Boco 150817055242 Lva1 App6891

S GIO DC & O TO KLK
TRNG TRUNG CP TY NGUYN

***************
N THC TP
TM HIU V TRIN KHAI CC DCH V

MNG TRN WINDOWS SERVER 2008
B c o to
Loi hnh o to
Ngnh
Thi gian o to
Hoc sinh thc hin
Gio vin hng dn
: TRUNG CP CHUYN NGHIP

: CHNH QUI
: CNG NGH THNG TIN
: 2 NM
: TRNH VN LONG
: NGUYN TRN HNG QUN
NM 2015
Nhn xt ca gio vin hng dn
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
Ngy .. thng . nm .
(H v tn gio vin hng dn)
Nhn xt ca n v thc tp
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
................................................................................................................................................
Ngy .. thng . nm .
(K tn, ng du)
MC LC
MC LC.....................................................................................................................0
LI CM N................................................................................................................0
LI NI U............................................................................................................... 0
Chng 1. Gii thiu tng quan Windows Server 2008.................................................1
I. Gii Thiu V Windows Server 2008.....................................................................1
II. Cc tnh nng ca Windows server 2008...............................................................4
1. Cng c qun tr Server Manager.......................................................................4
2. Windows Server Core.........................................................................................4
3. PowerShell.........................................................................................................5
4. Windows Deloyment Services............................................................................5
5. Terminal Services...............................................................................................5
6. Network Access Protection.................................................................................6
7. Read-Only Domain Controllers..........................................................................6
8. Cng ngh Failover Clustering...........................................................................6
9. Windows Firewall with Advance Security..........................................................7
III. Cc tnh nng mi ca Windows server 2008......................................................7
1. Hyper-V scales higher.........................................................................................7
2. Processor Compatibility Mode...........................................................................7
3. File Classification Infrastructure........................................................................7
4. Qun ly trong a v file..................................................................................7
5. Ci tin giao thc v m ha..............................................................................8
6. Mt s tnh nng khc........................................................................................8
IV. Cc li ch ca Windows server 2008...................................................................8
1. Khng gian lu tr.............................................................................................8
2. Hyper-V 3.0........................................................................................................9
3. PowerShell 3.0..................................................................................................10
4. Failover clusters................................................................................................10
5. Chng trng lp d liu....................................................................................11
6. SMB 3.0............................................................................................................11
7. Web................................................................................................................... 11
8. o ha..............................................................................................................12
9. Bo mt............................................................................................................12
V. Cc Phin bn ca Windows Server 2008. Windows Server 2008:......................13
1. Windows Server 2008 Standard Edition...........................................................13
2. Windows Server 2008 Enterprise Edition ........................................................13
3. Windows Server 2008 Datacenter Edition........................................................14
4. Windows Web Server 2008...............................................................................14
5. Windows Server Core.......................................................................................14
Chng 2. Ci t Windows Server 2008 v xy dng h thng Domain Controler.. .16
I. Ci t Windows Server 2008...............................................................................16
II. Nng cp server 2008 thnh domain controller....................................................20
1. Ci t dch v t Active Directory Domain Services.....................................20
2. Nng cp Windows server 2008 thnh Domain Controller...............................24
III. Join my o Windows 7 vo Domain Controller................................................30
IV. To User,Ou, Group, cch thit lp Policy.........................................................36
1. To User, Ou, Group bng giao din................................................................36
1.1. To OU......................................................................................................37
1.2. To User.....................................................................................................38
1.3. To Group..................................................................................................40
2. To User, Ou, Group bng lnh........................................................................43
2.1. Cu lnh to OU (Organizational Unit) Command line creat OU...........43
2.2. Cu lnh to user Command line create User..........................................43
2.3. Cu lnh to group command creat group...............................................44
3.Thit lp Group Policy......................................................................................45
V. Quyn truy cp NTFS..........................................................................................50
1. Phn quyn trn th mc Share c bn.............................................................50
1.1Chia s th mc...........................................................................................50
1.2Cc quyn Share c bn...............................................................................53
2. Phn quyn c bn............................................................................................54
2.1. Gii thiu c ch phn quyn NTFS..........................................................54
2.2. Cc cng c phn quyn NTFS..................................................................58
2.3. Thc hin cc quyn c bn ca d liu doanh nghip trn NTFS............62
VI. Thit lp Multi master trn Windows server 2008.............................................62
Chng 3. Cc dch v trn Windows Server 2008....................................................69
I. Dch v DNS Server.............................................................................................69
1. Ci t DNS Server..........................................................................................69
2. Cu hnh DNS Server.......................................................................................71
3. B xung cc bn ghi DNS VO DNS Server..................................................79
II. Dch v DHCP.....................................................................................................83
1. Ci t dch v DHCP Server...........................................................................83
2. Cu hnh DHCP Server.....................................................................................89
3. Backup v Restore DHCP Server.....................................................................96
3.1. Backup DHCP Server................................................................................96
3.2. Restore DHCP Server................................................................................97
III. Dch v IIS (Web server)....................................................................................98
1. Ci t dch v Web server...............................................................................98
2. Trin khai web ln Web Server.......................................................................102
IV. Dch v FTP.....................................................................................................105
1. Ci t dch v FTP........................................................................................106
2. Cu hnh FTP..................................................................................................107
3. Thit t bo mt cho FTP..............................................................................113
V. File services v Resource Manager....................................................................114
1. Ci t dch v File Services v File Server Resource Manager.....................115
2. Qun l Quota.................................................................................................120
3. Qun l File Screen.........................................................................................126
4. Storage Report................................................................................................132
VI. Print Services (Dch v in n)..........................................................................136
1. Ci t dch v Print Services.........................................................................136
2. Thm my in...................................................................................................139
3. Chia s my in................................................................................................141
VII. VPN................................................................................................................ 142
VPN client to site...............................................................................................144
VIII. Terminal Services..........................................................................................156
1. Ci t Terminal Services...............................................................................156
2. Kt ni Terminal Server..................................................................................166
IX. Backup cho server............................................................................................167
1. Ci t tnh nng Windows Server Backup Features......................................167

2. Backup thng thng.....................................................................................170
2.1. Backup Server theo thi gian n nh......................................................170
2.2. Backup Server th cng...........................................................................173
2.3. Recover trc tip trn my.......................................................................177
2.4. Restore khi khng th khi ng Windows bng a Windows server 2008
........................................................................................................................181
3.Backup v Restore bng command-line...........................................................186
3.1. To file Backup........................................................................................186
3.2. Recovery Server.......................................................................................187
Kt lun.191
TI LIU THAM KHO.........................................................................................192
DANH SCH CC BNG

Bng 1 Yu cu phn cng Windows Server 2008........................................................3
Bng 2 Yu cu h thng Windows Server Core.........................................................16
LI CM N
Sau hai nm hc tp ti trng Trung cp Ty Nguyn khng ch li trong ti
nhng k nim kh phai m cn trang b cho ti nhng kin thc v cng cn thit
bc vo i. C th ni hai nm qua l mt bc ngot rt ln trong cuc i ti v
ti trng thnh hn rt nhiu.
Li u tin, ti xin by t lng bit n ca mnh i vi quy thy c trng
Trung cp Ty Nguyn, nhng ngi trang b cho ti rt nhiu kin thc v cng b
ch cng nh truyn t cho ti nhng kinh nghim v cng quy bu. c bit, ti xin
chn thnh cm n thy Nguyn Trn Hng Qun, ngi tn tnh hng dn v
gip ti rt nhiu trong vic hon thnh n ny. Ti cng gi li cm n n cc
anh ch cng ty TNHH Thi C to iu kin cho ti c mt mi trng thc tp
tt nht.
Ti xin cm n gia nh lun bn cnh, ng vin, to iu kin ti hon
thnh vic hc mt cch tt nht v cho ti mt im ta vng chc ti thm t tin
bc vo i. Cui cng, xin cm n cc bn lp CNTT7A lun quan tm gip ti
rt nhiu nhng lc kh khn.
Xin chn thnh cm n!
Sinh vin
Trnh Vn Long
LI NI U
p ng c nhng yu cu cng vic trong lnh vc cng ngh thng tin th
vic thng xuyn nghin cu, tm hiu, phn tch cc cng ngh mi l yu t khng
th thiu vi bt k k s cng ngh thng tin no.
Theo thng k ca Spiceworks th 59.8% cc t chc v doanh nghip Chu
Thi Bnh Dng ang s dng phin bn Windows Server 2003 cho thy nhng
thch thc m cc chuyn gia CNTT phi i mt v an ninh, ri ro v tun th chnh
sch v c hi hin i ha theo nhu cu u tin Di ng, u tin m my. H
iu hnh ny hn 12 nm v s ht h tr t Microsoft vo ngy 14/7/2015. Nu
cc cng ty s dng Windows Server 2003 sau thi im dng h tr, nhng my ch
ny c th thng xuyn b tn hi v khng c cp nht cc bn v bo mt mi.
iu ny l vn cc k nghim trng, nu tnh n tc pht trin v bo ca
nhng him ha an ninh hin nay.Windows Server 2003 s phi i mt vi nguy c b
tn cng t cc l hng l rt cao. theo kp thi i, nng cao bo mt h thng v
h thng ca mnh c th c h tr tt nht v tng thch vi nhng sn phm
mi nh SharePoint 2010, SQL 2010, Windows 7th ta cn phi nng cp h thng
sao cho ph hp.
tm hiu v qu trnh nng cp h thng ln Windows Server 2008 v mt s
dch v mng ca Window Server 2008, em xin chn ti:
Tm hiu v trin khai cc dch v mng trn Windows Server 2008.
Chng 1. Gii thiu tng quan Windows Server 2008.

I.1. Gii Thiu V Windows Server 2008
Tnh nng vt tri
Microsoft Windows Server 2008 l h iu hnh my ch windows th h tip theo
ca hng Microsoft c pht hnh vo 4/2/2008.
Cc tnh nng c ci thin mnh m so vi phin bn 2003:
+ An ton bo mt.
+ Truy cp ng dng t xa.
+ Qun ly server tp trung.
+ Cc cng c gim st hiu nng v tin cy.
+ Failover clustering v h thng file.
H tr trong vic kim sot mt cch ti u h tng my ch, ng thi to nn mt
mi trng my ch an ton, tin cy v hiu qu hn trc rt nhiu.
Microsoft Windows Server 2008 c th gip cc chuyn gia cng ngh thng tin c th
kim sot ti a c s h tng ca h v cung cp kh nng qun ly v hiu lc cha
tng c, l sn phm hn hn trong vic m bo an ton, kh nng tin cy v mi
trng my ch vng chc hn cc phin bn trc y.
Windows Server 2008 cung cp nhng gi tr mi cho cc t chc bng vic bo m
tt c ngi dng u c th c c nhng thnh phn b sung t cc dch v t
mng. Windows Server 2008 cng cung cp nhiu tnh nng vt tri bn trong h
iu hnh v kh nng chun on, cho php cc qun tr vin tng c thi gian h
tr cho cc doanh nghip.
Windows Server 2008 c thit k cung cp cho cc t chc c c nn tng sn
xut tt nht cho ng dng, mng v cc dch v web t nhm lm vic n nhng
trung tm d liu vi tnh nng ng, tnh nng mi c gi tr v nhng ci thin mnh
m cho h iu hnh c bn.
Ci thin h iu hnh cho my ch Windows.Thm vo tnh nng mi, Windows
Server 2008 cung cp nhiu ci thim tt hn cho h iu hnh c bn so vi h iu
hnh Windows Server 2003.
Nhng ci thin c th thy c gm c cc vn v mng, cc tnh nng bo mt
nng cao, truy cp ng dng t xa, qun ly role my ch tp trung, cc cng c kim
tra tin cy v hiu sut, nhm chuyn i d phng, s trin khai v h thng file.
ng dng nn tang WEB:

1
Windows Server 2008 tp hp nhng ci tin mnh m dnh cho nn tng ng dng
Web. N a ra nhiu cp nht cho web server role, Internet Information Services
(IIS) 7.5 , h tr ti ra cho .NET trn nn server core. Thit k tp trung vo ci tin
IIS 7.5 cho php ngi qun tr Web d dng trin khai v qun ly cc ng dng web,
tng tin cy v kh nng m rng d dng. Thm vo , IIS 7.5 cn c kh nng
sp xp hp ly v cung cp nhiu kh nng ty chnh trong mi trng Web.
o ha:
Nh s hot ng c hi u qu ca cng ngh o ha m cc trung tm t chc c hot
ng lin quan n lnh vc cng ngh thng tin tit kim c rt ln cc chi ph
v tiu th nng lng v cng tc qun ly bo tr trn din rng trong ton h thng
Linh hot v kha nng m rng:

Windows Server 2008 ch h tr trn nn vi x ly 64 bit, iu ny c ngha n tn
dng ti a kh nng x ly v kh nng nng cp hu nh l khng gii hn cho hot
ng ca h thng. Mt lot tnh nng mi c cp nht sn c trong Windows, bao
gm tn dng cu trc CPU, tng thm thnh phn h thng, ci thin hi u sut v
kh nng m rng cho ng dng dch v. Hyper-V cng nm trong tnh nng tng
thch u vi t ny, kh nng tng thch ny cho php cc my o di chuyn gia cc
h thng khc nhau ch cn kin trc b vi x ly trong h thng di chuyn n v h
thng c cng nh sn xut.
Hot ng tt hn khi kt hp vi Client Windows 7:

Windows Server 2008 c mt vi tnh nng c thit k c bi t dnh cho Client s
dng Windows 7 , to s tin li ti a v an ton cho ngi dng da trn cng ngh
mi.
n gian ha cc kt ni t xa cho cc my tnh s dng tnh nng

DirectAccess:
Mt trong nhng vn thng phi i mt trong cc t chc l kt ni t xa cho
ngi s dng thit b di ng. Gii php c a ra v s dng rng ri hin nay l
mng ring o (VPN). Ty theo loi VPN, m ngi dng c th phi ci t phn
mm VPN client trn my tnh kt ni vo t chc cty ca h. Tnh nng
DirectAccess trong Windows Server 2008 cho php cc my tnh client s dng
Windows 7 kt ni trc tip vi mng ni b m khng c s phc tp ca vic thit
lp kt ni VNP.
am bao kt ni bao mt cho my tnh c nhn v cng cng:

Vn ny c cp n khi ngi dng kt ni vo h thng mng ca t chc,
cty h nhng my tnh khng thuc s hu t chc ca ngi dng m n thuc v
cng cng hoc a im cho thu truy cp Internet. Hu ht ngi dng cng khng
2
th t kt ni vo h thng ca t chc da trn cc cng c c sn trn my tnh. S

tch hp ca Remote Workspace, Presentation Virtualization v Remote Desktop
Gateway cho php ngi dng s dng Windows 7 khng phi ci thm phn mm
no trn my tnh m vn kt ni vo h thng thao tc cng vic nh ang trn my
tnh ni b.
Cai thin hi u sut lm vic cho cc vn phng chi nhnh:

Thc t th hin nay vic thnh lp cc chi nhnh phc v cho vic pht trin kinh
doanh ca cc t chc l iu khng th thiu. gim thiu chi ph cho hot ng v
qun ly ca vn phng chi nhnh cc t chc ang tm cch tp trung cc ng dng v
khu trung tm. Tuy nhin iu ny cng cn ph thuc vo lin kt WAN gia cc vn
phng chi nhnh v trung tm ng dng, tuy nhin lin kt ny cng l 1 phn chi ph
hot ng ca doanh nghi p.
Tnh nng BranchCache trong Windows Server 2008 v Windows 7 gip gim s lin
kt WAN bng cch thng xuyn s dng thng tin t b nh m cho cc ngi
dng ti cc vn phng chi nhnh. Khi ngi dng t vn phng chi nhnh gi yu cu
ly d liu t cc vn phng trung tm ca ho, mt bn sao ni dung vn bn s
c sao lu li ti vn phng chi nhnh. Yu cu tip theo cng vi ni dung vn bn
va ri th ngi dng tip theo s c cung cp tc thi thng qua Cache t vn
phng chi nhnh, qua gim vic s dng kt ni WAN cng nh chi ph kt ni.
Yu cu phn cng ci Windows Server 2008:

Trong thc t s c thay i ty thuc vo mc ch tip theo sau khi ci t v nhng
ng dng cung cp cho h thng m bn nn xem xt li cu hnh phn cng trc khi
ci t.
Bng 1 Yu cu phn cng Windows Server 2008
Component
Requirement
Prosessor
Minimum: 1.4GHz x64 (processor)

Note: vi Windows Server 2008 R for
Itanium-Bases Systems yu cu dng vi
x l Intel Itanium 2 processor.
Memory
Minium: 512 MB RAM

Maxmum: 8GB (Foundation) hoc 2
TB (Enterprise, Datacenter, v Itaniumbase Systems)
Disk Spac Requiements
Minimum: 32 GB hoc hn na.

Note: Server c cu hnh RAM 16 GB
tr ln yu cu nhiu dung lng a
3
cng hn na.
Display
phn gii ti thiu Super VGA

(800x600).
Other
DVD driver, Mouse, Keyboard
I.2. Cc tnh nng ca Windows Server 2008.

1.2.1
Cng c quan tr Server Manager.
Server Manager l mt giao din iu khin c thit k t chc v qun ly mt

server chy h iu hnh Windows Server 2008. Ngi qun tr c th s dng Server
Manager vi nhng nhiu mc ch khc nhau.
-
Qun ly ng nht trn mt server
Hin th trng thi hin ti ca server
Nhn ra cc vn gp phi i vi cc role c ci t mt cch d dng

hn
Qun ly cc role trn server, bao gm vic thm v xa role
Thm v xa b cc tnh nng
Chun on cc du hi u bt thng
Cu hnh server: c 4 cng c ( Task Scheduler, Windows Firewall, Services v

WMI Control).
Cu hnh sao lu v lu tr: cc cng c gip bn sao lu v qun ly a l

Windows Server Backup v Disk Management u nm trn Server Manager.
1.2.2
Windows Server Core.
Server Core l mt tnh nng mi trong Windows Server 2008. N cho php c th ci
t vi mc ch h tr c bi t v c th i vi mt s role.
Tt c cc tng tc vi Server Core c thng qua cc dng lnh.
Server Core mang li nhng li ch sau:
+ Gim thiu c phn mm, v th vic s dng dung lng a cng c
gim. Ch tn khong 1GB khi ci t.
+ Bi v gim thiu c phn mm nn vic cp nht cng khng nhiu. +
Gim thiu ti a nhng hnh vi xm nhp vo h thng thng qua cc port
c m mc nh.
+ D dng qun ly.
4
Server Core khng bao gm tt c cc tnh nng c sn trong nhng phin bn ci t

Server khc. V d nh .NET Framework hoc Internet Explorer.
1.2.3
PowerShell.
PowerShell l mt tp hp lnh. N kt ni nhng dng lnh shell vi mt ngn ng
script v thm vo hn 130 cng c dng lnh(c gi l cmdlets).Hin ti, c th
s dng PowerShell trong:
+ Exchange Server
+ SQL Server
+ Terminal Services
+ Active Directory Domain Services.
+ Qun tr cc dch v, x ly v registry.
Mc nh, Windows PowerShell cha c ci t. Tuy nhin bn c th ci t n
mt cch d dng bng cch s dng cng c qun tr Server Manager v chn
Features > Add Features
1.2.4
Windows Deloyment Services.
Windows Deployment Services c tch hp trong Windows Server 2008 cho php
bn ci t h iu hnh t xa cho cc my client m khng cn phi ci t trc tip.
WDS cho php bn ci t t xa thng qua Image ly t DVD ci t. Ngoi ra, WDS
cn h tr to Image t 1 my tnh ci t sn Windows v y cc ng dng
khc.
Windows Deployment Services s dng nh dng Windows Image (WIM). Mt ci
tin c bi t vi WIM so vi RIS l WIM c th lm vic tt vi nhiu nn tng phn
cng khc nhau.
1.2.5
Terminal Services.
Terminal Services l mt thnh phn chnh trn Windows Server 2008 cho php user
c th truy cp vo server s dng nhng phn mm.
Terminal Services gip ngi qun tr trin khai v bo tr h thng phn mm trong
doanh nghi p mt cch hi u qu. Ngi qun tr c th ci t cc chng trnh phn
mm ln Terminal Server m khng cn ci t trn h thng my client, v th vic
cp nht v bo tr phn mm tr nn d dng hn. Terminal Services cung cp 2 s
khc bi t cho ngi qun tr v ngi dng cui
Dnh cho ngi qun tr: cho php qun tr c th kt ni t xa h thng qun tr bng
vic s dng Remote Desktop Connection hoc Remote Desktop. - Dnh cho ngi
5
dng cui: cho php ngi dng cui c th chy cc chng trnh t Terminal
Services server.
1.2.6
Network Access Protection.
Network Access Protection (NAP) l mt h thng chnh sch thi hnh (Health Policy
Enforcement) c xy dng trong cc h iu hnh Windows Server 2008. - C ch
thc thi ca NAP:
+ Kim tra tnh trng an ton ca client.
+ Gii hn truy cp i vi cc my client khng an ton.
+ NAP s cp nht nhng thnh phn cn thit cho cc my client khng an ton,
cho n khi client iu kin an ton. Cho php client kt ni nu client
tha iu kin.
+ NAP gip bo v h thng mng t cc client.
+ NAP cung cp b th vin API (Application Programming Interface), cho php
cc nh qun tr lp trnh nhm tng tnh bo mt cho mnh
1.2.7
Read-Only Domain Controllers.
Read-Only Domain Controller (RODC) l mt kiu Domain Controller mi trn
Windows Server 2008.Vi RODC, doanh nghi p c th d dng trin khai cc
Domain Controller nhng ni m s bo mt khng c m bo v bo mt.
RODC l mt phn d liu ca Active Directory Domain Services.
V RODC l mt phn d liu ca ADDS nn n lu tr mi i tng, thuc tnh v
cc chnh sch ging nh Domain Controller, tuy nhin mt khu th b ngoi tr.
1.2.8
Cng ngh Failover Clustering.
Clustering l cng ngh cho php s dng hai hay nhiu server kt hp vi nhau to
thnh mt cm server tng cng tnh n nh trong vn hnh. Nu server ny
ngng hot ng th server khc trong cm s m nhn nhim v m server ngng
hot ng ang thc hin nhm mc ch hot ng ca h thng vn bnh thng.
Qu trnh chuyn giao gi l fail-over.
Nhng phin bn sau h tr:
Windows Server 2008 Enterprise
Windows Server 2008 Datacenter
Windows Server 2008 Itanium
6
1.2.9
Windows Firewall with Advance Security.
Windows Firewall with Advance Security cho php ngi qun tr c th cu hnh a
dng v nng cao tng cng tnh bo mt cho h thng.
Windows Firewall with Advance Security c nhng im mi:
Kim sot ch t ch cc kt ni vo v ra trn h thng (inbound v outbound)
IPsec c thay th bng khi nim Connection Security Rule, gip bn c th
kim sot v qun ly cc chnh sch, ng thi gim st trn firewall. Kt hp
vi Active Directory.
H tr y IPv6.
I.3. Cc tnh nng mi ca Windows server 2008.
1. Hyper-V scales higher.
Phn mm o ha my ch ca Microsoft hin s cho php ngi dng c kh nng h
tr n 64 b vi x ly logic, vi mc ch b sung thm kh nng my ch v qun ly
cc lung cng vic doanh nghi p ln nht. Trc y, Hyper-V ch c th h tr n
32 b vi x ly.
1.2.1
Processor Compatibility Mode.
Cho php di tr cc my o sang mt my ch vt ly khc vi mt phin bn CPU
khc (nhng khng phi l CPU ca nh sn xut khc). Trc y, chuyn mt
my o Hyper-V sang mt phn cng khc, cc CPU phi ging nhau, iu yu cu
ngi dng thng phi mua li phn cng mi.
1.2.2
File Classification Infrastructure.
FCI l mt tnh nng built-in cho php cc chuyn gia CNTT phn loi v qun ly d
liu trong cc my ch file. D liu c th c phn loi vi tc ng doanh nghi p
mc thp, cao hoc trung bnh, sau ngi dng c th backup cc d liu quan
trng nht d dng hn v hi u qu hn.
1.2.3
Quan ly trong a v file.

Cung cp kh nng thay i kch thc phn vng.
Shadow Copy h tr a quang, a mng.
Distributed File System c ci tin.
Ci tin Failover Clustering.
Internet Storage Naming Server cho php ng ky, hy ng ky tp trung v

truy xut ti cc a cng iSCS.
1.2.4
Cai tin giao thc v m ha.

H tr m ha 128 v 256 bit cho giao thc chng thc Keberos.
Hm API m ha mi h tr m ha vng elip v ci tin qun ly chng ch.
Giao thc VPN mi Secure Socket Tunneling Protocol. o AuthIP c s dng
trong mng VPN Ipsec. o Giao thc Server Message Block 2.0 cung cp cc ci
tin trong truyn thng.
1.2.5
Mt s tnh nng khc.

Windows Deployment Services thay th cho Automated
Deployment Services v Remote Installation Services.
IIS 7 thay th IIS 6, tng cng kh nng bo mt, ci tin cng c chun on,
h tr qun ly.
C thnh phn "Desktop Experience" cung cp kh nng ci tin giao din.
I.4. Cc li ch ca Windows server 2008.

Windows Server 2008 l th h k tip ca h iu hnh dnh cho my ch ca
Microsoft, bao gm h thng tp tin mi, kh nng kim sot truy cp cao cp hn.
H iu hnh mi ny c thit k nhm hng n mc ch gip cho ngi dng
c mt h thng bo m mc lin tc hot ng trong mt khong thi gian nh
sn (tnh sn sng cao), gip gim thiu chi ph h tng v chi ph qun ly, theo nhiu
cch khc nhau. Windows Server 2008 c tha hng nhng cng ngh u vi t ca
nhng phin bn trc v c trang b thm nhiu bn nng cp 3.0 ca cc tnh nng
Hyper-V, PowerShell, SMB,
1. Khng gian lu tr.
Mt trong nhng im ni b t ca Windows Server 2008 l kh nng phc hi tt c
cc ngun ti nguyn, thng qua hai tnh nng mi l Resilient File System (ReFS) v
Storage Spaces. nh dng tp tin h thng NTFS c Microsoft s dng hn 19
nm v n gn y nh dng ny c b sung p ng nhiu hn cc yu cu
ca cng ngh o ha, in ton m my. Kt qu l th h tip theo ca NTFS
xut hin, mang tn ReFS. ReFS h tr tp tin v kch thc th mc ln hn (tn tp
tin, th mc vi s k t ln n 32000, c th lu tr cc tp tin ln n kch thc 16
tri u TB), dn dep a, ci thin hi u nng, h tr o ha nng cao, h tr phng
8
php kim tra tnh ton ven ca d liu (Integrity Streams), v.v. c bi t, ReFS c th
t ng sa li d liu m khng cn dng ton b hot ng ca h thng. Ngoi ra,
ReFS c kh nng tng thch ngc vi NTFS nn Windows Server 2008 chc chn
s tip tc h tr NTFS cho nhng nm tip theo.
ng dng CHKDSK cng c tha hng nhng ci tin ca h thng tp tin mi.
N s qut a theo hai bc: d li v ghi li li (khng cn khi ng li h thng)
ri sa li d liu. S khc bi t gia phin bn CHKDSK ci tin v phin bn truyn
thng l thi gian hon tt cc hot ng ch trong vi giy, thay v phi mt nhiu
pht hoc thm ch vi gi (i vi cc a ln) cc phin bn Windows Server
trc y.
Vi tnh nng mi Storage Spaces, bn c th kt ni nhiu a vt ly thnh mt
a o v c th to ra vng lu tr c dung lng ln hn dung lng thc t ca
cng. Storage Spaces c th nhn bn d liu trn nhiu a d phng hoc kt
hp nhiu a vt ly vo mt khu vc lu tr duy nht. Tnh nng Storage Spaces
gip tit kim ng k chi ph so vi cng ngh RAID.
1.2.1
Hyper-V 3.0.
Hyper-V c Microsoft pht hnh cng vi phin bn Windows Server 2008, cung
cp nhiu tnh nng o ha cn thit v nng cao cho ngi dng doanh nghi p m
khng cn phi mua thm phn mm ca hng th ba. Gi y, Hyper-V 3.0 c
m rng rt nhiu thng s k thut so vi cc phin bn trc , c th ngang
bng vi nn tng o ha VMware. Trong s nhng ci tin l nng gii hn ti a
2TB RAM v 160 b x ly logic cho mi host, m rng cc cm chuyn i d phng
ln n 64 nt, gia tng kch thc ca mt cluster v chy cc my o n 4000 cho
mi cm v c n 1024 b t ngun cho my o trn mt host. Hyper-V 3.0 cng h
tr cp lu tr tp tin SMB (Server Message Block), cng vi c ch lu tr iSCSI
v Fibre Channel. Cc tnh nng mi khc bao gm Hyper-V switch o (h tr my o
kt ni vi cc mng vt ly, my o v my ch Hyper-V hoc mt tp hp con ca
cc my o) v SAN o. SAN o gm c kh nng s dng knh o ha cp quang
(Fibre Channel o) kt ni mt my o trc tip n mt b chuyn i my ch vt
ly gip ci thin hi u nng.
Hyper-V Replica l mt tnh nng mi trong Hyper-V 3.0, n cho php sao chp
khng ng b cc my o gia cc my ch vt ly vi nhau thng qua kt ni mng
IP. Bn cnh , Hyper-V Replica cng cho php tch hp vi Failover Cluster
Manager di chuyn cc my o gia cc nt trong cluster m khng lm gin on
hot ng ca my o.
Microsoft tin rng Hyper-V 3.0 c th x ly bt k khi lng cng vic no m bn

a n cho n, c bi t l cc ng dng ca Microsoft: Exchange, SQL Server,
SharePoint. Vi y ngh ny, chc chn bn s tit kim c mt khon tin khng nh
cho vic u t phn cng, bng cch hp nht cc ng dng vo trong mt my ch
hoc cluster. V bn khng cn phi lo lng v chi ph t ca phn mm o ha
VMware.
1.2.2
PowerShell 3.0.
Windows Server 2008 khng ch cung cp giao din ha cho vic qun ly mng m
cn h tr nhng dng lnh qun ly thng qua PowerShell 3.0. Khi iu khin t xa
bng PowerShell th bn c kh nng chy bt c dng lnh PowerShell trn bt k
my ch no m bn c quyn truy cp. Trong khi , tnh nng Server Manager trong
giao din ha c thit k kh ep v bn cng c th ty chn ci t Windows
Server 2008 giao din ngi dng ti thiu nht. Windows Server 2008 bao gm hn
2430 cu lnh PowerShell (cmdlet) t ng ha khng ch kt ni mng m cn
Storage, clustering, RDS, DHCP, DNS, File Server, Print xem danh sch cu
lnh, bn nhp dng lnh sau y vo ca s PowerShell:
PS> Get-Command -Module PSScheduledJob
i vi cc cng c trong Administrative Tools, nh Active Directory Administrative
Center, bn c cung cp mt ca s xem nhng cu lnh PowerShell thc
hin. Bn c th lu nhng cu lnh ny sau ny s dng, t ng ha cc cng
vic l p i l p li v xy dng mt th vin kch bn Active Directory ph hp vi
nhng mi trng c th. Bn cnh , Windows Server 2008 cn c mt cng c
dng pht trin v th nghim cc dng lnh PowerShell, l ISE (PowerShell
Integrated Scripting Environment).
1.2.3
Failover clusters.
Vi cc phin bn trc ca Windows Server, clustering c gii hn ch yu vo

lnh vc in ton hi u nng cao v tnh sn sng cao ca cc dch v, nh l SQL
Server. N i hi mt giy php c bi t v lp t b sung cho cc thnh phn cn
thit. Windows Server 2008 bao gm clustering trong phin bn Standard, gip tng
cng kh nng chu li, v hai nt cluster cho mt mc gi rt khim tn. Phn qun
ly ca Cluster Shared Volumes (CSV) cng c tch hp vo Failover Cluster
Manager. Tnh nng sao lu CSV volumes cho php qu trnh sao lu din ra song
song vi cc CSV volumes khc trong nhiu code ca cluster. Khng cn yu cu thay
i quyn s hu CSV volume gia cc nt khi tin hnh sao lu.
Mt tnh nng mi c gi l Cluster-Aware Updating (CAU) cho php bn thc hin
v li hoc cp nht chy cc nt cluster m khng b gin on hoc khi ng li
10
cc cluster. Mi nt s nhn c mt bn cp nht v khi ng li khi cn thit. Bn

ch cn hn hai nt cluster cho CAU lm vic m khng ph v tnh lin tc cluster.
Vi tnh nng ny chc chn gip bn tit kim c nhiu thi gian.
1.2.4
Chng trng lp d liu.
Tuy trnh trng lp d liu (Data deduplication) khng phi l mt cng ngh mi, n
xut hin nhiu nm trc y, nhng n Windows Server 2008, chng trng lp
d liu tr thnh mt phn ca h iu hnh. V d, bn mun di chuyn mt s
lng ln tp tin VHD (Virtual Hard Drive), mi VHD c rt nhiu tp tin v ng
dng ging nhau. Tnh nng Data deduplication s gip g b ton b cc bn sao ng
dng t cc VHD v ch gi li mt bn. Sau , d liu cn li c lu ti mt v
tr tch bi t trong SVI (System Volume Information) v tr ti nhng tp tin ng vai
tr l mu ngun.
Tnh nng chng trng lp d liu cn c tch hp ch t ch vi cng c mng
BranchCache, gip y nhanh tin chuyn tp tin v tit kim ng k bng thng
tiu th khi phn phi d liu qua mt mng WAN.
1.2.5
SMB 3.0.
Microsoft u t kh k lng cho vic hin i ha giao thc Server Message

Block (SMB). Windows Server 2008, SMB 2.2 c thay th bi phin bn 3.0.
SMB 3.0 mang li gi tr ln cho ngi s dng a bng cc tnh nng lu tr cao
cp. Giao thc ny h tr nn tng o ha Hyper-V v khi lng cng vic SQL
Server theo mi trng lu tr khi trc y. SMB
3.0 bao gm mt s thnh phn mi ci thin kh nng pht hin v phc hi t
mt kt ni b mt. Windows Server 2008 v SMB 3.0 h tr b iu hp mng
Remote Direct Memory Access (RDMA). SMB Direct h tr hu ht cc loi b
chuyn i RDMA mi nht, kt hp vi SMB Multichannel tng hi u sut v kh
nng chuyn i d phng.
1.2.6
Web
Windows Server 2008 cung cp mt nn tng ng nht trin khai dch v Web nh
tch hp IIS7.0,ASP.NET,Windows Communication Foundation v Microsoft
Windows SharePoint Services.
Li ch ca IIS 7.0:
Tnh nng phn tch o Qun tr hi u qu.
Nng cao tnh bo mt.
11
Gim chi ph h tr.

Giao din thn thin v tin dng
H tr vic sao chp gia cc site.
Copy d dng cc thit lp ca trang web gia cc my ch web khc nhau m
khng cn phi thit lp g thm.
Chnh sch phn quyn qun tr cc ng dng v cc site ro rng
1.2.7
o ha.
Phin bn 64 bit ca Windows Server 2008 c tch hp sn cng ngh o ha
hypervisor :
Cho php my o tng tc trc tip vi phn cng my ch hi u qu hn.
C kh nng o ha nhiu h iu hnh khc nhau trn cng 1 phn cng my
ch s lm gim chi ph, tng hi u sut s dng phn cng, ti u ha h tng,
nng cao tnh sn sng ca my ch.
Tit kim chi ph mua sm bn quyn phn mm.
Tch hp v tp trung cc ng dng phc v cho vic truy cp t xa mt cch
d dng bng cch s dng Terminal Services.
1.2.8
Bao mt.
Cc tnh nng an ninh bao gm: Network Access Protection, Read-Only Domain
Controller, BitLocker, Windows Firewall cung cp cc mc bo v cha tng c
cho h thng mng, d liu v cng vic ca t chc.
9.1. Network Access Protection (NAP):
NAP dng thit lp chnh sch mng i vi cc my trm khi my trm
mun kt ni vo h thng mng ca t chc. Yu cu an ninh i vi my trm
c kt ni vi h thng mng:
ci t phn mm di t virus.
cp nht phin bn mi.
ci t cc bn v li h thng hoc ci t phn mm firewall.
9.2. Read-Only Domain Controller (RODC):
12
L mt kiu Domain Controller (DC).

RODC cha mt bn sao cc d liu "ch c" ca d liu Active Directory (AD).
User khng th ghi trc tip vo RODC.
RODC khng cha thng tin v mt khu trong AD, m ch caching cc users c
php s dng .
RODC thch hp cho vic trin khai cc chi nhnh, ni c iu kin bo mt km
cng nh trnh ca nhn vin IT cn hn ch.
9.3. BitLocker:
Bo v an ton cho my ch, my trm, my tnh di ng.
M ha ni dung ca a nhm ngn cn
Nng cao kh nng bo v d liu: kt hp chc nng m ha tp tin h thng v
kim tra tinh ton ven ca cc thnh phn khi boot.
Ton b tp tin h thng c m ha, gm c file swap v file hibernation.
9.4. Windows Firewall:
Ngn chn cc lu lng mng theo cu hnh v cc ng dng dng chy bo v
mng khi cc chng trnh v ngi dng nguy him.
H tr ngn chn cc thng tin vo v ra.
S dng MMC snap-in ( Windows Firewall with Adbanced
Security) n gin ha vic cu hnh, qun tr.
I.5. Cc Phin ban ca Windows Server 2008. Windows Server 2008:
ng dng cho cc trung tm data ln, ng dng nghi p v ring,... kh nng m rng
cao cho ti 64 b x ly.
1. Windows Server 2008 Standard Edition.
Windows Server 2008 Standard l mt trong nhng phin bn t tn km nht ca cc
phin bn khc nhau c sn. Windows Server 2008 Standard h tr ti 4GB RAM v
4 b vi x ly.
Ch yu nhm mc tiu v cc doanh nghi p va v nh. Ch c th nng cp ln
Windows Server 2008 Standard t Windows 2000 Server v Windows Server 2003
Standard Edition.
1.2.1
Windows Server 2008 Enterprise Edition .
Windows Server 2008 Enterprise Edition cung cp chc nng ln hn v c kh nng

m rng hn so vi bn tiu chun. Cng nh phin bn Standard Edition th phin
bn Enterprise cng c c hai phin bn 32-bit v 64-bit. H tr 8 b x ly v ln ti
13
64GB b nh RAM trn h thng 32-bit v 2TB RAM trn h thng 64-bit. Cc tnh
nng khc ca n bn Doanh nghi p bao gm h tr Clustering n 8 nt v Active
Directory Federated Services (AD FS).
Cc phin bn Windows Server 2000, Windows 2000 Advanced Server, Windows
Server 2003 Standard Edition v Windows Server 2003 Enterprise Edition u c th
c nng cp ln Windows Server 2008 Enterprise Edition.
1.2.2
Windows Server 2008 Datacenter Edition.
Phin bn Datacenter i din cui cng ca lot sn phm my ch Windows 2008 v

mc tiu l nhim v quan trng i hi cc doanh nghi p n nh v mc thi
gian hot ng cao. Windows Server 2008 phin bn Datacenter l lin h ch t ch
vi cc phn cng c bn thng qua vic thc hin ty chnh Hardware Abstraction
Layer (HAL).
Windows server 2008 Datacenter cng h tr hai phin bn 32 bit v 64 bit. N h tr
64GB b nh RAM trn nn 32 bit v ln ti 2TB RAM trn nn 64 bit. Ngoi ra
phin bn ny cn h tr ti thiu l 8 b vi x ly v ti a l 64. nng cp ln
phin bn ny th phi l cc phin bn Datacenter 2000 v 2003.
1.2.3
Windows Web Server 2008.
Windows Web Server 2008 l mt phin bn ca Windows Server 2008 c thit k

ch yu cho mc ch cung cp cc dch v web. N bao gm Internet Information
Services (IIS) 7,0 cng vi cc dch v lin quan nh Simple Mail Transfer Protocol
(SMTP) v Telnet. N cng c cc phin bn 32-bit v 64-bit, phin bn v h tr ln
n 4 b vi x ly. RAM c gii hn 4GB v 32GB trn 32-bit v 64-bit h thng
tng ng.
Windows Web Server 2008 thiu nhiu tnh nng hin din trong cc phin bn khc
nh phn nhm, m ha a BitLocker, Multi I/O,Windows Internet Naming Service
(WINS),Removable Storage Management v SAN Management.
1.2.4
Windows Server Core
Server Core l mt kiu ci t thu gn ca Windows Server 2008,trong gm c

nhng thnh phn c bn nht ca Windows c dng trin khai cc dch v trn
Windows Server 2008
Server Core khng cung cp cho bn mt giao din ha thng thng ca Windows
tng tc vi h thng.Thay vo bn s phi s dng giao din dng lnh
(Command Line),cc cng c qun tr t xa v Terminal Services
14
Server Core khng yu cu bn phi ci t cc bn cp nht khng cn thit ln

Windows,ng thi ti u ha s lng dch v cn dng.T ,nng cao tnh nng
bo mt ,ng thi gim s lng cc dch v cn np,tit kim ti nguyn h thng.
Vi Server Core,bn c th trin khai cc dch v : Active Directory Domain
Services,Active Directory Lightweight Directory Services,Streaming Media
Services,DNS Server,Print Server,File Server,DHCP Server.Trong mt hoc nhiu
dch v c th trin khai ng thi trn h thng c ci t theo kiu Server Core.
Yu cu h thng.
Bng 2 Yu cu h thng Windows Server Core
Thnh phn
Yu cu
B x l
Ti thiu 1Ghz (x86) hoc 1,4Ghz (x64)

Khuyn dng >=2Ghz
B nh Ram
Ti thiu 512MB
Khuyn dng >= 1 GB
Dung lng cn trng
Ti thiu 2GB
Khuyn dng >=8GB
a ci t
DVD-ROM
Mn hnh
Super VGA (800x600) hoc phn gii cao hn
15
Chng 2. Ci t Windows Server 2008 v xy dng h thng

Domain Controller.
I. Ci t Windows Server 2008
Bc 1. t a CD vo a, khi ng li my tnh v bt u tin hnh qu trnh
ci t.
Language to instalk : ngn ng bn mun hin th.
Time and currency format : nh dng thi gian v tin t.
Keyboard or input method : nh dng bn phm v phng thc nhp
ch.Sau khi la chn, click Next tip tc ci t
Bc 2. Click Install now bt u ci t.
16
Bc 3. La chn phin bn Windows Server thch hp, y chng ta chn phin

bn Windows Server Standard without Hyper-V. Click Next tip tc.
Bc 4. Ti bng MICROSOFT PRE-RELEASE SOFTWARE LICENSE TERMS

l nhng iu khon s dng sn phm ca Microsoft. nh du chn vo I
accept the license terms chp nhn nhng iu khon v click Next
tip tc.
17
Bc 5. Chn Custom (advaneced) tin hnh ci t ty chn.
Bc 6. Tip theo l chn a ci dt Windows. Tip tc click Next sau khi

chn a ci t.
18
19
Bc 7. i cho n khi hon tt ci t Windows Server 2008
Bc 8. Sau khi h thng hon tt ci t s t ng ng nhp vi ti khon

Administrator, tuy nhin mt khu ang trng thi trng (blank) v th cn phi
thit lp mt khu ln ng nhp u tin.
Click OK tin hnh thay i mt khu.Sau ng nhp vo bng mt
khu va thay i.
n y qu trnh ci t kt thc.
20
II. Nng cp server 2008 thnh domain controller.

1. Ci t dch v t Active Directory Domain Services
Ging nh Windows Server 2003 s vn cn chy dcpromo t nhc lnh Run, tuy
nhin cn phi ci t Active Directory Domain Controller role, cc bc ci t
Active Directory Domain Services nh sau
Bc 1. Vo server manager
Bc 2. mc Roles chn Add Roles
21
Bc 3. Xut hin hp thoi Add Roles Wizard, mc Before You Begin ta chn next
( tick vo Skip this page by default khng xut hin mc ny ln ci t sau ).
Bc 4. mc Server Roles ta tick chn Active Directory Domain Services v Next

bt u qu trnh ci t
22
Bc 5. mc nh nhn Next
Bc 6. Sau khi chn Active Directory DC Server Role, bn s thy cc thng tin v
Server Role. Kch Install ci t cc file yu cu nhm chy dcpromo
23
Bc 7. Ci t xong Active Directory Domain Services , nhn Close kt thc
24
1.2.1
Nng cp Windows server 2008 thnh Domain Controller
Bc 1. Sau khi qu trnh ci t hon tt, ta vo run > DCPROMO
Bc 2. Xut hin hp thoi Active Directory Domain Services Installation Wizard,

chn next tip tc
25
Bc 3. Nhn Next
Bc 4. Chn Create a new domain in a new forest to mt domain mi sau

Next.
26
Bc 5. Trong trang Name the Forest Root Domain, nhp vo tn ca min trong hp
nhp liu FQDN of the forest room domain.Nhn Next tip tc.
Bc 6. mc Forest functional level chn Windows Server 2008, Nhn Next tip
tc.
27
Bc 7. Trong trang Additional Domain Controller Options, Chn DNS server v

kch Next.
Bc 8. Mt hp thoi s xut hin ni rng khng th to i biu cho my ch DNS

ny v khng th tm thy vng xc thc hoc n khng chy Windows DNS
server. Ly do cho iu ny l v y l DC u tin trn mng. Nhn Next tip
tc.
28
Next mc nh
Bc 9. Nhp password ca domain, nhn Next
29
Bc 10. Xc nhn thng tin ci t, tip tc nhn Next
Bc 11. i qu trnh ci t xong, khi ng li my qu trnh ln Domain

Controler s hon tt
30
Kt qu sau khi khi ng li my
III. Join my ao Windows 7 vo Domain Controller.

Bc 1. t a ch IP cho Windows 7
31
Bc 2. c th Join mt my client vo server, u tin ta cn chc chn 2 my

thng vi nhau v DNS ca client tr v Ip ca server.
( Lu y ta cn tt tng la ca c hai bn nu demo trn my o Vmware ).
Bc 3. Tin hnh to User ng nhp cho client trn server

Vo Start > Administrative Tools > Active Directory Users and Computers
32
th mc Users, nhp phi chn new > user
Xut hin hp thoi New Object User, nhp tn User ng nhp cho client,
sau bm Next.
33
Nhp Password ca User ng thi b la chn User must change password at

next logon, sau Next. Hon thnh vic to User cho client
Bc 4. Vo Computer Name/Domain changes

Nhp phi My Computer v chn Properties
34
Tip theo chn Advanced system settings
Xut hin hp thoi chn Computer name > change
35
Bc 5. Join client vo domain

mc Member of ta chn Domain v nhp tn domain ca server sau bm
Ok.
Ti hp thoi Windows Security nhp user password to trn Dmain, Ok

bt u join vo Server
36
Kt thc thnh cng join vo domain, ta restart li my hon tt ci t.
IV. To User,Ou, Group, cch thit lp Policy.

To user, ou, group c hai cch 1 l dng form ca windows, 2 l dng lnh. Mi ci
u c u nhc im ring. Dng form s nhanh hn nu ch to t User, ngc li
dng lnh s ch nhanh nu to nhiu User
1. To User, Ou, Group bng giao din
Vo start > Administrative Tools > Active Directory Users and Computers
37
1.1.1.1.
To OU
OU (Organizational Unit): l mt loi vt cha m bn c th a vo ngi dng,

nhm, my tnh v nhng OU khc.
Bc 1. to mt Organizational Unit nhp phi vo domain, chn new >
Organizational Unit. (OU, c hiu nh mt n v t chc, trong OU cha cc
Group v c qui nh bi mt hay nhiu chnh sch (policy) )
38
Bc 2. Xut hin hp thoi New Object OU, nhp tn OU cn to, OK kt thc

to mt OU mi.
1.1.1.2.
To User
Bc 1. Nhp phi OU va to, chn new > User to User mi trong OU
Bc 2. Ti bng New Object User bn in y cc thng tin vo mc First

name,Last name,Full name.
39
Lu y : ti mc User logon name.y chnh l tn ti khon ca bn dng ng

nhp vo h domain.V th phi nh chnh xc,v phi m bo tnh duy nht.
Bc 3. Nhp password cho user, tt mc User must change password at next logon,
bm Next.
40
Lu y l password phi tha mn cc chnh sch mc nh ca Windows Server

2008.Password t nht l 7 k t v phi c cc thnh phn sau :
Cc k t thng : a,b,c,d,e..
Cc k t in hoa : A,B,C,D,E.
Cc ch s : 1,2,3,4,5.
Cc k t c bit : @,!,$,&,#....
Lu y 4 dng di :
User must change password at next logon : bt buc user phi thay i
password ln ng nhp k tip
User cannot change password : user khng c quyn thay i password
Password never expires : password khng c thi hn qui nh
Account is disabled : v hiu ha ti khon.
Bc 4. Xc nhn thng tin ti khon v bm Finish kt thc
41
1.1.1.3.
To Group
Ti khon nhm (group account) l mt i tng i din cho mt nhm ngi no

, dng cho vic qun ly chung cc i tng ngi dng. Vic phn b cc ngi
dng vo nhm gip chng ta d dng cp quyn trn cc ti nguyn mng nh th
mc chia s, my in.
Bc 1. Trong OU va to nhp chut phi chn new, chn Group
42
Bc 2. Nhp tn Group, la chn Group thuc domain local, global hay quc t, style
bo mt hay group xy dng.
Bc 3. thm thnh vin vo Group, nhp phi Group, chn properties
43
Bc 4. mc member ta chn Add.
Bc 5. Nhp tn User sau bm Check Names > nhn OK.
44
Bc 6. Nhn OK kt thc.
2. To User, Ou, Group bng lnh

2.1. Cu lnh to OU (Organizational Unit) Command line creat OU
dsadd ou ou=<Tn OU>,dc=<phn tn DC>,dc=<phn ui DC>
V d: dsadd ou ou=KeToan,dc=tvlong,dc=net
ngha:
dsadd ou => s khi to mt ou
ou=KeToan => tn ou l KeToan.
dc=tvlong, dc =net => khai bo domain s to OU ln .
2.1.1.1.
Cu lnh to user Command line create User
dsadd user cn=<tn user>,ou=<Tn OU>,dc=<phn tn

DC>,dc=<phn ui DC> [-fn <Tn>] [-mi <Tn m>]
[-ln <H>] [-display <Tn hin th trn mn hnh>] [-pwd
<Mt khu | *>] [-memberof <Tn Group>] [-office <Tn
cng ty>] [-tel <S in thoi] > [-email <Email>] [hometel <S in thoi nh>] [-mobile <S in thoai di
ng>] [-fax <S Fax>] [-mustchpwd {yes | no}] [canchpwd {yes | no}] [-pwdneverexpires {yes | no}] [acctexpires <NumberOfDays>] [-disabled {yes | no}]
45
Trong :
-mustchpwd : Yu cu thay i password ln ng nhp u tin (Mc nh l NO)
-canchpwd: C th thay i password khng ?
- pwdneverexpires: Password khng bao gi ht hn, nu Yes th ngi dng c th s
dng mt khu mi mi, nu NO th ngi dng s phi thay i mt khu thng
xuyn.
- acctexpires: S ngy s dng ca ti khon trc khi n ht hn
-disable: Ti khon c c kch hot khng ? nu Yes ti khon khng c kch hot
ngc li No l kch hot (Mc nh l NO)
(Windows Command Line Administration Instant Reference, John.P.M,trang 237)
V d:
Dsadd user cn=KeToan1,ou=KeToan,dc=tvlong,dc=net fn Long
mi Van ln Trinh display Trinh Van Long pwd abc@123 memberof
cn=NhanVienKT,ou=KeToan,dc=tvlong,dc=net tel 096454625
email longtrinhvan@gmail.com canchpwd yes acctexpires never
ngha:
cn=KeToan1,ou=KeToan => tn ti khon user l KeToan1 trong ou KeToan
-fn Long => Tn Long
-mi Van => Tn m Van
-ln Trinh => H l Trnh
-pdw abc@123 => Mt khu abc@123
memberof cn=NhanVienKT,ou=KeToan,dc=tvlong,dc=net => Thnh vin ca
group NhanVienKT
canchpwd yes => c th thay i mt khu
acctexpires never => Khng bao gi ht hn
2.1.1.2.
Cu lnh to group command creat group
dsadd group cn=<tn group>,[ou=<Tn OU>],dc=<phn tn

DC>,dc=<phn ui DC>
V d: dsadd group cn=NhanVienKT,ou=KeToan,dc=tvlong,dc=net
ngha:
dsadd group => khi to group
cn=NhanVienKT => Tn group l NhanVienKt
ou=KeToan => Group ny thuc Ou k ton
dc=tvlong, dc =net => khai bo domain s to Group ln .
Thm thnh vin cho Group
46
dsmod group cn=<tn group>,[ou=<Tn OU>],dc=<phn tn

DC>,dc=<phn ui DC> addmbr cn=<tn user>,ou=<Tn
OU>,dc=<phn tn DC>,dc=<phn ui DC>
V d:
dsmod group cn=NhanVienKT,ou=KeToan,dc=tvlong,dc=net
addmbr cn=KeToan1,ou=KeToan,dc=tvlong,dc=net
Sau khi vit lnh xong, i ui .txt thnh .bat ri chy n
Kt qu sau khi chy
3. Thit lp Group Policy

Group policy (GPO) c hiu l chnh sch nhm. N bao gm cc thit lp cu hnh
cho my tnh v ngi s dng. Tin ch cho php a ra cch thc m cc chng
trnh, ti nguyn, h iu hnh lm vic vi my tnh v ngi dng trong mt hoc
nhiu t chc.
47
Trn thc t, Group Policy c s dng kh nhiu trn mi trng server-client. GPO
ch yu c p dng cho Site, Domain v OU. Trn my Client cng c GPO v
c p dng khi my khng ng nhp vo ti khon min.
Bc 1. thit lp Policy ta vo Start > Adminstrative Tools > Group Policy
Managerment.
Lu y: Nu l thit lp Policy cc b th ta chn Local Security Policy
Bc 2. Nhp phi vo OU chn create a GPO in this domain, and link it here..
48
Bc 3. Xut hin hp thoi nhp tn ca GPO
Bc 4. Nhp chut phi ln GPO va to v chn edit
49
Bc 5. y ti s thc hin demo chnh sch cho php User thay i ngy gi h
thng.Thc hin:
Tm n Policies / Windows settings / Security settings / User Rights
Assignment chn mc Change the system time.
Bc 6. tick chn Define these policy setting, nhp vo Add user or Group.
50
Bc 7. Nhp chn Browse, nhp tn User, group, Ou, Admin cn gn. Apply> Ok
hon thnh qu trnh iu chnh chnh sch.
cp nht li Policy vo run go gpupdate /force
51
V. Quyn truy cp NTFS

1. Phn quyn trn th mc Share c ban
2.1 Chia s th mc
Bc 1. Trong Windows server 2008 chia s mt th mc no nhp chut phi
vo th mc cn share chn Share
Bc 2. Nhp chn Advanced Sharing...
52
Bc 3. Tch chn Share this folder . Share Name my s t ly tn default l tn

th mc hin hnh bn c th chnh sa tn ny ty y.
Bc 4. Vi cc ty chn l Allow: User c quyn truy cp ti nguyn vi quyn hn

tng ng.
Vi cc ty chn l Deny: User khng c quyn truy cp ti nguyn vi
quyn hn tng ng.
53
Bc 5. cp quyn cho User hoc Group mi ta tch chn Add..
Bc 6. Nhp tn User hoc Group vo
54
to mt th mc m khng mun cho ai thy (ch c go lnh mi vo c) th

thm du $ vo ngay sau Share Name ca mnh.
VD: My c IP l 192.168.1.10 v th mc Share c tn l Data server$. Trong ny gi
s ta Add thm User tai v Set quyn cho User ny l Allow tt c mi quyn. Khi
truy cp t my khc vo phi nhp l \\192.18.1.10\ Data server $ th mi vo c.
xem cc th mc Share n trong Windows, vo Administrative ToolsShare and
Storage Management.
2.2 Cc quyn Share c ban
Windows c mt c ch kim sot truy nhp rt n gin l share ng thi phn
quyn. Mun share, chn lnh Share..., ln lt Add mt folder, hy click nt ph ca
con chut vo folder y, s hin context menu tng nhm ngi dng (hay tng ngi
dng), c mi nhm chn Permission Level phn quyn cho nhm y. Xong n nt
Share.
Theo cch ny, mi nhm c th c mt trong ba quyn truy nhp.
Reader (ngi xem). Xem ton b ni dung folder.
Contributor (ngi ng gp). Xem ton b ni dung folder, c th to thm
file v folder v sa file / folder m bn thn thm.
Co-owner (ng ch s hu). Xem v sa ton b ni dung ca folder, k c
cc file/folder m ngi khc to ra.
55
Ba quyn ny khng c lp vi nhau. Co-owner bao hm Contributor, v Contributor

li bao hm Viewer.
C ch ny rt d dng v tin dng, nhng khng dng c trong nhiu trng hp.
Hn na, c ch ny khng c trn Windows Server 2003 m ch c Windows
Server 2008.
1.2.1
Phn quyn c ban
2.2. Gii thiu c ch phn quyn NTFS

C ch kim sot truy nhp c bn trn Windows Server l kt hp gia hai c ch
phn quyn: phn quyn trn h thng tp NTFS v phn quyn trn giao thc chia x
tp CIFS (hay cn gi l phn quyn share).
Phn quyn CIFS c ba quyn:
Read (c)
Change (sa)
Full Control (ton quyn).
Ba quyn ny khng c lp vi nhau. Full Control bao hm Change, v Change bao
hm Read.
vo Share Permission nhp chut phi vo th mc Share chn properties
56
Trong chn Tab Share v chn Advanced Sharing
Chn Permissions
57
y l Share Permissions
Phn quyn NTFS c 6 quyn c ban:

Full Control (ton quyn)
Modify (sa)
Read & Execute (c tp v chy chng trnh)
List folder contents (hin ni dung th mc)
Read (c)
Write (vit)
vo NTFS permissions ta nhp chut phi vo th mc v chn properties
58
Chn Tab Security
59
Khi truy nhp server t my trm, quyn truy nhp l giao gia hai quyn CIFS v
NTFS. Do , trong thc tin lm vic, gim bt s phc tp, khi to nhiu share
trn mt server, c th v nn to cc share y theo cng mt quyn (CIFS) thng nht
cho mi share v mi ngi dng, c th:
Trn mi share t qun, Everyone c quyn Full Control.
Trn mi share qun ch, Everyone c quyn Change.
S phn bit quyn truy nhp gia cc nhm khc nhau v trn cc share khc nhau
khi s ch th hin phn quyn NTFS.
2.2.1.1.
Cc cng c phn quyn NTFS
Tt c quyn truy nhp c s ca NTFS l :
Traverse folder/execute file (i xuyn qua folder / thi hnh file).

List folder/read data (hin th mc, c d liu).
Read attributes (c thuc tnh).
Read extended attributes (c thuc tnh m rng).
Create files/write data (to file, vit d liu).
Create folders/append data (to folder, ni d liu).
Write attributes (vit thuc tnh). Cho php thay i cc thuc tnh ca file v
folder.
Write extended attributes (vit thuc tnh m rng).
Delete subfolders and files (xa folder con v file).
Delete (xa).
Read permissions (c quyn).
Change permissions (i quyn).
Take ownership (ot ch quyn).
hin th tt c cc quyn NTFS ti mc Security chn Advanced
60
Chn Edit.
Chn b chn Inclde inhertitable permission from this object parent
61
Chn Copy, chn thc th mun chnh sa permissions.
Ton b quyn NTFS

62
Khi phn quyn cho mt folder, quyn phn s c th s p dng ln c cc folder

con v file bn trong, vic ny gi l tha k. Vic tha k thc hin theo mt trong
su kiu sau y.
This folder only (ch folder ny thi). Quyn ch p dng cho folder ny, khng
tha k.
This folder, subfolders and files (folder ny, cc folder con v cc file). Quyn
p dng cho folder ny, cc folder con v cc file. Tha k ton phn.
This folder and subfolders (folder ny v cc folder con). Quyn p dng cho
folder ny v cc folder con. Cc folder con tha k.
This folder and files (folder ny v cc file). Quyn p dng cho folder ny v
cc file. Cc file tha k.
Subfolders and files only (cc folder con v cc file thi). Quyn p dng ch
cho cc folder con v cc file. Tha k ton phn ngoi tr bn thn.
Subfolders only (ch cc folder con thi). Quyn p dng ch cho cc folder
con. Cc folder tha k ngoi tr bn thn.
63
2.2.1.2.
Thc hin cc quyn c ban ca d liu doanh nghip trn NTFS
Trong h thng tp NTFS, nm quyn c bn trn folder d liu doanh nghip c

thc hin theo nhng cng thc sau y:
Quyn s dng = Read & Execute, List Folder Contents v Read this folder,
subfolders and files.
Quyn ng gp = quyn s dng + Create files / Write data v Create
folders/Append data this folder and subfolders.
Quyn bin tp = quyn s dng + Modify v Write this folder, subfolders and
files.
Quyn xem th mc = List folder / Read data this folder and subfolders.
Quyn xem quyn = Read Permissions this folder and subfolders.
Quyn xem quyn = Read Permissions this folder, subfolders and files.
VI. Thit lp Multi master trn Windows server 2008
64
thit lp Multi master ta cn c 1 server upgrade ln domain controller (server

1) v mt server khc join vo (server 2).
Server 2 sau khi join vo server 1, ta tin hnh upgrade server 2 ln Active
Directory Domain Services .
Bc 1. Vo Server manager > Add role v tin hnh ci t Active Directory
Bc 2. Vo Start > Run > DCPROMO
Bc 3. Xut hin hp thoi Active Directory Domain Services Installation Wizard,
Next tip tc.
Bc 4. Next tip tc.
65
Bc 5. Chn Existing forest, Add a domain controller to an existing domain
66
Bc 6. Nhp tn domain ca server 1, ng thi nhn vo Set.
Bc 7. Nhp username v password ca Admin, Next
67
Bc 8. Next mc k tip
Bc 9. Next
68
Bc 10. Next gi nguyn mc nh
Bc 11. Nhn Next.
69
Bc 12. Nhp Password cho domain, Next
Bc 13. Next v bt u qu trnh ci t, sau khi ci t hon tt cn restart li my

server. Kt thc hon thnh thit lp multi master cho server.
70
Kt qu sau khi thit lp xong Multi master
71
Chng 3. Cc dch v trn Windows Server 2008

I. Dch v DNS Server
DNS (Domain Name System) Server l my ch c dng phn gii domain thnh
a ch IP v ngc li.V d vietnamnet.vn 192.168.1.1
V cch thc hot ng,DNS Server lu tr mt c s d liu bao gm cc bn ghi
DNS v dch v lng nghe cc yu cu.Khi my client gi yu cu phn gii n, DNS
Server tin hnh tra cu trong c s d liu v gi kt qu tng ng v my client.
1. Ci t DNS Server
Bc 1. Thm dch v DNS Server
Bc 2. Vo Server Manager > Roles > Add role tin hnh ci t dch v DNS
72
Bc 3. Chn DNS server, Next bt u ci t
Bc 4. Next bc tip theo
73
Bc 5. Install bt u ci t.
1.2.2
Cu hnh DNS Server
Bc 1. Ci t DNS Server. Vo Start > Administrative Tools > DNS
74
Bc 2. Nhp chut phi vo Forward v chn New Zone
Bc 3. Nhn Next bt u ci t
75
Bc 4. Chn Primary zone, nhn Next

y cho php ta cu hnh d liu ang cha trn my tnh dng Zone no:
Primary Zone: Mt my ch cha d liu Primary Zone l my ch c th
ton quyn trong vic update d liu Zone.
Secondary Zone: L mt bn copy ca Primary Zone, do n cha d liu Zone
nn cung cp kh nng resolution cho cc my c yu cu. Mun cp nht d
liu Zone phi ng b vi my ch Primary
Stub Zone: D liu ca Stub Zone ch bao gm d liu NS Record trn my
ch Primary Zone m thi, vi vic cha d liu NS my ch Stub Zone c vai
tr chuyn cc yu cu d liu ca mt Zone no n trc tip my ch c
thm quyn ca Zone .
Bc 5. Nhp tn zone.
76
Bc 6. Xut hin hp thoi Zone file hi bn c mun to mt zone file mi hay

chn zone file c, ta chn la chn u tin , nhn Next
Bc 7. C hai la chn: ta chn la chn 2, nhn Next.

Allow both nonsecure and secure dynamic updates: cho php cp nht t
ng t bt c client no, la chn ny l khng an ton v record DNS c
th b cp nht t nhng ngun khng ro.
Do not allow dynamic updates: khng cho cp nht t ng.
77
Bc 8. Xc nhn thng tin v nhn Finish kt thc
Bc 9. Cu hnh cho Reverse Lookup Zones, nhp chut phi ln Reverse Lookup
Zones, chn New Zone
78
Bc 10. Nhn Next
Bc 11. Chn Primary Zone, nhn Next
79
Bc 12. Chn kiu IP l IPv4
80
Bc 13. Phn Network ID ca my ch DNS
81
Bc 15. Chn Do not allow dynamic update, nhn Next.
Bc 16. Xc nhn thng tin, nhn Finish kt thc.
1.2.3
B xung cc ban ghi DNS VO DNS Server

82
Sau khi hon thnh nhim v ci t v cu hnh DNS Server .Bn cn to c s d

liu cho server ny bng cch b sung cc bn ghi DNS .Thng thng bn s tng
tc vi hai loi bn ghi DNS ph bin l Host (A), Alias(CNAME)
Host (A): l bn ghi gm domain v a ch IP tng ng .V d tvlong.net ->
192.168.1.1
Alias (CNAME): l bn ghi b danh,cho php nhiu domain cng nh x n
mt a ch IP,v d tvlong.net, tvlong.com, ftp.tvlong.vn -> 192.168.1.1
B xung bn ghi theo kiu Host(A)

Bc 1. Trong mc Forware Lookup Zone, nhp phi ni zone mi c to, chn
new Host ( A or AAAA)
Bc 2. Trong hp thoi New Host, nhp tn my vo mc Name.Cng lc , tn y

ca my s hin th mc Fully qualified domain name (FQDN).
Tip theo, bn nhp a ch IP ca my ny vo mcIP address. Nu mun
to ra mt bn ghi DNS phn gii ngc (reverse) tng ng
nh du chn vo mc Create associated pointer (PTR) record (bn ghi
reverse c dng chuyn i ngc a ch IP thnh tn my). Sau khi
in xong, bm nt Add Host.
83
Bc 3. Trong mc Reverse Lookup Zones, nhp phi file mi to c, chn New

Pointer ( PTR)
Bc 4. Nhp a ch my DNS v Browser n host name server
84
Bc 5. Kim tra cu hnh DNS thnh cng hay cha ta vo CMD go lnh
nslookup ging hnh bn di> Enter
nhp a ch y ca my DNS > Enter
To mt bn ghi Alias
85
Bc 1. Nhp chut phi vo zone v chn New Alias (CNAME).Tng t nh trn,

in cc thng tin vo. Ti mc Fully qualified domain name (FQDN) for target
host .Nu bn khng nh ,chn Browse tm tn my cn tht.
Bc 2. Sau khi in thng tin y .Chn OK hon tt. Bn c th thy trong

hnh ti to hai bn ghi Alias ftp.tvlong.net v www.tvlong.net u tr v
server.tvlong.net tng ng vi IP 192.168.1.1
I.1. Dch v DHCP

DHCP (Dynamic Host Configuration Protocol) Server l my ch c dng cp
pht a ch IP ng cho cc my client trong h thng mng.V cch thc hot
ng,DHCP Server s dng dch v cng tn lng nghe yu cu xin cp pht a
86
ch IP c gi t my client.Sau khi nhn yu cu, DHCP Server s chn ra mt a

ch IP trong dy a ch ca mnh v gi v cho my client. ng thi DHCP Server
cng gi n my trm cc thng tin lin quan n a ch IP nh subnet mask, a ch
IP ca cc DNS Server, default gateway.
1. Ci t dch v DHCP Server
Bc 1. Thm dch v DHCP
Vo Server Manager > Roles > Add Roles
Ti bng Before You Begin chn Next.
Bc 2. Ti bng Select Server Roles chn DHCP Server .Bn y bn gc phi h

thng cng c ch thch v DHCP. y l trung tm cu hnh ,qun ly,cp pht
a ch IP cho cc my client.
87
Bc 3. Ti bng DHCP Server gii thiu v dch v DHCP Server,v c mt vi ch

y trc khi ci t mc Thing to Note, nhn Next.
Bc 4. Ti bng Select Network Connection Bindings ,chn kt ni s c dng

lng nghe yu cu gi t my client, nhn Next.
88
Bc 5. Ti bng Specify IPv4 DNS Server Settings nhp tn domain mc Parent

domain v nhp a ch IP ca DNS Server mc Preferred DNS Server IPv4
Address .Bn c th chn Validate h thng kim tra v xc thc, nhn Next.
Bc 6. Ti bng Specify IPv4 WINS Server Settings chn WINS is not required for
applications on this network.Nu h thng mng ca bn vn cn dng WINS
89
Server th chn WINS is require for applications on this network v nhp thng tin
a ch IP cho DNS Server, nhn Next.
Bc 7. Ti bng Add or Edit DHCP Scopes chn Add.Ti y bn in cc thng tin

IP vo .V nh chn Active this scope kch hot cc thit lp va ri, y ti
mun cu hnh bc sau nn s trng, nhn Next.
Bc 8. Ti bng Configure DHCPv6 Stateless Mode chn Disable DHCPv6 Stateless

mode for this server .Nu mun cu hnh DHCP Server h tr DHCPv6 tng ng
vi IPv6 th chn Enable DHCPv6 Stateless mode for this server, nhn Next.
90
Bc 9. Ti bng Authorize DHCP Server chn ti khon cp php cho DHCP

Server trong Active Directory Services. y ti chn ti khon Administrator,
nhn Next.
Bc 10. Ti bng Confirm Installation Selections l thng tin nhng thit lp trc
khi ci t DHCP Server, chn Install tin hnh ci t. i cho qu trnh ci
t hon tt.
91
Bc 11. Ti bng Installation Results thy dch v DHCP c ci t hon tt

Installation succeeded .Chn Close kt thc ci t
1.2.4
Cu hnh DHCP Server
Bc 1. Vo Start > Administrative Tools > DHCP

92
Bc 2. Nhp chut phi ln IPv4 chn New Scope.
Bc 3. Nhn Next
93
Bc 4. Ti bng Scope Name nhp tn scope vo Name v m t ca n vo

Description v nhn Next
94
Bc 5. Ti hp thoi IP Adsress Range bn thit lp di IP s cp pht cho my client,

nhn Next
Bc 6. Ti hp thoi Add Exclusions nhp vo di IP khng mun cp pht, nhp

Next.
95
Bc 7. Thit lp gii hn thi gian a ch IP tn ti trn my client.
Bc 8. Hp thoi Configure DHCP Options hi bn c mun cu hnh cho scope ny

ngay khng, chn khng chng ta s cu hnh bc sau.
96
Bc 9. Cu hnh hon thnh, nhn Finish kt thc.
Bc 10. Nhp chut phi ln Scope Options v chn Configure Options
97
Bc 11. Tch vo 003 Router sau nhp Tn ca DHCP vo Server name v a

ch IP my ch DHCP ri nhn Add. Lm tng t vi 006 DNS servers nu nh
cha c.
Bc 12. Nhp chut phi ln Scope[192.168.1.0] chn Activate kch hot dch
v DHCP
98
2.1. Cu hnh cp pht IP ng trn my client

Bc 1. Vo Internet Protocol Version 4, tch chn Obtain an IP address automatically
v Obtain DNS server address automatically
Bc 2. IP c cp t ng
99
1.2.5
Backup v Restore DHCP Server
1.1. Backup DHCP Server

Bc 1. Sau khi hon thnh cc bc cu hnh,ta nn backup nhm hn ch ri
ro. Nhp chut phi ln DHCP Server v chn Backup.
Bc 2. Chn th mc dng lu tr d liu backup. y mc nh l

system32\dhcp\backup
100
2.2.1.3.
Restore DHCP Server
Trong mt s trng hp, DHCP Server c th b li, mt d liu do mt s nguyn

nhn nh h iu hnh gp s c, dch v DHCP gp li v khng th khi ng, cc
xung t ny sinh lm DHCP Server ngng hot ng. Khi bn cn restore DHCP
Server. y l tnh nng tit kim thi gian v m bo chnh xc.
Bc 1. Nhp chut phi ln DHCP Server v chn Restore.
Bc 2. Ti bng Browse For Folder chn th mc cha d liu backup.Mc nh

nm trong system32\dhcp\backup
101
I.2. Dch v IIS (Web server)

Internet Information Services 7.0 (IIS 7.0) l mt trong 16 dch v my ch trn
Windows Server 2008.Phin bn ny c Microsoft thit k li di dng
module,va k tha u im ca nhng phin bn trc,va tng cng tnh bo mt
v n nh.Nhng im mi ng ch y trong IIS 7.0 bao gm:
Nhng cng c quan tr mi.
IIS 7.0 cung cp 2 cng c qun tr ,mt di dng ha v mt di dng dng
lnh.Nhng cng c qun tr ny cho php bn:
Qun ly tp trung IIS v ASP.NET
Xem thng tin,chn on,trong bao gm cc thng tin real-time (thi gian
thc)
Thay i quyn trn cc i tng site v ng dng
y quyn cu hnh cc i tng site v ng dng cho cc thnh vin khng c
quyn qun tr (non-administrator)
Thay i cch thc lu tr thng tin cu hnh
IIS 7.0 lu tr thng tin cu hnh IIS v ASP.NET vo mt v tr,t cho php
Cu hnh IIS v ASP.NET vi mt nh dng thng nht
D dng sao chp cc file cu hnh v ni dung ca site hoc ng dng n mt
my tnh khc
D dng chn on v khc phc s c nh vo thng tin real-time v h thng
file log mc chi tit
IIS 7.0 c thit k di dng module,cho php bn b sung cng nh loi b cc
thnh phn t Web Server khi cn.
Kha nng tng thch cao.
IIS 7.0 c kh nng tng thch rt cao i vi cc ng dng trin khai trong cc
phin bn IIS trc.Khi trin khai IIS 7.0 bn c th chy cc ng dng ASP,hoc
cc ng dng trn ASP.NET 1.1 v ASP.NET 2.0 c xy dng t trc m khng
cn phi thay i m ngun
1. Ci t dch v Web server
Bc 1. Server Manager > Roles > Add Roles.
102
Bc 2. Nhn Next
103
Bc 3. Ti hp thoi Server Rules khi bn click vo Web Server (IIS) h thng s

hin ra mt thng bo yu cu b sung mt s thnh phn trc khi ci t dch v
IIS
Bc 4. Nhn Next
Bc 5. Nhn Next
104
Bc 6. Ti bng Select Role Services la chn cc thnh phn cn thit cho Web
Server.Khi la chn mt s thnh phn ,h thng s yu cu bn b sung thm mt
s thnh phn nh.Chn Add require..Nhn Next
Bc 7. Ti bng Confirm Installation Selections l nhng thng tin thit lp trc khi
ci t Web Server IIS, nhn Install.
105
Bc 8. Nhn Close kt thc.
1.2.6
Trin khai web ln Web Server
Sau khi ci t xong dch v IIS 7.0 .By gi chng ta s tm hiu cch xut bn mt
website.
Bc 1. M IIS Manager.
106
Bc 2. Nhp chut phi vo Sites khung bn tri v chn Add Web Site
Bc 3. in tn website vo mc Site name. mc Physical path chn th mc cha

m ngun ca website bng cch nhn vo nt. Host nane in a ch y
ca website.
107
Bc 4. Cu hnh DNS khi go a ch web s tr v Web Server ca mnh. Vo

DNS nhp chut phi chn Alias (CNAME)
Bc 5. Phn Alias name nhp www v Browse n host server
108
Bc 6. Kt qu website chy thnh cng
I.3. Dch v FTP

FTP l ch vit tc ca File Transfer Protocol - Giao thc truyn file. FTP l mt giao
thc truyn file trn mng da trn chun TCP nn ng tin cy.Giao thc truyn ti
file - FTP l cng c qun ly files gia cc my. FTP cho php truyn v ti files, qun
ly th mc, v ly mail. FTP khng c thit k truy nhp v thi hnh files, nhng
n l cng c tuyt vi truyn ti files.Windows Server 2008 h tr 2 version FTP
servers l FTP 6.0 v FTP 7.5 . version FTP 7.5 c h tng cng tnh bo mt v
cng c cho nh qun tr d qun ly.
Nhng im mi :
FTP Publishing Server mi gm c rt nhiu tnh nng v cc ci thin.
- S tch hp vi IIS 7.0
- H tr cho cc chun Internet mi
- Chia s hosting
- Kh nng m rng
- Logging
- Cc tnh nng khc phc s c.
109
1. Ci t dch v FTP
Thng thng dch v FTP s c thm cng lc vi dch v Web Server ti bc
chn Role services , nu cha hy lm theo cc bc sau.
Bc 1. Nhp chut phi vo Web Server chn Add Role Services
Bc 2. Tch chn FTP Publishing Service, cc bc sau nhn Next
110
1.2.7
Cu hnh FTP
Bc 1. Cu hnh DNS cho ftp, nhp chut phi chn New Alias
Bc 2. Nhp tn Alias l ftp v browser n host server
111
Bc 3. Ti IIS 6.0 Manager,nhp chut phi ln FTP Site v chn New FTP Site
Bc 4. Ti bng Welcome to the FTP Site Creation Wizard chn Next.
112
Bc 5. Ti bng FTP Site Description, go m t vo.
Bc 6. Chn Next.Ti bng IP Address and Port Settings chn a ch IP v mc

nh port 21 .
113
Bc 7. Ti bng FTP User Isolation chn ch hn ch. ngha ca cc la chn l:

Do not isolate users ch ny th tt c user u c th s dng
Isolate users y l ch ch c quyn cao nht mi c ng nhp vo
qun ly.
Isolate users using Active Directory ch c nhng user c set quyn trong
Active Directory mi c s dng.
Bc 8. Chn Next.Ti bng FTP Site Home Directory ,chn ng dn n th mc

cha ni dung ca FTP site.
114
Bc 9. Ti bng FTP Site Access Permissions thit lp quyn truy cp, y ti s

chn Read tng tnh bo mt cho FTP site.(ch c quyn c)
Bc 10. Nhn Finish hon tt ci t
115
Bc 11. Khi ng FTP va to, click ln ftp v chn Start
Bc 12. Kt qu sau khi chy th
116
1.2.8
Thit t bao mt cho FTP
Trong trng hp khng mun cho ngi l truy cp vo h thng m khng c
php chng ta cn phi t mt khu cho ng truyn ftp m bo an ton
Bc 1. Vo Properties ca FTP
Bc 2. Ti mc Security Accounts b chn Allow anonymous connections
117
Bc 3. Mt hp thoi cnh bo xut hin chn Yes
Bc 4. Vo trnh duyt chy th, mt hp thoi yu cu nhp mt khu vo
I.4. File services v Resource Manager

File Services l mt dch v my ch trn Windows Server 2008,cung cp cho bn cc
cng ngh nhm qun ly dung lng lu tr (storage),kch hot kh nng nhn bn file
(replication),qun ly ti nguyn, chia s ,cho php cc my tnh *NIX truy cp ti
nguyn h thng Windows. Vi dch v ny bn d dng trin khai cc chc nng.
118
File Services Resource Manager : cu hnh quota, to file screen v lp lch

to ra storage report.
Distributed File Systems : trin khai h thng file phn tn
Services for Network File Systems : trin khai cc dch v cho php chia s
file gia Windows Server 2008 vi cc h thng *NIX
Windows Search Service : trin khai dch v cho php my client tng tc
tm kim file trn server
Windows Server 2003 File Services: trin khai File Services dnh cho cc
my tnh chy h iu hnh Windows Server 2003
File Server Resource Manager l mt tp hp cc cng c cho php ngi qun tr
c th iu khin v qun ly d liu trn cc server chy h iu hnh Windows Server
2008 mt cch hiu qu.Vi cng c ny,bn c th cu hnh quota trn c a v th
mc,ngn cm sao chp nhng nh dng m bn ch nh,ng thi xut ra cc bo
co gim st hot ng ca ngi dng trn khng gian lu tr.
Vi File Server Resource Manager,bn c th thc hin c cc cng vic sau
To quota trn a hoc th mc gii hn dung lng cp cho ngi s
dng.,ng thi gi email hoc thng tin cnh bo khi ngi dng t n hoc
vt qu gii hn quota cho php.
T ng sinh ra v cp pht quota cho tt c cc th mc con tn ti hoc
nhng th mc con mi to ra trn mt a hoc mt th mc.
To cc file screen ch nh th loi file m ngi s dng c th lu
tr,ng thi gi thng tin cnh bo khi ngi s dng c gng lu tr cc th
loi file khng c cho php.
nh ngha cc template cho quota v file screen d dng v nhanh chng p
dng vi nhng a v th mc mi.
Xut ra cc bo co,gim st tnh trng s dng dung lng a nh k hoc
theo nhu cu.
1. Ci t dch v File Services v File Server Resource Manager
Bc 1. Vo Server Manager > Roles > Add role v tch chn File services.
119
Bc 2. Ti bng File Services ,xem gii thiu thng tin v dch v File Services cng
nh cc ch y trc khi ci t mc Thing to Note.
Bc 3. Ti bng Select Role Services chn File Server Resource Manager.Nu bn

mun cu hnh thm cc dch v khc th chn.
120
Bc 4. Ti bng Configure Storage Usage Monitoring ,chn a m mnh cn theo

doi.
Bc 5. Ti bng Set Report Options,thay i cc ty chn lin quan n bo co s

xut ra nh v tr lu tr bo co,gi bo co qua email.
121
Bc 6. Ti bng Confirm Installation Selections ,xem li cc thit lp,sau chn

Install
Bc 7. Nhn close kt thc ci t
122
Bc 8. Tm n System services trong mc File services v nhn Start dch v File

Services Storage Report Manager
Vo Administrator chn File Server Resource Manager
123
124
y l giao din qun l ca File Server Resource Manager
1.2.9
Quan l Quota
Khi trn my tnh ca bn c nhiu ngi dng v rn Domain ca h thng mng

cng ty c shared d liu. Yu cu gii hn dung lng cho mi User l vic lm cn
thit. Quota s gip ta gii quyt vn trn.
Khi s dng File Server Resource Manager, bn c th to quota trn a v th mc
2 hnh thc l hard quota v soft quota.
Hard quota : ngn cm user thc hin thao tc lu file khi vt qu gii hn
quota cho php
Soft quota : khng yu cu user phi tun th gii hn quota nhng ghi li tt
c cc cnh bo.
Khi to quota trn a hoc th mc, bn nn da vo quota template. Mt quota
template gip bn c th d dn ti s dng, ng thi em n s n gin v hiu
qu trong vic qun ly v bo tr quota trn h thng.
File Server Resource Manager cn c th sinh ra quota mt cch t ng. Khi cu hnh
Auto Apply Quota ,bn s p dng quota template n mt a hoc th mc c th
(parent volume ,folder).Ngay sau ,quota s c to tng ng vi mi th mc
con ( tn ti hoc c to mi) trn a hoc th mc .
Ch y : thc hin chc nng quota trn Windows Server 2008,bn c th la chn
File Server Resource Manager hoc NTFS Disk Quota
125
I.5.1. To mt Quota
Bc 1. Vo Start > Administrative Tools > File Server Resource Manager.
Click vo Quota Management > Quotas > nhp chut phi chn Create Quota
Bc 2. Browser n th mc mun p dng Quota ng thi tch chn Define custom

quota properties v nhn Custom Properties
126
Bc 3. t tn cho Quota v Labe v t gii hn mong mun vo Limit, nhn

Ok
Bc 4. Nhn create to quota, mt thoi xut hin nu mun lu quota ny nh

mt temple quota s dng cho ln sau th chn la chn 1 v nhp tn mong mun
> Click Ok
127
Bc 5. Test th Quota va to, chp mt file bt k c dung lng ln hn cho php

vo th mc va p dng Quota, bn s nhn c cnh bo khng dung lng
lu tr mc d cn trng rt nhiu.
I.5.2. To Temple Quota

Mc nh quota template c dng nh ngha mt gii hn v dung lng,xc
nh hnh thc quota (hard hoc soft) v xut ra cc cnh bo khi ngi s dng t
n hoc vt qu gii hn cho php.
Quota template mang n cho bn s n gin v tin li trong vic qun ly template.
Cc server trong h thng mng cng s dng cc template, do to ra s chun ha
v ng nht khi cp quota cng nh xut ra cc thng tin cnh bo. ng thi , bn
cng c th cp nht t ng nhng thay i trn quota bng cch hiu chnh template.
128
Bc 1. to mt quota template, nhp chut phi vo Quota Templates v chn

Create Quota Template
Bc 2. Trn bng Create Quota Template,nu mun p dng thuc tnh ca template
c vo template ca mnh chn mt template trong danh sch mc Copy
properties from quota template (optional) v click chn Copy.
Nhp tn template vo mc Template Name.Nhp thng tin miu t vo mc
Label(optional)
mc Space Limit,bn nhp dung lng cn cp quota v chn kiu hard
quota hoc soft quota.
Chn OK hon tt to template.
129
Ty ch Quota temple va to
Bc 1. ty chnh cho quota template va to, bn nhp chut phi vo quota
template v chn Edit Template Properties.Sau thc hin cc thay i cn thit
v chn OK.
Bc 2. Ti bng Update Quotas Derived from Template c 3 s la chn :
Apply template only to derived quotas that match the original template : cp
nht cho cc quota cha tng c hiu chnh k t khi c to ra.
130
Apply template to all derived quotas : cp nht cho tt c cc quota s dng

template ny
Do not apply template to derived quotas : khng mun thc hin tao tc cp
nht quota
Chn OK hon tt.
1.2.10
Quan l File Screen
File Screen l cng c dng ngn chn ngi s dng lu tr mt s file khng
c php ln a hoc th mc c cp. Chng hn, bn c th to ra mt file
screen ngn chn ngi s dng lu tr cc file m thanh v hnh nh, cc file thc
thi, d liu emailvo th mc ca mnh trn server.
Khi to mt file screen, bn c th chn mt trong 2 hnh thc.
Active Screening : khng cho php ngi s dng lu tr cc loi file khng
c php ln server
Passive Screening : cho php ngi s dng lu tr cc loi file khng c
php ln server, ng thi a ra cc cnh bo cn thit phc v cho mc
ch kim sot.
Ch y : vi cc file tn ti trong a hoc th mc trc khi file screen c to
ra, ngi s dng hon ton c th truy cp c, cho d cc file thuc vo danh
sch cc loi file b cm.
qun ly cc file screen mt cch n gin v hiu qu, bn nn s dng cc file
screen template. Mt file screen template s nh ngha hnh thc screen l active hay
passive, xc nh cc nhm file b cm v xut ra cc cnh bo khi ngi s dng lu
tr cc file khng c php. Khi to ra cc file screen, bn c th s dng cc
template c sn trn Windows Server 2008 hoc t to cc template ph hp vi yu
cu thc t ca mnh.
Ngoi ra, bn cn c th thit lp file screen exception trn cc th mc con ca th
mc cu hnh file screen .Khi thit lp file screen exception trn mt th mc con
,ngha l bn ch php ngi s dng c th lu tr cc file vo th mc ny ,cho d
cc file b cm bi file screen c thit lp th mc cha.
Trc khi tip cn vi file screen, bn cn phi hiu ro vai tr ca cc file group trong
vic xc nh file s ngn chn. Mt file group c dng nh ngha mt nhm file
xc nh. Cc nhm file ny s c file screen, file screen exception v file screen
template s dng.
131
File Server Resource Manager c sn mt s file group mc nh nh Audio and Video

Files, Image Files, Office Files.bn c th ty chnh cc file group c hoc b
sung cc file group mi ty thuc vo yu cu thc t ca mnh. Cn lu y rng, bt k
thay i no c thc hin trn mt file group u nh hng n tt c cc file
screen, file screen exception v file screen template c s dng n file group ny.
I.5.3. To File Screen Group
to mt file group, vo Start > Administrative Tools > File Server Resource
Manager
Click vo File Screening Management .Nhp chut phi vo File Groups chn Create
File Group.
Ti bng Create File Group Properties,nhp tn file ca file group vo mc File group
name.
Nhp nh dng file vo v chn Add,hoc b th chn Remove.
File to include : bao gm cc loi file thuc group
File to exclude : bao gm cc loi file khng thuc group.
I.5.4. Create File Screen v File Screen Exception
Bc 1. to mt file screen, ti File Server Resource Manager. Nhp chut phi
vo File Screens v chn Create File Screen
132
Bc 1. Browser n th mc mun p dng File Screen. Lu y rng File Screen ny

s p dng trn th mc chn v tt c cc th mc con ca n.
mc How do you want to configure file screen properties,bn chn Derive
properties from this file screen template s dng cc template sn c trn h
thng.
Nu mun thit lp cc thuc tnh ring bit do mnh t nh ngha,bn chn
Define custom file screen properties,sau click chn Custom Properties.
133
Bc 2. mc Screening type,chn Active screening hoc Passive screening. mc

File group,chn cc file group tng ng vi file screen.Ngoi ra bn cng c th
cu hnh cc ty chn nh Email Message,Event Log, Command, Report .
Chn file groups mun cm sau nhn OK
Bc 3. Nhn nt Create mt hp thoi s xut hin nh bn di nhp tn cho temple

s dng cho ln sau, nhn OK.
134
Bc 4. To File Screen Exception, nhp chut phi ln File Screen v chn create
File Screen Exception
Bc 5. Ti Exception path tm n Folder mun p dng File Screen Exception. Lu

y rng exception ny s p dng trn th mc chn v tt c cc th mc con
ca n.
135
Bc 6. Trong mc File groups chn cc file group tng ng a vo file screen.

Nu cha c bn c th nhn vo create hoc mun chnh sa nhm c nhn v
Edit. Nhn Ok hon tt.
Bc 7. Kim tra, hy chp mt loi file b cm vo th mc va p dng File Screen

v ta s nhn c cnh bo nh bn di
136
Bc 8. By gi n lt Folder p dng File Screen Exception, file vn chp

c bnh thng.
1.2.11
Storage Report
Storage Report l cng c cho php bn xut ra cc bo co cha thng tin lin quan
n cc file b trng lp (Duplicate Files),file c kch thc ln (Large Files),hay s
dng quota (Quota Usage)
Vi Storage Report, bn c th to ra cc bo co nh k hoc theo nhu cu. Bn
cng c th cu hnh h thng t ng xut ra thng tin cnh bo khi ngi dng
vt qu ngng quota, hoc lu tr cc file khng c php.
to ra cc bo co ,trc tin bn nn kho st v thay i cc tham s mc nh
trn i tng ny nu cn. Vi Windows Server 2008,bn c th thay i tham s
trn hu ht cc th loi bo co ngoi tr Duplicate Files.
Bc 1. lp lch xut ra cc bo co,trong File Server Resource Manager,nhp
chut phi vo Storage Reports Management v chn Schedule a New Report Task.
137
Bc 9. Ti tab Settings, mc Scope, click vo Add chn cc a hay th mc

cn xut thng tin bo co. mc Report data,chn cc loi bo co tng ng.Vi
mi loi ,bn c th s dng chc nng Edit Parameters ty chnh cc tham s
khi cn.
mc Report formats,chn cc nh dng lu tr bo co,mc nh l
Dynamic HTML (DHTML)
Bc 10. gi bo co qua email,m tab Delivery,nh du chn vo Send reports

to the following administrators v nhp a ch email ca ngi nhn.
138
Bc 11. tab Schedule,click vo Create Schedule lp lch.Ti bng Schedule

,click vo New.Sau chn thi gian,nu bn mun thit lp m rng th click
chn Advance. Nhn Ok hon tt.
Bc 12. xut bo co nhp chut phi vo Storage Reports Management v chn

Generate Reports Now .
139
Bc 13. tab Settings,ti mc Scope,click vo Add v chn cc a hay th mc

cn xut thng tin bo co.
mc Report data,chn loi bo co tng ng.Vi mi loi bn c th s
dng chc nng Edit Parameters ty chnh cc tham s khi cn.
mc Report formats,chn cc nh dng lu tr bo co.
Click Ok.
Mt hp thoi xut hin hi:

Ch n khi x l xong
X l ch nn
Nhn Ok hon tt.
140
Bc 14. V y l kt qu sau khi xut bo co
I. Print Services (Dch v in n)

Print Services trong Windows Server 2008 cho php bn c th qun ly, cu hnh dch
v in n bng cng c Print Management vi giao din ha. Ngoi ra bn cng c
th s dng cc dng lnh cu hnh, thit lp cc cng vic qun tr cng nh qun
141
ly cc my in thng qua Server Core. Mc d bn c th ci t, s dng cc tnh nng

chia s, qun ly my in trong Control Panel nhng vi Print Management cung cp
cho bn y cc tnh nng, em li hiu qu hn trong vic in n. ny trc.
1. Ci t dch v Print Services
Bc 1.
Ti Server Manager, nhp chut phi vo Roles > Add Roles.
Trn trang Before you begin, click Next.
Trn trang Server Roles tch chn Print Services, click Next
Bc 15. Ti trang Introduction to Print Services gii thiu dch v in n v ch y ti

mc thing to note, click Next.
142
Bc 16. Trn trang Select role services, nh du chn vo cc la chn cn thit v

click Next :
Print Server: ci t cng c Print Management
LPD Service: cho php cc client c th in thng qua giao thc Line Printer
Daemon (LDP), thng c s dng i vi cc client chy h iu hnh
UNIX
Internet Printing: cho php cc client c th in thng qua giao thc Internet
Printing Protocol (IPP) v mt Web site ngi dng c th in thng qua trnh
duyt Web. Ty chn ny yu cu bn cn phi ci t dch v Internet
Information Services (IIS)
143
Bc 17. Nhn Install bt u qu trnh ci t.
Bc 18. Ci t thnh cng, nhn Close kt thc.
144
1.2.12
Thm my in
Bc 1. Vo Administrator Tools > Print Management
145
Bc 19. Chn Printer Management > Print Server > <Tn Server> > Add printer
Bc 20. Chn Search the network for printers tm kim my in sau click Next
146
Bc 21. Chn my mun ci t, click Next.
1.2.13
Chia s my in
Bc 1. Trong Print Management nhp chut phi chn my in cn chia s > Manage
Sharing
147
Bc 22. Tch chn Share this printer, nhn Ok chia s my in
I.6. VPN
Mng ring o hay VPN ( Virtual Private Network) l mt mng dnh ring kt ni
cc my tnh ca cc cng ty, tp on hay cc t chc vi nhau thng qua mng
Internet cng cng.
Cng ngh VPN ch ro 3 yu cu c bn:

Cung cp truy nhp t xa ti ti nguyn ca t chc mi lc, mi ni.
Kt ni cc chi nhnh vn phng vi nhau.
148
Kim sot truy nhp ca khch hng, nh cung cp v cc thc th bn ngoi

ti nhng ti nguyn ca t chc
Cc m hnh VPN bao gm:
Truy Cp t xa (remote-Access)
Hay cng c gi l Mng quay s ring o (Virtual Private Dial-up Network)
hay VPDN, y l dng kt ni User-to-Lan p dng cho cc cng ty m cc nhn
vin c nhu cu kt ni ti mng ring (private network) t cc a im t xa v
bng cc thit b khc nhau.
Khi VPN c trin khai, cc nhn vin ch vic kt ni Internet thng qua cc
ISPs v s dng cc phn mm VPN pha khch truy cp mng cng ty ca h.
Cc cng ty khi s dng loi kt ni ny l nhng hng ln vi hng trm nhn
vin thng mi. Cc Truy Cp t xa VPN m bo cc kt ni c bo mt, m
ho gia mng ring r ca cng ty vi cc nhn vin t xa qua mt nh cung cp
dch v th ba (third-party)
C hai kiu Truy cp t xa VPN:
1 VPN dng ring

2 VPN dng 1 mnh
Khi to bi pha khch (Client-Initiated) Ngi dng t xa s dng phn mm
VPN client thit lp mt ng hm an ton ti mng ring thng qua mt ISP
trung gian.
Khi to bi NAS (Network Access Server-initiated) Ngi dng t xa quay s
ti mt ISP. NAS s thit lp mt ng hm an ton ti mng ring cn kt ni.
Vi Truy cp t xa VPN, cc nhn vin di ng v nhn vin lm vic nh ch
phi tr chi ph cho cuc gi ni b kt ni ti ISP v kt ni ti mng ring ca
cng ty, t chc. Cc thit b pha my ch VPN c th l Cisco Routers, PIX
Firewalls hoc VPN Concentrators, pha client l cc phn mm VPN hoc Cisco
Routers.
Site-to-Site: Bng vic s dng mt thit b chuyn dng v c ch bo mt din
rng, mi cng ty c th to kt ni vi rt nhiu cc site qua mt mng cng cng
nh Internet.
Site-to-site VPN c th thuc mt trong hai dng sau:
Intranet VPN
149
p dng trong trng hp cng ty c mt hoc nhiu a im xa, mi a im

u c mt mng cc b LAN. Khi h c th xy dng mt mng ring o
kt ni cc mng cc b vo mt mng ring thng nht.
Extranet VPN
Khi mt cng ty c mi quan h mt thit vi mt cng ty khc (v d nh i tc
cung cp, khch hng...), h c th xy dng mt VPN extranet (VPN m rng) kt
ni LAN vi LAN nhiu t chc khc nhau c th lm vic trn mt mi trng
chung.
VPN client to site
kt ni ni b gia mt my tnh vo h thng Domain thng qua mng VPN ta

thc thin cc bc sau:
Bc 1. Vo Server Manager > Roles > Add role v tin hnh ci t Network Policy
and Access Services
Bc 23. Ti trang Network Policy and Access Services chn Next.
150
Bc 24. Chn Routing and Remote Access Services, click Next.
Bc 25. Click Install.
151
Bc 26. Nhn close kt thc ci t.
Bc 27. Trn my server to mt user kim th VPN
152
Bc 28. Chn Start> Administrator Tools > Routing and Remote Access.
Bc 29. Ti Routing and Remote Access nhp chut phi vo <Tn server> chn
Configure and Enable Routing and Remote Access.
153
Bc 30. Ti bng Welcome chn Next bt u ci t.
Bc 31. Ti bng Configration chn Custom configuration.
154
Bc 32. Ti bng Custom Configuration chn VPN access, NAT, LAN routing, nhn
Next
Bc 33. Ci t hon thnh nhn Finish.
155
Bc 34. Tin hnh cu hnh cho VPN, nhp chut phi vo <Tn server> chon
properties.
Bc 35. Ti bng Properties chn qua tab IPv4 chn Static address pool v chn
Add
156
Bc 36. Nhp vo di IP mun cp cho VPN
Bc 37. Trn my Client vo Network and Sharing Center chn Set up new
connection or network.
157
Bc 38. Chn Connect to the internet
Chn Use my Internet connetion (VPN)
158
Bc 39. Chn Ill set up an Internet connection later
Bc 40. Nhp a ch IP domain v tn ca VPN, nhn Next.
159
Bc 41. Nhp ti khon v mt khu ti cho client, nhn create.
Bc 42. Nhp vo Adapter VPN Connection va chn Connect.
160
Bc 43. Trn my server vo Properties ca user VPN chn Network Access

Permission l Allow access.
Bc 44. Quay li pha Client, sau khi connect thnh cng s xut hin bng ng
nhp, ng nhp bng account to.
161
Bc 45. Thng s kt ni VPN
I.7. Terminal Services

Terminal Services l mt dch v trn Windows Server 2000, 2003 v 2008 h trn
ngi qun tr thc hin cc cng vic trn h iu hnh thong qua mng m khng
cn thit phi ngi trc tip ti my . y l cng c rt cn thit cho ngi qun tr
Windows.
Terminal Services s dng RDP (Remote Desktip Protocol) da trn nn TCP/IP. Trn
Windows XP cng c dch v Remote Desktop nhng ch h tr duy nht mt session.
Cn trn Windows 2003 v 2008 h tr nhiu session, mi session c ni vo mt
desktop ring bit.
1. Ci t Terminal Services.
Bc 1. Vo server manager > Roles > Add Roles
162
Bc 46. Chn Next
163
Bc 47. Chn Terminal Services, nhn Next.
Bc 48. Ti bng Introduction to Terminal Services chn next.
164
Bc 49. Chn Install Terminal Server anyway (not recommended)
Bc 50. Ti bng Select Roles Services chn mt dch v ri nhn Next
Terminal Server: Dch v ny c ci t trn Server, n cung cp mi

trng h iu hnh v cc dch v cn thit ngi dng truy cp t xa vo
TS Server s dng
TS Licensing: Dch v ny c s dng qun tr license ca client khi

chng kt ni n Terminal Server.
TS Session Broker: Dch v ny cho php np cn bng ti gia cc TS

Server trong domain, n thc s khng cn thit nu nh trong mng ca bn
ch ch mt TS Server.
TS Getway: Dch v ny cho php ngi dng t xa kt ni n terminal

Server t bt k thit b no c kt ni internet.
TS Web Access: Dch v ny cho php ngi dng t xa truy cp n

Terminal Server qu trnh duyt Web.
165
Bc 51. Chn Next.
166
Bc 52. Chn Require Network Leval Authentication, nhn Next.
Bc 53. Chn Configure later, nhn Next.
167
Bc 54. Thm vo User hoc Group s cho ng nhp vo Terminal Server
Bc 55. Ti Web Server (IIS) nhn Next
168
Bc 56. Chn cc dch v cn thit ri nhn Next.
Bc 57. Ti bng confirm Install Selections nhn Install.
169
Bc 58. Nhn Close v khi ng li my hon tt qu trnh ci t.
170
Bc 59. cho php iu kin my tnh t xa ta vo My computer Properties, chn

Remote settings
Bc 60. Chn Allows connection from computers running any version of Remote
Desktop, nhn Ok.
171
1.2.14
Kt ni Terminal Server
Bc 1. kt ni vo Terminal Server va to ta s dng mt my tnh bt k vo

Seach tm Remote Desktop Connection
Bc 61. Nhp vo a ch IP ca my ch
172
Bc 62. Nhp ti khon v mt khu, nhn OK
Bc 63. Kt qu sau khi ng nhp thnh cng
IX. Backup cho server.

Backup cho server ta c 2 trng hp, 1 l backup thng thng v 2 l backup bng
dng lnh.
1. Ci t tnh nng Windows Server Backup Features
Bc 1. Vo Server Manager > Fetures > Add Fetures
173
Bc 64. Chn Windows Server Backup Features, ng thi chn phn Commandline Tools, chn Next.
174
Bc 65. Chn Instal bt u qu trnh ci t.
Bc 66. Ci t xong, nhn Close.
175
1. Backup thng thng

1.1. Backup Server theo thi gian n nh
Bc 1. Vo Start > Administrative Tools >Windows Server Backup
Bc 67. Vo action > Backup Schedule n nh thi gian back up.
176
Bc 68. Next qua mc tip theo
Bc 69. Chn Full server backup ton b hoc custom backup ty chn, gim
thiu kch thc file backup
177
Bc 70. Chn a h thng, hay cn backup
Bc 71. n nh thi gian backup

Chn once a day > mc thi gian nu ch backup 1 thi im trong ngy
Chn more than once a day > add thi gian backup nhiu ln trong mt ngy,
chn a cha file backup ca s tip theo v bt u qu trnh backup.
Nhn Next qu trnh Backup s bt u.

178
7.1.1.1.
Backup Server th cng
Bc 1. Ngay lp tc backup bng cch vo Action > Backup Once.
Bc 72. Ty chn kiu Backup, mc nh nhn Next
179
Bc 73. Full server backup ton b hay custom ty chn
Bc 74. Chn a cn backup
180
Bc 75. Chn dng lu tr, trn a local hay th mc share, y ti s lu trn

local, E.
Bc 76. Chn a lu tr file backup.
181
Bc 77. mc nh theo khuyn co, Next.
Bc 78. Chn Backup khi ng qu trnh Backup
182
Bc 79. Backup hon thnh.
7.1.1.2.
Recover trc tip trn my
Trong trng hp Server b li rcover c th gip h thng ca chng ta phc v trng

thi ging nh trc khi backup , hoc cng c th phc hi mt folder hay file b mt.
Trong demo ny ti s phc hi 1 folder tn Demo nm trn C, bn trong l 3 file
text. tin hnh recover chng ta lm theo cc bc sau:
Bc 1. Ta vo action > recover
183
Bc 80. Chn Server cn phc hi, nhn Next.
Bc 81. Chn khong thi gian to file Backup, ti nguyn mc nh chn

file Backup gn nht.
184
Bc 82. Chn file and folders phc hi hay volume phc hi ton b
Bc 83. Chn folder Demo cn phc hi
185
Bc 85. Nhn recovery bt u tin hnh phc hi
186
7.1.1.3.
Restore khi khng th khi ng Windows bng a Windows

server 2008
Bc 1. Tin hnh boots bng CD

ci t boot bng CD trn VMware chn Power On to BIOS
mc Boot ta dng phm + a CD-ROM Drive ln u tin, sau nhn

F10 v save
187
Bc 86. Nhn Next
Bc 87. Chn repair your computer
188
Bc 88. La chn server cn sa cha, Next
189
Bc 89. Chn Windows Complete PC Restore
190
Bc 90. C hai la chn :

La chn 1: Chn ln Backup gn nht
La chn 2: Chn file file Backup ty y
Bc 91. Nhn next
191
Bc 92. finish bt u recover
Bc 93. tch vo I comfirm that I want to erase all existing data and restore the
backup, nhn Ok
192
Bc 94. Sau khi hon tt qu trnh recover, khi ng li my v c th vo li

c server trc backup
3. Backup v Restore bng command-line

8.1.1.1.
To file Backup
Vo CMD v go dng lnh:

wbadmin start systemstatebackup backupTarget:E: backup li h
thng v lu a E. bm Y bt u qu trnh backup.
193
8.1.1.2.
Recovery Server
Bc 1. c th recovery li cho server ta cn vo ch Directory Service Restore

Mode. C th vo ch trn bng cch trong qu trnh khi ng nhn F8, chn
Directory Service Restore Mode
194
Hoc vo run go bcedit /set safeboot dsrepair
Hoc vo run go msconfig, vo mc Boot tick chn Safe mode
Bc 95. ng nhp bng Administrator ca domain.
195
Bc 96. Go lnh : wbadmin get versions hin th ln backup gn nht
Bc 97. Sau go lnh:

wbadmin start systemstaterecovery version [Tn versicon] vi tn
version l thi gian thc hin backup gn nht, nhp Y ng y Backup
196
197
KT LUN
Sau mt thi gian tm hiu em nhn thy rng Winsdows Server 2008 l bc tin
ln ca h iu hnh Windows Server vi giao din thn thin, d dng thao tc qun
l v nhiu tnh ci tin v cng n tng, bn cnh l cc tnh nng mi tuyt vi
gip ngi qun tr c th kim sot ti a c s h tng v cung cp kh nng qun
ly vi hiu xut cha tng c, l sn phm hn hn trong vic m bo an ton,
kh nng tin cy v mi trng my ch vng chc hn so vi cc phin bn trc
y.
Vi s ch bo v hng dn tn tnh ca thy Nguyn Trn Hng Qun cng vi
s n lc ca bn thn, em hon thnh bi n ng thi hn, qua bi n ny
em tm hiu c rt nhiu kin thc mi v cng th v m trc cha c hc.
Kt qu t c:
-
Nm c tng quan v h iu hnh Windows server 2008
Hiu ro hn v qu trnh nng cp h thng ln Domain Controller
Hiu v trin khai thnh cng mt s dch v mng thng dng.
Hng pht trin:

-
Da trn nhng kt qu t c, em s tip tc tm hiu su hn v tng dch

v mng trong n ny v mt s dch v mi nh Application Server,
Windows Deloyment Services, UDDI Services
Vi thi gian tm hiu cha c nhiu v kh nng kin thc cn hn ch nn

n khng th trnh khi nhng thiu st. Em rt mong nhn c s gp y ca thy
c hon thnh tt chuyn thc tp ny.
198
TI LIU THAM KHO

1) Qun tr Windows Server 2008, tc gi T Thanh Hi, nh xut bn Nxb
Phng ng
2) Microsoft Windows Server 2008 R2 Administration Instant Reference
Paperback, tc gi Matthew Hester
199

Boco 150817055242 Lva1 App6891

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Boco 150817055242 Lva1 App6891

Uploaded by

Copyright:

Available Formats

S GIO DC & O TO KLK

TRNG TRUNG CP TY NGUYN

TM HIU V TRIN KHAI CC DCH V

: TRUNG CP CHUYN NGHIP

Nhn xt ca gio vin hng dn

(H v tn gio vin hng dn)

1. Ci t tnh nng Windows Server Backup Features......................................167

DANH SCH CC BNG

Chng 1. Gii thiu tng quan Windows Server 2008.

ng dng nn tang WEB:

Linh hot v kha nng m rng:

Hot ng tt hn khi kt hp vi Client Windows 7:

n gian ha cc kt ni t xa cho cc my tnh s dng tnh nng

am bao kt ni bao mt cho my tnh c nhn v cng cng:

th t kt ni vo h thng ca t chc da trn cc cng c c sn trn my tnh. S

Cai thin hi u sut lm vic cho cc vn phng chi nhnh:

Yu cu phn cng ci Windows Server 2008:

Minimum: 1.4GHz x64 (processor)

Minium: 512 MB RAM

Disk Spac Requiements

Minimum: 32 GB hoc hn na.

phn gii ti thiu Super VGA

DVD driver, Mouse, Keyboard

I.2. Cc tnh nng ca Windows Server 2008.

Cng c quan tr Server Manager.

Server Manager l mt giao din iu khin c thit k t chc v qun ly mt

Qun ly ng nht trn mt server

Hin th trng thi hin ti ca server

Nhn ra cc vn gp phi i vi cc role c ci t mt cch d dng

Qun ly cc role trn server, bao gm vic thm v xa role

Thm v xa b cc tnh nng

Cu hnh server: c 4 cng c ( Task Scheduler, Windows Firewall, Services v

Cu hnh sao lu v lu tr: cc cng c gip bn sao lu v qun ly a l

Server Core khng bao gm tt c cc tnh nng c sn trong nhng phin bn ci t

Windows Firewall with Advance Security.

Quan ly trong a v file.

Internet Storage Naming Server cho php ng ky, hy ng ky tp trung v

Cai tin giao thc v m ha.

Mt s tnh nng khc.

I.4. Cc li ch ca Windows server 2008.

Microsoft tin rng Hyper-V 3.0 c th x ly bt k khi lng cng vic no m bn

Vi cc phin bn trc ca Windows Server, clustering c gii hn ch yu vo

cc cluster. Mi nt s nhn c mt bn cp nht v khi ng li khi cn thit. Bn

Chng trng lp d liu.

Microsoft u t kh k lng cho vic hin i ha giao thc Server Message

Gim chi ph h tr.

L mt kiu Domain Controller (DC).

Windows Server 2008 Enterprise Edition .

Windows Server 2008 Enterprise Edition cung cp chc nng ln hn v c kh nng

Windows Server 2008 Datacenter Edition.

Phin bn Datacenter i din cui cng ca lot sn phm my ch Windows 2008 v

Windows Web Server 2008.

Windows Web Server 2008 l mt phin bn ca Windows Server 2008 c thit k

Windows Server Core

Server Core l mt kiu ci t thu gn ca Windows Server 2008,trong gm c

Server Core khng yu cu bn phi ci t cc bn cp nht khng cn thit ln

Ti thiu 1Ghz (x86) hoc 1,4Ghz (x64)

Dung lng cn trng

Super VGA (800x600) hoc phn gii cao hn

Chng 2. Ci t Windows Server 2008 v xy dng h thng

Bc 2. Click Install now bt u ci t.

Bc 3. La chn phin bn Windows Server thch hp, y chng ta chn phin

Bc 4. Ti bng MICROSOFT PRE-RELEASE SOFTWARE LICENSE TERMS