Windows Server 2003 Network Administration Goals

Similar documents
Introduction to LAN Introduction to TDC 363 Lecture 05 Course Outline What is NOS?

Chapter 1: Windows Platform and Architecture. You will learn:

IT222 Microsoft Network Operating Systems II

Windows Server 2008 Administration

8 Administering Groups

Microsoft Windows Server Administration Fundamentals. Download Full Version :

x CH03 2/26/04 1:24 PM Page

Lesson 3: Identifying Key Characteristics of Workgroups and Domains

Windows 2000 System Administration Handbook, 1/e

Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services

CISNTWK-11. Microsoft Network Server. Chapter 4

Identity with Windows Server 2016 (742)

Deploying Windows Server 2003 Internet Authentication Service (IAS) with Virtual Local Area Networks (VLANs)

Managing and Maintaining a Microsoft Windows Server 2003 Environment

6 Months Training Module in MS SQL SERVER 2012

COPYRIGHTED MATERIAL. Chapter. Getting Started with Windows 2000 Server MICROSOFT EXAM OBJECTIVES COVERED IN THIS CHAPTER

TestOut Server Pro 2016: Identity - English 4.0.x LESSON PLAN. Revised

Course Content of MCSA ( Microsoft Certified Solutions Associate )

Microsoft - Configuring Windows Server 2008 Active Directory Domain Services (M6425)

Installing and Configuring Windows Server 2012 R2

Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services (Course 6425A)

Network+ Guide to Networks, Fourth Edition. Chapter 8 Network Operating Systems and Windows Server 2003-Based Networking

3 Administering Active Directory

Windows Server 2008 Training

Lesson 1: Preparing for Installation

5.5.3 Lab: Managing Administrative Settings and Snap-ins in Windows XP

Available In The Microsoft Management Console

70-647: Windows Server Enterprise Administration Course 01 Planning for Active Directory

70-742: Identity in Windows Server Course Overview

MCITP CURRICULUM Windows 7

MOC 20410B: Installing and Configuring Windows Server 2012

MOC 20410C: Installing and Configuring Windows Server 2012

Ebook : Overview of application development. All code from the application series books listed at:

Guide to Securing Microsoft Windows 2000 Active Directory

Parallels Virtuozzo Containers 4.6 for Windows

What s in Installing and Configuring Windows Server 2012 (70-410):

MCSA Windows Server 2012

NetIQ Advanced Authentication Framework. Deployment Guide. Version 5.1.0

BusinessObjects Enterprise XI

Active Directory trust relationships

Active Directory. Learning Objective. Active Directory

Baan OpenWorld Broker 2.1. Installation Guide for Baan OpenWorld Broker 2.1

Index. Numbers and Symbols. authentication

Module 3: Managing Groups

MOC 6419B: Configuring, Managing and Maintaining Windows Server based Servers

Migrating from Window Server 2003 to Windows Server 2008 on Different Hardware Server. Pre-requisites

App Orchestration 2.6

Recent Operating System Class notes 04 Managing Users on Windows XP March 22, 2004

TS: Upgrading from Windows Server 2003 MCSA to, Windows Server 2008, Technology Specializations

Dell PowerVault Best Practices Series. Deploying the Dell PowerVault NX3500 in a CIFS Environment A Dell Technical White Paper

NETWRIX PASSWORD EXPIRATION NOTIFIER

3/17/10. Active Directory, AD Domain, Server Role, DNS OU s, Users, Computers and Groups in AD Demo Questions

Best MCSA Training in PUNE & Best MCSA Training Institute in MAHARASHTRA

Practical 23 Manage Desktop Configuration using group policy and remote installation services.

Microsoft Exam Windows Server 2008 Active Directory, Configuring Version: 41.0 [ Total Questions: 631 ]

DigitalPersona Pro Enterprise

VMware Mirage Web Manager Guide

70-410: Installing and Configuring Windows Server 2012

ms-help://ms.technet.2004apr.1033/win2ksrv/tnoffline/prodtechnol/win2ksrv/howto/efsguide.htm

DELL POWERVAULT NX3500 INTEGRATION WITHIN A MICROSOFT WINDOWS ENVIRONMENT

TestOut Server Pro 2016: Install and Storage English 4.0.x LESSON PLAN. Revised

Installing and Configuring Windows Server 2012

Installing and Configuring Windows Server 2012

Networks: Access Management Windows NT Server Class Notes # 10 Administration October 24, 2003

One Identity Active Roles 7.2. What's New Guide

ms-help://ms.technet.2004apr.1033/win2ksrv/tnoffline/prodtechnol/win2ksrv/howto/grpolwt.htm

Installing and Configuring Windows Server 2012

MS Exam Objectives Installing and Configuring Windows Server 2012 R2

SEVENMENTOR TRAINING PVT.LTD

es T tpassport Q&A * K I J G T 3 W C N K V [ $ G V V G T 5 G T X K E G =K ULLKX LXKK [VJGZK YKX\OIK LUX UTK _KGX *VVR YYY VGUVRCUURQTV EQO

Course No. MCSA Days Instructor-led, Hands-on

NetIQ Advanced Authentication Framework. Deployment Guide. Version 5.1.0

Microsoft Certified Solutions Expert (MCSE)

Windows 2012 Active Directory Schema Snap-in Is Not Connected To The Schema Operations Master

MOC 6232A: Implementing a Microsoft SQL Server 2008 Database

Local Area Networks (LAN s)

Xcalibur Global Version Rev. 2 Administrator s Guide Document Version 1.0

Mmc Cannot Initialize The Snap-in Active >>>CLICK HERE<<<

Course Outline. Upgrading Your Skills to MCSA Windows Server 2012 R2 (Course & Lab)

5.1. Functional Level

Introduction to Active Directory

RSA Authentication Manager 7.1 Administrator s Guide

IT Service Delivery And Support Week Four - OS. IT Auditing and Cyber Security Fall 2016 Instructor: Liang Yao

Step-by-step installation guide for monitoring untrusted servers using Operations Manager

Faculty of Engineering Computer Engineering Department Islamic University of Gaza Network Lab # 5 Managing Groups

Automating the Windows 2000 Installation

Appendix A: Differences Between Microsoft Windows Server 2003 and Microsoft Windows 2000

Microsoft MCSE Exam

Microsoft Certified System Engineer

Part I. Windows XP Overview, Installation, and Startup COPYRIGHTED MATERIAL

Prepared By Imanami Technical Communications Team

MCSA Windows Server 2012 Installation and Configuration

VMware Mirage Getting Started Guide

Windows Server : Installing and Configuring Windows Server 2012 R2. Upcoming Dates. Course Description. Course Outline

HOL124: Migrating from Exchange Server 5.5/Windows NT 4 Server to Exchange Server 2003/Windows Server Part 1

Describe the functionality of AD DS in an enterprise in relation to identity and access.

Module 5: Integrating Domain Name System and Active Directory

Windows Server 2008 Active Directory Resource Kit

Advanced Security Measures for Clients and Servers

Microsoft. Designing, Deploying, and Managing a Network Solution for a Small- and Medium-Sized Business

Transcription:

Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts relating to Windows Server 2003 network management and maintenance Explain Windows Server 2003 Active Directory concepts

Windows Server 2003 Network Administration Goals To ensure that network resources such as files, folders, and printers are available to users To secure the network so that available resources are only accessible to users who have been granted the proper permissions

Windows Server 2003 Editions Multiple versions of Windows Server 2003 exist Each version is defined to meet the need of a certain market segment Versions Include: Standard Edition Enterprise Edition Datacenter Edition Web Edition

Standard Edition Designed for everyday needs of small to medium businesses or as a departmental server for larger organizations Provides file and print services, secure Internet connectivity, centralized management of network resources Logical upgrade path for Windows 2000 Server Can be used as a domain controller, member server, or standalone server

Standard Edition (continued)

Enterprise Edition Generally used for medium to large businesses Designed for organizations that require better performance, reliability, and availability than Standard Edition provides Provides support for mission-critical applications Available in both 32 and 64-bit editions

Enterprise Edition (continued)

Enterprise Edition (continued)

Datacenter Edition Designed for mission-critical applications, very large databases, and information access that requires the highest levels of availability Can only be obtained from Original Equipment Manufacturers (OEMs)

Datacenter Edition Continued

Web Edition Lower-cost edition Designed for hosting and deploying Web services and applications Meant for small to large companies or departments that develop and/or deploy Web services

Web Edition (continued)

Activity 1-1: Determining the Windows Server 2003 Edition Installed on a Server Objective is to determine the edition of Windows Server 2003 installed on your server using System Properties Follow the instructions in the book to log in Start My Computer Properties General tab

Windows Networking Concepts Overview Two different security models used in Windows environments Workgroup Domain Three roles for a Windows Server 2003 system in a network Standalone server Member server Domain controller

Workgroups A workgroup is a logical group of computers Characterized by a decentralized security and and administration model Authentication provided by a local account database Security Accounts Manager (SAM) Limitations Users need unique accounts on each workstation Users manage their own accounts (security issues) Not very scalable

Domains A domain is a logical group of computers Characterized by centralized authentication and administration Authentication provided through centralized Active Directory Active Directory database can be physically distributed across domain controllers Requires at least one system configured as a domain controller

Member Servers A member server Has an account in a domain Is not configured as a domain controller Typically used for file, print, application, and host network services All 4 Windows Server 2003 Editions can be configured as member servers

Domain Controllers Explicitly configured to store a copy of Active Directory Service user authentication requests Service queries about domain objects May be a dedicated server but is not required to be

Domain Controllers (continued)

Activity 1-2: Determining the Domain or Workgroup Membership of a Windows Server 2003 System Objective is to determine the domain or workgroup membership of a system Start My Computer Properties Computer Name tab Displays computer name and domain Change OK

Computer Accounts Assigned in Windows NT, 2000, XP, and 2003 Assigned when joining a domain Method for authentication and access auditing Accounts are represented as computer objects Accounts can be viewed using administrative tools e.g., Active Directory Users and Computers

Activity 1-3: Viewing and Configuring Computer Account Settings in Active Directory Users and Computers Objective is to use the Users and Computers tool to view and configure account settings/properties Start Administrative Tools Active Directory Users and Computers Follow directions in book to view and configure various account settings

Using Active Directory Users and Computers to View a Computer Object

Network Management and Maintenance Overview Five major focus areas of administrative tasks Managing and maintaining physical and logical devices Managing users, computers, and groups Managing and maintaining access to resources Managing and maintaining a server environment Managing and implementing disaster recovery

Managing and Maintaining Physical and Logical Devices Network administrator responsibilities include: Installing and configuring hardware devices Managing server disks Monitoring and managing performance Tools include Control panel applets Device Manager Disk Defragmenter

Managing Users, Computers, User accounts and Groups Creation, maintenance, passwords Group accounts Assign network rights and permissions to multiple users Support e-mail distribution lists Computer accounts Active Directory tools and utilities used to create and maintain computer accounts

Activity 1-4: Resetting a Domain User Account Password Using Active Directory Users and Computers Objective is to reset a user password Force user to change password at next log-in Other techniques discussed Start Administrative Tools Active Directory Users and Computers Users Follow directions in book to complete exercise

The Reset Password Dialog Box in Active Directory Users and Computers

Managing and Maintaining Access to Resources Server 2003 uses sharing technique Sharing setup Through Windows Explorer interface and Computer Management administrative tool Shared folder and NTFS permissions Terminal services Allows access to applications through a central server Allows access from desktops running different operating systems

Managing and Maintaining a Server Environment Covers a wide variety of tasks including: Managing server licensing Managing patches and software updates Managing Web servers Managing printers, print queues, disk quotas A wide variety of tools are available including: Event Viewer and System Monitor Software Update Services Microsoft Management Console

Activity 1-5: Creating a Custom Microsoft Management Console The objective is to create a custom MMC MMC groups commonly used tools for administrator s convenience Start Run mmc OK File Add/Remove Snap-in Follow directions in book to view and select snapins to add to MMC

The Add Standalone Snap-in Dialog Box

Selecting the Snap-In Focus

Managing and Implementing Disaster Recovery Main component of disaster recovery is system backup Backup tool provided is Windows Backup Different types of backup Automated scheduling of backups Back up critical system state information Automated system Recovery Shadow Copies of Shared Folders

Introduction to Windows Server 2003 Active Directory Provides the following services Central point for storing and managing network objects Central point for administration of objects and resources Logon and authentication services Delegation of administration

Introduction to Windows Server 2003 Active Directory Continued Stored on domain controllers in the network Changes made to any Active Directory will be replicated across all domain controllers Multimaster replication Fault tolerance for domain controller failure Uses Domain Name Service (DNS) conventions for network resources

Active Directory Objects An object represents a network resource such as a user, group, computer, or printer Objects have attributes depending on object type Objects are searchable by attributes

Active Directory Schema Schema defines the set of possible objects for entire Active Directory structure Only one schema for a given Active Directory, replicated across domain controllers Two main definitions Object classes Attributes Attributes and object classes have a many-to-many relationship

Active Directory Logical Structure and Components Active Directory comprises components that: Enable design and administration of a network structure Logical Hierarchical Components include: Domains and organizational units Trees and forests A global catalog

Domains and Organizational Units Domain Has a unique name Is organized in hierarchical levels Has an Active Directory replicated across its domain controllers Organizational unit (OU) A logical container used to organize domain objects Makes it easy to locate and manage objects Allows you to apply Group Policy settings Allows delegation of administrative control

An Active Directory Domain and OU Structure

Trees and Forests Sometimes necessary to create multiple domains within an organization First Active Directory domain is the forest root domain A tree is a hierarchical collection of domains that share a contiguous DNS naming structure A forest is a collection of trees that do not share a contiguous DNS naming structure Transitive trust relationships exist among domains in trees and, optionally, in and across forests

Global Catalog An index and partial replica of most frequently used objects and attributes of an Active Directory Replicated to any server in a forest configured to be a global catalog server

Global Catalog (continued) Four main functions Enable users to find Active Directory information Provide universal group membership information Supply authentication services when a user logs on from another domain Respond to directory lookup requests from Exchange 2000 and other applications

An Active Directory Forest

Active Directory Communications Standards The Lightweight Directory Access Protocol (LDAP) is used to query or update Active Directory database directly LDAP follows convention using naming paths with two components Distinguished name: the unique name of an object in Active Directory Relative distinguished name: the portion of a distinguished name that is unique within the context of its container

Active Directory Physical Structure Physical structure distinct from logical structure Important to consider the effect of Active Directory traffic and authentication requests on physical resources A site is a combination of 1+ Internet Protocol (IP) subnets connected by a high-speed connection A site link is a configurable object that represents a connection between sites

Summary Windows Server 2003 network administration goals: Make network resources available to users as permitted Secure the network from unauthorized access Four editions of Windows Server 2003 with different features and costs Two network security models with three possible server roles

Summary (continued) Five broad categories of network administration tasks in a Windows Server 2003 environment Native directory service is Active Directory Objects and schema Domains, organizational units and controllers Trees and forests Sites and site links

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback