroller) LmulaLor one per domaln 4 lnfrasLrucLure MasLer one per domaln 3 8lu (8elaLlve ldenLlLy) MasLer one per domaln 8ooL domaln has Lhe flrsL Lwo roles whlle on AuC Lhere wlll 0 roles 1 Schema Master 1here are classes and Lhelr aLLrlbuLes ln schema Schema masLer ls responslble for schema updaLes Schema ls avallable on all uC's buL wrlLeable schema ls only avallable ln schema masLer 2 Doma|n Nam|ng Master lL ls responslble for Lhe addlLlon or removal of domalns ln a foresL 3 DC Lmu|ator lL performs clock or Llme synchronlzaLlon lL ls responslble for group pollcy modlflcaLlon lL Lells password reseL lnformaLlon Lo all lL mlnlmlzes password change laLency 4 Infrastructure Master lL sLores user Lo group references 3 ID Master ermlsslon Lo a user ls glven on Lhe basls of Slu (SecurlLy ldenLlfler) lL ls a number whlch ls generaLed when we creaLe a user accounL lL ls noL changeable and noL reusable lL ls unlque Cb[ecL Sluuomaln lu + 8lu Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
8lu MasLer glves a block of 8lu Lo oLher uC's 8lu masLer ls responslble for Slu generaLlon or lL allocaLes blocks of 8lu Lo oLher domaln conLrollers of Lhe domaln ln order Lo vlew whlch compuLer has Lhese roles go Lo command llne and Lype fsmo (flexlble slngle masLer operaLlon) command c netdom ]query fsmo (press enter) ln graphlcal envlronmenL cllck on admlnlsLraLlve Lools Lhen selecL acLlve dlrecLory users and compuLers Lhen rlghL cllck on domaln selecL operaLlon masLer Lhere you wlll see Lhe domaln name ln Lhe flrsL fleld whlch ls currenL role holder now Lo check roles on foresL (domaln namlng masLer)cllck on admlnlsLraLlve Lools selecL acLlve dlrecLory users and compuLers Lhen rlghL cllck on rooL Lhen selecL operaLlon masLer now Lo check schema masLer flrsL run regsvr32 schmmgmLdll ln run wlndow Lhen run mmc cllck on add remove snap ln from flle menu Lhen cllck on acLlve dlrecLory schema and Lhen cllck on add now rlghL cllck on operaLlon masLer 1wo Lhlngs musL be undersLand 1 1ransfer of ro|e only posslble lf role holder ls onllne ln Lhls case no loss of lnformaLlon occurs 2 Se|ze of ro|e only posslble lf role holder ls down (offllne) ln Lhls case loss of lnformaLlon occurs 1hese Lwo operaLlons can be performed on Lhe successor means on whlch you wanL Lo Lransfer Lhe roles now to connect w|th another DC Cllck on admlnlsLraLlve Lools SelecL acLlve dlrecLory users and compuLers 8lghL cllck on domaln and selecL change domaln conLroller SelecL Lhe pc Lo connecL Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Cllck ok 1ransfer ro|es one by one Cllck on admlnlsLraLlve Lools Cllck on AcLlve dlrecLory users and compuLers 8lghL cllck on domaln and selecL change domaln conLroller SelecL AuC on whlch you Lransfer roles and press ok now rlghL cllck on Au and cllck on change operaLlon 1ransfer forest ro|es Cllck on admlnlsLraLlve Lools Cllck on AcLlve dlrecLory uomaln and LrusL 8lghL cllck and selecL operaLlon masLer Cllck on change 1ransfer schema master ro|e llrsL connecL wlLh successor now cllck on change domaln conLroller now rlghL cllck and selecL change operaLlon masLer Se|ze of ro|es Selze means by force asslgn Lhe role Lo oLher uC when one ls crashed or down When you cllck on operaLlon masLer and check Lhe flrsL fleld lL wlll show an error Lhere when uC1 ls down Co Lo Lhe cmd for selzlng role C nLdsuLll (press enLer) nLdsuLll roles (press enLer) lsmo malnLenance connecLlons (press enLer ere you wlll connecL Lo Lhe pc Lo whlch you are maklng a role holder) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Server connecLlons connecL Lo server pc1 (press enLer) Server connecLlons qulL (press enLer) lsmo malnLenance selze schema masLer (press enLer) Cllck on yes Lo conLlnue lsmo malnLenance selze namlng masLer (press ok and Lhen yes Lo conLlnue) lsmo malnLenance selze uC masLer (press ok and Lhen yes Lo conLlnue) lsmo malnLenance selze lnfrasLrucLure masLer (press ok and Lhen yes Lo conLlnue) lsmo malnLenance selze 8lu masLer (press ok and Lhen yes Lo conLlnue) Lecture no4 Manag|ng user accounts Note you can change Lhe password pollcy by Lyplng gpmcmsc command ln Lhe run wlndow Lhen cllck on domaln Lhen rlghL cllck on defaulL domaln pollcy and selecL edlL Lhen cllck on pollcles wlndows seLLlng securlLy seLLlng accounL pollcles password pollcles ?ou can creaLe user accounLs Lhrough bulk lmporL process 1here are Lhree meLhods LhaL can be used 1 CSVDL (Comma SeparaLed value uaLa Lxchange) lL ls used for only addlng user accounLs 2 LDIDL (LlghLwelghL daLa lnLerchange formaL daLa exchange) lL ls used Lo add modlfy and deleLe user accounLs 3 W|ndows Scr|pt|ng nost Steps of CSVDL Cpen a noLepad WrlLe dnob[ectc|asssamaccountnameuseraccountcontro| ln Lhe flrsL llne Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Note ln Lhe above llne dn represenL dlsLlngulsh name for dlsplay new namlng convenLlon called LuA used by Au LhaL uses dlsLlngulsh name Lo make Lhe name unlque ln Lhe domaln ob[ectc|ass represenL Lhe Lype of ob[ecL you are creaLlng Samaccountname represenL Lhe logon name of Lhe user Useraccountcontro| represenL Lo enable or dlsable Lhe accounL 312 ls used for enabled and 314 used for dlsable accounL "oumc|tpdckhandccom"organ|zat|ona| ( th|s w||| create an organ|zat|ona| un|t w|th the name mc|tp |n khancom doma|n) after press|ng enter key type the fo||ow|ng |n the next ||ne "cn|shaqoumc|tpdckhandccom"user|shaqS12 "cn|mranoumc|tpdckhandccom"user|mranS12 "cnarshadoumc|tpdckhandccom"userarshadS14 "cn|zzatoumc|tpdckhandccom"user|zzatS14 Note Lhe above four llnes wlll creaLe four users named lshaq lmran arshad and lzzaL ln Lhe organlzaLlonal unlL mclLp on khancom domaln Save Lhls flle wlLh csv (LesLcsv) exLenslon and selecL all flles ln u drlve for example Co Lo cmd and lmporL Lhe flle by Lyplng D csvde | f testcsv (press enLer) ?ou can also exporL flle as d csvde f f||e1csv (press enLer) lL wlll creaLe a flle wlLh Lhe name of flle1 on u drlve Steps for LDIDL Cpen a noLepad and Lype Lhe followlng Dn cnkash|foumc|tpdckhandccom changetypeadd ob[ectc|assuser samaccountnamekash| useraccountcontro|S12 Dn cnam|roumc|tpdckhandccom changetypeadd ob[ectc|assuser samaccountnameam|r Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
useraccountcontro|S12 (Lhe above llnes wlll creaLe Lwo users named kashlf and amlr ln Lhe mclLp Cu on Lhe khancom domaln) Save Lhe flle wlLh |df exLenslon (test1|df) and selecL all flles Cpen cmd and lmporL Lhe flle by uslng Lhe command d|d|fde | f test1|df (press enLer) Steps for mod|f|cat|on user account |n LDIDL Cpen noLe pad Dn cn|shaqoumc|tpdckhandccom changetypemod|fy rep|acedescr|pt|on descr|pt|on th|s |s a test user account
Dn cn|mranoumc|tpdckhandccom changetypemod|fy rep|ace|ocat|on |ocat|on kabu| Save Lhe flle wlLh |df exLenslon (test2|df) and selecL all flles Cpen cmd and lmporL Lhe flle by uslng Lhe command d|d|fde | f test2|df (press enLer) Steps for de|et|on of user account |n LDIDL Cpen noLe pad Dn cn|shaqoumc|tpdckhandccom changetypede|ete Save Lhe flle wlLh |df exLenslon (test3|df) and selecL all flles Cpen cmd and lmporL Lhe flle by uslng Lhe command d|d|fde | f test3|df (press enLer)
Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Lecture noS
Steps for W|ndows Scr|pt|ng nost Cpen noLe pad and Lype Lhe followlng Set ob[CU getob[ect ("LDA]]oumc|tpdckhandccom") Set ob[User ob[CUcreate("User" "cn|shaq") ob[Userput "samaccountname" "|shaq" ob[UserSetInfo (lL show end of flle) now save Lhe flle wlLh vbs exLenslon (LesL3vbs) and selecL all flles now open Lhe command llne and lmporL Lhe flle uslng Lhe command Cwscr|pt test3vbs (press enLer) Manag|ng Groups Maklng groups provldes flexlblllLy lor example lf you are applylng some permlsslons on 1000 users on Lhe same naLure Lhen you manually apply Lhe permlsslons on each user means you have Lo modlfy 1000 users lnsLead creaLe a group and place Lhe users of Lhe same naLure ln Lhls group and apply permlsslons on Lhls group whlch wlll be applled Lo all 1000 users Group types 1here are Lwo Lypes of groups 1 Secur|ty group ln SecurlLy group everyLhlng ls posslble means you can use lL for permlsslons and also for emall sysLem 2 D|str|but|on group lL ls only used for malllng sysLem and cannoL be used for permlsslons 1haL ls why you rlghL cllck on Lhe folder and Lhen cllck on permlsslons you wlll only see securlLy groups noL Lhe dlsLrlbuLlon group noLe CreaLe Lhree groups as follow Co Lo acLlve dlrecLory users and compuLers rlghL cllck and selecL new Lhen cllck on group Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Clve name Lo Lhe group and selecL Lhe Lype of Lhls group securlLy Slmllarly creaLe Lwo more groups one of Lype securlLy and Lhe oLher ls of Lype dlsLrlbuLlon Lype now ln your compuLer rlghL cllck on any folder selecL properLles and Lhen selecL sharlng Lhen cllck on add group and cllck on flnd buLLon ?ou wlll only see Lhe Lwo groups havlng Lype securlLy noL Lhe dlsLrlbuLlon group 1here are Lwo Lypes of permlsslon one ls share permlsslon and Lhe oLher ls local permlsslon 1he share permlsslon ls applled when Lhe ob[ecL ls accesslng remoLely ?ou can asslgn share permlsslon on a folder by rlghL cllcklng and selecL Lhe properLles and Lhen cllck on sharlng Lhen cllck on advance sharlng Lhen glve name Lo Lhe shared folder Lhen add Lhe group and Lhen asslgn permlsslons Local permlsslons are applled on boLh Lype of access le for remoLe access and for local access buL local permlsslon overrlde Lhe remoLe permlsslon ?ou can apply local permlsslon on a folder by rlghL cllcklng and Lhen selecL properLles Lhen selecL n1lS Lab and apply Lhe permlsslon Group Scope 1here are Lhree scopes used 1 G|oba| group 1wo Lhlngs are lmporLanL ln group scope one ls membershlp and Lhe oLher ls vlslblllLy 1he membersh|p of Lhe global group ls only users from lLs own domaln 1he v|s|b|||ty of Lhe global group ls LhroughouL Lhe foresL 2 Doma|n |oca| Membershlp users from any domaln ln Lhe foresL whlle vlslblllLy only ln lLs own domaln 3 Un|versa| Clobal Croup + uomaln Local unlversal Croup ?ou need all Lhese Lhlngs ln a mulLldomaln envlronmenL 1here ls MlcrosofL rule A C u L A add users C global group uL domaln local group permlsslons lL means LhaL add users Lo Lhe global group Lhen add Lhe global group lnLo Lhe domaln local group and Lhen apply permlsslons
Case Study Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
uomaln 8 uomaln A uomaln C
lf sysLems are aLLached Lo Lhe uomaln A Lhen uomaln A 8 and C are called AccounLs domaln because Lhe users are avallable on lL whlle domaln A ls also called a resource domaln AccounL domaln needs global group and 8esource domaln ls called domaln local group Conslder anoLher case sLudy leL a lolder named lolder A has Lhe followlng permlsslons Share ermlsslon n1lS ermlsslons CroupA 8ead Modlfy Croup8 Change 8ead lshaq (member of A 8) lull ConLrol 8ead lull ConLrol (mosL) + Modlfy (mosL) Modlfy (leasL) Group o||cy Croup pollcy provlde Lwo Lhlngs Lo Lhe users 1 laclllLles Lo Lhe users 2 8esLrlcLlons on Lhe users 1here are Lwo pollcles avallable on domaln by defaulL Cne ls called defaulL domaln pollcy and Lhe oLher ls called defaulL domaln conLroller pollcy 1ype gpmcmsc command ln Lhe run wlndow Lhe group pollcy managemenL console wlll be opened 1hen cllck on domaln Lhen cllck on group pollcy ob[ecL Lhese Lwo wlll be dlsplayed 30 users CL8 100 users CLA uLCCLA (100) CL8 (30) CLC (100) 100 users CLC Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
Croup pollcy ls applled on a conLalner lnslde Lhe conLalner Lhere may be elLher users or compuLers Cn users Lhe pollcy ls lmplemenLed when he logs on whlle on Lhe compuLer lL ls appllcable when Lhe sysLem rebooLs Croup pollcy enable conLalners are SlLe (cllck on admlnlsLraLlve Lools and selecL Au slLes) uomaln (cllck on admlnlsLraLlve Lools and Lhen Au users and compuLers) Cu (rlghL cllck on domaln and selecL new CrganlzaLlon unlL) 8y defaulL only one Cu called domaln conLroller ls lnsLalled when Au ls lnsLalled GC (Group o||cy Cb[ect) 1 GC (Group o||cy Conta|ner) lL ls vlewable Lhrough AcLlve ulrecLory users and compuLers (cllck on AcLlve dlrecLory users and compuLers/rlghL cllck and selecL vlew/advance feaLures/sysLem/pollcles/(you wlll see 2 defaulL CC pollcles) lL provldes verslon lnformaLlon for synchronlzaLlon 2 G1 (Group o||cy 1emp|ate) lL ls vlewable ln Sysvol (C wlndowsSysvoldomalnpollcles(you wlll see 2 defaulL C1 pollcles) now creaLe anoLher group pollcy ln Lhe pollcy managemenL console by rlghL cllck on Lhe group pollcy ob[ecL and selecL new Lhen glve name Lo Lhe pollcy now check ln boLh CC and C1 Lhe pollcles wlll be shown 3 Cvera|| Adm|n|strat|on of Group o||cy 1 Copy and pasLe 2 8ackup and resLore 8lghL cllck on one of Lhe group pollcy ob[ecL and selecL copy Lhen selecL pasLe Lhe pollcy ob[ecL wlll be pasLed Lhen rename lL and edlL for furLher modlflcaLlons 1here ls a new feaLure ln wlndow 2008 server called SLarLer CC ln whlch a company general LemplaLe (rules) ls made Lhen whenever you creaLe a new pollcy ob[ecL SelecL SLarLer CC ob[ecL Lhen rlghL cllck and selecL new Lhen glve name Lhen cllck ok now lf you wanL Lo creaLe a new pollcy ob[ecL rlghL cllck on Lhe group pollcy ob[ecL rlghL cllck and selecL new glve name Lo Lhe pollcy ob[ecL and Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
below ln Lhe drop down llsL selecL Lhe sLarLer CC LemplaLe and Lhe cllck ok and Lhen rlghL cllck and selecL edlL for furLher modlflcaLlons and permlsslons Steps for backup and restore group po||cy 8lghL cllck on group pollcy ob[ecL SelecL backup Cllck browse and glve name Lo Lhe folder for backup Cllck on backup now for resLore rlghL cllck and selecL resLore 8rowse for Lhe locaLlon and selecL backup Cllck nexL and Lhen ok WMI ||ter lL ls a Lool whlch fllLers ouL Lhe condlLlons durlng logon lor example lf we wanL Lo lnsLall MS Cfflce on Lhe user accounL flrsL of all we wlll check Lhe free space lor Lhls purpose you need Lo wrlLe a SCL query A Lool WMlMeLlc Lool ls also avallable on MlcrosofL webslLe for download LhaL makes a scrlpL for WMl fllLer SLeps 8lghL cllck on WMl lllLer and selecL new Clve a name Lo Lhe fllLer Cllck on Add now wrlLe Lhe followlng ln Lhe query box SelecL *from wln32loglcaldlsk where drlvename"c" and drlveLype2 and freespace 1000000 (space ls ln byLes) Save lL Lhen go Lo Lhe group pollcy ob[ecL for example sales Lhen selecL WMl fllLerlng Lhen cllck on MS Cfflce Lhen yes Software Dep|oyment us|ng Group o||cy lollowlng flles are used ln sofLware deploymenL 1 ms| (wlndows lnsLaller package) used for sofLware deploymenL 2 mst (Lransform flle) used for cusLom lnsLallaLlon 3 msp (paLch flle) used for servlce packs / hoL flxes Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
4 A (lf sofLware does noL conLaln msl flle and only seLup flle ls avallable Lhen you creaLe ZA flle whlch for nonmsl sofLware) 1here are Lwo Lypes of deploymenL 1 Ass|gn (Lhe asslgn deployed sofLware ls dlsplayed ln sLarL menu) 2 ub||sh (publlshed deployed sofLware ls avallable ln conLrol panel Lhen programs and feaLure Lhen ln neLwork) llrsL of all Su (sofLware dlsLrlbuLlon polnL) wlll be creaLed on Lhe hard dlsk LhaL conLalns Lhe sofLware Lo be deployed Cenerally asslgn deploymenL ls used for compuLers whlch are flxed for Lhe users Whlle publlsh deploymenL ls used for users whose compuLer ls noL flxed Note ln domaln envlronmenL when we creaLe a user Lhen cllck on Lhe user properLles and selecL member of Lab and wrlLe ba" and cllck on add and apply CLherwlse you cannoL logon wlLh Lhls user Lecture no6 Steps of Software Dep|oyment llrsL make a Su (sofLware ulsLrlbuLlon olnL) on your hard dlsk and rlghL cllck on lL go Lo properLles Lhen advance sharlng and Lhen glve full conLrol Lo every one group now open group pollcy managemenL console (gpmcmsc) and cllck on domaln and selecL group pollcy ob[ecL 8lghL cllck on Lhe defaulL domaln pollcy and selecL edlL 1here cllck on pollcles under compuLer and cllck on sofLware seLLlngs 8lghL Cllck on sofLware lnsLallaLlon and selecL new package Clve Lhe neLwork paLh (pc10) and press enLer Lhe shared folders wlll be dlsplayed SelecL Su and Lhen cllck on msl flle and press ok Lhen lL wlll ask wheLher you wanL Lo asslgn or publlsh Lhe appllcaLlon selecL your cholce and cllck ok Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
lf you wanL Lo lnsLall cusLomlze packages (llke excel word only) Lhrough sofLware deploymenL Lhen you need msL flle llrsL of all lnsLall C8k(Cfflce 8esource klL) from MS Cfflce Cu ln order Lo make msL flle AfLer lnsLalllng C8k open lL from programs Lhen Lools Lhen resource klL Cllck on cusLom lnsLallaLlon wlzard 8rowse for roclusmsl from Su CreaLe a new MS1 flle glve any name nexL Lhen nexL and selecL packages from Lhe sofLware Cllck on nexL and Lhen cllck on exlL AL Lhe end lL wlll ask Cu key as volume llcense now rlghL cllck on group pollcy and edlL defaulL domaln pollcy SelecL pollcles under compuLer conflguraLlons and Lhen cllck on sofLware seLLlngs 8lghL cllck on sofLware lnsLallaLlon and selecL new package Clve a neLwork paLh selecL Lhe Su Lhen offlce Lhen roclus 1hen selecL advance Lhen selecL modlflcaLlon Lhen cllck on Add SelecL MS1 Lhen deploymenL Lhen selecL asslgn SelecL lnsLall aL logon and Lhen cllck on ok now updaLe group pollcy by gpupdaLe command Note lf Lhere ls no msl flle Lhen you can creaLe lL by uslng a sofLware called WlnlnS1ALL LhaL ls called msl maker now to create A f||e When only seLup flle ls avallable of Lhe sofLware Lhen you can creaLe a ZA flle lL ls publlshed noL asslgned 1here ls no self repalr ln ZA flle Cpen noLepad and wrlLe Lhe followlng commands appllcaLlon lrlendlyname acrobaL reader" SeLupcommand acrobaLexe verslon 3001 Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Save Lhls flle wlLh Lhe zap exLenslon ln Lhe same locaLlon where Lhe acrobaLexe ls sLored Share Lhls folder and asslgn permlsslons now go Lo defaulL domaln pollcy rlghL cllck and selecL edlL SelecL pollcles under users and Lhen selecL sofLware seLLlngs 8lghL cllck on sofLware lnsLallaLlon and selecL new package SelecL ZA cllck on add Lhen selecL publlsh and cllck on Ck Act|ve D|rectory Cert|f|cate Author|ty (CA) 1he purpose of CerLlflcaLe AuLhorlLy ls auLhenLlcaLlon and confldenLlallLy CA provldes cerLlflcaLe Symmetr|c encrypt|on ln Lhls meLhod Lhe decrypLlon and encrypLlon keys wlll be same lL means LhaL you wlll need Lhe same key for decrypLlon LhaL you have used for encrypLlon Asymmetr|c encrypt|on ln Lhls meLhod Lhe encrypLlon and decrypLlon keys are dlfferenL lL means LhaL when you use one key for encrypLlon Lhen you can decrypL Lhe lnformaLlon wlLh a dlfferenL key 1here are Lwo lmporLanL Lhlngs 1 ub||c key authent|cat|on ln Lhls case Lhe senders encrypL lnformaLlon wlLh lLs prlvaLe key lL ls asymmeLrlc encrypLlon now Lhe recelver wlll use publlc key of Lhe sender Lo decrypL Lhls lnformaLlon 2 ub||c key encrypt|on ln Lhls case Lhe senders encrypL Lhe lnformaLlon wlLh Lhe recelver publlc key lL ls also asymmeLrlc encrypLlon ln whlch Lhe recelvers wlll use lLs prlvaLe key Lo decrypL lL lndlrecLly keys are lssued by CA CA lssue flrsL cerLlflcaLe Lo lLself Lhen he geLs Lhe ablllLy Lo glve cerLlflcaLes Lo oLhers and CA always sends lnformaLlon ln encrypLed form When a person requesL for Lhe publlc key of Lhe recelver CA lssues hlm hls own cerLlflcaLe conLalnlng CA publlc key and Lhen encrypL oLher person publlc key wlLh lLs prlvaLe key and send lL Lo you ?ou wlll decrypL CA encrypLed lnformaLlon by hls publlc key and wlll Lake Lhe publlc key of Lhe oLher person Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
CA Insta||at|on 1here are some lmpacLs of CA afLer lLs lnsLallaLlon on Lhe sysLem llrsL lmpacL you cannoL change Lhe sysLem name afLer CA lnsLallaLlon Second you cannoL remove or add sysLem Lo domaln afLer CA 1hlrd you cannoL remove AcLlve ulrecLory from Lhe sysLem afLer CA lnsLallaLlon Steps Cllck on Server Manager and selecL 8oles Cllck on Add 8oles and cllck on nexL SelecL AcLlve ulrecLory CerLlflcaLe Servlces from Lhe llsL Cllck nexL Lhen cllck nexL SelecL CerLlflcaLlon AuLhorlLy CA web enrollmenL and onllne responder check boxes from Lhe llsL Cllck nexL Lhen selecL enLerprlse Lhen cllck on nexL SelecL 8ooL CA and cllck nexL Clve any name Lo CA and cllck on nexL Lhen glve Lhe valldlLy perlod 3 years by defaulL Cllck on nexL Lhen nexL Lhen selecL on wlndows lnLegraLed auLhenLlcaLlon Cllck on nexL and Lhen lnsLall AfLer lnsLallaLlon rlghL cllck on CA and selecL properLles cllck on advance you wlll see lssued Lo and lssued by lnformaLlon of cerLlflcaLe ?ou can also check Lhe publlc key by cllcklng on Lhe deLalls buLLon now to Issue a Cert|f|cate 1here are Lwo meLhods used Lo lssue a cerLlflcaLe Cne ls uslng Lhe mmc and Lhe oLher ls web enrollmenL Steps of mmc method 1ype mmc command ln Lhe run wlndow Cllck on llle menu and selecL Add/8emove Snapln SelecL cerLlflcaLe from Lhe llsL and Lhen cllck on add buLLon SelecL my user accounL Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Cllck on flnlsh and Lhen Ck now cllck on cerLlflcaLe Lhen on personal Lhe cerLlflcaLe LhaL ls already exlsL ls un LrusLed now rlghL cllck Lhere and selecL new Lasks Lhen cllck on requesL a new cerLlflcaLe Cllck on nexL Lhen nexL SelecL user and cllck on enroll and Lhen flnlsh 1he cerLlflcaLe wlll be vlslble ln Lhe lssued cerLlflcaLe folder Steps for web enro||ment Cpen your web browser 1ype Lhe u8L pc1/cerLsrv Clve user name and password Cllck on requesL a cerLlflcaLe llnk Lhen selecL user cerLlflcaLe Cllck on submlL buLLon Cert|f|cate evocat|on L|st (CL) lf you wanL Lo revoke a cerLlflcaLe from Lhe user Lhen use Lhe followlng SLeps 8lghL cllck on Lhe cerLlflcaLe SelecL all Lasks Lhen cllck revoke cerLlflcaLe Clve reason code buL remember LhaL Lhe cerLlflcaLe wlll be unrevoked only lf you selecL cerLlflcaLe hold reason code 1he cerLlflcaLe wlll be Lemporally dlsabled agaln rlghL cllck on LhaL cerLlflcaLe go Lo all Lasks and selecL unrevoked CA backup and estore Steps for CA 8ackup 8lghL cllck on CA SelecL All 1asks and cllck on 8ackup CA Cllck on nexL and browse for Lhe folder ln whlch you wanL Lo sLore backup Clve a password and Lhen cllck on flnlsh Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
Steps for CA estore 8lghL cllck on CA SelecL All 1asks Cllck on 8esLore and cllck ok Cllck on nexL and Lhen browse for folder where backup ls locaLed Cllck on ok Lhen cllck on nexL Clve Lhe password LhaL you have asslgned durlng backup Cllck flnlsh Lhen cllck on yes Lecture no7 Act|ve D|rectory ep||cat|on 8epllcaLlon ls derlved from a word repllca whlch means copy 8epllcaLlon means Lo make a copy AcLually AuC ls Lhe copy of Lhe uC SlLes 1he collecLlon of uC's connecLed wlLh a hlgh speed permanenL and rellable connecLlon ls called a slLe ln normal Lerms slLes means locaLlons 1here are Lwo Lypes of repllcaLlon 1 Inters|te ep||cat|on lnLerslLe repllcaLlon means repllcaLlon beLween slLes ln Lhls case Lhere are mulLlple slLes 1he bandwldLh of Lhe llnk wlll be slow ln case of lnLerslLe repllcaLlon because Lhe llnk ls WAn a Compressed repllcaLlon Lrafflc ls requlred when Lhe bandwldLh ls low b lL performs Scheduled updaLes (by defaulL 3 hours) c AuLomaLlc / Manual updaLes can be performed (by defaulL 180 mlnuLes lnLerval) d ConflguraLlon ls needed ln case of lnLerslLe repllcaLlon 2 Intras|te ep||cat|on Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page
lnLeraslLe repllcaLlon means repllcaLlon wlLhln slLes ConnecLlon ls hlgh speed rellable and permanenL ln case of lnLraslLe repllcaLlon a uncompressed repllcaLlon Lrafflc b LvenL Lrlggered updaLes c AuLomaLlc / Manual and non scheduled d no conflguraLlon ls needed Steps for Intras|te rep||cat|on llrsL we need one uC and one AuC for repllcaLlon Cllck on AcLlve ulrecLory users and compuLers from admlnlsLraLlve Lools Cllck on Lhe uomaln ConLrollers ?ou wlll see Lwo uC's leL say pc1 pc3 now open unS cllck on slLes Lhen on defaulL slLes 1here wlll be slx enLrles Lhree for one uC and Lhree for anoLher uC now open AcLlve ulrecLory slLes and LrusL 8lghL cllck on slLe and selecL new slLe Clve name Lo Lhe slLe for example Lahore 1he above slLe wlll be repllcaLed on anoLher uC ?ou can check lL wlLhln Lhe slLe of anoLher uC now make a user on one uC 1hls user wlll be repllcaLed auLomaLlcally wlLhouL any conflguraLlon on anoLher uC because lL ls evenL Lrlggered updaLes Mu|t|p|e S|tes for example we have Lwo slLes A and 8 1here are Lwo uC's ln slLe A and Lhree uC's on slLe 8 8oLh slLes are lnLerconnecLed wlLh each oLher Lhrough WAn llnk lL means LhaL lL ls lnLerslLe repllcaLlon now a quesLlon arlses LhaL ls lL loglcal LhaL every uC of slLe 8 wlll send updaLes or changes Lo every uC ln slLe or only one uC from slLe 8 sends or recelve updaLes or changes from one uC of slLe A and Lhen forward Lhese updaLes or changes Lo Lhe local uC's 1he uC on each slde LhaL sends or recelves changes or updaLes from oLher slLe uC ls called 8rldge ead Server 1herefore we can deflne lL as A domaln conLroller LhaL recelves changes from remoLe slLe and Lhen forward Lhese changes Lo local uC Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
lf you wanL Lo dlsplay brldge head server Lhen Lype Lhe repadmln /brldgeheads command ln Lhe command llne buL you wlll see no brldge head server now make Lwo slLes Lahore and lslamabad Lhen move Lahore uC lnLo lslamabad slLe Lhen agaln run Lhe above command S|te ||nks SlLe llnks means when you are esLabllshlng llnks beLween slLes Lhen you musL conslder Lhe followlng flve Lhlngs 1 roLocols a l b SM1 (lL runs on llmlLed bandwldLh) 2 Member slLe 3 CosL 4 lnLerval 3 Schedule Steps Cllck on AdmlnlsLraLlve Lools Lhen cllck on AcLlve dlrecLory slLes and LrusL Cllck on Au slLes and servlces Lhen cllck on slLes cllck on lnLer slLe LransporL Lhen selecL l and rlghL cllck on lL and selecL new slLe llnk Clve name Lo Lhe slLe and press ok now rlghL cllck on Lhe creaLed slLe and selecL properLles Cllck on cosL When Lhe value of cosL ls low Lhen lLs prlorlLy ls hlgh lor example lf you have Lwo llnks A and 8 1he llnk wlll be preferred whose cosL ls low 8uL lf boLh llnks have Lhe same cosL Lhen deflnes a schedule by cllcklng on Lhe schedule buLLon
Act|ve D|rectory art|t|ons 1here are four parLlLlons of Au whlch ls also called repllcaLlon unlLs Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 9
1 Schema arLlLlon loresL speclflc repllcaLlon 2 ConflguraLlon arLlLlon loresL speclflc repllcaLlon 3 uomaln uaLa arLlLlon uomaln speclflc repllcaLlon 4 AppllcaLlon arLlLlon Conflgurable repllcaLlon Act|ve D|rectory ep||cat|on Mon|tor kCC sLands for knowledge ConslsLency Checker lL ls a background servlce LhaL makes Lhe Lopology conslsLenL 1ype repadmln /kcc ln Lhe command llne and press enLer 8epllcaLlon MonlLor ls an lmporLanL Lool whlch ls used for Lhe monlLorlng of AcLlve ulrecLory Steps llrsL lnsLall supporL Lools from wlndows server 2003 Cu Cllck on supporL Lools Lhen lnslde Lhe Lools folder selecL supporL Lools msl and lnsLall lL now Lype replmon ln Lhe command llne and press ok 8lghL cllck on Lhe monlLored server and selecL Add monlLored servers Add Lhe name of Lhe server or cllck on search Cllck on expand
Mlrrored volume / dlsk duplexlng ardware lmplemenLaLlon of 8Alu SofLware lmplemenLaLlon of 8Alu 8Alu0 (dlsk sLrlpplng / sLrlpped volume) 8Alu1 (dlsk mlrrorlng / mlrrored volume) 8Alu3 (sLrlpped volume wlLh parlLy) San nas SLorage neLworklng Lecture no2 IIS (Internet Informat|on Serv|ce) MlcrosofL lmplemenLaLlon of web server ls called llS now to Insta|| IIS Co Lo server manager cllck on 8oles Cllck on add roles and cllck on nexL SelecL Web Server (llS) and cllck on nexL Cllck on nexL Lhen lnsLall and Lhen cllck close Steps for Mak|ng DNS one Cpen unS from admlnlsLraLlve Lools SelecL forward lookup zone 8lghL cllck on lL and selecL new zone SelecL prlmary zone Clve name Lo Lhe zone (corvlLLralnlngcom) lnslde Lhls newly creaLed zone creaLe a hosL record by rlghL cllcklng Clve name www and asslgn l address 19216801 Steps for mak|ng a webs|te Cpen noLe pad and wrlLe some 1ML code hLmlbody Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
1hls ls a LesL webslLe for web hosLlng /body/hLml Make a folder wlLh Lhe name web ln u drlve and save Lhls flle wlLh LesLhLml Steps for creat|ng s|te Cpen llS from admlnlsLraLlve Lools 8lghL cllck on slLe and selecL add new slLe Clve name Lo Lhe webslLe Clve a physlcal paLh (browse for Lhe webslLe ln u drlve) Clve hosLname (wwwcorvlLLralnlngcom) Cllck ok now cllck on Lhe defaulL documenLs and remove all documenLs Add your own documenL LesLhLml Lo Lhe defaulL documenL Lnable lL and Lhen cllck ok SLop Lhe webslLe Lhen sLarL Lhe webslLe now go Lo lnLerneL Lxplorer and Lype Lhe u8L wwwcorvlLLralnlngcom nost|ng mu|t|p|e webs|tes on same web server 1here are Lhree meLhods for hosLlng mulLlple webslLes on Lhe same web server 1 ulfferenL l's for each webslLe 2 ulfferenL porLs for each webslLe 3 ulfferenL 11 eaders (hosL names) for each webslLe Steps for host|ng mu|t|p|e webs|tes on same web server us|ng d|fferent I's llrs asslgn anoLher l address Lo Lhe neLwork adapLer 8lghL cllck on Lhe neLwork adapLer and selecL properLles Cllck on advance seLLlng and glve anoLher l address (19216803) 1hen Cpen unS from admlnlsLraLlve Lools SelecL forward lookup zone 8lghL cllck on lL and selecL new zone SelecL prlmary zone Clve name Lo Lhe zone (corvlLsoluLloncom) Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
lnslde Lhls newly creaLed zone creaLe a hosL record by rlghL cllcklng Clve name www and asslgn l address 19216803 now Cpen llS from admlnlsLraLlve Lools 8lghL cllck on slLe and selecL add new slLe Clve name Lo Lhe webslLe Clve a physlcal paLh (browse for Lhe webslLe ln u drlve) Clve hosLname (wwwcorvlLsoluLloncom) Cllck ok now cllck on Lhe defaulL documenLs and remove all documenLs Add your own documenL LesLhLml Lo Lhe defaulL documenL Lnable lL and Lhen cllck ok SLop Lhe webslLe Lhen sLarL Lhe webslLe now go Lo lnLerneL Lxplorer and Lype Lhe u8L wwwcorvlLsoluLloncom ln order Lo hosL mulLlple webslLes on Lhe same web server by asslgnlng dlfferenL porL numbers you have Lo asslgn dlfferenL porL numbers ln creaLlng new webslLes and ln Lhe lnLerneL explorer wrlLe Lhe porL number along wlLh u8L as wwwcorvlLLechcom8011 buL lL ls lmpracLlcal ln real world UL ed|rect|on u8L redlrecLlon means Lo redlrecL one webslLe address Lo anoLher address Steps llrsL of all lnsLall llS redlrecLlon from server manager Cllck on roles Lhen rlghL cllck on add roles servlces selecL llS redlrecLlon and cllck on lnsLall 1hen Cpen unS from admlnlsLraLlve Lools SelecL forward lookup zone 8lghL cllck on lL and selecL new zone SelecL prlmary zone Clve name Lo Lhe zone (corvlLlahorecom) lnslde Lhls newly creaLed zone creaLe a hosL record by rlghL cllcklng Clve name www and asslgn l address 19216801 Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
now Cpen llS from admlnlsLraLlve Lools 8lghL cllck on slLe and selecL add new slLe Clve name Lo Lhe webslLe Clve a physlcal paLh (browse for Lhe webslLe ln u drlve) Clve hosLname (wwwcorvlLlahorecom) Cllck ok now cllck on Lhe defaulL documenLs and remove all documenLs Add your own documenL LesLhLml Lo Lhe defaulL documenL Lnable lL and Lhen cllck ok now cllck on 11 redlrecL WrlLe wwwcorvlLLralnlngcom ln Lhe redlrecL Lo Cllck on apply SLop Lhe webslLe Lhen sLarL Lhe webslLe now open browser and Lype wwwcorvlLlahorecom lL wlll be redlrecLed Lo wwwcorvlLLralnlngcom auLomaLlcally IIS 8ackup Cpen command llne by Lyplng cmd ln Lhe run wlndow C cd wlndows (press enLer) Cwlndows cd sysLem32 (press enLer) CwlndowssysLem32cd lneLsrv (press enLer) CwlndowssysLem32lneLsrv appcmd add backup mybackup (press enLer) now go Lo llS and remove all slLes ln order Lo resLore lL agaln IIS estore Cpen command llne by Lyplng cmd ln Lhe run wlndow C cd wlndows (press enLer) Cwlndows cd sysLem32 (press enLer) CwlndowssysLem32cd lneLsrv (press enLer) CwlndowssysLem32lneLsrv appcmd resLore backup mybackup (press enLer) Note lL wlll only resLore slLe conflguraLlon noL Lhe web conLenLs Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
W|ndows Share o|nt Serv|ces Wlndows share polnL servlces are noL avallable by defaulL ln Lhe server 2008 Cu ?ou have Lo download lL from Lhe MlcrosofL webslLe lL ls used Lo make porLals blogs eLc porLal ls a webslLe whlch glves lnformaLlon as well as lnLeracLlon Lo Lhe users (for example facebook orklL eLc) Wlndows share polnL servlces change Lhe webslLe lnLo porLal erform Lhe followlng Lhree sLeps 1 lnsLall share polnL servlces ( selecL 8aslc lnsLallaLlon ln Lhe wlzard) 2 8un share polnL producLs and Lechnology 3 CreaLe a web appllcaLlon Cpen share polnL admlnlsLraLlon Cllck on appllcaLlon managemenL Cllck on creaLe or exLend web appllcaLlon Cllck on creaLe a new web appllcaLlon Clve user name and password ln conflgurable opLlon Clve name of Lhe server ln Lhe search server opLlon and cllck on ok Cllck on creaLe slLe collecLlon ln Lhe appllcaLlon managemenL Clve LlLle doc Lhen cllck on collaboraLlon documenL workplace Clve Lwo user names and passwords and cllck ok Cpen lL and add a new documenL ln order Lo glve quoLa open quoLa LemplaLe Clve name Lo Lhe quoLa and asslgn slze ln M8 and also slze for warnlng now cllck on creaLe slLe collecLlons Clve LlLle blog Clve Lwo user names and passwords
8ackup and restore operat|ons of IIS Cpen share polnL admlnlsLraLlon Cllck on appllcaLlon managemenL Cllck on perform a backup Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
SLore lL ln a shared folder SelecL all and cllck on conLlnue Lo backup SelecL full backup and browse for Lhe locaLlon Lo sLore ln Lhe resLore operaLlon cllck on resLore from backup 8rowse for Lhe locaLlon and cllck ok Lecture no3 emote Desktop Serv|ces 1here are Lwo componenLs of Lhe remoLe deskLop servlces 8emoLe ueskLop Servlces ls lnLroduced ln wlndows 2000 whlch ls called Lermlnal servlces ln whlch boLh Lhe componenLs musL be lnsLalled ln Wlndows 2003 boLh Lhese componenLs were separaLed ln wlndows 2008 82 lL ls called remoLe deskLop servlces 1 8emoLe AdmlnlsLraLlon lor remoLe admlnlsLraLlon you don'L need Lo lnsLall remoLe deskLop servlces only enable lL from Lhe properLles of compuLer 2 AppllcaLlon Sharlng lf you wanL Lo perform appllcaLlon sharlng Lhen you musL lnsLall remoLe deskLop servlces from 8oles Steps of |nsta|||ng remote desktop serv|ces Cllck on server manager and cllck on roles Cllck on Add roles SelecL remoLe deskLop servlces from Lhe llsL and cllck on nexL SelecL remoLe deskLop sesslon llcenslng and web access from Lhe llsL Cllck on nexL selecL don'L requlred neLwork SelecL per user Lhen cllck on nexL and nexL SelecL domaln and cllck on nexL Lhen lnsLall now Lype msLsc ln Lhe run wlndow or cllck on Lhe admlnlsLraLlve Lools and selecL remoLe deskLop servlces Lhen cllck on remoLe deskLop Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
Cllck on 8emoLe AppllcaLlon Manager and Lhen cllck on Add remoLe appllcaLlon lor example selecL power polnL appllcaLlon ln llS a vlrLual dlrecLory wlLh a name 8uweb for remoLe deskLop ls creaLed W|ndows Med|a Serv|ces lL ls Lhe lmplemenLaLlon of sLreamlng medla server ls called Wlndows Medla Servlces (WMS) When you wanL Lo onllne vldeos Lhen you need WMS for LhaL 1here are Lwo meLhods used for WMS 1 Llve sLream by uslng hLLp proLocol 2 Llve sLream by uslng 8S1 lL works on porL 4334 and uses boLh uu and 1C ?ou need Lo creaLe a publlshlng polnL when you on alr llve conLenLs 1here are Lwo publlshlng polnLs 1 8roadcasL publlshlng polnL 1here ls no conLrol of Lhe user on broadcasL publlshlng polnL ?ou cannoL pause Lhe sLreamlng vldeo 2 Cn demand publlshlng polnL user can conLrol pause and sLarL Lhe vldeo ln on demand publlshlng polnL ln order Lo use Wlndows Medla Servlces you need Lo download MlcrosofL SLandalone ackage from Lhe lnLerneL and lnsLall lL AfLer LhaL you wlll be able Lo see sLreamlng wlndow medla server ln Lhe Add 8ole wlzard 1hen selecL lL and cllck on lnsLall or w|ndows Med|a |ayer Cllck on admlnlsLraLlve Lools SelecL feaLures and cllck on Add feaLure SelecL ueskLop experlence from Lhe llsL and cllck on lnsLall now go Lo 8oles cllck on Add 8ole SelecL sLreamlng medla servlces and cllck on nexL 1hen selecL all opLlons ln Lhls wlndow Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8
Cllck on 8S1 and cllck on nexL Cllck on nexL and Lhen lnsLall Make a pub||sh|ng po|nt Cpen wlndows medla servlces from Lhe admlnlsLraLlve Lools 8lghL cllck on publlshlng polnL and selecL new publlshlng polnL Clve name Lo Lhe publlshlng polnL Cllck on one flle and Lhen nexL SelecL broadcasL publlshlng polnL and cllck on nexL SelecL unlcasL and Lhen browse for Lhe vldeo cllp SelecL flle and cllck on nexL 1hen cllck on creaLe an announcemenL flle Lhen nexL Cllck on flnlsh Note afLer performlng all Lhese sLeps lf sLlll Lhe vldeo ls noL playlng Lhen only connecL Lhe compuLer Lo Lhe lnLerneL lL wlll be played Slmllarly Cn uemand ubllshlng havlng Lhe same sLeps W|ndows Server Update Serv|ces (WSUS) Cllck on server manager Cllck on 8oles and Lhen Add 8oles SelecL wlndows server updaLe servlces 1he updaLe wlll be downloaded from Lhe MlcrosofL webslLe AfLer downloadlng conflgure lL so LhaL oLher cllenLs wlll Lake updaLes from Lhls server noL from Lhe lnLerneL
nyperV term|na| yperv Lermlnal ls a new feaLure of wlndows server 2008 82 whlch glves Lhe ablllLy Lo lnsLall mulLlple operaLlng sysLems vlrLually on server 2008 machlne 1hls feaLure ls bullL ln Lhe server 2008 82 operaLlng sysLem Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 88
Steps Cllck on server manager Cllck on 8oles Lhen Add roles SelecL hyperv from Lhe llsL and cllck on nexL Cllck on lnsLall now open hyperv manager from Lhe admlnlsLraLlve Lools Cllck on hyperv seLLlngs SelecL C and rlghL cllck SelecL new vlrLual machlne Clve name Lo Lhe machlne and cllck on nexL Clve 8AM slze for Lhls vlrLual machlne and cllck nexL SelecL vlrLual neLwork nlC and hard dlsk space Cllck nexL and lnsLall from uvu Cr 8rowse lmage and selecL lso lmage 8lghL cllck and cllck on sLarL 8lghL cllck and connecL roceed wlLh lnsLallaLlon Command ||ne steps C cd program flles Cprogram flles cd hyperv Cprogram flleshyperv vmconnecLexe 1here are Lwo operaLlng sysLems now on Lhls machlne one ls hosL and Lhe oLher ls guesL osL operaLlng sysLem ls wlndows server 2008 82 and guesL operaLlng sysLem ls one whlch ls lnsLalled on vlrLual machlne