Week #12 CIS 173 OBJECTIVES Chapter #10 Network Administration.

Slides:

Advertisements

Similar presentations

Networking Essentials Lab 3 & 4 Review. If you have configured an event log retention setting to Do Not Overwrite Events (Clear Log Manually), what happens.

Advertisements

Chapter Five Users, Groups, Profiles, and Policies.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Network Administration Network administration involves many areas:  Ensure network performs to specifications  Verify users can easily access resources.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

2.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 2: Installing Windows Server.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 10: Collect and Analyze Performance Data.

11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.

Network Administration Procedures Tools –Ping –SNMP –Ethereal –Graphs 10 commandments for PC security.

Lesson 19 – ADMINISTERING WINDOWS 2000 SERVER : THE BASICS.

Chapter 16 Chapter 16: Troubleshooting. Chapter 16 Learning Objectives n Develop your own problem-solving strategy n Use the Event Viewer to locate and.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Chapter 5: Configuring Users and Groups. Windows Vista User Accounts User accounts are the primary means of authentication Built-in Accounts –Administrator:

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

MCITP Guide to Microsoft Windows Server 2008 Server Administration (Exam #70-646) Chapter 14 Server and Network Monitoring.

Hands-On Microsoft Windows Server 2003 Administration Chapter 6 Managing Printers, Publishing, Auditing, and Desk Resources.

Chapter 8 Chapter 8: Managing the Server Through Accounts and Groups.

Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.

Check Disk. Disk Defragmenter Using Disk Defragmenter Effectively Run Disk Defragmenter when the computer will receive the least usage. Educate users.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 CHAPTER OVERVIEW Understand the differences between local user and domain.

Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.

1 Chapter Overview Monitoring Server Performance Monitoring Shared Resources Microsoft Windows 2000 Auditing.

1 Chapter Overview Planning an Audit Policy Implementing an Audit Policy Using Event Viewer.

Chapter 10: Network Administration and Support. Guide to Networking Essentials, Fourth Edition2 Learning Objectives Manage networked accounts Enhance.

Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.

CSCI 1101 Intro to Computers 6. Local Area Networks.

Hands-On Microsoft Windows Server 2008

September 18, 2002 Introduction to Windows 2000 Server Components Ryan Larson David Greer.

1 Group Account Administration Introduction to Groups Planning a Group Strategy Creating Groups Understanding Default Groups Groups for Administrators.

User Manager for Domains.  Manages the user accounts in a domain  It is located in the PDC  While User Manager exists in each NT machine, but it is.

5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam Microsoft® Windows® 2000 Directory Services Infrastructure Goals 

Network Administration and Support Chapter Learning Objectives Manage networked accounts Enhance network performance Create a network security plan.

Gorman, Stubbs, & CEP Inc. 1 Introduction to Operating Systems Lesson 12 Windows 2000 Server.

Module 7: Fundamentals of Administering Windows Server 2008.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 11: Monitoring Server Performance.

11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 UNDERSTANDING USER ACCOUNTS  Local user accounts  stored in the Security.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

DIT314 ~ Client Operating System & Administration CHAPTER 5 MANAGING USER ACCOUNTS AND GROUPS Prepared By : Suraya Alias.

Chapter 13 Users, Groups Profiles and Policies. Learning Objectives Understand Windows XP Professional user accounts Understand the different types of.

Active Directory Administration Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Creating Users, Computers, and Groups Automate creation.

Module 9: Preparing to Administer a Server. Overview Introduction to Administering a Server Configuring Remote Desktop to Administer a Server Managing.

Configuring the User and Computer Environment Using Group Policy Lesson 8.

NetTech Solutions Configuring Security Settings and Internet Options Chapter Sixteen.

1 Introduction to Auditing Auditing allows you to track User activities. Microsoft Windows 2000 activities. Windows 2000 records events in the security.

NetTech Solutions Security and Security Permissions Lesson Nine.

IT1001 – Personal Computer Hardware & system Operations Week7- Introduction to backup & restore tools Introduction to user account with access rights.

Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.

CHAPTER 5 MANAGING USER ACCOUNTS & GROUPS. User Accounts Windows 95, 98 & Me do not need a user account like Windows XP Professional to access computer.

Chapter 7 Server Management Policies –User accounts –Groups Rights and permissions Examples.

1 Chapter Overview Monitoring Access to Shared Folders Creating and Sharing Local and Remote Folders Monitoring Network Users Using Offline Folders and.

Hands-On Microsoft Windows Server 2008 Chapter 7 Configuring and Managing Data Storage.

Configuring the User and Computer Environment Using Group Policy Lesson 8.

Guide to Operating Systems, 5th Edition

Introducing, Installing, and Upgrading Windows 7

Module 9: Preparing to Administer a Server

Introduction to Operating Systems

Active Directory Administration

Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.

Chapter 10: Network Administration and Support

Administering Your Network

Bethesda Cybersecurity Club

BACHELOR’S THESIS DEFENSE

BACHELOR’S THESIS DEFENSE

Greta Mameniskyte IV course 3rd group

BACHELOR’S THESIS DEFENSE

Chapter 9: Managing Groups, Folders, Files, and Object Security

Module 9: Preparing to Administer a Server

Presentation transcript:

Week #12 CIS 173 OBJECTIVES Chapter #10 Network Administration

Chapter #10 Network Administration & Support

Purpose Make sure –all users can access what they need –don’t access what they don’t need or SHOULD NOT be accessing –Establish Groups and or Individual User Accounts

User Accounts NT Server User Account –Account Name –Associated password NT can handle up to 128 characters but dialog box will only accept 14 Case Sensitive –Access permissions for network resources Group Account –Named collection of User Accounts –Created for resource sharing specific to that group Access rights

Before Making User Accounts Decide On Passwords –NO NAMING SCHEME –YES to a Naming CONVENTION Users change their own? How often should they change? How many letters? Reusing Passwords? Failed Attempts lead to LOCKOUT? Logon Hours –Security situations

Auditing Actions recorded for review later. Tracking users –Logon? When How many times –Limit how many times –Logoff? Security –If not off can be accessed –Object access? Who is trying to access what Are they supposed to be there Policy Changes?

Administrator Account Used for management duties Should be DISABLED AFTER an individual account has been established with Administrative privileges, but WITH A DIFFERENT NAME AND PASSWORD

Setting User Rights Groups makes management easier Local Groups –Intended for local Domain only Global Groups –Access across domains Default Groups have pre-assigned rights that apply to ALL group members NT Server Default Local Groups (pg.286 Table 1-10) –Administrators Complete Control of PC and DOMAIN –Account Operators Admin. User & Grp. Accts. For local Domain –Backup Operators Back Up & Restore files members don’t have access to normally –Guests Permitted guest access (not secure) –Print Operators Add, Delete, & manage domain printers –Server Operators Admin. Domain servers –Users Ordinary User Accounts

Default Global Groups Domain Administrators Domain Users Domain Guests

Trust Relationships One Domain permits members of another Domain to access its resources –One-Way –Two-Way First PERMIT one Domain to trust it THEN Establish the trust –A trusts B, B trusts C, but A does not trust C until you establish it. Until you give an account on one domain some kind of account on the other “trusted” domain the trust means nothing

Disabling vs. Deleting User Accounts Disabled –It remains in system –BUT unusable –For a temp. position You know it will be filled again in a few weeks. Deleting –IT’S GONE –CAN’T be restored –For a terminated employee, not going to be replaced –Even if you create a similar acct with same name & same grp membership it appears the same BUT the security ID information will change. This means any adjustments you made to the account group membership or individual membership will NOT be seen

Renaming & Copying User Accounts Rename account changes the user name and keeps all privileges Copy the account makes all privileges the same but creates a second account In either case –Must Change the name –Must Change the password

Renaming & Copying Accounts Renaming –Go to User Manager for Domains –Go to RENAME option –Provide the new user name & click OK –When the user properties displays change the Full Name and Password –Click OK and changes take effect immediately Copying

Managing Network Performance Cables are operational –Physical checks Must get out there and check Network cards –Are seated properly –NOT in conflict

Managing Network Performance Queued commands –Commands awaiting execution –Never more than the # of network cards in the server OR a bottleneck will occur Data read from and written to the server each second –Give useful measure of server activity Do you need additional server?

Managing Network Performance Ethernet –Number of collisions/second –After 1st collision speed of network slows exponentially One main reason is a network segment that is too long Or some other segment problem Security errors –Failed logons or Failed access to objects Security risk on network Set up auditing so you can SEE WHO’S causing errors Server Sessions –Rate at which connections are currently made to server and broken

3 Tools to Monitor Performance Performance Monitor –Recording & viewing trends Chart, Alert, Log, Report –Can give you insight as to what hardware needs to be upgraded Objects –Portion of software that works with other software to provide services Counters –Certain part of an object Network Monitor –Not installed automatically during NT setup (Pg. 296 shows setup) –Records reports & graphs form the data collected Event Viewer –Event logs Security Info Log –Logs based on filters you set up in the User Manager for Domains –Gives info on failed attempts System Info Log –Events logged by Windows NT system components –Shows if hardware is working properly –Check here to see if everything that should be running is Application Events Log

Performance Monitor Continued Establish a BASESLINE first –Logical or physical disk on sever –Network Interface –Protocol Counters Datagrams/Second –Redirectors –Server –Server Work Queues Managing Network Performance

Total System Management Hard Drive Performance –Disk Space Remaining –Speed at which requests are serviced –How often the disk is busy How often it is running and the average number of requests queued Maintaining Network History –Archiving –DON’T go overboard Information will become useless

Network Security Planning –What am I trying to protect? –Whom or what do I need to protect data from? –How likely is it that this threat will manifest itself? –What is the cost of breached security? –How can I protect the data in a cost effective manner? At some point it costs more to protect data than it does to lose it.

Security Models Physical Security –Hardware Intruders away from tapping into cables Away from PC’s Isolate servers Lock them up Limit physical access Data Security –Software Share-Oriented –Security attached to the object User-Oriented –Rights & Permissions of each user

Maintaining Security Modify plan after you implement and see what works and what needs to be changed. Constantly update this Review regularly

BACKUP Tape Backup –Full backup all files to tape –Incremental backup all files changed since the last full or incremental backup –Differential backup all files changed since last full backup

UPS For each device if affordable SERVER Definately NEVER plug a laser printer into a UPS –It draws to many amps and will drain battery FAST

Disk Mirroring Two disks in tandem Two hard drives on single controller

Disk Duplexing Same as mirroring but has two drives on two controllers

Disk Striping with Parity Array of disks At least 3 All three treated as a single logical drive When data is written it looks like it is writing to one drive