Ins tal lati on o f MS Win dows 2000 S erv er

 Pr e- In sta lla tion Me asu re men ts.

 Ins tall ation of MS W indows 20 00 .
 Po st- In sta lla tion Me asu re men ts.
Dete rmini ng Whic h Operati ng S yst em t o Us e

Windows 2000
Window s 2000
Dat ac ent er Server
Serv er

Window s 2000
Advanc ed Serv er

Window s 2000
Prof es sional
Compl eti ng a Pre-I ns tal lati on Chec kli st

Determ ine t he Operat ing Sy stem to I ns tall

Verif y Hardware Support ed

Verif y That Hardw are Meet s Mini mum Requirem ents

Verif y 2 GB or M ore of A vailabl e D isk Spac e

Select File Sy st em for the Wi ndow s 2000 Part it ion

Select Lic ensing M ode f or Windows 2000 Server

Det ermine Domain or W ork group Name

Upgrading Client s Runni ng Windows NT
Works tat ion 3.5. 1 or 4.0

• Same Registry
• Same Application Support
• Same Device Support
• Easiest Upgrade to
Windows 2000 Professional
Windows NT Windows 2000
Workstation 3.51 or 4.0 Professional
How T erm inal S er vices Works

RDP
Termin al S er ver
TCP /I P

My Doc um ents My Netw or k

Pl ace s

Client My Com puter Rec ycl e Bi n

Int ernet Exp lor er

Star t 12:00 PM
Ins tal ling Termi nal Serv ic es

Windows Components Wizard

Terminal Services Setup
You can run Terminal Services in one of two modes.

Select the mode you want to use:

Remote administration mode

Allows a limited number of administrators to remotely manage this
server. This setting minimizes impact on server performance.
Application server mode
Allows users to remotely run one or more applications. This setting
optimizes program response times.
To use this option, you must set up a Terminal Services Licensing
server in this domain or workgroup within 90 days.
Use Add/Remove Programs in Control Panel to install programs for
use in application server mode.

< Back Next > Cancel

Ins tal ling Termi nal Serv ic es Cl ient
Ter mi nal S er vic es S er ver

Ter minal S ervi ce s System roo t/ Syst em32 /

Client Cr eator Clien ts /Ts clien t

In st allat ion Dis ks

Shar ed F olde r

Cli ent
Supported Prot oc ols i n M S Windows 2000

 Tr an smission Co nt ro l Pr ot oco l/I nt ern et P ro to col

(TCP/ IP)
 Int er ne twor k Pa cke t Ex chan ge /Seq uen ced P ac ket
Ex cha nge ( IP X/S PX)
 Ne tBI OS En ha nc ed Us er I nte rf ac e ( Net BEUI )
 Ap pleT alk
Ser vices Cons ole
NTFS 5.0 Featu res

 NTF S Per missions.

 NTF S Di sk Co mpr es sion.
 Disk Quo ta Man ag eme nt.
 En cry pt ed Fil e Sy st em (E FS).
NTFS Permi ss ions I mpl emente d Obj ect s

Part it ion Fol der

File
Grant ing NTFS Permis sions
Folder1 Properties

General Web Sharing Sharing Securi ty

Name Add...
Everyone
Remove

Permissions

Full Control
Modify
Read & Execute
List Folder Contents
Read
Write

Advanced...
Allow inheritable permissions from parent to propagate
to this object.

OK Cancel Apply
NTFS Disk Compres si on Im plement ed Objec ts

Part it ion Fol der

File
Compres sing Fil es and Folders
Advanced Attributes

Choose the settings you want for this folder

FolderA Properties
When you apply these changes you will be asked if you
General Web Sharing Sharing Security
want the changes to affect all subfolders and files as well.

FolderA Archive and Index attributes

Folder is ready for archiving

Type: File Folder For fast searching, all Indexing Service to index this
folder
Location: C:\

Size: 0 bytes Compress or Encrypt attributes

Size on disk: 2.00 KB (2,048 bytes) Compress contents to save disk space

Contains: 1 Files, 0 Folders Encrypt contents to secure data

Created: Wednesday, September 16, 1998, 10:44:01 AM OK Cancel

Attributes: Read-only Advanced...

Hidden

OK Cancel Apply
Dis k Q uotas Im plem ented Objec ts

Part iti on
EFS I mple ment ed O bj ec ts

Fil e Fol der

Rec ove ring an En cry pte d Fol der or F ile

~~~~
~~~~~
~~~~~
~~~~~
~~~~~
Ow ner ’s K ey I s
Unav aila ble

~~~~
~~~~~
~~~~~
~~~~~
~~~~~
Rec ov er y Ag ent Us es His
Priv ate K ey to Rec ove r
File
 Syst em Informat ion
System Information
Action View Tools

Tree Item Value

System Information OS Name Microsoft Windows 2000 Advanced Server
System Summary Version 5.0.2195 Build 2195
Hardware Resources OS Manufacture Microsoft Corporation
Components System Name LONDON
Software Environment System Manufacturer Not Available
Internet Explorer 5 System Model Not Available
System Type X86-based PC
Processor x86 Family 6 Model 1 Stepping 7 GenuineIntel...
BIOS Version BIOS Version 1.00.09.CS1
Windows Directory C:\WINNT
Locale United States
Time Zone Pacific Standard Time
Total Physical Memory 130,616 KB
Available Physical Memory 40,536 KB
Total Virtual Memory 441,884 KB
Available Virtual Memory 259,820 KB
Page File Space 311,272 KB
 Event Vi ewe r
Event Viewer
Action View
Tree Event Viewer (Local)
Event Viewer (Local) Name Type Description Size
Application Log Application Log Log Application Error Records 512.0 KB
Security Log Security Log Log Security Audit Records 64.0 KB
System Log System Log Log System Error Records 512.0 KB
Directory Service Directory Service Log Custom Log Error Records 128.0 KB
File Replication Service File Replication Service Log Custom Log Error Records 64.0 KB
Windows Task Manager
Windows Task Manager
File Options View Help
Windows Help

Applications Processes Performance

CPU Usage CPU Usage History
Image
Task Name PID CPU CPU Status
Time Mem Usage
Building
System Schematic0- Paint
Idle Process 96 Running
4:52:37 16 K
System 8 00 0:00:27
Memo to Supervisor - WordPad Running 212 K
smss.exe
3% 168 00 0:00:00 344 K
Calculator
csrss.exe 196 00 Running 1,820 K
0:00:20
MEM MyUsage
Computer Memory
winlogon.exe 220 00
Usage Running 4,408 K
0:00:09
History
services.exe 148 00 0:00:14 8,228 K
lsass .exe 160 00 0:00:32 15,768 K
svchost .exe 472 00 0:00:00 2,648 K
spoolsv .exe 492 00 0:00:00 4,184 K
10 1600K
mspaint .exe 624 00 0:00:04 352 K
msdtc .exe 704 02 0:00:00 3,428 K
Totals .exe
inojobsv 808 00 Physical Memory
0:07:46 (K) K
5,704
Handles
dfssvc .exe 5932
824 00 Total
0:00:00 130612
2,336 K
Threads
svchost .exe 381
840 00 Available
0:00:00 27740
3,416 K
ismserv .exe
Processes 86430 00 0:00:00
System Cache 5,348 K
50704
llssrv .exe 880 00 0:00:01 3,860 K
Commit Charge (K)928
ntfrs.exe 00 Kernel Memory 1,108
0:00:09 (K) K
Total
regsvc.exe 101600
968 00 Total0:00:00 22804
844 K
Limit 310892 Paged 15704
Show
Peak processes
End from
Task
116896all users
Switch To
Nonpaged End Process
New Task...
7100

Processes: 30 CPU Usage: 3%

2%
6% Mem Usage: 101600K
103500K / 310892K
103452K
Per formanc e Consol e
Performance
Console Window Help
Action View Favorites

Tree Favorites
Console Root
System Monitor 100
Performance Logs and Alerts
80

60

40

20

10
Last 3.000 Average 16.154 Minimum 2.000
Maximum 63.000 Duration 1:40

Color Scale Counter Instance Parent Object Computer

1.000 % Processor Time _Total --- Processor \\LONDON
1.000 % Processor Time explorer --- Process \\LONDON
1.000 % Disk Time 0 C: D: --- PhysicalDisk \\LONDON
1.000 Page/sec --- --- Memory \\LONDON
1.000 Bytes Received/sec Default FTP Site - - - FTP Service \\LONDON
Windows 2000 P rint ing Terms
Printer

Word.doc User2
Print er Printer Driv er

Print Server
Loc al Print Dev ice

Net work-Int erface

Print Dev ice
Gui deli nes for Se tt ing Up a Network P rint er

De termine the Orga ni zation ’s Prin ting Re qu irem ents

De termine the Users’ Pri nting Req ui remen ts

De termine t he Numb er of Pri nt Se rvers Re qui red

De termine th e Loca tion s for Prin t De vices

De termine Hig h Prior ity Pri nt Jo bs

Introduc ti on t o Shared Folders

Apps Da ta

Sale s

User

Serv er Hos ting

Sh ar ed Fo lder s: Shar ed Fo lder

 Ca n Con tain Ap plica tions , Da ta, o r Us er s’

Pe rs ona l Da ta
 En ab le Cen tra liz ed A dm inist rat ion
Acces sing Fi le Res ourc es Through Dfs
Ser ver Hos ting
Dfs R oot

Sale s Dat a

1
No rth
2

Eas t
Da ta
3
Clien t c onnec ts to a Df s ser ver
Eas t
Clie nt rec eiv es a r ef err al to th e Df s link Ser ver 1

Df s c lient c onnec ts to th e D fs lin k

 Back up
Backup - [Untitled] Accessibility
Job Edit View Tools Help Communications
My Connect to Entertainment
Welcome
Documents Backup Restore Schedule Jobs
the Internet
Games
Welcome to the Windows 2000 Backup and Recovery
Microsoft Tools
Script Debugger
System Tools Backup
My Backup Wizard
Address Book Character Map
Computer The Backup wizard helps you create a backup of your programs and files so you can
Calculator Disk Cleanup
prevent data loss and damage caused by disk failures, power outages, virus
Command Prompt Disk Defragmenter
infections, and other potentially damaging events.
Imaging Scheduled Tasks
My Network
Notepad System
Places
Restore Wizard Paint Information
The Restore wizard helps you restore your previously backed-up data in the event of a
Synchronize
Windows Update
hardware failure, accidental erasure, or other dataExplorer
Windows loss or damage.
Windows2000Advanced Server

Accessories WordPad
Programs
Administrative Tools
Emergency Repair
Documents ResourceDiskKit
This option helps you create an Emergency Repair Disk that you can use to repair and
Startup
Settingsrestart WindowsInternet
if it is damaged.
Explorer This option does not back up your files or programs,
Search and it is not a replacement
Outlook Expressfor regularly backing up your system.

Help

Run...

Shut Down...
Start
Back up Ty pes

Type Bac ks up Sees mar ker Clear s mar ker

Norma l Selected files and folders No Yes

Copy Selected files and folders No No

Selected files and folders that

Dif fer ent ial changed since the last backup Yes No

Selected files and folders that

In cr emental Yes Yes
changed since the last backup

Selected files and folders that

Daily No No
changed during the day
 Manual vs . A uto mati c TCP /IP Conf igurat ion

Man ual T CP/ IP Con figura tion Au to matic TCP /I P Con fig ur at ion
Di sadv ant age s
IP address es ent ered
manual ly on each client
com puter
Pos sibili ty of ent ering
inc orrect or inv al id I P
addres s
Inc orrec t confi gurati on c an
lead to com munication and
net work problem s
Admini strative ov erload on
net work s where comput ers
are frequent ly moved
Ad van ta ge s
IP address es are suppli ed
aut omat ic al ly to cli ent
comput ers
Ens ures that client s alw ays
use c orrect c onf igurat ion
inf ormat ion
Eli minat ion of com mon sourc e
of net work problem s
Client c onf igurat ion updated
aut omat ic al ly to ref lec t
changes i n net work structure
The DH CP Lease Generat ion Proc ess

DHC P Cl ient DHCP S er ver s

1 IP Leas e Re ques t

IP Le as e O ffer 2

3 IP Leas e Selec tion

IP Lea se
4
Acknow ledge ment
Autom ati c IP Ad dres sing
Internet Protocol (TCP/IP) Properties

General

You can get IP settings assigned automatically if your network

supports this capability. Otherwise, you need to ask your
network administrator for the appropriate IP settings.
Obtain an IP address automatically
Use the following IP address:
IP address:

Subnet mask :

Default gateway:

Obtain DNS server address automatically

Use the following DNS server addresses:
Preferred DNS server:
Alternate DNS server:

Advanced...

OK Cancel
WINS Overv iew

WIN S D at abase
 Na me Reg istra tio n
Client1 192.168.0.11
 Re gist rat ion Re ne wa l Server1 192.168.0.12
 Na me Qu ery Server2 192.168.0.13

 Na me Relea se
Regist ration

Renew al
Client 1
Query

WINS C lient Releas e WINS S erv er

 Dis tribut ed E nvi ronment of DNS
Recor ds

com 202.213.44.33
net 199.71.100.12
“.” org 212.23.14.244

Recor ds

yahoo 120.35.78.200
com hotmail 234.22.17.109
Lo cal DNS microsoft 200.21.244.10

C Recor ds

www 200.21.244.77
micr osoft mch2 200.21.244.82
Zob 200.21.244.10

ww w

FQDN: www.microsoft.com
Overv iew o f Dynam ic Updat es

Th e DNS Dy na mic Upd ate P ro to col Al low s Cl ie nt s

to Au to mat icall y U pd at e DNS Se rv ers
DHCP
Computer1
Server
1Requ est f or IP add re ss

Assi gn I P add res s 2

o f 192.1 68.1 20. 133

Dy namic U pdat e Dy na mic U pdate

Com put er1

192. 168 .12 0.1 33

DNS Server
Zon e Dat aba se
 Troubl eshoot ing IP Ro utin g
C:\ C:\WINNT\SYSTEM32\cmd.exe

Ping
C:\ >ping 192.168.1.1
PathPing
Pinging 192.168.1.1 with 32 bytes of data:
C:\>pathping 192.168.1.1
Reply from 192.168.1.1: bytes=32 time<10ms TTL=128
Tracing route to BONN <192.168.1.1>
Reply from 192.168.1.1: bytes=32 time<10ms TTL=128
Over a maximum of 30 hops:
Reply from 192.168.1.1: bytes=32 time<10ms TTL=128
0 london.nwtraders.msft [192.168.1.200]
Reply from 192.168.1.1: bytes=32 time<10ms TTL=128
1 BONN [192.168.1.1]
Ping statistics for 192.168.1.1:
Computing statistics for 25 seconds…
Packets: Sent = 4, Received = 4, Lost = 0 <0% loss>,
Source to Here This Node/Link
Approximate round trip times in milli-seconds:
Hop RTT Lost/Sent = Pct Lost/Sent = Pct Address
Minimum = 0ms. Maximum = 0ms. Average = 0ms
london.nwtraders.msft [192.168.1.2
00]
Tracert 1 0ms 0/100 = 0%
0/100 = 0% {
0/100 = 0% BONN
C:\> tracert 192.168.1.1 [192.168.1.1]

Tracing route to BONN [192.168.1.1] Trace complete.

Over a maximum of 30 hops:

1 <10 ms <10 ms <10 ms BONN [192.168.1.1]

Trace complete.
 What Is Act iv e Direc tory ?

Director y Se rvice
Cen tra li zed Man ag emen t
Functio nal ity

 Organ ize  Sin gl e poi nt of ad min istratio n

Res ou rce
 Man ag e  Full user acce ss to di rectory
s
 Co ntrol reso urce s by a si ng le lo gon
Acti ve Direc tory O bjec ts

Activ e Dir ec tor y

Objects
Printers
Attr ibut es
Printer1
Printe r Name
Printer2
Printer Location
Printers
Printe r3 Att ribut e
Value
Users
Attr ibut es
Firs t N ame Do n Ha ll
Las t N ame Suzan Fine
Users Logon Name

 Objects Represent Network Resources

 Attributes Store Information About an Object
Domai ns

 A Dom ain Is a Se cu rity Bo un da ry

 A domain administrator can administer only within the
domain, unless explicitly granted administration rights
in other domains
 A Dom ain Is a Unit of Rep li catio n
 Domain controllers in a domain participate in replication
and contain a complete copy of the directory
information for their domain

r1 Replication r1
Use Use
r2 r2
Use Use

Windows 2000
Dom ain
Organiz at ional Unit s

Ne twor k Adminis tr ativ e Model Organiz at ional Str uc tur e

Sales Vancouver

Users Sales
Computers Repair

 Us e OUs to Group Objects i nto a Logical Hierarchy That

Bes t Suits t he Needs of Your Organiz at ion
 Delegate Admini strative Control over t he Obj ec ts Wit hin an
OU by As signing S pec if ic Permi ssions t o Users and Groups
Trees and Fores ts

(root )
Two- Way T rans it iv e T rus t

co nto so.m sft

Forest
Tree
asia. au.
nwtr ad ers.ms ft co nto so.m sft co nto so.m sft

Two- Way T rans it iv e T rus ts

Tree

as ia. au .
nwtr ade rs.m sft nwtr ade rs. msft
Domai n Cont ro llers

Do ma in Con tro ller s:

 Participate in Active Directory replication
 Perform single master operations roles in a domain

r1 Replicat ion r1
Use Use
r2 r2
Use Use
Do main Domain
Co ntr oll Co ntr oll
er er
Domain

= A Wri teable Copy of the Ac tiv e Direct ory Dat abas e

Sit es

Seat tle
New Y ork
Ch ic ago

Los Angeles

IP subne t
Si te
Site s: IP subne t
 Optimize replication traffic
 Enable users to log on to a domain controller by using
a reliable, high-speed connection
 Fe atures of A cti ve Direc tor y

 Us ing Ac tive Dire cto ry fo r Ce nt ra liz ed

Man age men t
 Man aging th e Us er E nv iron ment
 De lega tin g Ad min istra tiv e Co nt ro l
 Creati ng a Domai n Us er Acc ount
Ac tive Director y U ser s a nd
Com puter s Window Help
Console
Action View
Tree Users 20 objects
Active Directory Users and Comp Name Type Description
nwtraders.msft Administrator User Built-in account
Builtin Cert Publishers Security Group - Enterprise certi
Computers DNSAdmins Security Group - Domain Local DNS Administra
Global
Domain Controllers DNSUpdateProxy Security Group - Global DNS clients who
ForeignSecurityPrincipals Domain Admins Security Group - Global Designated adm
LostAndFound Domain Computers Security Group - Global
Ne w O bj ect - Use r All workstations
System Delegate Control…
Domain Controllers Security Group - Global All domain cont
Users Find… Domain Guests Security Group - Global All domain gues
New Computer Create in: nwtraders.msft/Users
All Tasks Contact
Group
View First name: Judy Initials: A
Printer
New Window from Here
User
Refresh Shared Folder Last name: Lew
Export List… Full name: Judy A. Lew
Properties
User logon name:
Help
judy1 @nwtraders.msft
User logon name (pre-Windows 2000):
NWTRADERS\ judy1

< Back Next > Cancel

Creati ng Roami ng a nd M andatory Roam ing
Us er P rofi les
Cr ea te a Roa ming Us er Pro file

Create a Shared Folder on the Serv er

Spec ify t he Shared Fol der i n Pat h I nf ormat ion

Cre at e a M an dat ory Us er Pro file

Create a Shared Folder on the Serv er wit h a

Us er P rofile Fol der I ns ide

Set Up a Conf igured Roaming Us er P rofil e

Rename Ntuser. dat t o Ntus er. man

The St rat egy fo r Us ing Gro ups in a S ingle
Domai n
A
A G DL P Strategy for
Groups in a Domain

User Accounts G
Add

Global Group
Add
P
DL
Assign

Domain Local Group

Introduc ti on t o Group P oli cy
Group Polic y Site

Us er s
Do main

OU
Compute rs

Adminis tr ator Sets Grou p P oli cy O nc eWindow s 20 00 Ap plies Cont inually

Group Pol ic y Enabl es Y ou t o:

 Set centralized and decentralized policies
 Ensure users have their required environments
 Lower total cost of ownership by controlling user and computer
environments
 Enforce corporate policies
Group Pol ic y S et ti ngs fo r Comput ers and
Us ers
 Group Pol ic y Set ti ngs for Com puters:
 Specify operating system behavior, desktop behavior,
security settings, computer startup and shutdown Compute rs
scripts, computer-assigned application options, and
application settings
 Apply when the operating system initializes and during
the periodic refresh cycle

 Group Pol ic y Set ti ngs for Users :

 Specify operating system behavior, desktop settings,
security settings, assigned and published application Us er s
options, application settings, folder redirection options,
and user logon and logoff scripts
 Apply when users log on to the computer and during
the periodic refresh cycle