(ITI310) By Eng. BASSEM ALSAID SESSION 2: Server Configuration & Administration Notes SAT 31-Oct-2015.

Slides:



Advertisements
Similar presentations
Storage Management Lecture 7.
Advertisements

Working with Disks and Devices
Microsoft ® Official Course First Look Clinic Overview of Windows 8 By Ragowo Riantory, S.Kom, MCP.
MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 8: Troubleshooting Storage Devices and Display Devices.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
11 INSTALLING WINDOWS XP Chapter 2. Chapter 2: Installing Windows XP2 INSTALLING WINDOWS XP  Prepare a computer for the installation of Microsoft Windows.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
1 Web Server Administration Chapter 3 Installing the Server.
1.1 Installing Windows Server 2008 Windows Server 2008 Editions Windows Server 2008 Installation Requirements X64 Installation Considerations Preparing.
Chapter 7: Configuring Disks. 2/24 Objectives Learn about disk and file system configuration in Vista Learn how to manage storage Learn about the additional.
Lesson 4-Installing Network Operating Systems. Overview Installing and configuring Novell NetWare 6.0. Installing and configuring Windows 2000 Server.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.
Module 6 Windows 2000 Professional 6.1 Installation 6.2 Administration/User Interface 6.3 User Accounts 6.4 Managing the File System 6.5 Services.
Cambodia-India Entrepreneurship Development Centre - : :.... :-:-
 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.
Installing Windows XP Professional Using Attended Installation Slide 1 of 41Session 2 Ver. 1.0 CompTIA A+ Certification: A Comprehensive Approach for all.
File sharing. Connect the two win 7 systems with LAN card Open the network.
Chapter 7 Installing and Using Windows XP Professional.
 The operating system is essential for the computer; without it the computer could not work.  The main function of any operating system is being an intermediary.
Ch 11 Managing System Reliability and Availability 1.
Configuring File Services Lesson 6. Skills Matrix Technology SkillObjective DomainObjective # Configuring a File ServerConfigure a file server4.1 Using.
Section 6.1 Explain the development of operating systems Differentiate between operating systems Section 6.2 Demonstrate knowledge of basic GUI components.
Linux+ Guide to Linux Certification, Third Edition
IT Essentials: PC Hardware and Software 1 Chapter 7 Windows NT/2000/XP Operating Systems.
Operating Systems Review. 5 Purposes of an Operating System Provide User Interface Communicate with Hardware Create and Manage a File System Network Support.
®® Microsoft Windows 7 for Power Users Tutorial 5 Comparing Windows 7 File Systems.
Configuring the MagicInfo Pro Display
Hands-On Microsoft Windows Server 2008
Installing Microsoft Windows Server 2008 Lesson 2.
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 6 Today’s Windows Windows Vista and Windows 7 McGraw-Hill.
Tutorial 11 Installing, Updating, and Configuring Software
Microsoft ® Official Course Module 8 Securing Windows 8 Desktops.
CN2140 Server II Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Week #7 Objectives: Secure Windows 7 Desktop
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 5: Managing File Access.
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 5 Windows XP Professional McGraw-Hill.
Chapter 18: Windows Server 2008 R2 and Active Directory Backup and Maintenance BAI617.
University of Management & Technology 1 Operating Systems & Utility Programs.
Module 1: Installing and Configuring Servers. Module Overview Installing Windows Server 2008 Managing Server Roles and Features Overview of the Server.
MCTS Guide to Microsoft Windows Vista Chapter 4 Managing Disks.
Installation Overview Lab#2 1Hanin Abdulrahman. Installing Ubuntu Linux is the process of copying operating system files from a CD, DVD, or USB flash.
DUAL BOOTING  KNOWING LEGACY BIOS & UEFI FIRMWARE  KNOWING MBR & GPT PARTITION D.BHARANI AM.EN.U4CSE12013.
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Four Windows Server 2008 Remote Desktop Services,
MCTS Guide to Microsoft Windows 7
Chapter 14 Supporting Windows 2000 Professional. 14 You Will Learn… n About the different operating systems within the Windows 2000 suite n About the.
Windows Vista Inside Out Chapter 28 - Chapter 28 - Managing Disks and Drives Last modified
Working with Disks Lesson 4. Skills Matrix Technology SkillObjective DomainObjective # Configuring Data Protection Configure data protection6.4 Using.
(WINDOWS PLATFORM - ITI310 – S15)
Microsoft Windows XP Professional MCSE Exam
Managing Applications, Services, Folders, and Libraries Lesson 4.
IT1001 – Personal Computer Hardware & system Operations Week7- Introduction to backup & restore tools Introduction to user account with access rights.
CSC190 Introduction to Computing Operating Systems and Utility Programs.
Understand Encryption LESSON 2.5_A Security Fundamentals.
Hands-On Virtual Computing
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 6 Today’s Windows Windows Vista and Windows 7 McGraw-Hill.
Lesson 18: Configuring Security for Mobile Devices MOAC : Configuring Windows 8.1.
MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 4 Managing Disks.
Adding a Hard Drive. BIOS / UEFI The Unified Extensible Firmware Interface (UEFI) defines a software interface between an operating system and platform.
HOW TO INSTALL WINDOWS 7? This step-by-step guide demonstrates how to install Windows 7 Ultimate. The guide is similar for other versions of Windows 7.
Hands-On Microsoft Windows Server 2008 Chapter 7 Configuring and Managing Data Storage.
ITMT Windows 7 Configuration Chapter 4 – Working with Disks and Devices ITMT 1371 – Windows 7 Configuration 1.
Windows Vista Configuration MCTS : NTFS Security Features and File Sharing.
Instructor: Syed Shuja Hussain Chapter 4: Operating System Basics.
NT1110 Computer Structure and Logic Unit 8 (Module 5A) COMPUTER OPERATION AND SECURITY.
Configuring File Services
CONFIGURING HARDWARE DEVICE & START UP PROCESS
Booting Up 15-Nov-18 boot.ppt.
The bios.
Presentation transcript:

(ITI310) By Eng. BASSEM ALSAID SESSION 2: Server Configuration & Administration Notes SAT 31-Oct-2015

SESSION 2 “Server Configuration & Administration Notes” Session Abstract Systems running Windows Server 2008 provides services to different kinds of business. They consequently should be safe and distant. Learning Objectives Upon completion of this part, the student will be able to: – Manipulate BitLocker Drive Encryption – Manipulate Remote Desktop Administration – Manipulate GPT & MBR Disks

BitLocker Drive Encryption BitLocker Drive Encryption is a security feature offered into all editions of Windows Server Basically, BitLocker encrypts disk volumes (OS files and Data files). These files will be inaccessible if the computer and/or drive are stolen. The encryption key is written to a USB flash drive during the BitLocker configuration process. In order to use BitLocker, the system should verify the following conditions: – A minimum of 1.5Gb of available unallocated disk space. – BIOS supporting clearing of system RAM on reboot. If we want to take advantages of all BitLocker features, the following requirements proposed by the Trusted Computing Group are necessary: – Trusted Platform Module (TPM) Chip. – Trusted Computing Group BIOS.

Trusted Computing Group The TCG consortium was founded in The main players and promoters (>200 members) are AMD, HP, IBM, Infineon, Intel, Lenovo, Microsoft, Sun and others. The main goal of this foundation is: “Offering protected (encrypted) hardware storage where only “authorized” software can decrypt data (by offering, for example, protecting key for decrypting file system)”. Main TPM Chip vendors are: Atmel, Infineon, National, STMicro, Intel D875GRH motherboard Systems containing TPM chips are: Lenovo (IBM) Thinkpads and desktops, Fujitsu lifebook, HP desktop and notebooks, Acer, Toshiba, Panasonic, Gateway, Dell.

Enabling and creating partition using BitLocker Drive Encryption BitLocker Drive Encryption requires two partitions on the hard disk drive: The system volume which contains the unencrypted boot information. This volume must be at least 1.5 Gb in size and must be created before enabling BitLocker Drive Encryption feature. The operating system volume which will be encrypted and contains the operating system and user data.

PRACTICE I: Enabling BitLocker Drive Encryption feature Open the Start menu and select Server manager. Select the Features option. Click on Add New Features to invoke New Features Wizard. Select BitLocker Drive Encryption and click on the Next button. Click on the Install button. Upon Completion of the installation process it will be necessary to reboot the system in order to implement the change. After the restart has completed the Add Features Wizard will restart and complete the final phases of the feature installation process. Once completed, click on the Close button to exit from the wizard.

To Create Partitions for BitLocker Drive Encryption: Once the tool has been downloaded and installed it should appear in Start->Accessories->System Tools->BitLocker->BitLocker Drive Preparation Tool. The tool itself is installed as the executable: %ProgramFiles%\BitLocker\BdeHdCfg.exe The tool may either be run as a graphical tool or run from a command prompt with a variety of command-line options to perform the required task.

To Perform Encryption: Double click on the BitLocker Drive Encryption icon. If the system has TPM support, the drives suitable for BitLocker encryption will be listed together with the option to activate the encryption. Otherwise, a warning message is displayed stating: A TPM was not found. A TPM is required to turn on BitLocker. Click on the Turn on BitLocker link beneath the drive to be encrypted. Select Continue with BitLocker Drive Encryption. When the screen Set BitLocker startup preferences appears, and if we have a system without a TPM, the system provides only the option to using BitLocker with a USB flash drive containing a startup key. Insert a removable USB memory device into a USB port and click Save to save the Startup key to the device. When requiring the recovery key, do not save the recovery password on the same USB device as the startup key, but instead insert a different device.

Remote Desktop Remote Desktop offers the possibility of administrating and using a remote Windows system while working on a local one. In fact, all I/O events issued by the local user on the local system are transmitted to the remote system. Consequently, the local user will be able to perform tasks on the remote system even if he was physically distant. Usually, the remote control is established in many ways: either over wide area networks (WAN), or local area networks (LAN) or over the internet. RDS (Remote Desktop Service) is available in Standard, Enterprise & Datacenter editions of W2008, not in Core or Web Edition.

Remote desktop in Windows Server 2008, is provided by Terminal Services running on the remote systems and the Remote Desktop Connection (RDC) client on the local system. Terminal Services run in two different modes: Administration Mode: Providing full control and administration functionality to the remote administrator. It is equivalent to the direct work on the system. However, a maximum of two administrators may be logged on a Windows 2008 Server at any one time, either two logged on remotely, or one local and one remote administrator. Virtual Session Mode: where the user is subject to some limitations such as the ability to install applications and view console notification messages.

PRACTICE II: Enable Remote Desktop Administration Go to Control Panel Go to System icon or System and Maintenance In the Task section in the top left hand corner of the System page select Remote settings to display the System Properties window and the Remote. Choose the second option: allows remote desktop connections from any version of the Remote Desktop client.

When the configuration tasks are completed on the remote system, we can start Remote Desktop Client on the local system: To invoke the Remote Desktop Client in virtual session mode select: Start -> All Programs -> Accessories -> Remote Desktop Connection To start the Remote Desktop Client in administrator mode run the following command: mstsc /admin

MBR Disks MBR stands for Master Boot Record. It was introduced with IBM PC DOS 2.0 in The MBR is the first part of the hard disk. It stores the boot loader and the partition table. The MBR is 512 bytes. The first 446 bytes are for the boot loader, and the bytes from 446 to 512 are for the partition table. Thus, if we delete the full 512 bytes we will lose the boot loader and the partition table. When using MBR partition, two partition types are proposed: Primary: Partition used to store boot records. Extended: Partition that could be divided into one or more logical drives. In this case, a disk can support either 4 primary partitions or three primary partitions and one extended partition (which in turn can support multiple logical volumes). MBR works with disks up to 2 TB in size, but it can’t handle disks with more than 2 TB of space.

GPT: GUID Partition Table Disks GUID Partition Table (Globally Unique IDentifier Partition Table) is a standard used to implement partitions within a physical hard disk. It is a part of a new standard proposed by Intel and called Extensible Firmware Interface (EFI). In fact, EFI is considered as a replacement for the traditional PC BIOS that uses a Master Boot Record (MBR). GPT uses modern Logical Block Addressing (LBA) instead of Cylinder/Head/Sector addressing used MBR: LBA 0 contains the old MBR information. LBA 1 contains the GPT header and the partition table itself. In 64-bit Windows operating systems, 16,384 bytes are reserved for the GPT. In this case, LBA 34 will be the first usable sector on the disk. For more safety. GPT header and partition table are written at both the beginning and the end of the disk.

Creating Partitions on an MBR Basic Disk From Start Menu -> All Programs -> Administration Tools -> Computer Management. Right click on the Free Space area of the appropriate drive in the graphical section of Drive Manager screen. Select New Simple Volume. Using New Simple Volume Wizard, click Next on the initial screen to proceed to the Specify Volume Size. Enter the size of the volume to be created. Click the Next button. You will get the Format Partition screen. Many file system options appear: – FAT: Maximum size of 4GB, file size limit of 2GB. – FAT32: Maximum size of 32 GB, file size limit of 4GB. – NTFS: up to 2TB on an MBR disk and 18 ExaBytes (EB) on GPT disks.

Changing a MBR disk into a GUID Partition Table Disk 1. Back up or move the data on the basic master boot record (MBR) disk you want to convert into a GUID partition table (GPT) disk. If the disk does not contain any partitions or volumes, skip to next step. 2. Open Computer Management (Local). 3. In the console tree, click Computer Management, click Storage, and then click Disk Management. 4. If the disk does not contain any partitions or volumes, skip to step 5. Otherwise, right-click any volumes on the disk and then click Delete Partition or Delete Volume. Right click the MBR disk that you want to change into a GPT disk, and then click Convert to GPT Disk.

Changing a GUID Partition Table Disk into a MBR disk 1. Right-click My Computer and click Manage. 2. Click Disk Management. 3. Right-click the GPT disk you want to change into an MBR disk, and then click Convert to MBR disk.

Q: BitLocker Drive Encryption is a security feature offered into all editions of Windows Server 2008; True or False? A. TRUE B. FALSE EXERCISE I

Q: BitLocker encrypts disk volumes (OS files and Data files). These files will be accessible if (choose correct answers). A. A USB flash holding the correct encryption key is inserted on the computer at user logon in order to gain access to the system. B. A USB flash holding the correct encryption key is inserted on the computer at system startup in order to gain access to the system. C. A USB flash holding the correct decryption key is used by system administrator in order to decrypt the files. D. Move the hard disk(s) to another machine. EXERCISE II

NEXT SESSION Date: SATURDAY 07-Nov-2015 C2: 12:00 C3: 13:30 Title: “Using RAID Technology in Windows 2008 Server” THANK YOU

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.