Embed Size (px)
DESCRIPTION
Table of contents and chapter 1 from the lab manual/workbook written by Ken Scheler.
Citation preview
Ken SchelerMcSe
Ken SchelerMcSe
InStallIng and adMInISterIng MIcroSoft® WIndoWS® Server operatIng SySteMS: a projectS lab Manual
InStallIng and adMInISterIng MIcroSoft® WIndoWS® Server operatIng SySteMS: a projectS lab Manual
InstallIng and admInIsterIng mIcrosoft® WIndoWs® server operatIng systems:a projects lab manual
Ken SchelerMCSE
Texas State Technical College Waco
© 2006 Ken Scheler
ISBN 0-9768503-3-8
All rights reserved, including the right to reproduce this book or any portion thereof in any form. Requests for such permissions should be addressed to:
TSTC PublishingTexas State Technical College Waco3801 Campus DriveWaco, TX 76705
waco.tstc.edu/publishing_TSTC/
Project manager: Mark LongArt director: Katherine WilsonPrinting production: Bill EvridgePre-press technician: Madeline AdamsEditorial intern: Candace WatersSpecial thanks: Ron Sanders, TSTC Waco, and Maxey Parrish, Baylor University
Manufactured in the United States of America
First edition
Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Installing and Administering Microsoft® Windows® Server Operating Systems: A Projects Lab Manual is an independent publication and is not affiliated with, nor has it been authorized, sponsored, or otherwise approved by Microsoft Corporation.
Table of Contents
Lesson 1: Introducing Windows Server 2003 .............................................................1
Project 1.1: Introducing Workgroups and Domains ............................................................................. 5 Project 1.2: Introducing Network Services in Windows Server 2003 ................................................. 6 Project 1.3: Introducing Network Protocols ........................................................................................... 7
Lesson 2: Installing Windows Server 2003 and Server Hardware Devices .............9
Project 2.1: Performing an Installation of Windows Server 2003 on a Clean Hard Drive ............. 10 Project 2.2: Working with the Add Hardware Wizard ....................................................................... 16 Project 2.3: Configuring Driver Signing ................................................................................................ 19 Project 2.4: Configuring Hardware Profiles and Working with Device Manager .......................... 21
Lesson 3: Introducing and Installing Active Directory ............................................27
Project 3.1: Installing Active Directory ................................................................................................. 29 Project 3.2: Creating Organizational Units ........................................................................................... 34 Project 3.3: Managing Active Directory Objects .................................................................................. 38
Lesson 4: Organizing Disk Partitions for Data Storage ...........................................41
Project 4.1: Creating Partitions ............................................................................................................... 42 Project 4.2: Converting a Basic Disk to a Dynamic Disk .................................................................... 44 Project 4.3: Extending a Volume ............................................................................................................ 46 Project 4.4: Mounting a Volume to an Empty Folder .......................................................................... 48 Project 4.5: Defragmenting a Disk ......................................................................................................... 52
Lesson 5: Working with FAT and NTFS File Systems ..............................................55
Project 5.1: Encrypting and Compressing Data on an NTFS Partition or Volume ......................... 57 Project 5.2: Shared Folder Permissions ................................................................................................. 59 Project 5.3: Assigning NTFS Permissions ............................................................................................. 61 Project 5.4: Using Change Permissions ................................................................................................. 65 Project 5.5: Taking Ownership of Files and Folders ............................................................................ 71 Project 5.6: Demonstrating Effective Permissions ............................................................................... 76 Project 5.7: Distributed File Systems ..................................................................................................... 82 Project 5.8: Managing Distributed File Systems .................................................................................. 84
iii
Lesson 6: Creating and Administering User Accounts ...........................................87
Project 6.1: Creating Domain User Accounts with Active Directory Users and Computers ........ 88 Project 6.2: Setting User Account Properties using Active Directory Users and Computers ....... 90 Project 6.3: Creating User Accounts from the Command Line ......................................................... 94 Project 6.4: Using Automation to Create User Accounts in Active Directory ................................. 97 Project 6.5: Mandatory User Profiles ................................................................................................... 100 Project 6.6: Creating User Home Folders............................................................................................ 106 Project 6.7: Creating Logon Scripts ...................................................................................................... 110
Lesson 7: Introducing Group Accounts and Group Policy ...............................................115
Project 7.1: Built-in Groups ................................................................................................................... 117 Project 7.2: Creating and Modifying Groups ..................................................................................... 118 Project 7.3: Introducing Group Policy Objects ................................................................................... 122 Project 7.4: Using Software Policies to Modify Software Settings ................................................... 125 Project 7.5: Redirecting Folders Using Group Policy ........................................................................ 128 Project 7.6: Determining Group Policy Settings Using GPRESULT ............................................... 130
Lesson 8: Creating and Administering Computer Accounts ........................................... 133 Project 8.1: Creating Computer Accounts Using Active Directory Users and Computers ......... 134 Project 8.2: Computer Account Management .................................................................................... 136 Project 8.3: Creating Computer Accounts Using the Command Line ............................................ 138 Project 8.4: Modifying Computer Accounts Using DSMOD ........................................................... 142 Project 8.5: Computer Account Troubleshooting .............................................................................. 144 Lesson 9: Installing and Configuring Local and Network Printers .................................. 147
Project 9.1: Installing and Configuring a Local Printer .................................................................... 148 Project 9.2: Configuring Printer Priorities .......................................................................................... 150 Project 9.3: Configuring Printer Pools ................................................................................................. 154 Project 9.4: Searching for Published Printers ..................................................................................... 156 Lesson 10: Installing and Configuring TCP/IP and DHCP ................................................ 159
Project 10.1: Using TCP/IP Troubleshooting Tools ............................................................................ 160 Project 10.2: Installing and Configuring DHCP ................................................................................. 163 Lesson 11: Introducing WINS, DNS, and RRAS ................................................................. 167 Project 11.1: Installing and Configuring Windows Internet Name Service (WINS) .................... 168 Project 11.2: Configuring Remote Access Service (RAS) .................................................................. 171 Project 11.3: Creating and Configuring Remote Access Policies ..................................................... 174 Project 11.4: Configuring Network Address Translation (NAT) ..................................................... 177
iv
Lesson 12: Implementing Security in Windows Server 2003 ........................................... 183
Project 12.1: Working with IP Security (IPSec) .................................................................................. 184 Project 12.2: Account Policies ............................................................................................................... 188 Project 12.3: Setting Security Options ................................................................................................. 191 Project 12.4: Configuring User Rights ................................................................................................. 193 Project 12.5: Client Security Configuration ........................................................................................ 195 Project 12.6: Working with Security Templates ................................................................................. 199 Lesson 13: Implementing Data Backups and System Recovery ..................................... 205
Project 13.1: Using Windows Backup to Backup and Restore Files ................................................ 206 Project 13.2: Backing Up and Restoring the System State Data ...................................................... 210 Project 13.3: Using the Last Known Good Configuration ................................................................ 212 Project 13.4: Installing and Using the Recovery Console ................................................................. 214 Project 13.5: Introducing the Volume Shadow Copy Service (VSS) ............................................... 216
Lesson 14: Monitoring Windows Server 2003 Performance ............................................ 219 Project 14.1: Optimizing a Hard Disk for Performance .................................................................... 220 Project 14.2: Optimizing Disk Storage ................................................................................................ 223 Project 14.3: Using the Task Manager ................................................................................................. 225 Project 14.4: Using Performance Logs and Alerts ............................................................................. 228 Project 14.5: Configuring Auditing in Windows Server 2003 .......................................................... 231 Project 14.6: Using the Security Log .................................................................................................... 234
Lesson 15: Configuring a Windows Server 2003 Application Server .............................. 237
Project 15.1: Remote Desktop for Administration ............................................................................. 238 Project 15.2: Configuring and Managing Terminal Services ............................................................ 240 Project 15.3: Configuring and Managing IIS ...................................................................................... 242 Project 15.4: Administering a Web Environment .............................................................................. 245 Lesson 16: Installing Windows Server Update Services .................................................. 249
Project 16.1: Configuring the Automatic Updates on a Client ........................................................ 250 Project 16.2: Installing, Configuring, and Managing a WSUS Server ............................................ 252 Project 16.3: Configuring Updates Using Group Policies ................................................................ 261 Author Biography ................................................................................................................. 267
About TSTC Publishing ....................................................................................................... 269 Feedback Form ..................................................................................................................... 271
v
Lesson 1: Introducing Windows Server 2003
After completing this lesson you will have been introduced to:
• Workgroups and domains
• Network services in Windows Server 2003
• Network protocols
Lesson Overview
Windows Server 2003 is the latest incarnation of the Windows server operating system and provides substantial improvements over previous versions: it is more secure, more reliable, and easier to administer. This section provides a brief overview of the Windows Server 2003 family, focusing on the similarities and differences among the four product editions: Web Edition, Standard Edition, Enterprise Edition, and Datacenter Edition.
Windows Server 2003 Editions
Windows Server 2003 is an update to the platform and technologies introduced in Windows 2000. If you are coming to Windows Server 2003 with experience from Windows 2000 servers, you will find the transition to be relatively easy. Although the basic appearance of Windows Server 2003 is similar to that of Windows 2000, the operating system includes a great many improvements and new features that add security and reliability and enhance the administrative toolset.
Web Edition
To position Windows Server 2003 more competitively against other Web servers, Microsoft has released a special-purpose edition of Windows Server 2003 that was designed specifically to function as a Web server.
Standard Edition
The Standard Edition is a multipurpose server platform that can provide directory, file, print, application, multimedia, and Internet services for small to medium-sized businesses. Among the many features included with the operating system are:
• Directory services: The Standard Edition includes full Active Directory support, enabling the computer to function as a member server or a domain controller.
2 Introducing Windows Server 2003
Administrators can therefore use the tools included with the operating system to deploy and manage Active Directory objects, group policies, and other Active Directory–based services.
• Internet services: The Standard Edition includes IIS 6, which provides Web and FTP services as well as other components used by Web server deployments, such as NLB, which enables multiple Web servers to host a single Web site, sharing the incoming client requests among up to 32 servers and providing fault tolerance.
• Infrastructure services: The Standard Edition includes the Microsoft DHCP Server, Domain Name System (DNS) Server, and Windows Internet Name Service (WINS) server, which provide important services for internal network and Internet clients.
• TCP/IP routing:A computer running the Standard Edition can function as a router in a variety of configurations, including local area network (LAN) and wide area network (WAN) routing, Internet access routing, and remote access routing. • File and print services: Users on the network can access shared drives, folders, and printers on a Standard Edition server. A Client Access License (CAL) is needed for each client that attempts to access server shares. The Standard Edition is typically sold with a package of 5, 10, or more CALs. • Terminal Server: A computer running the Standard Edition can function as a terminal server, enabling computers and other devices to access the Windows desktop and applications running on the server. Terminal Server is essentially a remote control mechanism that enables clients to access a Windows session on the server. All application execution takes place on the server, and only keyboard, mouse, and display information is transmitted over the network. Terminal Server clients require a license that is separate from the standard Windows Server 2003 CAL, although Standard Edition does include a two-user license for Remote Desktop for Administration.
• Security services: The Standard Edition includes a variety of security features that administrators can deploy as needed, including Encrypting File System (EFS), which protects files on server drives by storing them in an encrypted format, IP Security extensions (IPsec), which digitally sign and encrypt data before transmitting them over the network, ICF, which regulates the traffic admitted onto the network from the Internet, and the Public Key Infrastructure (PKI), which provides security based on public key encryption and digital certificates.
Introducing Windows Server 2003 3
Enterprise Edition
The Enterprise Edition is designed to be a powerful server platform for medium- to large-sized businesses. The Enterprise Edition differs from the Standard Edition primarily in terms of degree. For example, the Enterprise Edition supports up to eight processors, compared to the Standard Edition’s four, and up to 32 GB of memory, compared to the Standard Edition’s 4 GB. The Enterprise Edition also includes some important additional features that are not supplied with the Standard Edition, including the following:
• Microsoft Metadirectory Services (MMS): A metadirectory is essentially a directory of directories—a means of integrating multiple information sources into a single, unified directory. MMS makes it possible to combine Active Directory information with other directory services, to create a unified view of all available information about a given resource.
• Server clustering: A server cluster is a group of servers that function as a single entity, providing high availability for a particular set of applications. High availability in this case means that application processing is distributed among the servers in the cluster, reducing the load on each computer and providing fault tolerance if any of the servers fails. • Hot Add Memory: The Enterprise Edition includes software support for a hardware feature called Hot Add Memory, which enables administrators to add or replace memory in the computer without powering it down or restarting. To use this capability, the computer must have the appropriate hardware support.
• Windows System Resource Manager (WSRM): This feature enables administrators to allocate system resources to specific applications or processes, based on the needs of the computer’s users, and maintain accounting records of the resources used by those applications or processes.
Datacenter Edition
The Datacenter Edition is designed for high-end, high-traffic application servers that require huge amounts of system resources. The Datacenter Edition is nearly identical to the Enterprise Edition in its feature set but provides even greater hardware scalability, supporting up to 64 GB of RAM and up to 32 processors. The Datacenter Edition does omit a few Enterprise Edition features, such as ICS and ICF, primarily because high-end servers such as those supporting the Datacenter Edition are not expected to serve in the roles that use these features.
� Introducing Windows Server 2003
64-Bit Editions
Both the Enterprise Edition and the Datacenter Edition are available in versions that support computers equipped with Intel Itanium processors. Itanium is a processing platform that provides 64-bit addressing (while Intel’s standard x86 processors are 32-bit), a greatly enlarged virtual address space and paged pool area, and enhanced floating point performance. It is specifically designed for processor intensive tasks, such as massive database applications, scientific analysis, and heavily accessed Web servers.
Introducing Windows Server 2003 �
Project 1.1: Introducing Workgroups and Domains
Exam Objective
• Basic knowledge.
Project Overview
The Windows Server 2003 operating system supports workgroups and domains, the two basic network model types that enable users to share common resources.
• A workgroup or peer-to-peer network is a logical group of computers that are interconnected, generally over a local area network (LAN).• A domain is a logical grouping of network computers that share a central directory database.
Project Steps
1. Describe the differences between the workgroup network model and the domain network model.
2. Describe the advantages and disadvantages of each network model.
Note: Submit this assignment to your instructor for grading.
� Introducing Windows Server 2003
Project 1.2: Introducing Network Services in Windows Server 2003
Exam Objective
• Basic knowledge.
Project Overview
Windows Server 2003 provides various networking services such as Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS), Windows Internet Name Service (WINS), Virtual Private Networks (VPN), Routing and Remote Access Service (RRAS), Internet Authentication Service (IAS RADIUS), Network Load Balancing (NLB), and Internet Connection Firewall (ICF).
Project Steps
1. Write a brief description of each of these services and the purpose they serve.
Note: Submit this assignment to your instructor for grading.
Introducing Windows Server 2003 �
Project 1.3: Introducing Network Protocols
Exam Objective
• Basic knowledge.
Project Overview
Windows Server 2003 provides support for various networking protocols such as Transmission Control Protocol/Internet Protocol (TCP/IP), NWLink, Point-to-Point Tunneling Protocol (PPTP), Layer 2 Tunneling Protocol (L2TP), and Hypertext Transmission Protocol (HTTP).
Project Steps
1. Write a brief description of each of these protocols and the purpose they serve.
Note: Submit this assignment to your instructor for grading.
Ken Scheler
Ken Scheler graduated from the Computer Networking and Systems Administration (CNS) department at Texas State Technical College Waco in 1997. After graduation he began working for Custom Telephone Systems in Waco, Texas, where he was a computer network administrator as well as performing installation and troubleshooting duties for customer networks. In 1998 he moved to The Dwyer Group, also in Waco, where his chief responsibility was being their network administrator.
In 1999 he began teaching at TSTC Waco on a part-time basis in the CNS department and in 2000 became a full-time faculty member. He is also the CNS department’s network administrator. Since becoming a full-time instructor he has achieved the following industry certifications: Microsoft Certified Professional, Microsoft® Certified Systems Administrator, Microsoft® Certified Systems Engineer, CompTIA Network+ Certified Professional, CompTIA A+ Certified Professional, and CompTIA Server+ Certified Professional.
About the Author
Established in 2004, TSTC Publishing is a provider of high-end technical instructional materials and related information to institutions of higher education and private industry. “High end” refers simultaneously to the information delivered, the various delivery formats of that information, and the marketing of materials produced. More information about the products and services offered by TSTC Publishing may be found at its Web site: waco.tstc.edu/publishing_TSTC/.
TSTC Publishing is located in the Food Service/Culinary Arts building on the Waco campus.
TSTC Publishing
Practical Projects for today’s Microsoft® WindoWs® server student
Today’s computer networking students must move beyond textbook theory combined with disconnected and piecemeal assignments. To meet this need, this projects manual offers a comprehensive set of lessons and assignments for students to gain practical experience in installing and administering Microsoft® Windows® Server Operating Systems.
Features in Installing and Administering Microsoft® Windows® Server Operating Systems: A Projects Lab Manual include:
• Sixteen lessons, focused on specific topics, that build knowledge through a tightly integrated series of 40+ projects
• Topics covering installing Active Directory, working with FAT and NTFS file systems, creating and administering computer accounts, implementing security, data backups, system recovery, and more
• Projects that have been rigorously field tested by computer networking faculty Ken Scheler is a Microsoft® Certified Systems Engineer and a computer networking instructor at Texas State Technical College Waco
More information about this book as well as other books from TSTC Publishing may be found at:
http://publishing.tstc.edu/
Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Installing and Administering Microsoft® Windows® Server Operating Systems: A Projects Lab Manual is an independent publication and is not affiliated with, nor has it been authorized, sponsored, or otherwise approved by Microsoft Corporation.
9 7 8 0 9 7 6 8 5 0 3 3 5
ISBN 97809768503359 0 0 0 0
RVSD (04-08)No CD included
