Microsoft Certified IT Professional (MCITP)

Couise: NCITP
Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page

M|crosoft Cert|f|ed I1 rofess|ona| (MCI1)
repared 8y ISnA AnMAD (|shaqsb2003Qyahoocom)
1eacher az| 1ah|r nussa|n (tah|r2k22Qhotma||com)
Locat|on Corv|t Lahore (14CIII Gu|berg III)
Start|ng Date 20
th
September 2010

MCI1 course cons|sts of S Lxams
Lxam1 W|ndows Seven Dep|oyment Lxam Code (70680)
Lxam2 W|ndows Server 2008 Network Infrastructure Conf|gur|ng
Lxam Code (70642)
Lxam3 W|ndows Server 2008 Act|ve D|rectory Conf|gur|ng
Lxam Code (70640)
Lxam4 W|ndows Server 2008 App||cat|on Infrastructure Conf|gur|ng
Lxam Code (70643)
LxamS W|ndows Server 2008 Lnterpr|se Adm|n|strator
Lxam Code (70647)
8ook source www4sharedcom]d|r]kG|Cbnp]MCI1htm|
assword pak|stan
Couise: NCITP


Lecturer no1
llrsL module ls relaLed Lo Wlndows 7 ln Lhls course Lhere are malnly Lwo
operaLlng sysLems one ls Wlndows 7 and second one ls Wlndows 2008 Server 82
Wlndows 2008 Server 82 ls Lhe mosL recenL release of MlcrosofL ln Lhe markeL aL
Lhls Llme Cn cllenL slde flrsL Wlndows vlsLa were used buL Lhere were some
lssues ln Wlndows vlsLa LhaL ls why Wlndows 7 ls released ln CcLober 2009 lL ls a
facL LhaL new producLs ln a markeL fulflll Lhe requlremenLs of lndusLrles beLLer
Lhan old ones
llrsL lecLure ls abouL Wlndows 7 deploymenL buL before golng Lo Lhls we wlll
dlscuss anoLher module called operaLlng sysLem fundamenLals reclsely you can
say Wlndows 7 fundamenLals
8elng a sysLem admlnlsLraLor whaL Lhe lndusLry wlll expecL from you or whaL ls
Lhe work of a sysLem admlnlsLraLor and whlch Lools ln Lhe operaLlng sysLem you
can use Lo run lL properly ln any envlronmenLs?
1he [ob of Lhe sysLem admlnlsLraLor ls Lo ensure buslness conLlnulLy 8ecause of
any company lmporLanL Lhlng ls buslness AL Lhe end of Lhe day Lhe lmporLanL
Lhlng for a company ls money maklng lor all Lhese Lhlngs Lhe proper work of Lhe
lnformaLlon Lechnology deparLmenL ls necessary lL means LhaL a company needs
Lhe work of a sysLem admlnlsLraLor or neLwork admlnlsLraLor
Some companles buslness ls noL l1 orlenLed buL Lhelr buslness process needs Lhe
work of l1 deparLmenL lor example 8anks does noL glve l1 servlces buL for Lhelr
processes Lo run properly Lhey need l1 deparLmenL because Lhelr daLa bases wlll
run on a compuLer Lhelr accounL sysLem ls sLored ln a compuLer Lhelr bllllng
sysLem ls on compuLer so lf Lhe compuLer wlll noL work Lhen Lhelr buslness wlll
noL conLlnue
now lL ls Lhe responslblllLy of a sysLem admlnlsLraLor Lo flnd ouL Lhose compuLers
whlch are asseL for a buslness means lf Lhose compuLers wlll noL work or down
Llme comes Lhen buslness wlll noL conLlnue
Couise: NCITP


uown Llme means when Lhe buslness ls ouL of servlce lor example lf compuLer
sLop worklng for an hour on whlch bllllng sysLem or credlL cards are avallable Lhen
bllllng sysLem or credlL card process wlll noL work SomeLlmes we see LhaL A1M
machlne ls ouL of servlce means lL's Lhe down Llme of LhaL compuLer Lhen you
cannoL make any LransacLlon uown Llme suffer Lhe cusLomers and Lhe company
wlll lose LrusL of cusLomers All Lhese lssue wlll handle a person called sysLem
admlnlsLraLor whlch ls responslble for buslness conLlnulLy
1here are Lwo approaches wlLh a sysLem admlnlsLraLor
1 eact|ve Approach ln 8eacLlve Approach lf problem occurs Lhen Lhey wlll
Lake acLlons oLherwlse no preparaLlon for LhaL problem ln advance lor
example lf llghL ls gone Lhen Lhey wlll check Lhe generaLors lf fuel ls noL
avallable Lhen Lhey brlng fuel from Lhe bazaar and Lhen sLarL lL
2 roact|ve Approach ln proacLlve approach you musL be menLally prepared
for all problems and you musL Lake approprlaLe soluLlons for Lhose
problems lor example ln CorvlL a person ls already prepared Lo sLarL Lhe
generaLors lf Lhe llghL ls gone means Lhe admln offlcer has glven Lhls
responslblllLy Lo a person lf Lhls problem occur Lhen you wlll provlde Lhls
soluLlon lL ls called roacLlve Approach
ln roacLlve Approach Lhe sysLem admlnlsLraLor flrsL ldenLlfy Lhe sysLems
and Lhen he makes a repllca (means copy) Cne sysLem wlll offer servlces
whlle Lhe oLher wlll be ln sLandby mode lf a problem occurs ln Lhe runnlng
sysLem Lhen Lhe sLandby compuLer wlll Lake over and wlll provlde servlces
ln Lhls case Lhe down Llme wlll be very less ln some buslnesses down Llme
ls less affordable and ln some buslnesses down Llme ls noL affordable A
buslness ln whlch down Llme ls noL affordable Lhen sysLem admlnlsLraLors
make clusLers or real Llme repllca CosL wlll lncrease by decreaslng down
Llme
CperaLlng sysLems Lools are malnly dlvlded lnLo Lwo caLegorles
1 D|agnost|c ulagnosLlc means problem lndlcaLor lL wlll noL glve
soluLlons buL wlll glve an apparenL way Lo solve Lhls problem lor
example LhermomeLer only checks Lhe LemperaLure lL does noL glve any
Couise: NCITP


medlclne 1he sysLem admlnlsLraLor knowledge ls checked when all Lhe
dlagnosLlc sLeps glves no resulL
2 1roub|e Shoot|ng
1rouble shooLlng ls done Lhrough dlagnosLlc Lool uevlce manager
(devmgmLmsc) ls a Lool or conLrol panel ls a Lool 1herefore dlagnosLlc
ls LhaL Lool whlch lndlcaLes Lhe problem and wlll noL glve any soluLlon
CperaLlng sysLem malnly conslsLs of Lwo Lhlngs llrsL one ls dev|ce
dr|vers and second one ls serv|ces lf your devlce drlvers ls ok and also
your servlces ls runnlng Lhen lL means LhaL your operaLlng sysLem ls
worklng properly
8uL lf Lhe operaLlng sysLem ls noL worklng properly Lhen you wlll check
Lhese Lwo devlce drlvers and servlces
llrsL dlagnosLlc Lool ls ms|nfo32 lL glves lnformaLlon abouL sysLem
SLeps
1ype ms|nfo32 ln Wlndows 7 run wlndow and press ok
Cllck on componenLs
Cllck on prob|em dev|ces (lf you check Lhe message so lL wlll be
wrlLLen LhaL Lhe devlces are dlsabled lL does noL know LhaL how
Lhese devlces wlll be enabled? lf you rlghL cllck here noLhlng wlll
happen)
now cllck on software env|ronment
Cllck on serv|ces ( lL wlll glve lnformaLlon abouL servlces whlch
one ls sLarL and whlch ls sLop buL you cannoL sLarL or sLop any
servlce from here)
lL ls a very good Lool you can say lL ls a laboraLory of a compuLer where all
klnds of LesLs can be done ?ou can also check sysLem summary by cllck on
Lhe sysLem summary opLlon ?ou can also check baslc lnformaLlon of
hardware by cllcklng on Lhe hardware resources opLlon 1hls Lool Lells you a
blg plcLure abouL Lhe devlces and also abouL Lhe servlces
Lventvwr ls anoLher Lool whlch glves more deLall abouL a problem lL also
glves lnformaLlon abouL new problems llke lf new vlruses are come LvenLs
vlewer means evenLs can show and evenLs are slmply messages lor
Couise: NCITP


example lf you booL your sysLem someLlmes message dlsplay LhaL cerLaln
servlces are falled Lo sLarL 1hese messages are saved ln a place called
wlndows log flles

Steps
1ype eventvwr ln run wlndow and press ok
AfLer execuLlng Lhls command you wlll see dlfferenL log flles llke
AppllcaLlon securlLy sysLem eLc buL we are malnly concern wlLh
sysLem 1hese logs are dependenL on machlne operaLlng sysLem
SecurlLy log can only be vlewed by sysLem admlnlsLraLor lf you
open Lhe logs you wlll see evenLs 1here are many caLegorles of
evenLs buL Lhree are very lmporLanL le error lnformaLlon and
warnlng because Lhey are relaLed wlLh Lrouble shooLlng
lnformaLlon evenLs only glve slmple lnformaLlon or reporLlng lL ls
sLored ln a log because someLlmes lnformaLlonal evenLs solve
your problem ?ou have Lo remember evenL lds especlally of
sysLem logs lor example 7036 ld Lells LhaL serv|ce status change
lL wlll glve lnformaLlon whlch one servlce ls sLop and whlch one ls
sLarL means when Lhe sLaLus change of whlch servlce AnoLher
evenL ld 6008 whlch Lells abouL un expected shutdown
lf you wanL Lo sLarL or sLop Lhe servlces Lhen you wlll run anoLher
Lool called serv|cesmsc
AnoLher dlagnosLlc Lool ls perfmon lL ls used Lo monlLor or LesL hardware's and
sofLware's
SLeps
1ype perfmon ln run wlndow and press ok
Cllck on Lhe performance monlLor (lL wlll show cpu memory
uLlllzaLlon ln graphs reporLs eLc lL can also show you LhaL how
much load a processor galn when you are worklng ln some
appllcaLlons llke word or noLepad)
Couise: NCITP


Lecture no2
W|ndows 7 dep|oyment
Insta||at|on prerequ|s|tes or m|n|mum hardware requ|rements of w|ndows 7
rocessor 1 Clga herLz
8AM 1 C8
ard ulsk (lree Space) 13 C8
As a professlonal you should noL keep your sysLem on Lhese mlnlmum
requlremenLs 8ecause you wlll lnsLall oLher appllcaLlons also 13 C8 of free space
on a hard dlsk ls mlnlmum requlremenL and 20 C8 ls recommended 1hls space ls
requlred on LhaL parLlLlon on whlch you are lnsLalllng wlndows 7
Insta||at|on 1ypes
1here are Lwo Lypes of lnsLallaLlon
1 Manua| Insta||at|on ln Manual lnsLallaLlon we wlll aLLend Lhe lnsLallaLlon
process
2 Automat|c Insta||at|on ln AuLomaLlc lnsLallaLlon you wlll noL aLLend Lhe
lnsLallaLlon process fully
1he lndusLry ln whlch you wlll work as a sysLem admlnlsLraLor can be of Lwo
Lypes Cn ls vendor company and Lhe oLher ls cusLomer company
vendor Company ls LhaL company whlch provldes compuLers and Lhelr servlces Lo
Lhe cusLomers for example uell
CusLomer Company ls LhaL company whlch uses LhaL compuLe for Lhelr buslness
for example banks
8equlremenLs of CusLomer Company does noL change rapldly buL Lhe
requlremenLs of Lhe vendor Company changes very rapldly
Couise: NCITP


lor example lf Lhere are 200 brand new machlnes are you are asked Lo lnsLall
wlndows 7 on all 1hen auLomaLlc lnsLallaLlon ls Lhe besL meLhod Lo use because lL
ls Llme savlng you can lnsLall wlndows 7 only ln one day
8uL Lhe quesLlon ls how brand new sysLems wlll booL because Lhere ls no
operaLlng sysLem on lL Lhelr hard dlsk ln blank
Second quesLlon when you normally lnsLall CS Lhen you provlde source of
operaLlng sysLem LhaL ls lnserLlng operaLlng sysLem Cu ln Lhe Cu 8CM now for
200 machlnes wlll you need 200 operaLlng sysLem Cu's? Cf course no leL us
assume LhaL your lnsLallaLlon process wlll perform from one locaLlon and lL only
requlres one operaLlng sysLem Cu and Lhls locaLlon ls called ulsLrlbuLlon Server
whlch dlsLrlbuLe wlndows 7 Lo cllenL compuLers
?ou wlll perform lnsLallaLlon on dlsLrlbuLlon server by yourself lL ls noL auLomaLlc
whlle lnsLallaLlon on cllenL compuLers wlll be performed by dlsLrlbuLlon server
rerequ|s|tes of d|str|but|on server
Cn dlsLrlbuLlon server we requlre a servlce Lhrough whlch we lnsLall operaLlng
sysLem on cllenL compuLers and Lhls servlce ls called w|ndows dep|oyment
serv|ce or WuS 1hls servlce were lnLroduced ln wlndow server 2003 wlLh Lhe
name 8lS (8emoLe lnsLallaLlon Servlces)
equ|rements of WDS
We need Lhree servlces whlch are requlred or you can say LhaL Lhese are Lhe pre
requlslLes of WuS
1 AuS (AcLlve ulrecLory Servlces)
2 unS (uomaln name SysLem)
3 uC (uynamlc osL ConflguraLlon roLocol)
4 n1lS arLlLlon on WuS Server
8emember LhaL every MlcrosofL operaLlng sysLem ls runnlng ln one of Lhe Lwo
envlronmenLs le Workgroup (decenLrallze managemenL of resources) and
Doma|n (cenLrallze managemenL of resources)
Couise: NCITP

Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page 8

lf you wanL Lo use Wlndows ueploymenL Servlces (WuS) Lhen envlronmenL musL
be domaln ?ou can make domaln envlronmenL by lnsLalllng AcLlve ulrecLory
1echnlcally you can use WuS for a slngle sysLem also buL MlcrosofL recommend
LhaL lf you have 30 or more machlnes Lhen use WuS oLherwlse do manual
lnsLallaLlon
C||ent Mach|nes rerequ|s|tes
8ooLable nlC (lnslde booLable nlC Lhere ls chlp called 8ooL 8om or xL
booL 8om lL means re 8ooL LxecuLlon LnvlronmenL lf Lhls chlp ls avallable
Lhen lL ls booLable nlC)
now a day all deskLop compuLers come wlLh Lhls supporL lf Lhere ls no xL
8CM on cllenL compuLer Lhen you cannoL use WuS When you booL cllenL
compuLer press l12 for booL menu and Lhen selecL booL from neLwork
adapLer
Note 8ooLable Cu ls one for whlch you don'L need operaLlng sysLem Lo run whlle
for non booLable Cu Lo run you need an operaLlng sysLem
reparat|on of D|str|but|on Server
llrsL of all you wlll lnsLall Wlndows 2008 Server 82 on your compuLer 1hen you
wlll lnsLall neLwork servlces (AuS unS uC eLc) from Server Manager ln
admlnlsLraLlve Lools ln wlndows 2008 server unS uC eLc are called 8oles
Cllck on Server Manager
Cllck on 8oles
Cllck on Add 8oles
Cllck on Server 8oles
SelecL AcLlve ulrecLory Servlces uC and unS
Cllck on conflrmaLlon
Cllck on lnsLall
lf you are uslng Wlndows 2008 Server 81 Lhen Lhe conflrmaLlon opLlon wlll noL be
vlslble aL LhaL Llme when you don'L dlsable uC lv6 sLaLeless mode
Couise: NCITP


now we have Lo lnsLall WuS lL ls noL necessary LhaL WuS uC AuS unS musL
be lnsLalled on Lhe same sysLems ?ou can lnsLall WuS on one sysLem and AuS
uC unS on oLher sysLem buL Lhe domaln musL be Lhe same 8uL you requlre
n1lS parLlLlon on LhaL machlne on whlch WuS ls lnsLall 1he maln advanLage of
uslng WuS ls Llme savlng
Steps for |nsta|||ng WDS
Cllck on Server Manager
Cllck on 8oles Lhen Add 8oles
SelecL Wlndows ueploymenL Servlce (Lhere are Lwo componenLs of WuS
one ls 1ransporL Server and oLher ls ueploymenL Sever 1ransporL Server ls
one whlch push operaLlng sysLem and ueploymenL Server sLores Lhe
lnformaLlon Lherefore selecL boLh componenLs)
Cllck on lnsLall
MlcrosofL has developed a new flle formaL whlch ls WlM (Wlndows lmaglng
lormaL) avallable ln Wlndows 7 Cu 1he sole purpose of maklng Lhls formaL ls
remoLe lnsLallaLlon 1here are Lwo flles wlLh Lhls formaL wlLhln Lhe sources folder
of wlndows 7 Cu Cne ls booLwlm and oLher ls lnsLallwlm ln Lhls case booLwlm
ls LhaL flle whlch sLarLs Lhe machlne and Lhe acLual wlndows ls lnsLalllng by
lnsLallwlm
Conf|gurat|on of WDS
Cllck on sLarL Lhen wlndows deploymenL servlces
lL wlll show a warnlng slgn LhaL server ls noL yeL conflgured
8lghL cllck on lL and selecL conflgure server cllck nexL
?ou wlll see cremoLe lnsLall (n1lS parLlLlon ls requlred for Lhls flle ln case
of 8lS Lhls folder ls noL allowed Lo sLore on C drlve buL now lL wlll glve only
a warnlng buL you can sLore lL on C drlve)
SelecL drlve for Lhls folder and cllck nexL
now Lhere are Lwo opLlons
4 Do not ||sten on port 67 (noLe we have lnsLalled Lwo uC one
uC ls lnsLalled when we selecL add 8ole and oLher uC ls wlLhln
Couise: NCITP


Lhe WuS whlch ls lnsLalled wlLh WuS 1he uC wlLhln WuS ls noL
compleLe lL glves parLlal supporL and work slmllar wlLh normal
uC Lvery appllcaLlon has a porL number on Lhe lnLerneL l1 has
21 11 has 80 unS has 33 and uC has 67 now Lhere are Lwo
uC so whlch one wlll work 8y selecLlng Lhls opLlon you are
sLopplng WuS uC
4 Conf|gure DnC opt|on 60 to kLC||ent (when you selecL Lhls opLlon
lL Lells Lhe cllenL LhaL afLer geLLlng l address also Lake an lmage from
Lhls compuLer When uC and WuS are lnsLalled on one compuLer
Lhen make lL a rule of Lhumb Lo selecL Lhese Lwo opLlons)
AfLer cllcklng nexL Lhere are Lhree opLlons
4 Do not respond to any c||ent computer (lL means LhaL don'L sLarL
WuS servlces rlghL now lor example lf you planned Lo sLarL
deploymenL on Monday buL everyLhlng ls ready on lrlday Lhen selecL
Lhls opLlon noL Lo sLarL servlces yeL for securlLy reasons because lf
you don'L check Lhls opLlon and somebody plug ln hls LA1C Lhen
lnsLallaLlon wlll sLarL)
4 espond on|y to known c||ent computers (lL Lells Lhe server Lo
respond or glve lmage Lo only Lhose compuLer whlch you know now
how Lhe compuLer wlll be known Lo Lhe server one Lhrough hls name
whlch ls noL avallable aL Lhls Llme second l address whlch ls also noL
avallable aL Lhls Llme so Lhere musL be a mechanlsm Lhrough whlch
server know compuLers before lnsLallaLlon 1here are uulu or Culu
of each compuLer whlch wlll provlde you by manufacLurer or vendor
and Lhese lus are wrlLLen on Lhe caslng or you can see lL ln 8lCS
uulu means unlversally unlque ldenLlfler and Culu sLands for
Clobally unlque ldenLlfler lL conslsLs of 32 characLers 1hls process ln
whlch you glve uulu or Culu of cllenL compuLers Lo Lhe dlsLrlbuLlon
server Lo become known Lo lL ls called pre sLaglng
4 espond to a|| (known and unknown) c||ent computers (lL means
LhaL respond Lo every one or glve lmage Lo every LhaL connecL Lo Lhe
neLwork )
Couise: NCITP


or unknown c||ents not|fy adm|n|strator and respond after
approva| (lL means LhaL lf you selecL Lhls checkbox Lhen
dlsLrlbuLlon server wlll noL re[ecL lnsLallaLlon on unknown
compuLers buL lL wlll lnsLall CS when admlnlsLraLor allow lL for
lnsLallaLlon 1he unknown devlces lnsLallaLlon wlll be pendlng
ln a folder called pendlng devlces ln a hlerarchy ln Lhls folder
when admlnlsLraLor rlghL cllck on lLs Culu and selecL Approve
Lhen lnsLallaLlon wlll sLarL )
Cllck nexL
now ln Lhe hlerarchy Lhere wlll be Lwo folders one ls booL lmage and
anoLher one ls lnsLall lmage
8lghL cllck on booL lmage and selecL add booL lmage Lhen browse for
wlndows 7 Cu and cllck on booLwlm flle
8lghL cllck on lnsLall lmage folder Lhen selecL add lnsLall lmage browse for
wlndows 7 Cu and cllck on lnsLallwlm flle
AfLer creaLlng Lhese Lwo lmages now ln uC you wlll glve l addresses
LhaL can be asslgned Lo cllenL compuLers durlng lnsLallaLlon
now booL your cllenL compuLer and press l12 Lo go Lo booL menu and from
Lhls menu selecL booL from neLwork adapLer lnsLallaLlon wlll sLarL
Note lf you wanL Lo creaLe an lmage of Lhe runnlng envlronmenL ln whlch
along wlLh operaLlng sysLem appllcaLlon sofLware's (word v8 llash eLc) wlll
also be lnsLalled 1hen for Lhls you wlll use a Lool lMACLx lMACLx ls a WlM
creaLor and modlfler (ClMACLx/capLure) you wlll geL lMACLx ln WAlk
(Wlndows AuLomaLed lnsLallaLlon klL) whlch can be downloaded from
mlcrosofcom buL unforLunaLely genulne wlndow check wlll be done
All porL numbers can be vlewed ln a flle
CwlndowssysLem32drlverseLcservlces
lor AcLlve ulrecLory lnsLallaLlon an acLlve neLwork connecLlon ls requlred lf
you are worklng on a slngle compuLer wlLhouL neLwork Lhen lnsLall a loop back
adapLer as
Co Lo devlce manager by wrlLlng Lhe command ln run (devmgmLmsc)
Couise: NCITP


x
now to Ass|gn UUID or GUID to D|str|but|on Server
Cllck on AcLlve ulrecLory users and compuLers
8lghL cllck on compuLer
SelecL new compuLer
Clve any name Lo compuLer
Cllck nexL Lhen enLer uulu or Culu ln Lhe LexL fleld
now to conf|gure DnC
Cllck on uC ln AdmlnlsLraLlve Lools
8lghL cllck on lv4
SelecL new scope
8lghL Cllck on scope
SelecL acLlvaLe and glve l address range
now to start WDS Serv|ces
Cpen WuS
8lghL cllck and selecL All 1asks
Cllck on new
Cllck on sLarL servlces
lf you wanL Lo modlfy some opLlons of WuS Lhen open WuS rlghL cllck on lL and
selecL properLles
Lecture no3
D|sk Management
1here are Lwo Lypes of dlsks wlLh reference Lo operaLlng sysLem
1 8aslc ulsk
2 uynamlc ulsk
ln 8as|c D|sks we made parLlLlons whlle ln Dynam|c d|sks we made volumes
Couise: NCITP


1here are Lwo Lypes of parLlLlons on 8aslc ulsk le pr|mary part|t|on and
extended part|t|on
We make prlmary parLlLlon because lL sLarLs our machlne 8ooL flles are sLored on
prlmary parLlLlon ?ou can only mark prlmary parLlLlon as acLlve by rlghL cllcklng
on LhaL parLlLlon and you cannoL make an exLended parLlLlon as acLlve
1here are LoLal number of parLlLlons are four lL means LhaL maxlmum numbers of
parLlLlons are 4 ?ou cannoL make more Lhan four parLlLlons because of
archlLecLural llmlLaLlons lf you wanL Lo make only prlmary parLlLlons Lhen only
four drlve leLLers wlll be dlsplay ln Lhe compuLer 8uL lf you wanL Lo dedlcaLe
separaLe drlves for markeLlng flnance 8 l1 supporL securlLy means for seven
deparLmenLs 1hen you can make exLended parLlLlon LxLended parLlLlon glves
you Lhe ablllLy Lo make more Lhan four drlves (noL parLlLlon)
arLlLlon lnformaLlon ls sLored ln a Lable called parLlLlon Lable 1he slze of
parLlLlon Lable ls 64 byLes Cne parLlLlon descrlpLlon consumes 16 byLes 1haL ls
why 16 x 4 64 1herefore you can only make four parLlLlons
lL ls noL necessary LhaL only operaLlng sysLem can reslde on a prlmary parLlLlon
whlch ls acLlve Cn acLlve parLlLlon only booL secLor on whlch booL conflguraLlon
daLa ls sLored ?ou can lnsLall operaLlng sysLem on oLher loglcal drlves also 8ASlC
ulsk cannoL glve some advance or enLerprlse feaLures 1haL feaLures are
|mproved performance and fau|t to|erance (ablllLy of a sysLem Lo conLlnue work
of one of Lhe sysLem componenL fallure)
uynamlc dlsk were lnLroduced ln wlndows 2000 Dynam|c D|sk provldes Lhese
Lwo feaLures one ls lmproved performance and second one ls faulL Lolerance ln
dynamlc dlsk volume lnformaLlon ls sLored ln 1 M8 daLa base lL ls for larger Lhan
64 byLes
Cpen dlsk managemenL by uslng dlskmgmLmsc command from run wlndow
lor hard dlsk or sLorage admlnlsLraLlon Lhere are Lwo Lools Cne ls D|sk
Management and Lhe oLher ls D|skpart command
Couise: NCITP


ulsk managemenL ls a graphlcal Lool whlle dlskparL ls a command llne Lool for dlsk
admlnlsLraLlon ulsk parL glves advance admlnlsLraLlon of sLorage devlces lL ls
lnLroduced ln wlndows 2003
1ypes of volumes ln uynamlc ulsk
1 Slmple volume (requlre 1 dynamlc dlsk)
2 Spanned volume (requlre 2 32 dynamlc dlsks)
3 SLrlped volume (requlre 2 32 dynamlc dlsks)
4 Mlrror volume (requlre only 2 dynamlc dlsks)
3 8Alu3 volume (requlre 3 32 dynamlc dlsks)
?ou can converL 8ASlC ulsk Lo u?nAMlC ulsk wlLhouL loss of daLa buL all daLa wlll
be losL when you converL uynamlc dlsk lnLo 8aslc dlsk 8ecause you can
accommodaLe 64 byLes ln 1 M8 8uL you cannoL sLore 1 M8 daLa lnLo 64 byLes
8y graphlcal Lool you can make Lhree prlmary parLlLlon and one exLended
parLlLlon ln 8aslc ulsk lf you wanL Lo devlaLe from Lhls sLrucLure Lhen you wlll use
ulskparL Lool
Steps for mak|ng part|t|on |n 8as|c D|sk
8lghL cllck on dlsk
CreaLe new
Clve slze of parLlLlon
Asslgn drlve leLLer
lormaL drlve and cllck flnlsh
ln Lhls case you can make Lhree prlmary parLlLlon and one exLended
parLlLlon
ln order Lo run Lhe CS or Lo make Lhe hard dlsk usable you musL make prlmary
parLlLlon lL means LhaL prlmary parLlLlon ls necessary whlle exLended ls noL
necessary
Steps for mak|ng vo|umes |n Dynam|c D|sk
Couise: NCITP


1 S|mp|e vo|ume ls [usL llke parLlLlon 8lghL cllck on Lhe allocaLed space and
selecL make new slmple volume follow Lhe sLeps and cllck flnlsh
2 Spanned vo|ume requlres aL leasL Lwo dynamlc dlsks 8lghL cllck on Lhe dlsk
and selecL spanned volume Add dlsks for spanned volume Lhen selecL
space flrsL from one dlsk Lhen selecL space from anoLher dlsk for spanned
volume lL wlll show Lhls comblned space wlLh one drlve leLLer Spanned
volume ls Lhe only volume LhaL comblnes unequal spaces lL wlll nelLher
glve lmproved performance nor faulL Lolerance lL glves only Lhe ablllLy Lo
use scaLLered space on dlfferenL dlsks lf you remove one hard dlsk Lhen Lhe
whole drlve become un accesslble
3 Str|pe vo|ume glves lmproved performance ln read and wrlLes operaLlon
SLrlp volume Lakes equal space from each dlsk lor example lf you wanL Lo
copy a flle of 3 M8 on sLrlpe volume of Lwo dlsks Lhen flrsL 64 k8 wlll sLore
on dlsk 1 and nexL 64 k8 wlll be sLored on dlsk 2 and so on unLll Lhe whole
flle ls copled lL means LhaL 23 M8 ls sLored on dlsk 1 and 23 M8 ls sLored
on dlsk 2 8oLh hard dlsks are lndependenL of each oLher boLh hard dlsks
head ls used ln readlng and wrlLlng ln a flle LhaL ls why lL wlll glve fasL read
and wrlLe response
4 M|rror vo|ume glves faulL Lolerance feaLure and lmproved performance
only ln read operaLlons Mlrror volume requlres only Lwo dynamlc dlsks
Cne flle wlll be copled ln boLh hard dlsks LhaL ls why lf one hard dlsk ls
falled Lhe flle ls sLlll avallable on oLher hard dlsk LhaL ls why lL ls called faulL
Lolerance
Mlrror volume uses 30 slze for faulL Lolerance When you rlghL cllck on
Lhe dynamlc dlsk and selecL new mlrror volume 1hen selecL boLh dlsk and
glve space for example 300 M8 from one and 300 M8 from oLher buL lL wlll
show only 300 M8 ln Lhe LoLal volume because lL use anoLher 300 M8 for
faulL Lolerance 8oLh dlsks wlll have same drlve leLLer for mlrror volume
Mlrror volume can be made by Lwo ways Cne meLhod ls Lo creaLe mlrror
by slmply cllck on one dynamlc dlsk and selecL creaLe mlrror volume
Second meLhod ls rlghL cllck on already creaLed volume wlLh daLa and
selecL add Lo mlrror LlLher boLh dlsks wlll have unallocaLed space (for
Couise: NCITP


creaLlng mlrror) or one dlsk has unallocaLed space (add Lo mlrror) for mlrror
volume
1here ls a dlfference beLween backup and faulL Lolerance laulL Lolerance ls
Lhe fallure of a componenL (hard dlsk) whlle backup ls dlsasLer recovery
(flood flre earLh quake)
3 AIDS vo|ume ls noL posslble ln cllenL verslon of operaLlng sysLem laulL
Lolerance ls a server slde feaLure ?ou can only make 8Alu3 volume ln
server verslon of operaLlng sysLem lL requlres mlnlmum 3 hard dlsks lor
example we have 3 dlsks and we wanL Lo make 8Alu3 volume LeL's Lake a
space 600 M8 from Lhese 3 hard dlsks lL wlll lnLernally dlvlde each hard
dlsk ln Lhree sllces ln Lwo sllces lL wlll keep daLa and on one sllce lL wlll
sLore sLrlpplng lnformaLlon SLrlpplng lnformaLlon ls used for daLa recovery
So on 3 hard dlsks LoLal space ls for 8Alu3 volume ls 1800 M8 ln whlch
1200 M8 for daLa and 600 M8 for sLrlpplng lnformaLlon lf one dlsk ls falled
lLs daLa can be recovered on Lhe basls of sLrlpplng lnformaLlon buL lf Lwo
hard dlsks are falled Lhen you cannoL recover daLa ln 8Alu3 wasLage of
space ls very mlnlmum as compared Lo oLhers

D|skpart Commands
ulskparL command ls used for advance managemenL of dlsks ln C1 (Cul
based arLlLlon 1able) you can make 128 parLlLlons
Steps
1ype cmd ln 8un wlndow
now Lype D|skpart ln command llne lnLerface and press enLer
ulskparL ||st d|sk (press enLer lL wlll show all Lhe avallable dlsks ln
Lhe sysLem)
ulskparL ||st vo|ume (press enLer lL wlll dlsplay all volumes on all
dlsks)
ulskparL se|ect d|sk 2 (press enLer lL wlll selecL hard dlsk 2 and now
all operaLlons wlll be performed on dlsk 2 ln Lhls case)
ulskparL create vo|ume s|mp|e s|ze S00 (press enLer 1hls command
wlll creaLe a slmple volume on dlsk 2)
Couise: NCITP


ulskparL create vo|ume str|pe s|ze 300 d|sk 0 1 (press enLer 1hls
command wlll creaLe a sLrlpe volume from Lwo dlsks 0 and 1 because
mlnlmum requlremenL for sLrlpe volume ls 2 and wlll Lake equal slze
of 300 from boLh dlsks)
ulskparL create vo|ume m|rror s|ze 2S0 d|sk 0 2 (press enLer lL wlll
creaLe a mlrror volume on Lwo dlsks 0 and 2 because mlrror volumes
requlre only Lwo dlsks for maklng volumes lL wlll Lake equal slze
from boLh dlsks)
ulskparL se| vo| 1 (press enLer lL wlll selecL volume 1)
ulskparL add d|sk 2 (press enLer lL wlll perform add mlrror meLhod
of creaLlng mlrror volume ln whlch one ls exlsLlng volume 1 and lL wlll
Lake un allocaLed space from dlsk 2)
ulskparL create vo|ume ra|d s|ze 200 d|sk 0 1 2 (press enLer 8ald3
requlres aL leasL 3 hard dlsks lL wlll Lake 200 M8 space from each
drlve for maklng rald volume buL Lhls command only works on server
noL on cllenL)
ulskparL se|ect d|sk 1 (press ok uesk 1 wlll be selecLed because for
spanned volume flrsL we Lake slmple volume and Lhen exLend lL Lo
spanned volume ?ou cannoL make spanned volume dlrecLly)
ulskparL deta|| d|sk (press ok lL wlll dlsplay deLall lnformaLlon abouL
dlsk 1 because ln flrsL command we have selecLed dlsk 1)
ulskparL se|ect vo|ume 2 (press ok ln Lhls command we have
selecLed volume 2 on dlsk 1 because lL ls a slmple volume)
ulskparL extend s|ze S00 d|sk 0 (press ok 1hls command wlll creaLe
spanned volume from dlsk 1 and dlsk 0 ulsk 1 ls already selecLed and
we exLend lL on dlsk 0)
ulskparL ass|gn |etter I (press enLer lL wlll asslgn drlve leLLer ! Lo Lhe
selecLed volume)
ulskparL deta|| vo|ume (press enLer 1hls command wlll show
lnformaLlon abouL selecL volume)
ulskparL create part|t|on pr|mary s|ze S00 (press enLer lL wlll creaLe
prlmary parLlLlon of 300 M8 on 8ASlC dlsk)
Couise: NCITP


ulskparL create part|t|on extended s|ze 400 (press enLer lL wlll
creaLe exLended parLlLlon on baslc dlsk of slze 400 M8)
ulskparL create part|t|on |og|ca| s|ze 200 (press enLer lL wlll creaLe
a loglcal parLlLlon wlLhln exLended space of slze 200 M8)
Note lf drlve leLLers ls flnlshed Lhen lnsLead of asslgnlng leLLer you wlll use mounL
polnL as (ulskparLasslgn mounL c folder name (enLer)
Lectuer4
Scr|pt|ng ulskparL ls baslcally used for scrlpLlng ScrlpL ls a flle ln whlch
commands are wrlLLen LogeLher and saved as a baLch flle wlLh baL exLenslon
SLeps
Cpen a noLe pad flle
WrlLe Lhe followlng commands
SelecL dlsk 1
CreaLe parLlLlon prlmary slze 200
CreaLe parLlLlon exLended slze 300
CreaLe parLlLlon loglcal slze 100
Save Lhls flle LesLbaL ln C drlve
now flrsL selecL C drlve Lhen wrlLe Lhe followlng command
C ulskparL /s LesLbaL (press enLer lL wlll creaLe Lhe above parLlLlons on
dlsk 1)
?ou can expand a parLlLlon by asslgnlng more space from oLher drlves unallocaLed
space by uslng shrlnklng wlLhouL loss of daLa

Network sett|ng
1o seL properLles of a neLwork ls called neLwork seLLlng ln wlndows 2008 Lhere ls
a mandaLory supporL of lv6 Some of Lhe uLlllLles ln wlndows 2008 use lv6 llke
dlrecL access and wlndows meeLlng space uefaulL proLocol of wlndows 2008 ls
lv6 lor example lf you Lype cplng loopback (enLer)
Couise: NCITP


lv4 ls a 32 blL address and lv6 ls 128 blL address lv4 sLrucLure ls represenLed
ln doLed declmal formaL whlle lv6 sLrucLure ls represenLed ln hexadeclmal
formaL ln lv4 each ocLaLe ls separaLed by doL () whlle ln lv6 each 16 blLs block
ls separaLed by colon ()
lv4 address 19216811
lv6 address 43 f 3 c 210
lf ln lv6 conLlguous 0's are presenL Lhen lL ls represenLed by colon only lor
example
l 00000003 Lhen you can wrlLe lL as l3
lv6 ls also called nexL generaLlon address
Network propert|es selecL lv6 lf you are uslng wlndows meeLlng space
lf mulLlple neLwork connecLlons are avallable Lhen you can seL prlorlLy lor Lhls
press AL1 key on Lhe keyboard menu wlll be dlsplayed Lhen cllck on advance
opLlon Lhen cllck on advance seLLlng and use arrow keys Lo move up Lhe
connecLlon ln Lhe prlorlLy llsL
?ou can vlew baslc lnformaLlon abouL a neLwork by selecLlng neLwork properLles
you wlll see Lhe followlng Lhlngs
I Address lL ls an lv4 address of Lhe compuLer
Subnet Mask lL ls used Lo flnd ouL neLwork ln subneL mask all Lhe neLwork blLs
are 1 and hosL blLs are 0
Defau|t gateway lL ls Lhe address of a rouLer
DNS Server unS converL name lnLo l address
Dev|ce Management 1here are Lwo caLegorles of devlces Cne ls called lug and
lay devlces and Lhe oLher ls called non lug and lay devlces 1ype devmgmLmsc
(MlcrosofL console) ln run wlndow Lo enLer lnLo devlce manager
Couise: NCITP


|ug and |ay dev|ces has Lhe quallLy LhaL Lhere drlvers are already lnsLalled ln
Lhe operaLlng sysLem lf you run devmgmLmsc Lhen a llsL of plug and play devlces
wlll be dlsplayed 8lghL cllck on each drlve and selecL properLles Lhen you can
perform some operaLlons llke updaLe drlver rollback or dlsable drlver eLc
Non |ug and |ay dev|ces need drlvers Lo be lnsLalled for worklng 1hese are noL
already lnsLalled you have Lo lnsLall Lhem when you plug lL 1o vlew non plug and
play devlces cllck on Lhe vlew opLlon ln Lhe menu and Lhen selecL show hldden
devlces AfLer Lhls non plug and play devlces wlll be dlsplayed ln Lhe devlce
manager Cllck on any non plug and play devlce selecL properLles Lhen cllck on
drlvers and Lhen cllck sLop lf you wanL Lo sLop Lhe devlce
emote Management
lf you wanL Lo perform managemenL of a sysLem whlch ls avallable ln oLher
counLry or aL some remoLe locaLlon Lhen you wlll use remoLe managemenL lL ls
lnLroduced ln wlndows 2003
8u (8emoLe ueskLop roLocol) ls always runnlng beLween sysLems afLer
esLabllshlng a remoLe deskLop sesslon 1hls proLocol uses a porL number
3389/1C
llrsL of all you wlll check connecLlvlLy of Lwo sysLems by uslng plng command
ulsable flre wall on LargeL compuLer lor remoLe logglng you wlll need Lo know l
address or name of Lhe LargeL compuLer ?ou wlll enable Lhe opLlon of allowlng
remoLe access opLlon on Lhe LargeL compuLer ?ou can go Lo Lhe remoLe seLLlng
by presslng wlndows key+ ause break key Lhen cllck on remoLe seLLlngs Lhen
check elLher second opLlon or Lhlrd opLlon for allowlng access
now Lype mstsc (M|crosoft term|na| serv|ces c||ent) ln Lhe compuLer from where
you wanL Lo esLabllsh remoLe sesslon AfLer Lhls you wlll glve l address or name
of Lhe LargeL compuLer 1hen cllck on opt|ons Lhen cllck on exper|enced tab Lhen
selecL LAn (10 mega blLs per second) Lhen cllck on advance tab and selecL
connecL and don'L warn me for fasL logglng Lhen cllck on connect buLLon When
you enLer Lo Lhe LargeL compuLer lL wlll be log off lf you wanL Lo remoLely log on
Lo server machlne and Lhe oLher user ls also logged ln Lhen you wlll do Lhls by
Couise: NCITP


cllcklng by adm|n|strat|ve too|s Lhen selecL remote desktop serv|ces Lhen cllck on
remote desktop sess|on host conf|gurat|on Lhen cllck restr|ct each user to a
s|ng|e sess|on and selecL lL No
?ou can copy and pasLe flles from remoLe compuLer Lo your compuLer because ln
wlndows 2008 cllpboard ls shared
Lecture noS
8ranchCache lL ls a new feaLure of Wlndows 2008 Server 82 LhaL speeds up
branch offlce access Lo flles hosLed on remoLe neLworks by uslng a local cache
1hls feaLure ls noL avallable ln prevlous verslon of Wlndows 2008 Server 81 and ln
oLher operaLlng sysLems llke wlndows server 2003
lor example lf a company have a cenLral offlce ln karachl and branch offlce ln
eshawar 8ranch offlce users wanLs Lo access some daLa from cenLral offlce Lhen
a requesL ls senL by one of Lhe branch offlce compuLers Lo Lhe cenLral offlce
server 1he daLa ls dellvered Lo Lhe branch offlce compuLer by cenLral offlce now
lf anoLher compuLer wanLs Lhe same daLa from cenLral offlce Lhen he wlll noL senL
a requesL Lo Lhe cenLral offlce server lnsLead Lhe cllenL checks Lhe cache on Lhe
branch offlce LAn Lo deLermlne wheLher Lhe requesLed daLa ls already cached
lf Lhe daLa ls cached already a check ls made Lo see lf Lhe daLa ls up Lo daLe and
wheLher Lhe cllenL has permlsslon Lo access lL
lf Lhe daLa ls noL already cached Lhe daLa ls reLrleved from Lhe server and placed
ln Lhe cache on Lhe branch offlce LAn 1hls Lechnlque ls called 8rachCache 8uL ln
8ranchCache only lnLerneL daLa ls sLored
8ranchCache reduces Lrafflc on WAn llnk and speeds up Lhe response Llme
8rachCache for network f||e ls anoLher feaLure of 8ranchCache LhaL sLores non
web relaLed daLa le only sLores lnLernal neLwork flles and folders
8ranchCache cover web daLa ln branch offlce ln order Lo cache (sLore) cenLral
slde daLa Lwo Cache Modes are used ln branch offlce
1 D|str|buted Cache Mode ln dlsLrlbuLed Cache Mode Lhe cenLral offlce daLa
ls sLored only on cllenL compuLers runnlng wlndows 7 on Lhe branch offlce
neLwork When a cllenL runnlng Wlndows 7 reLrleves conLenL over Lhe
WAn lL places LhaL conLenL lnLo lLs own cache lf anoLher 8ranchCache
Couise: NCITP


cllenL runnlng Wlndows 7 aLLempLs Lo access Lhe same conLenL lL ls able Lo
access LhaL conLenL dlrecLly from Lhe flrsL cllenL raLher Lhan havlng Lo
reLrleve lL over Lhe WAn llnk When lL accesses Lhe flle from lLs peer lL also
coples LhaL flle lnLo lLs own cache 1he advantage of d|str|buted cache
mode |s LhaL you can deploy lL wlLhouL havlng Lo deploy a server runnlng
Wlndows Server 2008 82 locally ln each branch offlce
2 nosted Cache Mode ln hosLed Cache Mode Lhe cenLral offlce daLa ls only
sLored ln Lhe hard dlsk of a dedlcaLed server ln branch offlce osLed Cache
mode uses a cenLrallzed local cache LhaL hosLed on a branch offlce server
runnlng Wlndows Server 2008 82When cllenLs needs LhaL daLa Lhey wlll
only requesL Lo Lhe dedlcaLed server lnsLead of sendlng requesLs Lo Lhe
cenLral offlce 1he advantage of nosted Cache mode over ulsLrlbuLed
Cache mode ls LhaL Lhe cache ls cenLrallzed and always avallable osLed
Cache mode requlres a compuLer runnlng Wlndows Server 2008 82 be
presenL and conflgured properly ln each branch offlce ?ou musL conflgure
each 8ranchCache cllenL wlLh Lhe address of Lhe 8ranchCache hosL server
runnlng Wlndows Server 2008 82
uependlng on whlch 8ranchCache mode ls used LhaL cache ls elLher hosLed on
a server runnlng Wlndows Server 2008 82 or ln a dlsLrlbuLed manner among
cllenLs runnlng Wlndows 7 on Lhe branch offlce neLwork
1he 8ranchCache feaLure ls avallable only on compuLers runnlng Wlndows 7
LnLerprlse and ulLlmaLe edlLlons 8ranchCache can cache only daLa hosLed on
Wlndows Server 2008 82 flle and Web servers ?ou cannoL use 8ranchCache Lo
speed up access Lo daLa hosLed on servers runnlng Wlndows Server 2008 81
Wlndows Server 2003 or Wlndows Server 2003 82
Steps for 8ranch Cache |n nosted Cache Mode at 8ranch off|ce
Co Lo Server Manager
Cllck on 8ole Lhen cllck on add 8ole (for lnsLalllng flle servlces and
8ranchCache for neLwork flles)
Check llle Servlces ln Lhe llsL and cllck nexL
SelecL 8ranchCache for neLwork flles
Couise: NCITP


Cllck flnlsh
now for lnsLalllng 8ranchCache cllck on leaLures
Cllck on Add leaLure
SelecL 8ranchCache and cllck on lnsLall
Steps for enab||ng c||ents for 8ranchCache at branch off|ce
ln order Lo lnsLall 8rachCache on cllenL compuLers aL branch offlce you have Lo
modlfy group pollcy ln Lhe domaln envlronmenL Lhere ls defaulL group pollcy
1herefore modlfy Lhls pollcy and lL wlll be auLomaLlcally applled on cllenL
compuLers
1ype gpmcmsc (Lhls ls a uLlllLy whlch ls used Lo modlfy group pollcy) ln run
wlndow and press enLer
AfLer applylng Lhls command group pollcy managemenL snap ln wlll be
dlsplayed expand lL
Cllck on domaln Lhen cllck on group pollcy ob[ecLs
now rlghL cllck on defaulL domaln pollcy and choose edlL
Cllck on compuLer conflguraLlons
Cllck on ollcles
Cllck on AdmlnlsLraLlve 1emplaLes
Cllck on neLwork
Cllck on 8ranchCache
now aL Lhe rlghL hand slde wlndow flve opLlons wlll be dlsplayed
8lghL Cllck on 1urn on 8ranchCache and choose edlL
SelecL Lhe enable radlo buLLon Lo enable lL
now rlghL cllck on set 8ranchCache d|str|buted cache mode and choose
edlL
SelecL enable radlo buLLon Lo enable lL
now rlghL cllck on set 8ranchCache hosted cache mode and choose edlL
SelecL enable radlo buLLon Lo enable lL
lor hosLed mode you wlll enLer lCun (lully Cuallfled uomaln name 1o
check lCun rlghL cllck on compuLer selecL properLles and check Lhe pc
name Lhen check domaln name and comblne boLh whlch ls called lCun)
Couise: NCITP


8lghL cllck on Conf|gure 8ranchCache for network f||es and choose edlL
Cllck on Lhe enable radlo buLLon 8ranchCache becomes acLlve when Lhe
roundLrlp laLency Lo a compaLlble server exceeds 80 mllllseconds
8lghL cllck on Set ercentage Cf D|sk Space Used or C||ent Computer
Cache and choose edit
Cllck on enable radlo buLLon Lhe cache slze defaulLs Lo 3 of Lhe LoLal dlsk
space of Lhe cllenL compuLer
FirewaII
lor securlLy of Lhe sysLem we normally use Lhree Lools Cne ls AnLl vlrus
second one ls wlndows defender and Lhlrd one ls flrewall
Ant| V|rus ls used Lo proLecL Lhe sysLem from vlruses whlle w|ndows defender
proLecLs Lhe sysLem from spyware (unwanLed sofLware) and f|rewa|| conLrol
access Lo your compuLer from ouLslde
Cllck on wlndows flrewall ln conLrol panel and you can make lL off or on ln Lhe
seLLlngs
W|ndows |rewa|| w|th Advanced Secur|ty
CreaLe a rule ln Advance seLLlngs
?ou can creaLe Lwo Lypes of rules ln flrewall Cne ls called lnbound 8ule and
Lhe oLher ls called CuLbound 8ule 1he process for conflgurlng lnbound rules
and ouLbound rules ls essenLlally Lhe same
SelecL lnbound rule and Lhen cllck new 8ule 1hls opens Lhe new
lnbound 8ule Wlzard
now selecL Lhe Lype of rule you wanL creaLe ?ou can selecL beLween a
program porL predeflned or cusLom rule
?ou would creaLe a cusLom rule lf you wanLed a rule LhaL applled Lo a
parLlcular servlce raLher Lhan a program or porL ?ou can also use a
cusLom rule lf you wanL Lo creaLe a rule LhaL lnvolves boLh a speclflc
program and a seL of porLs lor example lf you wanLed Lo allow
Couise: NCITP


communlcaLlon Lo a speclflc program on a cerLaln porL buL noL oLher
porLs you would creaLe a cusLom rule
lf you declde Lo creaLe a program rule you Lhen need Lo speclfy a
program for whlch Lhe rule applles lf you choose a porL rule you musL
choose wheLher Lhe rule applles Lo Lhe 1C or Lhe uu proLocol ?ou
musL also speclfy porL numbers
ln Lhe nexL sLep you speclfy whaL acLlon Lo Lake when Lhe flrewall
encounLers Lrafflc LhaL meeLs Lhe rule condlLlons
A||ow the connect|on allows Lhe connecLlon lf Lhe Lrafflc meeLs Lhe rule
condlLlons
8|ock the connect|on blocks Lhe connecLlon lf Lhe Lrafflc meeLs Lhe rule
condlLlons
nexL seL Lo All l addresses and flnlsh lL

Lecture no6
8|tLocker
8lLLocker ls a securlLy feaLure LhaL provldes encrypLlon of full volume
(drlve) daLa whlch ls confldenLlal Lo Lhe company LncrypLlon prevenLs
daLa from readlng unLll decrypLlon
8efore 8lLLocker LlS (LncrypLlon llle SysLem) were used Lhls ls a parL of
Lhe n1lS 8uL LlS only provldes flle level encrypLlon whlle 8lLLocker
provldes drlve or volume level encrypLlon

easons of us|ng 8|tLocker
lf a compuLer ls sLolen from Lhe company whlch have confldenLlal daLa
relaLed Lo Lhe buslness of Lhe company lL ls very cruclal lf Lhls daLa ls
reached lnLo Lhe hands of a compeLlng organlzaLlon
unlversal serlal bus (uS8) flash devlces presenL a slmllar problem
eople ofLen use Lhem Lo Lransfer lmporLanL daLa from home Lo Lhe
workplace 8ecause Lhese devlces are small Lhey are easy Lo mlsplace
Couise: NCITP


When one of Lhese devlces ls losL Lhere ls a chance LhaL some senslLlve
daLa may flnd lLs way lnLo Lhe hands of a compeLlng organlzaLlon
8lLLocker handles Lhese problems lf you losL a compuLer your daLa wlll
be un accesslble Lo oLher persons lf Lhey wanL Lo reLrleve lL lL prevenLs
an aLLacker from recoverlng daLa from a sLolen compuLer
WlLhouL Lhe 8lLLocker encrypLlon key Lhe daLa sLored on Lhe volume ls
lnaccesslble 8lLLocker sLores Lhe encrypLlon key for Lhe volume ln a
separaLe safe locaLlon
Steps
Cllck on 8lLLocker urlve LncrypLlon ln ConLrol anel
Cllck 1urn Cn 8lLLocker wlzard wlll be sLarLed
now lL wlll ask a meLhod how Lo unlock Lhe drlve LhaL ls by uslng a
password or use SmarL card or AuLomaLlcally unlock Lhe drlve on
Lhls compuLer
SelecL any one of Lhe above opLlons and cllck nexL
now lL wlll ask how do you wanL Lo sLore your recovery key 1he
followlng opLlons wlll be avallable
4 Save Lhe recovery key Lo a uS8 llash drlve
4 Save Lhe recovery key Lo a flle
4 rlnL Lhe recovery key
SelecL any one of Lhe above and cllck on save
Cllck nexL
SLarL encrypLlng

D|rectAccess
ulrecLAccess ls an auLomaLlc connecLlvlLy soluLlon LhaL allows cllenLs runnlng
Wlndows 7 Lo connecL seamlessly Lo Lhe corporaLe lnLraneL Lhe momenL Lhey
esLabllsh a connecLlon Lo Lhe global lnLerneL lL ls Lhe feaLure of wlndows server
2008 82 on server slde and wlndows 7 on cllenL slde
Couise: NCITP


ulrecLAccess ls an alwayson lv6 lsec vn connecLlon lf a properly conflgured
compuLer ls able Lo connecL Lo Lhe lnLerneL ulrecLAccess auLomaLlcally connecLs
LhaL compuLer Lo a properly conflgured corporaLe neLwork
D|fference between D|rectAccess and 1rad|t|ona| VN
1he connecLlon process ls auLomaLlc and does noL requlre user lnLervenLlon
or logon 1radlLlonally users musL lnlLlaLe vn connecLlons Lo Lhe
corporaLe lnLraneL manually
ulrecLAccess ls bldlrecLlonal wlLh servers on Lhe lnLraneL (Company) belng
able Lo lnLeracL wlLh Lhe cllenL runnlng Wlndows 7 ln Lhe same way LhaL
Lhey would lf Lhe cllenL was connecLed Lo Lhe local area neLwork (LAn) ln
many LradlLlonal vn soluLlons Lhe cllenL can access Lhe lnLraneL buL
servers on Lhe lnLraneL cannoL lnlLlaLe communlcaLlon wlLh Lhe cllenL
ulrecLAccess provldes admlnlsLraLors wlLh greaLer flexlblllLy ln conLrolllng
whlch lnLraneL (Company neLwork) resources are avallable Lo remoLe users
and compuLers
1he followlng four sLeps musL be keep ln mlnd whlle uslng ulrecLAccess
1 ldenLlfy cllenL compuLers
2 Conflgure neLwork lnLerfaces
3 ldenLlLy lnfrasLrucLure servers (uC unS)
4 ldenLlfy AppllcaLlon Servers
now to |nsta|| D|rectAccess
Co Lo Server Manager and cllck on leaLures
Cllck on Add leaLures
SelecL ulrecLAccess ManagemenL Console ln Lhe llsL and cllck nexL
AfLer lnsLallaLlon press close buLLon
now to |nsta|| CA (Cert|f|cate Author|ty)
Co Lo Server Manager and cllck on 8oles
Cllck on Add 8oles
Couise: NCITP


SelecL AcLlve ulrecLory CerLlflcaLe Servlces from Lhe llsL and cllck nexL
Slmply cllck nexL nexL and Lhen cllck on lnsLall
now to Issue Cert|f|cate
1ype mmc command ln Lhe run wlndow
Cllck on llle menu and selecL Add/8emove Snapln
SelecL cerLlflcaLe and cllck add buLLon
SelecL compuLer accounL and cllck nexL
Cllck on llnlsh and Lhen cllck ok
now open Lhe console cllck on personal
Cllck on cerLlflcaLe and aL Lhe rlghL slde rlghL cllck and selecL All Lasks
now cllck on 8equesL new CerLlflcaLe and cllck nexL
Cllck nexL and selecL uomaln ConLroller
llnally cllck on Lnroll
now lf you wanL Lo check wheLher Lhe cerLlflcaLe ls asslgned or noL 1o check cllck
on sLarL buLLon Lhen selecL CerLlflcaLe AuLhorlLy and Lhen cllck on cerLlflcaLe
lssued now aL Lhe rlghL slde you wlll see Lhe compuLer name
rov|de two consecut|ve L|ve ub||c I's and mu|t|p|e network Connect|on
lor ulrecLAccess company need Lo purchase Lwo llve publlc l's from any
lS
now lnsLall Lwo neLwork adapLers because ulrecLAccess wlll noL work on
slngle neLwork adapLer (for pracLlce you can lnsLall loop back adapLer 1o
lnsLall loopback adapLer go Lo devlce manager by Lyplng devmgmLmsc
command ln Lhe run wlndow now rlghL cllck and selecL legacy hardware
and cllck on neLwork adapLer cllck on nexL Lhen selecL MlcrosofL and Lhen
selecL loopback adapLer and lnsLall lL)
now rlghL cllck on one connecLlon and asslgn one llve publlc l and Lhen
cllck on Lhe advance buLLon and glve anoLher llve publlc l 1hls connecLlon
wlll be used for lnLerneL
now rlghL cllck on Lhe oLher connecLlon and glve sLaLlc l 1hls connecLlon
wlll be used for company own neLwork
Couise: NCITP


1urn Cn |rewa||
lor ulrecLAccess you need Lo Lurn on Lhe flrewall ln Lhe compuLer Cllck on
conLrol panel Lhen selecL flrewall and Lurn lL on lf noL enabled
now to Make C||ents and Group
Cllck on sLarL buLLon and selecL AcLlve ulrecLory users and CompuLers
Cllck on compuLer and aL Lhe rlghL slde rlghL cllck and selecL new
Clve name Lo Lhe compuLe and cllck nexL Lhen flnlsh
Slmllarly add requlred number of compuLer
now rlghL cllck and selecL new group
Clve name Lo Lhe group and cllck ok
now rlghL cllck on Lhe group and selecL properLles
Cllck on members
Cllck on llnd now and selecL Lhe members from Lhe llsL and add Lhem
now to Conf|gure D|rectAccess
Cllck on sLarL buLLon and selecL ulrecLAccess ManagemenL Console
Cllck on seLup
ln sLep 1 cllck on conflgure buLLon
Cllck on Advance buLLon
Cllck on llnd now buLLon
SelecL your group and cllck on Add
1hen ln sLep 2 cllck on conflgure buL you cannoL go forward lf you haven'L
Lwo publlc l's
Mob|||ty Cpt|ons (Cff||ne ||e)
Cffllne llles ls a feaLure relevanL Lo porLable compuLers LhaL allows conLenL LhaL ls
sLored on shared folders Lo be cached Lemporarlly on moblle compuLers so LhaL lL
can sLlll be accessed and worked on when Lhe moblle compuLer ls no longer
connecLed Lo Lhe offlce envlronmenL When Lhe compuLer reconnecLs Lo Lhe
envlronmenL LhaL hosLs Lhe shared folder Lhe offllne conLenL ls synced updaLlng
Lhe conLenL on servers and cllenLs as necessary
Couise: NCITP


?ou can use Lhe Cffllne llles feaLure Lo ensure access when a cllenL compuLer ls
ouL of Lhe offlce or when a Lemporary dlsrupLlon such as a wlde area neLwork
(WAn) llnk falllng beLween a branch offlce and a head offlce blocks access Lo
speclally conflgured shared folders
When a user makes a flle avallable for offllne access Wlndows 7 sLores a copy of
LhaL flle wlLhln a local cache When Lhe flle server LhaL hosLs Lhe flle ls no longer
avallable such as when a user dlsconnecLs from Lhe neLwork Lhe user can
conLlnue Lo work wlLh Lhe flle sLored wlLhln Lhe local cache When Lhe flle server
LhaL hosLs Lhe flle becomes avallable Wlndows 7 synchronlzes Lhe copy of Lhe flle
ln Lhe cache wlLh Lhe copy of Lhe flle hosLed on Lhe shared folder
Steps
Cpen flle properLles
Cllck on Advance buLLon
Cllck on Share flle
Cllck on Cachlng
SelecL Cffllne seLLlngs
1here wlll be opLlon for manual cachlng auLomaLlc cachlng and no cachlng
and also a check box for opLlmlzaLlon performance
SelecL your approprlaLe opLlon and cllck flnlsh

Manag|ng W|ndows Update rocess
1he Wlndows updaLe conLrol panel ls Lhe prlmary Lool you use Lo manage
sofLware updaLes on cllenLs runnlng Wlndows 7 1hrough Lhls conLrol panel a
user wlLh AdmlnlsLraLor prlvlleges ls able Lo check for updaLes change updaLe
seLLlngs revlew lnsLalled updaLes and revlew hldden updaLes
Steps
Cllck on wlndows updaLes ln conLrol panel
Couise: NCITP


Cllck on Lurn on wlndows updaLes whlch ls recommended
now cllck on change seLLlngs Lhe followlng opLlons wlll be dlsplayed
389aII Upda9e8 Au942a9icaIIy (Rec422e3ded) Wlndows updaLe lnsLalls
updaLes auLomaLlcally aL Lhe Llme speclfled 1hls ls Lhe defaulL seLLlng for
Wlndows updaLe
4w3I4ad Upda9e8 Bu9 Le9 Me Ch448e Whe9her T4 389aII 1hem updaLes
are downloaded Lo Lhe compuLer and Lhe user ls noLlfled LhaL Lhe updaLes
are avallable for lnsLallaLlon
Check F4r Upda9e8 Bu9 Le9 Me Ch448e Whe9her T4 4w3I4ad A3d 389aII
The2 1he user ls noLlfled LhaL updaLes are avallable for download and
lnsLall

Lecture no7
Mon|tor|ng and Cpt|m|zat|on
lL ls a proacLlve approach Lo monlLor Lhe performance of your sysLem and prepare
a basellne Lo convlnce manager of your company for up gradaLlon or replaclng of
componenLs
1here are some Lermlnologles assoclaLed wlLh performance monlLorlng 1hey are
Cb[ect Ma[or componenLs of a sysLem ls called ob[ecL lor example 8AM ard
ulsk rocessor ls ob[ecLs Cb[ecLs can be hardware or sofLware
Counter 1o check dlfferenL aspecLs of Lhe same ob[ecL ls called counLer
Instance MulLlple of Lhe same ob[ecL ls called lnsLance
8ott|eneck When Lhe componenL ls overloaded Lhen lL ls called boLLleneck
8ase||ne Average performance ls called basellne lL convey average load
1here are Lwo Lypes of monlLorlng whlch are
1 ea| 1|me Mon|tor|ng 8eal Llme monlLorlng means Lo monlLor Lhe sysLem
ob[ecLs aL Lhe presenL momenL lL ls slmllar when you are waLchlng a llve
maLch 1ype erfmon ln Lhe run wlndow Lhen cllck on + slgn Lo open
counLers ln Lhe performance monlLor Cllck on processor and selecL
processor Llme cllck on add and Lhen ok
2 Log Mon|tor|ng Log MonlLorlng means Lo record or save Lhe monlLorlng
lnformaLlon 1ype perfmon ln Lhe run wlndow Lhen cllck on Lhe Data
co||ector sets Lhen cllck on user def|ned Lhen r|ght c||ck and selecL new
Lhen selecL Data Co||ector SeL Lhen g|ve name Lhen create manua||y cllck
on next Lhen cllck on create data |ogs selecL performance counter Lhen
cllck next Lhen add counter cllck ok Lhen next cllck samp|e |nterva| Lhen
Couise: NCITP


next and selecL root d|rectory and cllck f|n|sh 8uL Lhe Log monlLor wlll be
sLop unLll you sLarL lL by rlghL cllcklng and selecL sLarL
Command ||ne Mon|tor|ng
Second meLhod Lo monlLor Lhe performance of a sysLem ls by uslng
commands llrsL Lype cmd ln Lhe run wlndow Lo enLer ln Lhe command llne
lnLerface
C typeperf "processor (_1ota|)processor t|me" (press enLer)
ln Lhe above command processor ls an ob[ecL _LoLal ls an lnsLance and
processor Llme ls a counLer
Ctypeperf "memory (_tota|)pages]sec" (press enLer)
8uL when you enLer Lhls command lL wlll glve an error message because ln
case of memory Lhere ls no lnsLance Lherefore doesn'L use _LoLal ln memory
ob[ecL
now agaln run memory ob[ecL wlLh processor ob[ecL ln Lhe followlng
command
Ctypeperf "processor (_1ota|)processor t|me" memorypage]sec"
(press enLer)
?ou can also enLer lnsLance number of processor lf Lhere are mulLlple
processor ln your sysLem lnsLead of LoLal lor example
Ctypeperf "processor (3)processor t|me" (press enLer)
1|p you can converL resulLs of a command Lo a flle as CIConf|gtest|og
(enter)

Commands for Log mon|tor|ng
C |ogman create counter test c "processor(1)processor t|me (press
enLer)
1he log flle ls by defaulL ln sLop mode you wlll sLarL lL ln command prompL as
C|ogman start test (press enLer)
C|ogman stop test (press enLer lf you wanL Lo sLop lL)
1hese log flles wlll be sLored ln Lhe rooL dlrecLory of logs flles

8ackup and estore
A SysLem lmage ls a copy of all Lhe flles and folders on Lhe sysLem dlsk (and
oLher speclfled hard dlsks) on a compuLer ?ou can use a SysLem lmage backup
Lo resLore Lhe compuLer Lo exacLly whaL lLs conflguraLlon was when Lhe
SysLem lmage backup was creaLed
Couise: NCITP


uo noL sLore your backups on a separaLe parLlLlon on a slngle hard drlve on
your compuLer lf you lose Lhe hard drlve due Lo hardware fallure or afLer a
vlrus aLLack you also lose your backup
ln wlndows server 2003 ntbackup command were used Lo sLarL a backup
process buL lL has been dlsconLlnued now
ln wlndows server 2008 wbadm|nmsc command ls used Lo sLarL a backup
process Cn server 2008 wlndows backup ln noL lnsLalled by defaulL whlle ln
wlndows 2003 lL ls by defaulL lnsLalled
now to Insta|| 8ackup |n Server 2008
Co Lo server manager and cllck on feaLures
Cllck on add feaLure
SelecL wlndows server backup
Cllck lnsLall
now to take 8ackup |n W|ndows 7
8ackup source and desLlnaLlon can'L be same ?ou can selecL Lhe followlng as
backup desLlnaLlon
A second internal hard drive
An exLernal hard drlve
uvu8CM
uS8 flash drlves
neLwork locaLlon
un the 8ackup w|zard
Cpen ConLrol anel cllck backup and resLore and cllck seLup backup
Cllck nexL
SelecL a desLlnaLlon volume for example a second lnLernal hard dlsk
drlve or a uS8 exLernal hard dlsk drlve
Cllck nexL Cn Lhe SeL up 8ackup page selecL LeL Me Choose Cllck
nexL
Cllck sLarL backup

Couise: NCITP


Lecture no1
Lxam2 W|ndows Server 2008 Network Infrastructure
Conf|gur|ng Lxam Code (70642)

DnC (Dynam|c nost Conf|gurat|on rotoco|)
We can asslgn l addresses Lo Lhe compuLer by Lwo ways 1hey are

1 Manua| I Conf|gurat|on (Stat|c I)
2 Automat|c I Conf|gurat|on (Dynam|c I)

uC glves flexlblllLy or ease of admlnlsLraLlon Lo Lhe sysLem admlnlsLraLor
ln Manual l conflguraLlon we wlll cllck on Lhe properLles of Lhe neLwork
adapLer and glve l address manually whlch ls called SLaLlc l address lf you
have 310 compuLers Lhen lL ls easy Lo manually asslgn l addresses Lo Lhem

8uL lf you have a large envlronmenL havlng 1000 of compuLers Lhen lL ls
qulLe dlfflculL Lo asslgn l addresses manually 1here musL be an easy way Lo
perform Lhls Lask and Lhe easy way ls Lo use uC server ln uC or
AuLomaLlc l ConflguraLlon Lhe l addresses are auLomaLlcally asslgned Lo
Lhe cllenL compuLers whlch are called uynamlc l address

lor Lhe flrsL Llme when a compuLer needs l address from uC LhaL has no
l address of uC nor does lL have lLs own l address Lhen lL broadcasL
uC ulscover packeL on Lhe neLwork
1hese uC dlscover packeL ls reached Lo all Lhe devlces on Lhe neLwork lf
Lhe uC server lles ln Lhe broadcasL domaln of Lhe cllenL Lhen lL wlll accepL
Lhe cllenL requesL and asslgn lv4 l address Lo Lhe cllenL
CommunlcaLlon beLween cllenL and uC sever occurs ln four sLeps whlch ls
also called DCA (ulscovery Cffer 8equesL AcknowledgmenL)

1 C||ent 8roadcast DnC D|scover acket
ln Lhe flrsL sLep Lhe cllenL compuLer send a message on Lhe neLwork Lo
flnd ouL Lhe uC server 1hls message ls called uC ulscover
Couise: NCITP


Message whlch ls broadcasLed by cllenL compuLer CllenL broadcasL
because when a cllenL does noL know l address of uC server Lhen
Lhe only way wlLh Lhe cllenL Lo communlcaLe and flnd ouL Lhe uC
server ls Lo broadcasL

2 DnC Server Un|cast DnC Cffer acket to the c||ent
ln Lhe second sLep when uC server recelves Lhe cllenL uC
ulscover message Lhen Lhe uC server glve reply and sends a
message wlLh Lerms and condlLlons and avallable l address Lo Lhe
cllenL whlch ls called uC Cffer

3 DnC C||ent send a DnC request message to the DnC server
ln Lhe Lhlrd sLep when Lhe cllenL compuLer recelves Cffer from uC
server lL accepL Lhe offer and send a requesL Lo Lhe uC server Lo
glve me Lhe l address conLalned ln Lhe uC Cffer message

4 DnC Server sends a DnC Ack message to the DnC c||ent
ln sLep number four when uC server recelves cllenL requesL message
1hen lL checks Lhe avallablllLy of Lhe requesLed l address ln pool lf lL ls sLlll
avallable Lhen uC server sends an Ack (AcknowledgmenL) message Lo Lhe
cllenL LhaL you can use Lhls l address

Note now a quesLlon arlses LhaL how Lhe uC server knows LhaL Lhls
packeL ls for me? 1he answer ls LhaL when a cllenL sends a requesL Lo Lhe
uC server lL sends also porL number 68 whlch ls used for uC requesL
Cne server slde porL 68 ls used 8oLh are well known porL numbers
I Lease Lease means for a speclflc amounL of Llme 1he defaulL Llme for
leaslng l addresses ls 8 days buL you can lncrease or decrease Lhe lease
Llme Lease Llme means LhaL afLer Lhls Llme cllenL wlll release Lhe currenL l
address and wlll requesL for new l address from uC server lf Lhe uC
server ls onllne Lhen lL wlll agaln asslgn l address Lo Lhe cllenL buL lf Lhe
uC server ls noL avallable Lhen agaln lL wlll walL for half Llme Lhen walL
for 873 less Llme explres AfLer Lhls lf cllenL dld noL flnd Lhe uC server
Lhen lL sLarLs searchlng of anoLher uC server on Lhe neLwork
Couise: NCITP


8enef|t of Lease Durat|on 8ecause of lease duraLlon cllenL conflguraLlon
wlll be updaLed auLomaLlcally Lo reflecL changes ln neLwork lnfrasLrucLure

Insta||at|on of DnC Server

re equ|s|tes of DnC
1here are Lwo pre requlslLes for uC lnsLallaLlon
1 SLaLlc l address musL be asslgned Lo Lhe compuLer
2 Server based operaLlng sysLem musL be lnsLalled on Lhe compuLer

lf your compuLer fulfllls Lhese Lwo crlLerla Lhen you can lnsLall uC server on
your compuLer
Steps of DnC Insta||at|on
Co Lo Server Manager and cllck on 8oles
Cllck on Add 8oles
SelecL uC Server from Lhe llsL
Cllck on conflrmaLlon buLLon ( lf you are uslng 81 Lhen dlsable sLaLeless
mode of uC 8ecause afLer LhaL conflrmaLlon buLLon wlll be vlslble)
Cllck lnsLall and Lhen close
Steps of DnC Conf|gurat|on
Cllck on sLarL buLLon go Lo admlnlsLraLlve Lools
Cllck on uC servlces
8lghL cllck on scope and selecL new scope
Clve name Lo Lhe scope (you can glve any name)
Clve range of l addresses (you can deflne a pool of l addresses here)
Cllck on nexL
Add excluslon and delay (lf you wanL Lo exclude some l addresses from Lhe
l pool add Lhem ln Lhe excluslon now uC wlll never asslgn Lhese l
addresses Lo Lhe cllenLs SubneL delay ln mllllseconds means LhaL uC
server wlll asslgn l addresses Lo cllenL ln random amounL of Llme ln order
Lo avold dupllcaLlon of ls)
Cllck on nexL buLLon
ueflne Llme for Lhe lease duraLlon whlch ls 8 days by defaulL and cllenL wlll
send renew requesL afLer 30 Llme of Lhe lease Means ln case of 8 days
cllenL wlll send renew requesL afLer 4 days
Cllck on nexL and Lhen flnlsh
Couise: NCITP


Act|vate Scope
8y defaulL Lhe scope ls dlsable you have Lo acLlvaLe lL because wlLhouL acLlvaLlon
uC wlll be unable Lo asslgn l addresses Lo Lhe cllenLs
8lghL cllck on Lhe scope
SelecL acLlvaLe
lf you wanL Lo check wheLher uC server has asslgned l address or noL
cllck on Lhe leases folder
eservat|ons
lf you wanL Lo asslgn Lhe same l address Lo Lhe cllenL every Llme when he
requesLs for renewal Lhen you wlll deflne reservaLlons
SelecL cllenL reservaLlons
8lghL cllck and selecL new reservaLlon
Clve name
Asslgn l and MAC addresses

lf you wanL Lo release Lhe l address by force from Lhe cllenL Lhen glve Lhe
followlng command ln command prompL
Ipconf|g ]re|ease
lf you wanL Lo renew l address of a cllenL use Lhe followlng command
Ipconf|g ]renew
1o show all deLalls of Lhe compuLer on Lhe neLwork Lhen use Lhe command
Ipconf|g ]a||

DnC Cpt|ons
uC opLlons provlde cllenLs wlLh addlLlonal conflguraLlon parameLers More
Lhan 60 uC sLandard opLlons are avallable buL mosL common are
003 defaulL gaLeway address of Lhe rouLer
006 unS address
013 unS sufflx (CorvlLcom)
044 Wlns address (for name resoluLlon neL8los name resoluLlon)
046 node Lypes
Steps of sett|ng opt|ons
8lghL cllck on scope
Conflgure opLlon
003 rouLer
006 unS Server
Couise: NCITP


Add addresses for boLh
unS name CorvlLcom
044 wlns server
0x8

DnC Database
uC daLabase ls sLored ln wlndows sysLem32 dhcp dhcpmdb
ln every daLabase log flles ls musL sLored wlLh lL 1here are Lwo advanLages of log
flle Cne lL lmprove performance and Lhe second one ls Lhe recovery 1he log flle
ls [S0|og uC sLores lnformaLlon flrsL ln log flles Lhen Lransfer lL Lo Lhe
daLabase
IS0chk lL ls a check polnL flle ln whlch Lhe uC checks Lhe flle LhaL how many ls
Lransferred and how many remalns from log flle Lo Lhe daLabase
IS lL ls a reserved log flle lf Lhe log flle ls full Lhen lL uses Lhe reserved flle for
savlng lnformaLlon

8ackup and estore of DnC
lL ls very easy ln 2008 server ?ou can only wrlLe Lhe followlng command
C netsh dhcp server backup dhcpbackup (press enter)
ln sysLem32 Lhls back up ls sLored wlLh Lhe name of dhcpbackup flle
lf someLhlng ls happen Lo Lhe dhcp Lhen you can resLore Lhe backup flle of dhcp
?ou can resLore Lhe dhcp backup by Lhe followlng command
C netsh dhcp server restore dhcpbackup (press enter)
AfLer resLorlng Lhe dhcp backup you have Lo sLop Lhe dhcp and agaln sLarL Lhe
dhcp ln order Lo funcLlon properly as
C net stop dhcpserver (press enter)
C net start dhcpserver (press enter)

When a compuLer wanLs Lo communlcaLe wlLh dhcp Lhen he broadcasL 8uL lf
Lhere ls rouLer lnslde Lhe cllenL and dhcp server 1hen as we know LhaL rouLer
does noL allow broadcasL Lhen whaL should be done 1here are Lwo soluLlons for
Lhls one 8lC1342 CompllanL 8ouLer buL Lhere ls no rouLer 1he second meLhod ls
Lo lmplemenL Dhcp e|ay Agent lL converLs Lhe cllenL broadcasL lnLo a unlcasL so
LhaL lL can pass from rouLer Lo reach Lo Lhe dhcp server
lf you wanL Lo check whlch l ls asslgned Lo whlch compuLer Lhen you can check lL
from aud|t |og whlch ls placed ln Lhe dhcp folder ln sysLem32
Couise: NCITP


AIA (Automat|c r|vate I Address) lf Lhere ls a neLwork ln whlch 3 or 7
compuLers and you selecL obLalns l auLomaLlcally 8uL Lhere ls no dhcp server
Lhen Lhese compuLers asslgn AlA addresses and broadcasL Lo each oLher 1he
AlA address ls 169234xy
1o check Lhe l address before asslgnlng ls called confllcL deLecLlon

MAC ||ter|ng lL ls Lhe feaLure of server 2008 82 ln whlch you can fllLer Lhe
compuLers by MAC address lf LhaL compuLer ls comes ln Lhe allow llsL Lhen dhcp
wlll asslgn l address oLherwlse dhcp wlll noL asslgn any l address Lo Lhls
compuLer lf you wanL Lo sLop a compuLe from belng asslgnlng an l address Lhen
add Lhe MAC address ln Lhe deny llsL of fllLerlng
SLeps
Cllck on lllLerlng 1here are Lwo opLlons one ls Allow and Lhe oLher ls ueny
8lghL cllck on Allow and selecL new fllLer
Clve MAC address of Lhe compuLer you wanL Lo allow and also glve
descrlpLlon
ress ok
now rlghL cllck on Lhe ueny and selecL new fllLer
Clve MAC address of Lhe compuLer you wanL Lo deny
Cllck ok

Super Scope lf your uC l pool ls flnlshed Lhen you can creaLe anoLher pool
and comblne Lhem wlLh Lhe help of super scope

Lecture no2
Doma|n Name System
uomaln name SysLem ls used for name LranslaLlon lnLo l address or you can say
LhaL lL ls used for name resoluLlon
AcLlve ulrecLory cannoL work wlLhouL unS unS converL name of Lhe compuLer
lnLo l address unS works ln a hlerarchy unS use lCun (lully Cuallfled uomaln
name) unS only Lells Lhe l Lo oLhers
When we wanL Lo communlcaLe wlLh a compuLer we glve name raLher Lhan l
address because lL ls dlfflculL Lo remember l address as compared Lo names lor
example wwwyahoocom
1hls name ls only for Lhe beneflL of Lhe human lL ls LranslaLed lnLo an l address
Lo reach Lhe desLlnaLlon 1he LranslaLlon process of a name ls called name
8esoluLlon
Couise: NCITP


name resoluLlon sLarLs from rlghL Lo lefL 1here ls anoLher " AfLer com buL lL ls
hldden 1hls dot ls called root |eve| doma|n When a requesL ls senL Lo Lhe rooL
domaln for LranslaLlon lL forwards Lhls requesL Lo com domaln whlch ls called top
|eve| doma|n Com passes Lhe requesL Lo yahoo domaln whlch ls called 2
nd
|eve|
doma|n ?ahoo Lhen sends Lhe requesL Lo www whlch ls called host name
SLrucLure of Lhe unS ls dlsLrlbuLed over Lhe lnLerneL lL means LhaL Lhe name
resoluLlon Lask ls noL asslgned Lo only compuLer raLher lL ls dlsLrlbuLed over Lhe
lnLerneL
DNS uer|es
1here are Lwo Lypes of querles ln unS
1 ecurs|ve uery lL goes from unS cllenL Lo unS server lLs answer ls
compleLe means processlng ls compleLe
2 Iterat|ve uery lL goes from unS server Lo unS server lLs answer ls noL
compleLe means lLs reply ls referral lLeraLlve query ls used Lo reach from
one unS Lo anoLher unS lL keeps Lhe reply for 60 mlnuLes ln hls cache

now to Insta|| DNS
Cllck on server manager
Cllck on 8oles
Cllck on Add 8ole
SelecL unS Server from Lhe llsL
Cllck on lnsLall
one
uaLabase of unS ls called Zone Cr parLlLlon of uomaln name Space represenLed
by uomaln name ls called Zone
When you cllck on Zone Lhen you wlll see Lwo zones one ls lorward Lookup Zone
and 8everse Lookup Zone
orward Lookup one sends name and geL l address of Lhe compuLer
Whlle everse Lookup one sends l address and geL name of Lhe compuLer
now Lhe quesLlon arlses LhaL lf we know l address of Lhe compuLer Lhen why we
need name of Lhe compuLer 1he answer ls LhaL lf flrewall ls lnsLalled on Lhe
compuLer Lhen flrewall sLop or allow Lrafflc on Lhe basls of name LhaL ls why
reverse lookup zone ls used Lo converL l address ln Lhe name
Steps to create a zone
SelecL lorward Lookup Zone
8lghL cllck on lL and selecL new zone
Clve name Lo Lhe zone
Couise: NCITP


now rlghL cllck on Lhe newly creaLed zone
CreaLe a new hosL
Clve name Lo Lhe hosL
Clve l address Lo Lhe hosL
esource ecords
8esource records are Lhe unS daLabase enLrles Lo answer unS cllenL querles
name Lype and daLa 1he cllenL query ls always shown under Lhe name LlLle unS
server answer always shown under Lhe daLa LlLle ln Lype dlfferenL Lypes of
records ls shown Common records ln unS are A (name Lo l) 18 (reverse of A)
S8v Mx MS SCA eLc
one 1ypes
1here are four Lypes of Zone Lhey are
1 r|mary DNS one lL ls a sLandard zone whlch ls wrlLeable
Steps to create r|mary one
8lghL cllck on Lhe lorward Lookup zone
SelecL Lo creaLe a new zone
SelecL rlmary Zone from Lhe llsL uncheck Lhe checkbox below because
Lhen lL wlll go Lo Lhe acLlve dlrecLory lnLegraLed unS zone
2 Secondary DNS one lL ls also a sLandard zone whlch ls read only lor
secondary zone lL ls necessary LhaL you allow zone Lransfer ln prlmary zone
8lghL cllck on zone selecL zone Lransfer Lab and check zone Lransfer check
box 8ecause all Lhe enLrles of Lhe prlmary zone wlll be copled Lo Lhe
secondary zone and lf Lhe prlmary zone go down Lhen secondary zone can
be acLed as prlmary zone
Steps to create Secondary one
CreaLe a zone
SelecL lLs Lype secondary
now glve l address of Lhe masLer unS server
Clve l address and cllck on nexL
Conflgure noLlflcaLlon auLomaLlcally
Clve l of prlmary unS

3 Act|ve D|rectory Integrated DNS one lL ls also a wrlLeable zone 1o make
AcLlve ulrecLory lnLegraLed zone Lhe machlne musL be a uomaln ConLroller
8CuC (read only domaln conLroller) feaLure ls only avallable ln server 2008
82 1he domaln conLroller musL be wrlLeable noL read only because lL ls
more secure 1here ls a securlLy Lab ln Lhe Au lnLegraLed zone lL ls a mulLl
Couise: NCITP


masLer sLrucLured ln case of Au lnLegraLed zone unS daLabase wlll be
repllcaLed as a parL of domaln repllcaLlon
4 Stub one lL ls by naLure secondary lL has no daLabase of lLs own lLs loads
Lhe daLabase from masLer unS lL only Lakes selecLlve records noL Lhe
compleLe daLabase 1hree records nS SCA and Clue A wlll Lransfer lnLo
sLub zone SLub ls read only
unS uses porL 33 for communlcaLlon and lL uses boLh 1C and uu proLocols
uynamlc unS (uunS) ls used Lo auLomaLlcally updaLe l addresses ln unS when
changed by uC ?ou wlll enable uunS opLlon ln Lhe Zone properLles Lo secure
only

Lecture no3
everse Lookup one
uomaln name SysLem (unS) servers can enable cllenLs Lo deLermlne Lhe unS
name of a hosL based on Lhe hosLs l address by provldlng a speclal zone called a
reverse lookup zone A reverse lookup zone conLalns polnLer (18) resource
records LhaL map l addresses Lo Lhe hosL name Some appllcaLlons such as
secure Web appllcaLlons rely on reverse lookups
A reverse lookup Lakes Lhe form of a quesLlon such as Can you Lell me Lhe unS
name of Lhe compuLer LhaL uses Lhe l address 192168120?
A speclal domaln Lhe lnaddrarpa domaln was deflned ln Lhe unS sLandards and
reserved ln Lhe lnLerneL unS namespace Lo provlde a pracLlcal and rellable way Lo
perform reverse querles ln reverse lookup zone Lhe l address ls wrlLLen ln
reverse order

Dynam|c Updates |n DNS
WlLh Wlndows Server 2008 a uC server can enable dynamlc updaLes ln Lhe
unS namespace for any one of lLs cllenLs LhaL supporL Lhese updaLes
lf Lhe cllenLs are belong Lo Lhe pre2000 famlly of compuLers Lhen Lhey are
unaware of Lhe dynamlc updaLes Lherefore uC can do Lhls work
Couise: NCITP


?ou have Lo enable Lhls opLlon ln Lhe uC properLles 1hen cllck on unS Lab ln
Lhe uC properLles and mark Lhe checkbox of dynamlc updaLe unS
NSLCCkU
ulsplays lnformaLlon LhaL you can use Lo dlagnose uomaln name SysLem (unS)
lnfrasLrucLure 1here are Lwo mode of nslookup Lhey are
lnLeracLlve and nonlnLeracLlve
Non|nteract|ve mode ls useful when only a slngle plece of daLa needs Lo be
reLurned 1he synLax for nonlnLeracLlve mode ls
C nslookup pc1corvlLcom (press enLer)
Interact|ve mode provldes deLall lnformaLlon abouL a unS ln order Lo dlagnose
Lhe synLax ls
C nslookup (press enLer)
pc1corvlLcom (press enLer)
seL Lypens (press enLer)
seL Lypesoa (press enLer)
qulL (press enLer)
?ou can run nslookup Lool on unS cllenL
ecord 1ypes Mx record Lype ls responslble for resolvlng mall server name ln
Mx we glve domaln name as lnpuL and Mx resolve LhaL lnLo mall server
CnAML record Lype resolves name lnLo name 1hls helps when runnlng mulLlple
servlces (llke an l1 and a web server each runnlng on dlfferenL porLs) from a
slngle l address Lach servlce can Lhen have lLs own enLry ln unS (llke
fLpexamplecom and wwwexamplecom)
fLpexamplecom CnAML wwwexamplecom
wwwexamplecom A 1920223
When an A record lookup for fLpexamplecom ls done Lhe resolver wlll see a
CnAML record and resLarL Lhe checklng aL wwwexamplecom and wlll Lhen
reLurn 1920223
WINS (W|ndows Internet Name Serv|ce)
lL ls used for name resoluLlon llke unS 8uL unS ls only concerned wlLh lCun
(lully Cuallfled uomaln name pc1corvlLcom) whlle WlnS concern wlLh flaL
records such us pc1 mclLp or CorvlL eLc lL was used for neL8lCS for backward
compaLlblllLy
now to Insta|| WINS
Cllck on feaLures
Cllck on add feaLure
Couise: NCITP


SelecL WlnS Server from Lhe llsL
Cllck on nexL
Cllck on lnsLall
Cllck on close
Net8ICS Name neL8lCS ls an acronym for neLwork 8aslc lnpuL / CuLpuL
SysLem lL provldes servlces relaLed Lo Lhe sesslon layer of Lhe CSl model allowlng
appllcaLlons on separaLe compuLers Lo communlcaLe over a local area neLwork lL
ls a 16 characLers name ln whlch 13 characLers are user deflned and 16
Lh
characLer
ls servlce speclflc
Cn Lhe cllenL compuLers rlghL cllck on Lhe adapLer selecL properLles Lhen cllck on
advance and selecL wlns Lab now glve l address of wlns server and press ok
now open wlns server cllck acLlve reglsLraLlon and Lhen dlsplay reglsLraLlon
Wlns server ls needed ln Lwo cases
1 When cllenLs belongs Lo pre2000 famlly of operaLlng sysLem
2 When cllenL runnlng neL8lCS appllcaLlon

Secur|ty
SecurlLy ls Lhe degree of proLecLlon agalnsL danger damage loss and crlmlnal
acLlvlLy 1here are a number of securlLy concerns whlch are
1 Authent|cat|on lL means Lo verlfy a person 1here are Lhree sLraLegles used
for auLhenLlcaLlon le who Lhe person know (username and password)
who Lhe person has (A1M card eLc) who Lhe person ls (Lye Scan or 1humb
scan) AuLhenLlcaLlon guaranLees LhaL daLa was noL alLered durlng
Lransmlsslon Lxample of auLhenLlcaLlon ls kerberos
2 Conf|dent|a||ty confldenLlallLy ls Lhe prlnclple LhaL an lnsLlLuLlon or
lndlvldual should noL reveal lnformaLlon Lo a Lhlrd parLy Lxample of
confldenLlallLy ls 8lLLocker
3 Integr|ty lnLegrlLy means when you cannoL change Lhe conLenLs Mu3 ls
Lhe example of lnLegrlLy
4 Ant| ep|ay AnLlreplay ls Lhe concepL of noL allowlng an lnLercepLed
packeL message Lo be senL Lo Lhe reclplenL mulLlple Llmes wlLhouL Lhe
orlglnal sender knowlng lSec uses sequenLlal counLers Lo guaranLee LhaL
packeLs are recelved and processed ln order
3 Non epud|at|on nonrepudlaLlon ls Lhe concepL of ensurlng LhaL a parLy
ln a dlspuLe cannoL repudlaLe or refuLe Lhe valldlLy of a sLaLemenL or
conLracL

Couise: NCITP


ISec (I Secur|ty)
lnLerneL roLocol securlLy (lsec) ls a framework of open sLandards for proLecLlng
communlcaLlons over lnLerneL roLocol (l) neLworks Lhrough Lhe use of
crypLographlc securlLy servlces lsec supporLs neLworklevel peer auLhenLlcaLlon
daLa orlgln auLhenLlcaLlon (uses kerberos shared key and CA) daLa lnLegrlLy
(Mu3 SA1) daLa confldenLlallLy (encrypLlon uLS 3uLS) and replay proLecLlon
lL adds new headers wlLh 1C/l packeL
1here are Lwo sub proLocols of lSec 1hey are
1 Authent|cat|on neader (An)
AuLhenLlcaLlon eader (A) provldes auLhenLlcaLlon lnLegrlLy and anLl
replay for Lhe enLlre packeL (boLh Lhe l header and Lhe daLa payload
carrled ln Lhe packeL) lL does noL provlde confldenLlallLy whlch means lL
does noL encrypL Lhe daLa 1he daLa ls readable buL proLecLed from
modlflcaLlon
2 Lncapsu|at|on Secur|ty ay|oad (LS)
1he maln [ob of LS ls Lo provlde Lhe prlvacy we seek for l daLagrams by
encrypLlng Lhem An encrypLlon algorlLhm comblnes Lhe daLa ln Lhe
daLagram wlLh a key Lo Lransform lL lnLo an encrypLed form 1hls ls Lhen
repackaged uslng a speclal formaL and LransmlLLed Lo Lhe desLlnaLlon
whlch decrypLs lL uslng Lhe same algorlLhm

Lecture no4
ISAkM (Internet Secur|ty Assoc|at|on key Management rotoco|)
lL ls a proLocol for esLabllshlng securlLy assoclaLlons (SA) and encrypLlon keys ln an
lnLerneL envlronmenL ulffle ellman ls used Lo generaLe keys ln lSec 1he
encrypLlon keys are always changlng
1here are Lwo phases of lSAkM
hase 1]Ma|n Mode Maln Mode ls also called hase 1 ln whlch a secure
negoLlaLlon esLabllshed called (SA) beLween Lwo compuLers 1he lSAkM SA ls
used Lo proLecL securlLy negoLlaLlons
hase 2]u|ck Mode Culck mode ls also called hase 2 esLabllshes a secure
channel beLween Lwo compuLers Lo proLecL daLa

SLeps
1ype mmc ln run wlndow and press enLer
Couise: NCITP


Cllck on flle selecL Add 8emove Snapln
Cllck on lSec pollcy managemenL and cllck on add buLLon
Cllck on l SecurlLy MonlLor and cllck add buLLon
now make a pollcy (Lhere are rules lnslde pollcy Lhen Lhere are fllLers or
condlLlons lnslde a rules)
8lghL cllck on l SecurlLy ollcy
Cllck on creaLe l SecurlLy
Cllck nexL Lhen glve any name Lo Lhe pollcy
Cllck nexL and Lhen flnlsh
now rlghL cllck on Lhe newly creaLed pollcy and selecL properLles
Cllck on rules Lhen cllck on Add
Cllck on nexL Lhen selecL All neLwork connecLlons
Cllck on nexL
now cllck on Add buLLon Lo creaLe fllLer
Clve any name Lo Lhe fllLer
Cllck on add Lhen cllck on nexL
SelecL a speclflc l address
SelecL my l address ln desLlnaLlon
Cllck on proLocol any and cllck on nexL
Cllck on flnlsh and cllck ok
SelecL Lhe newly creaLed fllLer and cllck on fllLer acLlon
Cllck on add and glve any name Lo Lhe fllLer acLlon
Cllck on nexL and selecL negoLlaLe securlLy
Cllck on nexL and selecL don'L allow unsecured communlcaLlon
Cllck on nexL and selecL lnLegrlLy and encrypLlon
Cllck on nexL and Lhen cllck on flnlsh
now cllck on securlLy rule wlzard
Cllck on use Lhe
Cllck flnlsh Lhen cllck on ok
now rlghL cllck and selecL asslgn
lf you cllck on Lhe l securlLy monlLor
AcLlve pollcy
Maln mode
SecurlLy assoclaLlon
Culck mode
SecurlLy assoclaLlon
Couise: NCITP


Note ln 1ransport mode Lhe communlcaLlon peers and lSec peers are
compuLers whlle ln 1unne| mode Lhe communlcaLlon peers are compuLers and
Lhe lSec peers are rouLers

emote Access
1here are Lwo ways Lhrough whlch we can communlcaLe ln a neLwork Cne ls
lnLerneL and Lhe oLher ls S1n (ubllc SwlLch 1elephone neLwork)
S1n ls secure as compared Lo lnLerneL buL lL ls more cosLly
8ouLlng and remoLe access ls a uLlllLy ln wlndows for remoLe access
Insta||at|on of out|ng and emote Access on Server
Cllck on 8oles and selecL Add 8oles
Cllck on neLwork pollcy and access servlces
Cllck on nexL and selecL rouLlng and remoLe access
Cllck on conflrmaLlon and Lhen cllck on lnsLall
now open lL and rlghL cllck and selecL conflgure and enable rouLlng and
remoLe access
Cllck on nexL and Lhen cllck on remoLe access
Cllck on dlal up Lhen selecL from a speclfled range
Cllck on nexL and selecL new
Clve a range and cllck on ok
Cllck on nexL Lhen selecL no
Cllck on nexL and Lhen flnlsh
now you wlll add a modem ln server 2008
8lghL cllck on porLs and selecL properLles
SelecL modem Lhen cllck on conflgure
Cllck on remoLe access and selecL ok Lhen cllck on apply
A||ow users
Co Lo Lhe AcLlve ulrecLory Servlces
Cllck on user properLles and selecL ulal ln
Cllck on allow access and cllck on apply Lhen ok
Create a new connect|on on network
Cllck on creaLe new connecLlon
Cllck on connecL Lo Lhe workplace
Clve Lelephone number
Clve user name and password
Cllck connecL

Couise: NCITP


Ca|| back
Cllck on user properLles
SelecL dlal ln
Cllck on callback opLlon
SelecL seL by caller
Cllck on apply Lhen ok
Ca||back secur|ty
Cllck on user properLles
SelecL dlal ln
SelecL always call back Lo
Clve your Lelephone number
Cllck on apply and Lhen ok
Ass|gn|ng Is through DnC
Cpen rouLlng and remoLe access
8lghL cllck and selecL properLles
Cllck on lv4 and selecL dynamlc uC 8elay agenL
Clve l address of uC server
now resLarL by rlghL cllcklng and selecL all Lasks
SelecL resLarL

Lecture noS
V|rtua| r|vate Network (VN)
vn ls used for long dlsLance connecLlvlLy lL ls cheaper Lhan 8emoLe access
because Lhe medlum ls lnLerneL noL S1n
8eglsLered llve publlc l ls needed for vn server buL Lhere ls no compulslon of
llve l on cllenL slde SLaLlc l ls Lhe baslc requlremenL of vn
?ou can connecL mulLlple users on Lhe same llnk ln vn whlch ls noL posslble ln
remoLe access ln remoLe access you need a separaLe llne for each user
ln vn Lhe connecLlons are made on vlrLual porLs MulLlple connecLlons per
physlcal medlum ls Lhe advanLage of vn and lL ls posslble due Lo Lhe vlrLual porLs
of vn Less secure as compared Lo remoLe access because Lhe medlum ls
lnLerneL buL you can say LhaL vn ls secure because lL uses lSec for securlLy lL ls
cleared LhaL vn ls lnherenLly lnsecure because medlum ls Lhe lnLerneL
vn ls Lhe only way Lo connecL prlvaLe neLworks uslng lnLerneL

Couise: NCITP


r|vate I ranges accord|ng to C 1918
10000/8
1721600/12
19216800/16
lor example lf Lhere are Lwo neLworks of CorvlL one ln Lahore and Lhe oLher ls ln
lslamabad lf Lhese Lwo neLworks have prlvaLe addresses and wanL Lo
communlcaLe Lhrough lnLerneL 1hen lL ls noL posslble wlLhouL vn because vn
make lL posslble LhaL prlvaLe neLworks can communlcaLe uslng lnLerneL
Insta||at|on of VN
Co Lo server manager
Cllck on 8oles Lhen add roles
SelecL neLwork pollcy and access servlces
Cllck nexL
SelecL rouLlng and remoLe access server
Cllck on nexL
Cllck lnsLall
now glve a llve publlc l Lo vn server
Clve l Lo cllenL and assume LhaL boLh are on lnLerneL
now open 8ouLlng and 8emoLe Access from admlnlsLraLlve Lools
8lghL cllck on lL and selecL conflgure and enable
Cllck on nexL and choose cusLom conflguraLlon
Cllck on nexL selecL vn access
SelecL a connecLlon and Lhen selecL from a speclfled range opLlon
Clve ls range and cllck nexL
now selecL no use rouLlng and remoLe access opLlon
Cllck on ok and Lhen flnlsh
A||ow users perm|ss|ons
Cllck on AcLlve ulrecLory users and compuLer ln Lhe admlnlsLraLlve Lools
8lghL cllck on user and selecL properLles
SelecL dlalln and cllck on Allow access
Cllck on apply and Lhen ok
now lf you Lry Lo plng Lhe sysLem lL wlll glve no reply from Lhe hosL 1herefore
open Lhe rouLlng and remoLe access selecL lv4 and cllck on general now rlghL
cllck on connecLlon and press deleLe 1he lnLerface wlll be deleLed
Connect through mstsc
Make a connecLlon on cllenL compuLer as under
Cllck on seLup a new connecLlon
Couise: NCITP


Cllck on connecL Lo workplace and selecL nexL
Cllck on use my lnLerneL connecLlon and selecL l wlll seLup lnLerneL
connecLlon laLer
Clve l address of vn server
Clve username and password and cllck on nexL
Cllck on creaLe and Lhen close
VN protoco|s
1 lkLv2
2 SS1
3 1
4 L21
Connect on 1
Co Lo Lhe properLles of Lhe cllenL adapLer
Cllck on securlLy Lab and selecL 1 ln Lype of vn
Cllck ok and Lhen connecL
Connect on L21
8lghL cllck on neLwork connecLlon and selecL properLles
SelecL securlLy Lab
SelecL L21
Cllck on advance seLLlng
Clve shared key MCl12008
Cllck on connecL
Shar|ng
When you puL a dollar slgn ($) aL Lhe end lL ls called hldden sharlng
Command
C hosLname (press enLer lL wlll dlsplay name of Lhe compuLer)
C neL vlew pc1 (press enLer lL wlll show shared flles and folders)
C mkdlr LesL (press enLer lL wlll creaLe a folder named LesL)
C neL share LesLc LesL (press enLer lL wlll make LesL folder shared)
C neL vlew pc1 (press enLer lL wlll show shared folders on pc1)
C mkdlr lshaq (press enLer lL wlll creaLe a folder named lshaq)
C neL share lshaq$c lshaq (press enLer lL wlll make lshaq folder as hldden
shared)
C neL vlew pc1 (press enLer lL wlll show you shared folders buL noL hldden
shared)
When you Lype pc1lshaq ln run wlndow and press enLer lL wlll glve an error
message because Lhls folder ls hldden shared lf you wanL Lo open lL place a dollar
Couise: NCITP


slgn ($) afLer Lhe folder name as pc1lshaq$ (press enLer) lL means LhaL Lhe
person who knows Lhe name of Lhe hldden shared folder can open lL oLherwlse
compuLer wlll noL show hldden shared folders
Some folders are hldden shared by defaulL whlch ls called admlnlsLraLlve hldden
buL admlnlsLraLor cannoL glve permlsslons Lo oLher users lL ls [usL a faclllLy for Lhe
admlnlsLraLor llke C$ u$ eLc AdmlnlsLraLor can glve cllenL only Lhe permlsslon of
prlnL$
Note lf you wanL Lo shuLdown Lhe cllenL compuLers remoLely Lhen Lhe followlng
command ls used buL you musL be Lhe admlnlsLraLor of Lhose cllenLs
shuLdown l (press enLer) now add Lhe compuLers llke pc1 pc2 eLc and press ok
1here are Lwo Lypes of permlsslons
1 Share perm|ss|ons lL ls used only for remoLely access)
2 N1S perm|ss|ons lL ls local permlsslon lL ls applled on boLh cases
Lveryone group ls called speclal ldenLlLy LhaL represenL all

Lxam 70640 Act|ve D|rectory Adm|n|strat|on
Lecture no1

Act|ve D|rectory CenLrallze reposlLory LhaL ls sLore lnformaLlon abouL ob[ecLs
normally when you check Lhe sysLem properLles lL wlll elLher be ln a domaln or ln
a workgroup
ln a workgroup sysLems are lndependenL of each oLher lf Lhere are 10 users ln
Lhe workgroup Lhen on each sysLem you wlll creaLe 10 users accounL Workgroup
performs decenLrallze managemenL of resources 10 compuLers are normally
recommended for a workgroup
Doma|n lnLroduced flrsL Llme ln wlndow n1 of slze 40 M8 whlch provlde
cenLrallze managemenL of resources ln a domaln one user one accounL and
unlversal resource access now Lop level ls foresL lnslde foresL Lhere are Lrees and
lnslde Lrees Lhere are domalns
orest ls Lhe collecLlon of Lrees or domalns
1ree ls Lhe collecLlon of domalns has parenL chlld relaLlonshlp
now to make system as Doma|n
lnsLall server based operaLlng sysLem
lnsLall AcLlve ulrecLory
now your sysLem wlll become a domaln
Couise: NCITP


Doma|n 1ypes
1here are Lhree Lypes of domaln
1 oot Doma|n flrsL domaln of a foresL ls called rooL domaln Cnly one rooL
domaln ls posslble ln a foresL lnsLallaLlon of rooL domaln creaLes a foresL
8ooL domaln ls also a parenL domaln When rooL domaln crashed Lhen Lhe
foresL ls also crashed buL lf oLher domaln crashed Lhen lL wlll noL affecL
foresL
2 arent Doma|n domaln ls lnsLalled elLher as a parenL or a chlld 1here can
be mulLlple domalns ln a foresL Lvery parenL domaln ls noL a rooL domaln
buL every rooL domaln ls a parenL domaln llrsL domaln of a Lree ls called
parenL domaln lnsLallaLlon of parenL domaln creaLes a Lree
3 Ch||d Doma|n

no of foresL 1
noL of Lrees 3
no of domalns 3
1ypes of Doma|n
1 Doma|n Contro||er (DC) 1he machlne on whlch acLlve dlrecLory ls
lnsLalled ls called uomaln ConLroller lf lL ls Lhe flrsL domaln
lnsLalled Lhen lL ls uomaln ConLroller ln Lhls case lL ls used a
acom
bacom
ccom
dccom
ecom
8ooL domaln
arenL domaln
Chlld domaln
loresL
1ree
Couise: NCITP


proper noun uomaln ls Lhe concepLual Lhlng lL physlcally exlsLs
because of Lhe uomaln ConLroller Cnly one domaln can be
lnsLalled on one compuLer
2 Add|t|ona| Doma|n Contro||er (ADC) When you lnsLall a second
domaln for load balanclng Lhen lL ls called AddlLlonal uomaln
ConLroller lL ls also wrlLable llke uomaln ConLroller lf Lhe uomaln
ConLroller falls Lhen AddlLlonal uomaln ConLroller can be used
3 ead Cn|y Doma|n Contro||er (CDC) lL ls also used for load
balanclng buL lL noL wrlLeable lL ls only read only
Log|ca| Structure of AD
loresL
1ree
uomaln
Cu
hys|ca| Structure of AD
S|tes
Subnets
Doma|n Contro||ers
Lecture no2
Act|ve D|rectory Au ls Lhe cenLrallze reposlLory LhaL sLore lnformaLlon
abouL ob[ecLs
users and compuLers are Lhe classes of ob[ecLs Cb[ecLs properLles ln
Au are called aLLrlbuLes lor example lasL name ls Lhe aLLrlbuLe of Lhe
user class Classes aLLrlbuLes value seL and Lhelr aLLrlbuLe Lypes are
sLored ln a place called schema
Couise: NCITP


All Lhe Lrees ln one foresL have same schema A collecLlon of Lrees or
domalns have same conflguraLlon schema and global caLalog ls called
foresL
Note when user logs ln on Lhe cllenL sysLem he enLers username and
password 1he username ls senL Lo Lhe uC where lL ls checked wlLh a
password and encrypL wlLh some number and send lL Lo Lhe cllenL Lo
decrypL lL lf Lhe cllenL decrypLs LhaL password Lhen lL ls allowed for log
on
ln Clobal CaLalog values are sLored whlle ln Schema only aLLrlbuLes are
sLored
Act|ve D|rectory art|t|ons
1here are four parLlLlons of AcLlve ulrecLory
1 Schema parLlLlon (foresL speclflc)
2 ConflguraLlon parLlLlon (foresL speclflc)
3 uomaln uaLa arLlLlon (domaln speclflc)
4 AppllcaLlon arLlLlon (conflgurable)
When you make changes ln Schema parLlLlon or conflguraLlon parLlLlon
Lhen Lhese changes are repllcaLed ln Lhe whole foresL
States of Server base operat|ng system
1here are Lhree sLaLes of server base operaLlng sysLem
1 SLand alone server (workgroup)
2 Member server (no acLlve dlrecLory)
3 uomaln conLroller (acLlve dlrecLory lnsLalled)
Couise: NCITP


lf you run dcpromo command Lhen lL wlll nelLher remaln sLand alone
server nor member server
Insta||at|on of Act|ve D|rectory
1ype dcpromo command ln Lhe run wlndow
SelecL advance check box
nexL page wlll show you operaLlng sysLem compaLlblllLy keep lL
unchanged and cllck on nexL
now Lhere are four posslblllLles
4 loresL Lree domaln (rooL domaln)uC
4 1ree uomaln (parenL domaln) uC
4 Chlld uomaln uC
4 AuC / 8CuC
now lf you check Add a domaln conLroller Lo an exlsLlng domaln
under Lhe exlsLlng foresL Lhen lL means LhaL you are golng Lo
creaLe ADC ]CDC
lf you check creaLe a new domaln ln an exlsLlng foresL under Lhe
exlsLlng foresL opLlon Lhen lL means LhaL you are creaLlng ch||d
doma|n
lf you have marked creaLe a new domaln Lree rooL lnsLead of a
new chlld domaln check box under exlsLlng domaln foresL Lhen lL
means LhaL you are creaLlng parent doma|n
lf you check creaLe a new domaln ln a foresL opLlon Lhen lL means
LhaL you are creaLlng root doma|n
SelecL Lhe lasL opLlon creaLe a new domaln ln a foresL and cllck on
nexL
Clve name Lo Lhe domaln (CorvlLcom or LesLcom) and cllck nexL
now lf you selecL wlndows server 2008 82 ln Lhe domaln
funcLlonal level Lhen you can use new feaLures of AcLlve ulrecLory
Couise: NCITP


llke recycle bln eLc buL your cllenLs musL be wlndows 7 or
wlndows vlsLa
1herefore selecL wlndows server 2003 and cllck on nexL
SelecL unS server check box lf you wanL Lo lnsLall unS also and
cllck nexL
Cllck on yes and agaln cllck on yes
now lL wlll show daLabase folder log flles folder and Sysvol folder
(sLore group pollcy) and Lhelr locaLlons
now lL wlll ask username and password lL ls requlred lf your
AcLlve ulrecLory ls crashed Lhen all of user accounL wlll also be
crashed Lhen you can resLore acLlve dlrecLory by uslng Lhls
username and password
Cllck on nexL Lhen nexL and selecL Lhe 8ebooL on compleLlon
check box
When Lhe lnsLallaLlon compleLe Lhen Lhe sysLem wlll be resLarLed
Impact of Act|ve D|rectory Insta||at|on
8efore Lhe lnsLallaLlon of Au all Lhe user accounLs are sLored ln Lhe
compuLer managemenL ?ou can go Lo compuLer managemenL by uslng
compmgmtmsc command AfLer lnsLalllng Au all Lhe user accounLs are
Lransferred Lo Lhe AcLlve ulrecLory by cllcklng AcLlve ulrecLory Servlces
and Lhe cllck on users Lo vlew Lhe users accounL AcLlve ulrecLory
daLabase flle ls nLdsdlL (CwlndowsnLdsnLdsdlL) where dlL sLands for
dlrecLory lnformaLlon Lree and has 10M8 slze Log flle ls edb edbchk ls
checkpolnL flle and res1 res2 are reserved flles Some servlces are also
creaLed llke Au uomaln servlces and Au web servlces afLer Au
lnsLallaLlon
Couise: NCITP


egsvr32 schmmgmtd|| ls Lhe command Lo go Lo Lhe schema where
you see Lwo Lhlngs classes and aLLrlbuLes

Act|ve D|rectory Ma|ntenance
1 8ackup onllne (servlces sLarL)
2 8esLore
a AuLhorlLaLlve resLore uS8M (ulrecLory 8esLore Mode)
b non AuLhorlLaLlve resLore uS8M (ulrecLory 8esLore Mode)
3 Move offllne (servlces sLopped)
4 uefrag
a Manual offllne (servlces sLopped)
b AuLomaLlc onllne (servlces sLarL)
ln wlndows server 2008 82 you don'L need Lo rebooL Lo offllne AuS llke
wlndows server 2003
Ut|||ty for tak|ng 8ackup of AD
Wbadmlnmsc ls used Lo Lake a backup buL Lhls faclllLy ls noL lnsLalled
by defaulL flrsL you have Lo lnsLall backup servlces Cllck on server
manager Lhen selecL leaLures Lhen Add leaLures Lhen selecL wlndows
server backup Lhen cllck on nexL and Lhen lnsLall
now Lype wbadmlnmsc command ln Lhe run wlndow Lhen selecL
backup once cllck on nexL now selecL dlfferenL opLlons Lhen selecL
cusLom cllck on add lLem Lhen selecL sysLemsLaLe cllck on local drlve
and selecL Lhe drlve for backup cllck ok Lhen cllck nexL and Lhen cllck on
backup
Couise: NCITP


1ype wbadm|n get vers|ons command ln Lhe command llne Lo show
Lhe name of Lhe backup because Lhe backup name ls generaLed by Lhe
compuLer lLself ln daLe Llme formaL
Lecture no3
Act|ve D|rectory Ma|ntenance
AcLlve ulrecLory ls ln Lhe form of pages A process whlch ls called garbage
collecLlon process deleLes unused flles from AcLlve ulrecLory afLer every 12 hours
lor malnLenance you musL sLop Lhe AcLlve ulrecLory servlces 1here are Lwo
meLhods Lo sLop Au servlces one ls graphlcal LhaL ls cllck on admlnlsLraLlve Lools
Lhen cllck on servlces Lhen rlghL cllck on acLlve dlrecLory domaln servlces and cllck
on sLop
Second meLhod Lo sLop Au servlces ls from command llne LhaL ls
Commands for AD database and |og f||es movement to another dr|ve
CneL sLop nLds (cllck enLer) Lhen cllck on yes (lL wlll sLop daLabase servlces
of Au)
C nLdsuLll (press enLer)
nLdsuLll acLlvaLe lnsLance nLds (press enLer)
nLdsuLll flles (press enLer)
llle malnLenance move db Lo [ (press enLer 1hls wlll move daLabase Lo [
drlve)
llle malnLenance move logs Lo [ (press enLer lL wlll move log flles Lo [
drlve)
llle malnLenance qulL (press enLer)
C neL sLarL nLds (press enLer AfLer movemenL agaln sLarL Au daLabase
servlces)
Defrag or Compress AD database
Couise: NCITP


nudsuLll acLlvaLe lnsLance nLds (press enLer 8uL before dolng Lhls sLop Au
daLabase servlces by neL sLop nLds command oLherwlse lL wlll glve error)
nLdsuLll flles (press ok)
llle malnLenance compacL Lo e (press enLer lL wlll compress lL Lo e drlve)
llle malnLenance qulL (press ok)
estore of AD
1here are Lwo Lypes of resLore Cne ls called auLhorlLaLlve resLore and Lhe oLher ls
called non auLhorlLaLlve resLore When Lwo uC's are worklng ln Lhe same domaln
Lhen auLhorlLaLlve lssue comes
lor example lf Lwo uc's uC1 and uC2 are worklng ln a domaln 1here are 93 user
accounLs on uC1 suddenly boss called you LhaL l have flred 3 persons LhaL ls why
deleLe Lhe accounLs of Lhese persons Lherefore you have deleLed buL before LhaL
you have Laken a backup yesLerday AfLer 2 hours 8oss agaln call you and Lold you
LhaL l have Laken my declslon back so agaln add Lhese 3 persons accounLs ?ou
wlll resLore Lhe backup on uC1 buL ln Lhls case Lhe verslon ld's of uC1 are older
and uC2 have laLesL verslon ld's 1he uC who have laLesL verslon ld's are ln full
power now Lo glve back Lhe power Lo uC1 you wlll ralse Lhe verslon ld's of uC1
Lhrough a meLhod called Author|tat|ve restore
lor resLorlng Lhe Au you wlll rebooL your sysLem Lhen press l8 and selecL
dlrecLory servlces resLore mode Lhen selecL oLher user
1ype wbadmlnmsc ln Lhe run wlndow and press ok Lhen cllck on 8esLore Lhen
selecL Lhls server press nexL Lhen selecL sysLem sLaLe Lhen cllck on conflrmaLlon
and Lhen cllck on resLore 1hls meLhod ls called non author|tat|ve restore ln Lhls
case Lhere ls only one uC ln Lhe domaln so Lhere ls no need of auLhorlLy
or author|tat|ve restore
llrsL perform Lhe wbadmlnmsc process as menLloned above
1hen go Lo cmd and Lype c nLdsuLll (press enLer)
nLdsuLll acLlvaLe lnsLance nLds (press enLer)
nLdsuLll auLhorlLaLlve resLore (press enLer)
Couise: NCITP


AuLhorlLaLlve resLore resLore ob[ecL dcCorvlL dccom (press enLer)
Cllck on yes (lL wlll ralse verslon ld's of uC1 by one lakh ln order Lo noL
overrlde Lhe prevlous one)
8ebooL Lhe sysLem

Cperat|on Master
Some changes wlll only be performed on a speclflc uC noL on all 1haL ls why
AcLlve ulrecLory ls slngle masLer generally Slngle masLer operaLlon can be
performed on a slngle uC 1here are cerLaln roles wlLh LhaL uC
8oles
1 Schema MasLer one per foresL
2 uomaln namlng MasLer one per foresL
3 uC (rlmary uomaln ConLroller) LmulaLor one per domaln
4 lnfrasLrucLure MasLer one per domaln
3 8lu (8elaLlve ldenLlLy) MasLer one per domaln
8ooL domaln has Lhe flrsL Lwo roles whlle on AuC Lhere wlll 0 roles
1 Schema Master 1here are classes and Lhelr aLLrlbuLes ln schema Schema
masLer ls responslble for schema updaLes Schema ls avallable on all uC's
buL wrlLeable schema ls only avallable ln schema masLer
2 Doma|n Nam|ng Master lL ls responslble for Lhe addlLlon or removal of
domalns ln a foresL
3 DC Lmu|ator lL performs clock or Llme synchronlzaLlon lL ls responslble
for group pollcy modlflcaLlon lL Lells password reseL lnformaLlon Lo all lL
mlnlmlzes password change laLency
4 Infrastructure Master lL sLores user Lo group references
3 ID Master ermlsslon Lo a user ls glven on Lhe basls of Slu (SecurlLy
ldenLlfler) lL ls a number whlch ls generaLed when we creaLe a user
accounL lL ls noL changeable and noL reusable lL ls unlque
Cb[ecL Sluuomaln lu + 8lu
Couise: NCITP


8lu MasLer glves a block of 8lu Lo oLher uC's 8lu masLer ls responslble for
Slu generaLlon or lL allocaLes blocks of 8lu Lo oLher domaln conLrollers of
Lhe domaln
ln order Lo vlew whlch compuLer has Lhese roles go Lo command llne and Lype
fsmo (flexlble slngle masLer operaLlon) command
c netdom ]query fsmo (press enter)
ln graphlcal envlronmenL cllck on admlnlsLraLlve Lools Lhen selecL acLlve dlrecLory
users and compuLers Lhen rlghL cllck on domaln selecL operaLlon masLer Lhere you
wlll see Lhe domaln name ln Lhe flrsL fleld whlch ls currenL role holder
now Lo check roles on foresL (domaln namlng masLer)cllck on admlnlsLraLlve Lools
selecL acLlve dlrecLory users and compuLers Lhen rlghL cllck on rooL Lhen selecL
operaLlon masLer
now Lo check schema masLer flrsL run regsvr32 schmmgmLdll ln run wlndow Lhen
run mmc cllck on add remove snap ln from flle menu Lhen cllck on acLlve dlrecLory
schema and Lhen cllck on add now rlghL cllck on operaLlon masLer
1wo Lhlngs musL be undersLand
1 1ransfer of ro|e only posslble lf role holder ls onllne ln Lhls case no loss of
lnformaLlon occurs
2 Se|ze of ro|e only posslble lf role holder ls down (offllne) ln Lhls case loss
of lnformaLlon occurs
1hese Lwo operaLlons can be performed on Lhe successor means on whlch you
wanL Lo Lransfer Lhe roles
now to connect w|th another DC
Cllck on admlnlsLraLlve Lools
SelecL acLlve dlrecLory users and compuLers
8lghL cllck on domaln and selecL change domaln conLroller
SelecL Lhe pc Lo connecL
Couise: NCITP


Cllck ok
1ransfer ro|es one by one
Cllck on AcLlve dlrecLory users and compuLers
8lghL cllck on domaln and selecL change domaln conLroller
SelecL AuC on whlch you Lransfer roles and press ok
now rlghL cllck on Au and cllck on change operaLlon
1ransfer forest ro|es
Cllck on AcLlve dlrecLory uomaln and LrusL
8lghL cllck and selecL operaLlon masLer
Cllck on change
1ransfer schema master ro|e
llrsL connecL wlLh successor
now cllck on change domaln conLroller
now rlghL cllck and selecL change operaLlon masLer
Se|ze of ro|es
Selze means by force asslgn Lhe role Lo oLher uC when one ls crashed or down
When you cllck on operaLlon masLer and check Lhe flrsL fleld lL wlll show an error
Lhere when uC1 ls down
Co Lo Lhe cmd for selzlng role
nLdsuLll roles (press enLer)
lsmo malnLenance connecLlons (press enLer ere you wlll connecL Lo Lhe pc Lo
whlch you are maklng a role holder)
Couise: NCITP


Server connecLlons connecL Lo server pc1 (press enLer)
Server connecLlons qulL (press enLer)
lsmo malnLenance selze schema masLer (press enLer)
Cllck on yes Lo conLlnue
lsmo malnLenance selze namlng masLer (press ok and Lhen yes Lo conLlnue)
lsmo malnLenance selze uC masLer (press ok and Lhen yes Lo conLlnue)
lsmo malnLenance selze lnfrasLrucLure masLer (press ok and Lhen yes Lo
conLlnue)
lsmo malnLenance selze 8lu masLer (press ok and Lhen yes Lo conLlnue)
Lecture no4
Manag|ng user accounts
Note you can change Lhe password pollcy by Lyplng gpmcmsc command ln Lhe
run wlndow Lhen cllck on domaln Lhen rlghL cllck on defaulL domaln pollcy and
selecL edlL Lhen cllck on pollcles wlndows seLLlng securlLy seLLlng accounL
pollcles password pollcles
?ou can creaLe user accounLs Lhrough bulk lmporL process 1here are Lhree
meLhods LhaL can be used
1 CSVDL (Comma SeparaLed value uaLa Lxchange) lL ls used for only addlng
user accounLs
2 LDIDL (LlghLwelghL daLa lnLerchange formaL daLa exchange) lL ls used Lo
add modlfy and deleLe user accounLs
3 W|ndows Scr|pt|ng nost
Steps of CSVDL
Cpen a noLepad
WrlLe dnob[ectc|asssamaccountnameuseraccountcontro| ln Lhe flrsL llne
Couise: NCITP


Note ln Lhe above llne dn represenL dlsLlngulsh name for dlsplay new
namlng convenLlon called LuA used by Au LhaL uses dlsLlngulsh name Lo
make Lhe name unlque ln Lhe domaln ob[ectc|ass represenL Lhe Lype of
ob[ecL you are creaLlng Samaccountname represenL Lhe logon name of Lhe
user Useraccountcontro| represenL Lo enable or dlsable Lhe accounL 312 ls
used for enabled and 314 used for dlsable accounL
"oumc|tpdckhandccom"organ|zat|ona| ( th|s w||| create an
organ|zat|ona| un|t w|th the name mc|tp |n khancom doma|n) after
press|ng enter key type the fo||ow|ng |n the next ||ne
"cn|shaqoumc|tpdckhandccom"user|shaqS12
"cn|mranoumc|tpdckhandccom"user|mranS12
"cnarshadoumc|tpdckhandccom"userarshadS14
"cn|zzatoumc|tpdckhandccom"user|zzatS14
Note Lhe above four llnes wlll creaLe four users named lshaq lmran
arshad and lzzaL ln Lhe organlzaLlonal unlL mclLp on khancom domaln
Save Lhls flle wlLh csv (LesLcsv) exLenslon and selecL all flles ln u drlve for
example
Co Lo cmd and lmporL Lhe flle by Lyplng D csvde | f testcsv (press
enLer)
?ou can also exporL flle as d csvde f f||e1csv (press enLer) lL wlll creaLe a
flle wlLh Lhe name of flle1 on u drlve
Steps for LDIDL
Cpen a noLepad and Lype Lhe followlng
Dn cnkash|foumc|tpdckhandccom
changetypeadd
ob[ectc|assuser
samaccountnamekash|
useraccountcontro|S12
Dn cnam|roumc|tpdckhandccom
changetypeadd
ob[ectc|assuser
samaccountnameam|r
Couise: NCITP


useraccountcontro|S12 (Lhe above llnes wlll creaLe Lwo users named kashlf
and amlr ln Lhe mclLp Cu on Lhe khancom domaln)
Save Lhe flle wlLh |df exLenslon (test1|df) and selecL all flles
Cpen cmd and lmporL Lhe flle by uslng Lhe command d|d|fde | f test1|df
(press enLer)
Steps for mod|f|cat|on user account |n LDIDL
Cpen noLe pad
Dn cn|shaqoumc|tpdckhandccom
changetypemod|fy
rep|acedescr|pt|on
descr|pt|on th|s |s a test user account

Dn cn|mranoumc|tpdckhandccom
changetypemod|fy
rep|ace|ocat|on
|ocat|on kabu|
(press enLer)
Steps for de|et|on of user account |n LDIDL
Cpen noLe pad
Dn cn|shaqoumc|tpdckhandccom
changetypede|ete
(press enLer)

Couise: NCITP


Lecture noS

Steps for W|ndows Scr|pt|ng nost
Cpen noLe pad and Lype Lhe followlng
Set ob[CU getob[ect ("LDA]]oumc|tpdckhandccom")
Set ob[User ob[CUcreate("User" "cn|shaq")
ob[Userput "samaccountname" "|shaq"
ob[UserSetInfo (lL show end of flle)
now save Lhe flle wlLh vbs exLenslon (LesL3vbs) and selecL all flles
now open Lhe command llne and lmporL Lhe flle uslng Lhe command
Cwscr|pt test3vbs (press enLer)
Manag|ng Groups
Maklng groups provldes flexlblllLy lor example lf you are applylng some
permlsslons on 1000 users on Lhe same naLure Lhen you manually apply Lhe
permlsslons on each user means you have Lo modlfy 1000 users lnsLead creaLe a
group and place Lhe users of Lhe same naLure ln Lhls group and apply permlsslons
on Lhls group whlch wlll be applled Lo all 1000 users
Group types 1here are Lwo Lypes of groups
1 Secur|ty group ln SecurlLy group everyLhlng ls posslble means you can use
lL for permlsslons and also for emall sysLem
2 D|str|but|on group lL ls only used for malllng sysLem and cannoL be used
for permlsslons 1haL ls why you rlghL cllck on Lhe folder and Lhen cllck on
permlsslons you wlll only see securlLy groups noL Lhe dlsLrlbuLlon group
noLe CreaLe Lhree groups as follow
Co Lo acLlve dlrecLory users and compuLers rlghL cllck and selecL new Lhen
cllck on group
Couise: NCITP


Clve name Lo Lhe group and selecL Lhe Lype of Lhls group securlLy Slmllarly
creaLe Lwo more groups one of Lype securlLy and Lhe oLher ls of Lype
dlsLrlbuLlon Lype
now ln your compuLer rlghL cllck on any folder selecL properLles and Lhen
selecL sharlng Lhen cllck on add group and cllck on flnd buLLon ?ou wlll only
see Lhe Lwo groups havlng Lype securlLy noL Lhe dlsLrlbuLlon group
1here are Lwo Lypes of permlsslon one ls share permlsslon and Lhe oLher ls local
permlsslon 1he share permlsslon ls applled when Lhe ob[ecL ls accesslng
remoLely ?ou can asslgn share permlsslon on a folder by rlghL cllcklng and selecL
Lhe properLles and Lhen cllck on sharlng Lhen cllck on advance sharlng Lhen glve
name Lo Lhe shared folder Lhen add Lhe group and Lhen asslgn permlsslons Local
permlsslons are applled on boLh Lype of access le for remoLe access and for local
access buL local permlsslon overrlde Lhe remoLe permlsslon ?ou can apply local
permlsslon on a folder by rlghL cllcklng and Lhen selecL properLles Lhen selecL
n1lS Lab and apply Lhe permlsslon
Group Scope 1here are Lhree scopes used
1 G|oba| group 1wo Lhlngs are lmporLanL ln group scope one ls membershlp
and Lhe oLher ls vlslblllLy 1he membersh|p of Lhe global group ls only users
from lLs own domaln 1he v|s|b|||ty of Lhe global group ls LhroughouL Lhe
foresL
2 Doma|n |oca| Membershlp users from any domaln ln Lhe foresL whlle
vlslblllLy only ln lLs own domaln
3 Un|versa| Clobal Croup + uomaln Local unlversal Croup
?ou need all Lhese Lhlngs ln a mulLldomaln envlronmenL 1here ls MlcrosofL rule
A C u L A add users C global group uL domaln local group permlsslons
lL means LhaL add users Lo Lhe global group Lhen add Lhe global group lnLo Lhe
domaln local group and Lhen apply permlsslons

Case Study
Couise: NCITP


uomaln 8 uomaln A uomaln C

lf sysLems are aLLached Lo Lhe uomaln A Lhen uomaln A 8 and C are called
AccounLs domaln because Lhe users are avallable on lL whlle domaln A ls also
called a resource domaln AccounL domaln needs global group and 8esource
domaln ls called domaln local group
Conslder anoLher case sLudy leL a lolder named lolder A has Lhe followlng
permlsslons
Share ermlsslon n1lS ermlsslons
CroupA 8ead Modlfy
Croup8 Change 8ead
lshaq (member of A 8) lull ConLrol 8ead
lull ConLrol (mosL) + Modlfy (mosL) Modlfy (leasL)
Group o||cy
Croup pollcy provlde Lwo Lhlngs Lo Lhe users
1 laclllLles Lo Lhe users
2 8esLrlcLlons on Lhe users
1here are Lwo pollcles avallable on domaln by defaulL Cne ls called defaulL
domaln pollcy and Lhe oLher ls called defaulL domaln conLroller pollcy 1ype
gpmcmsc command ln Lhe run wlndow Lhe group pollcy managemenL console
wlll be opened 1hen cllck on domaln Lhen cllck on group pollcy ob[ecL Lhese Lwo
wlll be dlsplayed
30 users
CL8
100 users
CLA
uLCCLA (100)
CL8 (30)
CLC (100)
100 users
CLC
Couise: NCITP


Croup pollcy ls applled on a conLalner lnslde Lhe conLalner Lhere may be elLher
users or compuLers Cn users Lhe pollcy ls lmplemenLed when he logs on whlle on
Lhe compuLer lL ls appllcable when Lhe sysLem rebooLs Croup pollcy enable
conLalners are
SlLe (cllck on admlnlsLraLlve Lools and selecL Au slLes)
uomaln (cllck on admlnlsLraLlve Lools and Lhen Au users and compuLers)
Cu (rlghL cllck on domaln and selecL new CrganlzaLlon unlL)
8y defaulL only one Cu called domaln conLroller ls lnsLalled when Au ls lnsLalled
GC (Group o||cy Cb[ect)
1 GC (Group o||cy Conta|ner) lL ls vlewable Lhrough AcLlve ulrecLory users
and compuLers (cllck on AcLlve dlrecLory users and compuLers/rlghL cllck
and selecL vlew/advance feaLures/sysLem/pollcles/(you wlll see 2 defaulL
CC pollcles) lL provldes verslon lnformaLlon for synchronlzaLlon
2 G1 (Group o||cy 1emp|ate) lL ls vlewable ln Sysvol (C
wlndowsSysvoldomalnpollcles(you wlll see 2 defaulL C1 pollcles)
now creaLe anoLher group pollcy ln Lhe pollcy managemenL console by rlghL cllck
on Lhe group pollcy ob[ecL and selecL new Lhen glve name Lo Lhe pollcy now
check ln boLh CC and C1 Lhe pollcles wlll be shown 3
Cvera|| Adm|n|strat|on of Group o||cy
1 Copy and pasLe
2 8ackup and resLore
8lghL cllck on one of Lhe group pollcy ob[ecL and selecL copy Lhen selecL pasLe Lhe
pollcy ob[ecL wlll be pasLed Lhen rename lL and edlL for furLher modlflcaLlons
1here ls a new feaLure ln wlndow 2008 server called SLarLer CC ln whlch a
company general LemplaLe (rules) ls made Lhen whenever you creaLe a new pollcy
ob[ecL SelecL SLarLer CC ob[ecL Lhen rlghL cllck and selecL new Lhen glve name
Lhen cllck ok now lf you wanL Lo creaLe a new pollcy ob[ecL rlghL cllck on Lhe
group pollcy ob[ecL rlghL cllck and selecL new glve name Lo Lhe pollcy ob[ecL and
Couise: NCITP


below ln Lhe drop down llsL selecL Lhe sLarLer CC LemplaLe and Lhe cllck ok and
Lhen rlghL cllck and selecL edlL for furLher modlflcaLlons and permlsslons
Steps for backup and restore group po||cy
8lghL cllck on group pollcy ob[ecL
SelecL backup
Cllck browse and glve name Lo Lhe folder for backup
Cllck on backup
now for resLore rlghL cllck and selecL resLore
8rowse for Lhe locaLlon and selecL backup
Cllck nexL and Lhen ok
WMI ||ter lL ls a Lool whlch fllLers ouL Lhe condlLlons durlng logon lor example
lf we wanL Lo lnsLall MS Cfflce on Lhe user accounL flrsL of all we wlll check Lhe
free space lor Lhls purpose you need Lo wrlLe a SCL query A Lool WMlMeLlc Lool
ls also avallable on MlcrosofL webslLe for download LhaL makes a scrlpL for WMl
fllLer
SLeps
8lghL cllck on WMl lllLer and selecL new
Clve a name Lo Lhe fllLer
Cllck on Add now wrlLe Lhe followlng ln Lhe query box
SelecL *from wln32loglcaldlsk where drlvename"c" and drlveLype2 and
freespace 1000000 (space ls ln byLes)
Save lL Lhen go Lo Lhe group pollcy ob[ecL for example sales Lhen selecL
WMl fllLerlng Lhen cllck on MS Cfflce Lhen yes
Software Dep|oyment us|ng Group o||cy
lollowlng flles are used ln sofLware deploymenL
1 ms| (wlndows lnsLaller package) used for sofLware deploymenL
2 mst (Lransform flle) used for cusLom lnsLallaLlon
3 msp (paLch flle) used for servlce packs / hoL flxes
Couise: NCITP


4 A (lf sofLware does noL conLaln msl flle and only seLup flle ls avallable
Lhen you creaLe ZA flle whlch for nonmsl sofLware)
1here are Lwo Lypes of deploymenL
1 Ass|gn (Lhe asslgn deployed sofLware ls dlsplayed ln sLarL menu)
2 ub||sh (publlshed deployed sofLware ls avallable ln conLrol panel Lhen
programs and feaLure Lhen ln neLwork)
llrsL of all Su (sofLware dlsLrlbuLlon polnL) wlll be creaLed on Lhe hard dlsk LhaL
conLalns Lhe sofLware Lo be deployed Cenerally asslgn deploymenL ls used for
compuLers whlch are flxed for Lhe users Whlle publlsh deploymenL ls used for
users whose compuLer ls noL flxed
Note ln domaln envlronmenL when we creaLe a user Lhen cllck on Lhe user
properLles and selecL member of Lab and wrlLe ba" and cllck on add and apply
CLherwlse you cannoL logon wlLh Lhls user
Lecture no6
Steps of Software Dep|oyment
llrsL make a Su (sofLware ulsLrlbuLlon olnL) on your hard dlsk and rlghL
cllck on lL go Lo properLles Lhen advance sharlng and Lhen glve full conLrol
Lo every one group
now open group pollcy managemenL console (gpmcmsc) and cllck on
domaln and selecL group pollcy ob[ecL
8lghL cllck on Lhe defaulL domaln pollcy and selecL edlL
1here cllck on pollcles under compuLer and cllck on sofLware seLLlngs
8lghL Cllck on sofLware lnsLallaLlon and selecL new package
Clve Lhe neLwork paLh (pc10) and press enLer Lhe shared folders wlll be
dlsplayed
SelecL Su and Lhen cllck on msl flle and press ok Lhen lL wlll ask wheLher
you wanL Lo asslgn or publlsh Lhe appllcaLlon selecL your cholce and cllck
ok
Couise: NCITP


lf you wanL Lo lnsLall cusLomlze packages (llke excel word only) Lhrough
sofLware deploymenL Lhen you need msL flle
llrsL of all lnsLall C8k(Cfflce 8esource klL) from MS Cfflce Cu ln order Lo
make msL flle
AfLer lnsLalllng C8k open lL from programs Lhen Lools Lhen resource klL
Cllck on cusLom lnsLallaLlon wlzard
8rowse for roclusmsl from Su
CreaLe a new MS1 flle glve any name
nexL Lhen nexL and selecL packages from Lhe sofLware
Cllck on nexL and Lhen cllck on exlL
AL Lhe end lL wlll ask Cu key as volume llcense
now rlghL cllck on group pollcy and edlL defaulL domaln pollcy
SelecL pollcles under compuLer conflguraLlons and Lhen cllck on sofLware
seLLlngs
8lghL cllck on sofLware lnsLallaLlon and selecL new package
Clve a neLwork paLh selecL Lhe Su Lhen offlce Lhen roclus
1hen selecL advance Lhen selecL modlflcaLlon Lhen cllck on Add
SelecL MS1 Lhen deploymenL Lhen selecL asslgn
SelecL lnsLall aL logon and Lhen cllck on ok
now updaLe group pollcy by gpupdaLe command
Note lf Lhere ls no msl flle Lhen you can creaLe lL by uslng a sofLware called
WlnlnS1ALL LhaL ls called msl maker
now to create A f||e
When only seLup flle ls avallable of Lhe sofLware Lhen you can creaLe a ZA flle lL
ls publlshed noL asslgned 1here ls no self repalr ln ZA flle
Cpen noLepad and wrlLe Lhe followlng commands
appllcaLlon
lrlendlyname acrobaL reader"
SeLupcommand acrobaLexe
verslon 3001
Couise: NCITP


Save Lhls flle wlLh Lhe zap exLenslon ln Lhe same locaLlon where Lhe
acrobaLexe ls sLored
Share Lhls folder and asslgn permlsslons
now go Lo defaulL domaln pollcy rlghL cllck and selecL edlL
SelecL pollcles under users and Lhen selecL sofLware seLLlngs
8lghL cllck on sofLware lnsLallaLlon and selecL new package
SelecL ZA cllck on add Lhen selecL publlsh and cllck on Ck
Act|ve D|rectory Cert|f|cate Author|ty (CA)
1he purpose of CerLlflcaLe AuLhorlLy ls auLhenLlcaLlon and confldenLlallLy CA
provldes cerLlflcaLe
Symmetr|c encrypt|on ln Lhls meLhod Lhe decrypLlon and encrypLlon keys wlll be
same lL means LhaL you wlll need Lhe same key for decrypLlon LhaL you have used
for encrypLlon
Asymmetr|c encrypt|on ln Lhls meLhod Lhe encrypLlon and decrypLlon keys are
dlfferenL lL means LhaL when you use one key for encrypLlon Lhen you can
decrypL Lhe lnformaLlon wlLh a dlfferenL key
1here are Lwo lmporLanL Lhlngs
1 ub||c key authent|cat|on ln Lhls case Lhe senders encrypL lnformaLlon
wlLh lLs prlvaLe key lL ls asymmeLrlc encrypLlon now Lhe recelver wlll use
publlc key of Lhe sender Lo decrypL Lhls lnformaLlon
2 ub||c key encrypt|on ln Lhls case Lhe senders encrypL Lhe lnformaLlon
wlLh Lhe recelver publlc key lL ls also asymmeLrlc encrypLlon ln whlch Lhe
recelvers wlll use lLs prlvaLe key Lo decrypL lL
lndlrecLly keys are lssued by CA CA lssue flrsL cerLlflcaLe Lo lLself Lhen he geLs Lhe
ablllLy Lo glve cerLlflcaLes Lo oLhers and CA always sends lnformaLlon ln encrypLed
form When a person requesL for Lhe publlc key of Lhe recelver CA lssues hlm hls
own cerLlflcaLe conLalnlng CA publlc key and Lhen encrypL oLher person publlc key
wlLh lLs prlvaLe key and send lL Lo you ?ou wlll decrypL CA encrypLed lnformaLlon
by hls publlc key and wlll Lake Lhe publlc key of Lhe oLher person
Couise: NCITP


CA Insta||at|on
1here are some lmpacLs of CA afLer lLs lnsLallaLlon on Lhe sysLem llrsL lmpacL you
cannoL change Lhe sysLem name afLer CA lnsLallaLlon Second you cannoL remove
or add sysLem Lo domaln afLer CA 1hlrd you cannoL remove AcLlve ulrecLory from
Lhe sysLem afLer CA lnsLallaLlon
Steps
Cllck on Server Manager and selecL 8oles
Cllck on Add 8oles and cllck on nexL
SelecL AcLlve ulrecLory CerLlflcaLe Servlces from Lhe llsL
Cllck nexL Lhen cllck nexL
SelecL CerLlflcaLlon AuLhorlLy CA web enrollmenL and onllne responder
check boxes from Lhe llsL
Cllck nexL Lhen selecL enLerprlse Lhen cllck on nexL
SelecL 8ooL CA and cllck nexL
Clve any name Lo CA and cllck on nexL Lhen glve Lhe valldlLy perlod 3 years
by defaulL
Cllck on nexL Lhen nexL Lhen selecL on wlndows lnLegraLed auLhenLlcaLlon
Cllck on nexL and Lhen lnsLall
AfLer lnsLallaLlon rlghL cllck on CA and selecL properLles cllck on advance
you wlll see lssued Lo and lssued by lnformaLlon of cerLlflcaLe ?ou can also
check Lhe publlc key by cllcklng on Lhe deLalls buLLon
now to Issue a Cert|f|cate
1here are Lwo meLhods used Lo lssue a cerLlflcaLe Cne ls uslng Lhe mmc and Lhe
oLher ls web enrollmenL
Steps of mmc method
1ype mmc command ln Lhe run wlndow
Cllck on llle menu and selecL Add/8emove Snapln
SelecL cerLlflcaLe from Lhe llsL and Lhen cllck on add buLLon
SelecL my user accounL
Couise: NCITP


Cllck on flnlsh and Lhen Ck
now cllck on cerLlflcaLe Lhen on personal Lhe cerLlflcaLe LhaL ls already exlsL
ls un LrusLed
now rlghL cllck Lhere and selecL new Lasks Lhen cllck on requesL a new
cerLlflcaLe
Cllck on nexL Lhen nexL
SelecL user and cllck on enroll and Lhen flnlsh
1he cerLlflcaLe wlll be vlslble ln Lhe lssued cerLlflcaLe folder
Steps for web enro||ment
Cpen your web browser
1ype Lhe u8L pc1/cerLsrv
Clve user name and password
Cllck on requesL a cerLlflcaLe llnk Lhen selecL user cerLlflcaLe
Cllck on submlL buLLon
Cert|f|cate evocat|on L|st (CL)
lf you wanL Lo revoke a cerLlflcaLe from Lhe user Lhen use Lhe followlng SLeps
8lghL cllck on Lhe cerLlflcaLe
SelecL all Lasks Lhen cllck revoke cerLlflcaLe
Clve reason code buL remember LhaL Lhe cerLlflcaLe wlll be unrevoked only
lf you selecL cerLlflcaLe hold reason code
1he cerLlflcaLe wlll be Lemporally dlsabled agaln rlghL cllck on LhaL
cerLlflcaLe go Lo all Lasks and selecL unrevoked
CA backup and estore
Steps for CA 8ackup
8lghL cllck on CA
SelecL All 1asks and cllck on 8ackup CA
Cllck on nexL and browse for Lhe folder ln whlch you wanL Lo sLore backup
Clve a password and Lhen cllck on flnlsh
Couise: NCITP


Steps for CA estore
8lghL cllck on CA
SelecL All 1asks
Cllck on 8esLore and cllck ok
Cllck on nexL and Lhen browse for folder where backup ls locaLed
Cllck on ok Lhen cllck on nexL
Clve Lhe password LhaL you have asslgned durlng backup
Cllck flnlsh Lhen cllck on yes
Lecture no7
Act|ve D|rectory ep||cat|on
8epllcaLlon ls derlved from a word repllca whlch means copy 8epllcaLlon means
Lo make a copy AcLually AuC ls Lhe copy of Lhe uC
SlLes 1he collecLlon of uC's connecLed wlLh a hlgh speed permanenL and rellable
connecLlon ls called a slLe
ln normal Lerms slLes means locaLlons 1here are Lwo Lypes of repllcaLlon
1 Inters|te ep||cat|on
lnLerslLe repllcaLlon means repllcaLlon beLween slLes ln Lhls case Lhere are
mulLlple slLes 1he bandwldLh of Lhe llnk wlll be slow ln case of lnLerslLe
repllcaLlon because Lhe llnk ls WAn
a Compressed repllcaLlon Lrafflc ls requlred when Lhe bandwldLh ls
low
b lL performs Scheduled updaLes (by defaulL 3 hours)
c AuLomaLlc / Manual updaLes can be performed (by defaulL 180
mlnuLes lnLerval)
d ConflguraLlon ls needed ln case of lnLerslLe repllcaLlon
2 Intras|te ep||cat|on
Couise: NCITP


lnLeraslLe repllcaLlon means repllcaLlon wlLhln slLes ConnecLlon ls hlgh
speed rellable and permanenL ln case of lnLraslLe repllcaLlon
a uncompressed repllcaLlon Lrafflc
b LvenL Lrlggered updaLes
c AuLomaLlc / Manual and non scheduled
d no conflguraLlon ls needed
Steps for Intras|te rep||cat|on
llrsL we need one uC and one AuC for repllcaLlon
Cllck on AcLlve ulrecLory users and compuLers from admlnlsLraLlve Lools
Cllck on Lhe uomaln ConLrollers ?ou wlll see Lwo uC's leL say pc1 pc3
now open unS cllck on slLes Lhen on defaulL slLes 1here wlll be slx enLrles
Lhree for one uC and Lhree for anoLher uC
now open AcLlve ulrecLory slLes and LrusL
8lghL cllck on slLe and selecL new slLe
Clve name Lo Lhe slLe for example Lahore
1he above slLe wlll be repllcaLed on anoLher uC ?ou can check lL wlLhln Lhe
slLe of anoLher uC
now make a user on one uC 1hls user wlll be repllcaLed auLomaLlcally
wlLhouL any conflguraLlon on anoLher uC because lL ls evenL Lrlggered
updaLes
Mu|t|p|e S|tes for example we have Lwo slLes A and 8 1here are Lwo uC's ln slLe
A and Lhree uC's on slLe 8 8oLh slLes are lnLerconnecLed wlLh each oLher Lhrough
WAn llnk lL means LhaL lL ls lnLerslLe repllcaLlon now a quesLlon arlses LhaL ls lL
loglcal LhaL every uC of slLe 8 wlll send updaLes or changes Lo every uC ln slLe or
only one uC from slLe 8 sends or recelve updaLes or changes from one uC of slLe A
and Lhen forward Lhese updaLes or changes Lo Lhe local uC's
1he uC on each slde LhaL sends or recelves changes or updaLes from oLher slLe uC
ls called 8rldge ead Server 1herefore we can deflne lL as A domaln conLroller
LhaL recelves changes from remoLe slLe and Lhen forward Lhese changes Lo local
uC
Couise: NCITP


lf you wanL Lo dlsplay brldge head server Lhen Lype Lhe repadmln /brldgeheads
command ln Lhe command llne buL you wlll see no brldge head server
now make Lwo slLes Lahore and lslamabad Lhen move Lahore uC lnLo lslamabad
slLe Lhen agaln run Lhe above command
S|te ||nks
SlLe llnks means when you are esLabllshlng llnks beLween slLes Lhen you musL
conslder Lhe followlng flve Lhlngs
1 roLocols
a l
b SM1 (lL runs on llmlLed bandwldLh)
2 Member slLe
3 CosL
4 lnLerval
3 Schedule
Steps
Cllck on AdmlnlsLraLlve Lools Lhen cllck on AcLlve dlrecLory slLes and LrusL
Cllck on Au slLes and servlces Lhen cllck on slLes
cllck on lnLer slLe LransporL Lhen selecL l and rlghL cllck on lL and selecL
new slLe llnk
Clve name Lo Lhe slLe and press ok
now rlghL cllck on Lhe creaLed slLe and selecL properLles
Cllck on cosL When Lhe value of cosL ls low Lhen lLs prlorlLy ls hlgh lor
example lf you have Lwo llnks A and 8 1he llnk wlll be preferred whose cosL
ls low 8uL lf boLh llnks have Lhe same cosL Lhen deflnes a schedule by
cllcklng on Lhe schedule buLLon

Act|ve D|rectory art|t|ons
1here are four parLlLlons of Au whlch ls also called repllcaLlon unlLs
Couise: NCITP


1 Schema arLlLlon loresL speclflc repllcaLlon
2 ConflguraLlon arLlLlon loresL speclflc repllcaLlon
3 uomaln uaLa arLlLlon uomaln speclflc repllcaLlon
4 AppllcaLlon arLlLlon Conflgurable repllcaLlon
Act|ve D|rectory ep||cat|on Mon|tor
kCC sLands for knowledge ConslsLency Checker lL ls a background servlce LhaL
makes Lhe Lopology conslsLenL 1ype repadmln /kcc ln Lhe command llne and
press enLer 8epllcaLlon MonlLor ls an lmporLanL Lool whlch ls used for Lhe
monlLorlng of AcLlve ulrecLory
Steps
llrsL lnsLall supporL Lools from wlndows server 2003 Cu Cllck on supporL
Lools Lhen lnslde Lhe Lools folder selecL supporL Lools msl and lnsLall lL
now Lype replmon ln Lhe command llne and press ok
8lghL cllck on Lhe monlLored server and selecL Add monlLored servers
Add Lhe name of Lhe server or cllck on search
Cllck on expand

Lxam 70643 W|ndows Server 2008 App||cat|on Server Infrastructure Conf|gur|ng
Lecture no1
Manag|ng Server 2008 Storage
8aslc ulsk
uynamlc ulsk
rlmary arLlLlon
LxLended arLlLlon
Loglcal arLlLlon
Slmple volume
Spanned volume
SLrlpped volume
Couise: NCITP


Mlrrored volume / dlsk duplexlng
ardware lmplemenLaLlon of 8Alu
SofLware lmplemenLaLlon of 8Alu
8Alu0 (dlsk sLrlpplng / sLrlpped volume)
8Alu1 (dlsk mlrrorlng / mlrrored volume)
8Alu3 (sLrlpped volume wlLh parlLy)
San
nas
SLorage neLworklng
Lecture no2
IIS (Internet Informat|on Serv|ce)
MlcrosofL lmplemenLaLlon of web server ls called llS
now to Insta|| IIS
Co Lo server manager cllck on 8oles
Cllck on add roles and cllck on nexL
SelecL Web Server (llS) and cllck on nexL
Cllck on nexL Lhen lnsLall and Lhen cllck close
Steps for Mak|ng DNS one
Cpen unS from admlnlsLraLlve Lools
SelecL forward lookup zone
SelecL prlmary zone
Clve name Lo Lhe zone (corvlLLralnlngcom)
lnslde Lhls newly creaLed zone creaLe a hosL record by rlghL cllcklng
Clve name www and asslgn l address 19216801
Steps for mak|ng a webs|te
Cpen noLe pad and wrlLe some 1ML code
hLmlbody
Couise: NCITP


1hls ls a LesL webslLe for web hosLlng
/body/hLml
Make a folder wlLh Lhe name web ln u drlve and save Lhls flle wlLh LesLhLml
Steps for creat|ng s|te
Cpen llS from admlnlsLraLlve Lools
8lghL cllck on slLe and selecL add new slLe
Clve name Lo Lhe webslLe
Clve a physlcal paLh (browse for Lhe webslLe ln u drlve)
Clve hosLname (wwwcorvlLLralnlngcom)
Cllck ok
now cllck on Lhe defaulL documenLs and remove all documenLs
Add your own documenL LesLhLml Lo Lhe defaulL documenL
Lnable lL and Lhen cllck ok
SLop Lhe webslLe Lhen sLarL Lhe webslLe
now go Lo lnLerneL Lxplorer and Lype Lhe u8L wwwcorvlLLralnlngcom
nost|ng mu|t|p|e webs|tes on same web server
1here are Lhree meLhods for hosLlng mulLlple webslLes on Lhe same web server
1 ulfferenL l's for each webslLe
2 ulfferenL porLs for each webslLe
3 ulfferenL 11 eaders (hosL names) for each webslLe
Steps for host|ng mu|t|p|e webs|tes on same web server us|ng d|fferent I's
llrs asslgn anoLher l address Lo Lhe neLwork adapLer
8lghL cllck on Lhe neLwork adapLer and selecL properLles
Cllck on advance seLLlng and glve anoLher l address (19216803)
1hen Cpen unS from admlnlsLraLlve Lools
SelecL prlmary zone
Clve name Lo Lhe zone (corvlLsoluLloncom)
Couise: NCITP


now Cpen llS from admlnlsLraLlve Lools
Clve hosLname (wwwcorvlLsoluLloncom)
Cllck ok
now go Lo lnLerneL Lxplorer and Lype Lhe u8L wwwcorvlLsoluLloncom
ln order Lo hosL mulLlple webslLes on Lhe same web server by asslgnlng dlfferenL
porL numbers you have Lo asslgn dlfferenL porL numbers ln creaLlng new webslLes
and ln Lhe lnLerneL explorer wrlLe Lhe porL number along wlLh u8L as
wwwcorvlLLechcom8011 buL lL ls lmpracLlcal ln real world
UL ed|rect|on
u8L redlrecLlon means Lo redlrecL one webslLe address Lo anoLher address
Steps
llrsL of all lnsLall llS redlrecLlon from server manager
Cllck on roles Lhen rlghL cllck on add roles servlces
selecL llS redlrecLlon and cllck on lnsLall
1hen Cpen unS from admlnlsLraLlve Lools
SelecL prlmary zone
Clve name Lo Lhe zone (corvlLlahorecom)
Couise: NCITP


now Cpen llS from admlnlsLraLlve Lools
Clve hosLname (wwwcorvlLlahorecom)
Cllck ok
now cllck on 11 redlrecL
WrlLe wwwcorvlLLralnlngcom ln Lhe redlrecL Lo
Cllck on apply
now open browser and Lype wwwcorvlLlahorecom lL wlll be redlrecLed Lo
wwwcorvlLLralnlngcom auLomaLlcally
IIS 8ackup
Cpen command llne by Lyplng cmd ln Lhe run wlndow
C cd wlndows (press enLer)
Cwlndows cd sysLem32 (press enLer)
CwlndowssysLem32cd lneLsrv (press enLer)
CwlndowssysLem32lneLsrv appcmd add backup mybackup (press enLer)
now go Lo llS and remove all slLes ln order Lo resLore lL agaln
IIS estore
Cpen command llne by Lyplng cmd ln Lhe run wlndow
C cd wlndows (press enLer)
Cwlndows cd sysLem32 (press enLer)
CwlndowssysLem32cd lneLsrv (press enLer)
CwlndowssysLem32lneLsrv appcmd resLore backup mybackup (press
enLer)
Note lL wlll only resLore slLe conflguraLlon noL Lhe web conLenLs
Couise: NCITP


W|ndows Share o|nt Serv|ces
Wlndows share polnL servlces are noL avallable by defaulL ln Lhe server 2008 Cu
?ou have Lo download lL from Lhe MlcrosofL webslLe lL ls used Lo make porLals
blogs eLc porLal ls a webslLe whlch glves lnformaLlon as well as lnLeracLlon Lo Lhe
users (for example facebook orklL eLc) Wlndows share polnL servlces change Lhe
webslLe lnLo porLal erform Lhe followlng Lhree sLeps
1 lnsLall share polnL servlces ( selecL 8aslc lnsLallaLlon ln Lhe wlzard)
2 8un share polnL producLs and Lechnology
3 CreaLe a web appllcaLlon
Cpen share polnL admlnlsLraLlon
Cllck on appllcaLlon managemenL
Cllck on creaLe or exLend web appllcaLlon
Cllck on creaLe a new web appllcaLlon
Clve user name and password ln conflgurable opLlon
Clve name of Lhe server ln Lhe search server opLlon and cllck on ok
Cllck on creaLe slLe collecLlon ln Lhe appllcaLlon managemenL
Clve LlLle doc Lhen cllck on collaboraLlon documenL workplace
Clve Lwo user names and passwords and cllck ok
Cpen lL and add a new documenL
ln order Lo glve quoLa open quoLa LemplaLe
Clve name Lo Lhe quoLa and asslgn slze ln M8 and also slze for warnlng
now cllck on creaLe slLe collecLlons
Clve LlLle blog
Clve Lwo user names and passwords

8ackup and restore operat|ons of IIS
Cpen share polnL admlnlsLraLlon
Cllck on appllcaLlon managemenL
Cllck on perform a backup
Couise: NCITP


SLore lL ln a shared folder
SelecL all and cllck on conLlnue Lo backup
SelecL full backup and browse for Lhe locaLlon Lo sLore
ln Lhe resLore operaLlon cllck on resLore from backup
8rowse for Lhe locaLlon and cllck ok
Lecture no3
emote Desktop Serv|ces
1here are Lwo componenLs of Lhe remoLe deskLop servlces 8emoLe ueskLop
Servlces ls lnLroduced ln wlndows 2000 whlch ls called Lermlnal servlces ln whlch
boLh Lhe componenLs musL be lnsLalled ln Wlndows 2003 boLh Lhese
componenLs were separaLed ln wlndows 2008 82 lL ls called remoLe deskLop
servlces
1 8emoLe AdmlnlsLraLlon
lor remoLe admlnlsLraLlon you don'L need Lo lnsLall remoLe deskLop servlces only
enable lL from Lhe properLles of compuLer
2 AppllcaLlon Sharlng
lf you wanL Lo perform appllcaLlon sharlng Lhen you musL lnsLall remoLe deskLop
servlces from 8oles
Steps of |nsta|||ng remote desktop serv|ces
Cllck on server manager and cllck on roles
Cllck on Add roles
SelecL remoLe deskLop servlces from Lhe llsL and cllck on nexL
SelecL remoLe deskLop sesslon llcenslng and web access from Lhe llsL
Cllck on nexL selecL don'L requlred neLwork
SelecL per user Lhen cllck on nexL and nexL
SelecL domaln and cllck on nexL Lhen lnsLall
now Lype msLsc ln Lhe run wlndow or cllck on Lhe admlnlsLraLlve Lools and
selecL remoLe deskLop servlces Lhen cllck on remoLe deskLop
Couise: NCITP


Cllck on 8emoLe AppllcaLlon Manager and Lhen cllck on Add remoLe
appllcaLlon
lor example selecL power polnL appllcaLlon
ln llS a vlrLual dlrecLory wlLh a name 8uweb for remoLe deskLop ls creaLed
W|ndows Med|a Serv|ces
lL ls Lhe lmplemenLaLlon of sLreamlng medla server ls called Wlndows Medla
Servlces (WMS) When you wanL Lo onllne vldeos Lhen you need WMS for LhaL
1here are Lwo meLhods used for WMS
1 Llve sLream by uslng hLLp proLocol
2 Llve sLream by uslng 8S1 lL works on porL 4334 and uses boLh uu and
1C
?ou need Lo creaLe a publlshlng polnL when you on alr llve conLenLs 1here are
Lwo publlshlng polnLs
1 8roadcasL publlshlng polnL 1here ls no conLrol of Lhe user on broadcasL
publlshlng polnL ?ou cannoL pause Lhe sLreamlng vldeo
2 Cn demand publlshlng polnL user can conLrol pause and sLarL Lhe vldeo ln
on demand publlshlng polnL
ln order Lo use Wlndows Medla Servlces you need Lo download MlcrosofL
SLandalone ackage from Lhe lnLerneL and lnsLall lL AfLer LhaL you wlll be able Lo
see sLreamlng wlndow medla server ln Lhe Add 8ole wlzard 1hen selecL lL and
cllck on lnsLall
or w|ndows Med|a |ayer
SelecL feaLures and cllck on Add feaLure
SelecL ueskLop experlence from Lhe llsL and cllck on lnsLall
now go Lo 8oles cllck on Add 8ole
SelecL sLreamlng medla servlces and cllck on nexL
1hen selecL all opLlons ln Lhls wlndow
Couise: NCITP


Cllck on 8S1 and cllck on nexL
Cllck on nexL and Lhen lnsLall
Make a pub||sh|ng po|nt
Cpen wlndows medla servlces from Lhe admlnlsLraLlve Lools
8lghL cllck on publlshlng polnL and selecL new publlshlng polnL
Clve name Lo Lhe publlshlng polnL
Cllck on one flle and Lhen nexL
SelecL broadcasL publlshlng polnL and cllck on nexL
SelecL unlcasL and Lhen browse for Lhe vldeo cllp
SelecL flle and cllck on nexL
1hen cllck on creaLe an announcemenL flle Lhen nexL
Cllck on flnlsh
Note afLer performlng all Lhese sLeps lf sLlll Lhe vldeo ls noL playlng Lhen only
connecL Lhe compuLer Lo Lhe lnLerneL lL wlll be played Slmllarly Cn uemand
ubllshlng havlng Lhe same sLeps
W|ndows Server Update Serv|ces (WSUS)
Cllck on 8oles and Lhen Add 8oles
SelecL wlndows server updaLe servlces
1he updaLe wlll be downloaded from Lhe MlcrosofL webslLe
AfLer downloadlng conflgure lL so LhaL oLher cllenLs wlll Lake updaLes from
Lhls server noL from Lhe lnLerneL

nyperV term|na|
yperv Lermlnal ls a new feaLure of wlndows server 2008 82 whlch glves Lhe
ablllLy Lo lnsLall mulLlple operaLlng sysLems vlrLually on server 2008 machlne 1hls
feaLure ls bullL ln Lhe server 2008 82 operaLlng sysLem
Couise: NCITP


Steps
Cllck on 8oles Lhen Add roles
SelecL hyperv from Lhe llsL and cllck on nexL
Cllck on lnsLall
now open hyperv manager from Lhe admlnlsLraLlve Lools
Cllck on hyperv seLLlngs
SelecL C and rlghL cllck
SelecL new vlrLual machlne
Clve name Lo Lhe machlne and cllck on nexL
Clve 8AM slze for Lhls vlrLual machlne and cllck nexL
SelecL vlrLual neLwork nlC and hard dlsk space
Cllck nexL and lnsLall from uvu
Cr 8rowse lmage and selecL lso lmage
8lghL cllck and cllck on sLarL
8lghL cllck and connecL
roceed wlLh lnsLallaLlon
Command ||ne steps
C cd program flles
Cprogram flles cd hyperv
Cprogram flleshyperv vmconnecLexe
1here are Lwo operaLlng sysLems now on Lhls machlne one ls hosL and Lhe oLher ls
guesL osL operaLlng sysLem ls wlndows server 2008 82 and guesL operaLlng
sysLem ls one whlch ls lnsLalled on vlrLual machlne

Microsoft Certified IT Professional (MCITP)

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Microsoft Certified IT Professional (MCITP)

Uploaded by

Copyright:

Available Formats

Couise: NCITP

Piepaieu By: ISBAQ ABNEB Coivit Lahoie Page

You might also like