Transcript Document
KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY
IT375 Window Enterprise
Administration
Course Name – IT375-01 Introduction to Network Security
Instructor – Jan McDanolds, MS, MCSE, Security+
Contact Information: AIM – JMcDanolds
Email – [email protected]
Office Hours: Wednesday 5:00 pm ET and Thursday 8:00 pm ET
UNIT 9
Last Seminar - Tonight
This week is Unit 9 and next is the last week of
class. There is no seminar next Thursday.
The Final Project and the Final Exam are due on
or before November 1st.
You will use the LabMentors web-based labs to
complete the Final Project.
UNIT 9
Managing and Monitoring
a Windows Server 2008 Network
Unit 9 covers Chapter 11
Use management consoles to maintain Windows Server
2008
Update and maintain clients using Windows Server
Update Service
Monitor Windows Server 2008 using built-in and
downloadable utilities
Perform backup and restore tasks with Windows Server
2008
UNIT 9
Managing Windows Server
Microsoft Management Console (MMC) 3.0 - Improved version of the
MMC that has been used in past versions of Windows Server
Build custom MMCs - Create a custom snap-in console for the following
reasons:
To centralize tools you use on a regular basis
To provide access to users that need to use specific snap-ins to perform
their jobs
Server Manager Console
Server Manager lets you manage components in the following sections:
Roles, Features, Diagnostics, Configuration, and Storage
Servermanagercmd.exe
Provides a command-line utility so that you can perform automated
installations or removals of roles, role services, and features
UNIT 9
Server
Manager
Server Manager
manages
components in
the following
sections:
Roles
Features
Diagnostics
Configuration
Storage
UNIT 9
Windows Server Update Service
Centralizes updating tasks for client and server computers
Benefits of WSUS:
Centralizes update management
Minimizes effects on the WAN connection
Improves network security and reliability
Improves installation of relevant updates
Targets updates to specific computers and computer groups
Basic requirements before installing WSUS 3.0 SP1
Microsoft Internet Information Services (IIS) 7.0
Microsoft Report Viewer Redistributable 2005
Minimum of 6 GB of free space for storing downloaded updates
Working with WSUS - WSUS Administrative console allows you to:
Generate reports
Manage updates
Monitor the computer through the console
UNIT 9
Windows
Update
View update
information from
Windows Update
in Control Panel
View Update
History
UNIT 9
Windows
Server
Update
Services
Deploy updates
and view action.
UNIT 9
Windows
Server
Update
Services
Select computer
and show status
UNIT 9
Microsoft Baseline Security Analyzer 2.1
Excellent tool to analyze current security posture
MBSA scans for missing security updates for the following products
Windows 2000 SP4 and later operating systems and components
Microsoft Office XP and later
Microsoft Exchange Server 2000 and later
Microsoft SQL Server 2000 SP4 and later
MBSA
Free download from Microsoft
Can be used on a local computer or to connect to one or more
remote computers on your network
Options for running MBSA on remote computers
Domain name and IP address range
UNIT 9
Monitoring Windows Server 2008
Windows Server 2008 utilities:
Event Viewer
Reliability and Performance Console
Network Monitor
Task Manager
Disk Management
UNIT 9
Event Viewer
Each event in Event Viewer is classified by severity
Event Viewer Console
Sections include:
Custom Views
Windows Logs
Applications and Services Logs
Subscriptions
Windows Remote Management (WinRM)
Command-line tool service used to configure a
computer to accept WS-Management requests
UNIT 9
Reliability and Performance Console
Provides a suite of utilities for monitoring and capturing performance data for
local and remote systems
Divided into the following areas:
Resource Overview; Monitoring Tools including Performance Monitor and
Reliability Monitor; Data Collector Sets and Reports
Resource Overview - Provides a real-time summary based on the four key
components: CPU, disk, network, and memory
Performance Monitor - Can display real-time or historical data of local or
remote computers
Reliability Monitor - Provides an overview of system stability
Data Collector Sets - Acts as a central repository for gathering information for
Reliability and Performance Monitor
Generating Reports - Reports section provides a central reporting location for
the information gathered by the Data Collector Sets
UNIT 9
Network Monitor
Built-in utility for capturing and viewing network traffic as
it arrives or leaves a server (protocol analyzer)
Helps you determine whether traffic is reaching a
destination
Lets you view encrypted ESP packets to verify that Internet
Protocol Security policies are being properly applied
UNIT 9
Disk Management
Disk Management console - provides a central location for
administering the physical hard disks and disk-based devices attached
to a server
NTFS Disk Quotas - track disk usage by users and enforce disk space
limits on disk volumes
Volume Shadow Copy service (VSS) - set up manual or automatic
backup copies of files or folders
UNIT 9
Backup and Restore Windows Server 2008
Windows Server Backup (WSB) - Provides backup and recovery of files,
folders, volumes, and application data on Windows Server 2008
Works by using VSS and the Block Level Backup Engine service
Installing Windows Backup
Add this feature through the Add Features Wizard using
servermanagercmd.exe
Configuring Windows Backup
Choices include: Backup Schedule, Backup Once, Recover
WSB supports three backup options:
Always perform full backup, Always perform incremental backup and
Custom
Restoring with WSB
Bare-metal backup: process where a server can be restored to a clean
machine in a single step
UNIT 9
Backup
Performance
Optimize backup
performance
UNIT 9
Unit 9 Part I - Assignment
Part I – Complete the Chapter 11 Labs
UNIT 9
Unit 9 Part II - Assignment
Review Unit 9 Rubric for Part II
Badger Widgets is a small manufacturing company in southern Wisconsin. They have a small Windows
Server 2008 environment with a total of two domain controllers and three member servers. Currently, no
backup scenario is implemented for Badger Widgets.
UNIT 9
Unit 9 Part II - Assignment
Review Unit 9 Rubric for Part II
Badger Widgets is a small manufacturing company in southern Wisconsin. They have a small Windows
Server 2008 environment with a total of two domain controllers and three member servers. Currently, no
backup scenario is implemented for Badger Widgets. You have been asked to implement a backup and
recovery scenario for Badger Widgets using Windows Server Backup. Requirements for the project
include the following:
a. All servers must perform a full backup nightly.
b. All servers must be fully recoverable from the previous evening’s backups.
c. One of the member servers, BUSVR01 will be used as a central storage for backups. It will use
a removable external USB drive for storing all backups.
d. Member servers do not include any applications such as Microsoft Exchange or SQL Server
that would require special backup and restore procedures.
2A. Provide written details of the backup scheme
2B. List the steps to configure Windows Server Backup on one of each type of server.
2C. List the steps you would take to restore a failed domain controller, given a restore to
the same hardware.
2D. List the steps you would take to restore a failed member server, given a restore to the
same hardware.
UNIT 10
Unit 10 Part II – Final Project
Final Project – Download Rubric from Unit 10, read the instructions
carefully. Create screen captures of the various labs. These will be
separate screen captures and not the report that shows “Complete”
There are eight parts
Example: Part 1 [20 points]
a. Log on to PC2 in Lab 6.20.
(Install DHCP) [5 points]
a. Disable Local Area Connection 2.
b. Install DHCP with a Scope. Scope name is (Use your first name). Scope range is
192.168.35.20 - 192.168.35.40. The subnet mask is 255.255.255.0. Disable DHCPv6
Stateless Mode. For all other selections, use the defaults.
(Configure DHCP) [6 points]
a. Add an Exclusion address of 192.168.35.25.
b. Add a Reservation address of 192.168.35.35 to be delivered to the PC1 computer.
The Reservation name is (Use your first name).
The Final Project is 140 points
UNIT 10
Unit 10 Part II – Final Exam
Final Exam – 3 hours and 40 minutes to take 100 question,
multiple-choice exam. Questions are similar to the quiz
questions for each unit.
100 Points