Transcript IT 442 Windows Server Administration

IT 442 Windows Server
Administration
Lecture 1
Lecturer: Dr. Simon Tran
Email: [email protected]
Course: www.cs.umb.edu/~stran/it442
Door Code for S-3-143
*
Contact Operator for the current code
Class Assignment
• Lab assignments
– Students will form a team of two for lab work
– Students will use the IT lab VMware environment
itvm-vcs1.cs.umb.edu to finish the assignment
– Students will use vSphere client for VMware host
connection. The client can be downloaded from
http://itserver1.cs.umb.edu
– Students will email the results to
[email protected]
• Exams: midterm and final exam
Preparation
• What students must do in the first week
– Apply for an IT442 account (see operators in UNIX/PC Lab
at S-3-157)
– Apply for a UMB MSDN account (DreamSpark program) for
Server 2012 license (see operators)
https://e5.onthehub.com/WebStore/Account/VerifyImport
edUser.aspx?ws=9bd8fe3d-d29b-e011-969d0030487d8897&vsro=8
– Use vSphere client to test the connection to the Vmware
lab: itvm-vcs1.cs.umb.edu (IDs will be provided)
Windows Server Domain
DMZ
Domain Authentication Flow
(Greve, 2011)
Windows Server 2012
• Latest version of Window server
• Provide all in one package: AD, Cluster & Virtualization
(Hyper-V 3.0)
• Provide additional flexibility in server deployment: with
GUI, without GUI (Core installation), or with minimal
interface installation.
• GUI install is based on Win 8 tiled interface
• Enhanced user account controls and elevation of
privileges.
Windows Server 2012
• AD Authentication
• Cluster
Node2
Node1
CLUSTER 1
Getting to know
• Windows Server 2012 is a 64-bit-only operating system
• Server is assigned to be part of a workgroup by default
• Workgroups are loose association of computers in which each
computer is manage separately
• In corporate network, computers are joined to a domain.
• Domains are collections of computers you can manage
collectively by means of domain controllers
• Server 2012 uses active power plan called Balanced
• Balanced plan is configured to do the following: never turn off
hard disks, disable timed events to wake the computer, use
active system cooling by increasing the fan speed, use
minimum processor and maximum processor states if
supported
Network options
• Domain: a network in which computers are connected to
the corporate domain to which they are joined
• Work: computers are configured as members of a
workgroup
• Home: computers are configured as members of a homegroup
• Public: computers are connected to a public network, an
unsecured network
Workgroup
.
.
.
.
.
Windows Server Types
• Member servers: part of the domain, but don’t store directory
information
• Domain Controllers: process directory changes, provide
authentication, and directory services for the domain.
– Server 2008 and 2012 releases support read-only domain controllers –
an additional domain controller that hosts a read-only replica of a
domain’s AD data store. RODC is suited to the needs of branch offices.
– RODC do not store passwords – pull user and computer credentials
from a writable DC and cache credentials as necessary until the
credential change.
• Standalone servers: stand independently, do not rely on active
directory for authentication, and manage their own user
databases.
Domain Name Service
• DNS is a name-resolution service to resolve computer
names to IP address.
• Example: Server1.ITLab.com
• DNS is an hierarchical structure. It contains root domain
and subdomains (child domains)
• Windows 2012 active directory and DNS are tightly
integrated.
– Partial integrated: updates to DNS area handled through a single
authoritative DNS server (primary DNS). DNS information is
stored in text-based files that end with the .dns extension
– Full integration: DNS information is stored in AD and available
through the container of dnsZone object. This allows any DC
running the DNS server service to handle dynamic updates.
Storage and Networking
• Storage
–
–
–
–
FAT
NTFS vs ReFS (Resilient File System)
ReFS use with Storage Spaces
Software-based vs. hardware-based RAID controller
• Networking
– NIC teaming
– IPAM – IP address discovery
NIC Teaming
Interface: TEAM1
192.168.1.100
Virtualization
•
•
•
•
•
Microsoft vs. Vmware or Citrix
Private VLAN (PVLAN)
Flexibility – live migration & snapshot
Support larger disk – up to 16TB of storage
Support Storage Area Network (SAN)
Summary
•
•
•
•
•
Flexibility in installation
Centralized management
Flexibility in storage management
Network teaming with native tool
Free virtualization solution
References
• Erduran, A. (2012). Windows Server 2012 Direct Access.
Retrieved from
http://blogs.technet.com/b/meamcs/archive/2012/05/14/win
dows-server-2012-direct-access-part-2-how-to-build-a-testlab.aspx
• Greve, D. (2011). Considerations while you prepare to move
from Microsoft Online BPOS to Office 365. Retrieved from
http://blogs.perficient.com/microsoft/2011/03/consideration
s-while-you-prepare-to-move-from-microsoft-online-bpos-tooffice-365/
Reading Material
• Lecture 1
– Stanek, 2012. Chapter 1
– Lynn, 2013. Chapter 1
• Lecture 2: Installing Windows Server 2012
– Stanek, 2012. Chapter 2
• Installing Windows server 2012
• Performing additional administration tasks during installation
• Changing the installation type
– Lynn, 2013. Chapter 2