logging in or signing up Sverver Administrator Part 3 networking tool (1) baluglow Download Post to : URL : Related Presentations : Share Add to Flag Embed Email Send to Blogs and Networks Add to Channel Uploaded from authorPOINT lite Insert YouTube videos in PowerPont slides with aS Desktop Copy embed code: (To copy code, click on the text box) Embed: URL: Thumbnail: WordPress Embed Customize Embed The presentation is successfully added In Your Favorites. Views: 14 Category: Entertainment License: All Rights Reserved Like it (0) Dislike it (0) Added: December 23, 2011 This Presentation is Public Favorites: 0 Presentation Description Sverver Administrator Part 3 networking tool (1) by Sai Bala subrahmanyam Comments Posting comment... Premium member Presentation Transcript Configuring Server Storage, Backup, and Performance Options : Configuring Server Storage, Backup, and Performance Options Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Explain basic and dynamic disks Partition, format, and manage basic disks and convert them to dynamic disks Create and manage simple, spanned, striped, RAID-5, and mirrored dynamic disks Mount a drive Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Manage removable storage and set up media pools Perform disk backups Tune server performance Configure Windows 2000 Server for an uninterruptible power supply (UPS) Sai Bala SubrahmanyamBasic Disk: Basic Disk Uses traditional disk management techniques for partitions and formatting Supports primary and extended partitions, RAID 0, RAID1 and RAID5 Default disk structure for a new 2000 server install and when upgrading any previous versions of NT Server Offered for backward compatibility with earlier versions of Windows and MS-DOS Sai Bala SubrahmanyamDisk Partitioning: Disk Partitioning Process of dividing a disk into sections (partitions) and formatting those sections into tracks and sectors for a file system Each partition is assigned a drive letter (C:, D:, etc.) in Windows Places a master boot record and partition table at the beginning of the disk Sai Bala SubrahmanyamPartitioning Tip: Partitioning Tip When you partition a basic disk, leave 1 MB free for workspace which is necessary to later convert to a dynamic disk Sai Bala SubrahmanyamPrimary and Extended Partitions: Primary and Extended Partitions Primary partition: A partition or portion of a hard disk that is bootable Disks must have at least one primary partition and can have up to four Extended Partition: Linked to a primary partition in order to increase the available disk space Disks can have only one extended partition, but the extended partition can have many logical drive letters (C:, D:, etc.) Used mainly to overcome the limit of 4 primary partitions per disk Sai Bala SubrahmanyamBoot and System Partitions: Boot and System Partitions Boot partition: A partition that holds the Windows 2000 Server system files (the WINNT folder) System partition: A partition that contains boot files, such as Boot.ini and Ntldr in Windows 2000 Server Sai Bala SubrahmanyamViewing the System and Boot Partitions: Viewing the System and Boot Partitions Sai Bala Subrahmanyam Figure 7-3 System and boot partitionsFormatting Using the Disk Management Tool: Formatting Using the Disk Management Tool Sai Bala Subrahmanyam Figure 7-4 Formatting a partitionFormatting Tips : Formatting Tips When you format a partition, avoid using the quick format option, because it does not check for bad sectors during the format After you partition and format a disk, be sure to update the emergency repair disk to reflect your change Sai Bala SubrahmanyamVolume and Stripe Sets: Volume and Stripe Sets Volume set: Two or more formatted basic disk partitions that are combined to look like one partition with a single drive letter Stripe set: Two or more basic disks set up so that files are striped for RAID0 or RAID5. Sai Bala Subrahmanyam Converting a Basic Disk to a Dynamic Disk: Converting a Basic Disk to a Dynamic Disk To convert a disk: Right-click on the basic disk (not on a partition) to convert Click Upgrade to Dynamic Disk Sai Bala SubrahmanyamConverting a Dynamic Disk to a Basic Disk: Converting a Dynamic Disk to a Basic Disk To convert back to a basic disk: Back up the dynamic disk Delete the dynamic disk volume Click the disk, click the Action menu, and click Restore Basic Disk Partition and format the disk Sai Bala SubrahmanyamDynamic Disks: Dynamic Disks Dynamic disk: In Windows 2000 Server, a disk that does not use traditional partitioning There is no restriction to the number of volumes that can be set up on one disk You can extend volumes onto other physical disks if more space is needed Dynamic disks are only compatible with Windows 2000. Sai Bala SubrahmanyamDynamic Disks (continued): Dynamic Disks (continued) Dynamic disks support: Spanned volumes and volume extensions Up to 32 disks in one spanned volume RAID levels 0, 1, and 5 FAT16, FAT32, and NTFS Reactivation if they go off line Sai Bala SubrahmanyamSimple Volume: Simple Volume Simple volume: A portion of a single disk or an entire single disk that is has been converted to a dynamic disk and formatted. A simple volume is not fault tolerant. Sai Bala SubrahmanyamSpanned Volume: Spanned Volume Spanned volume: Two or more sections of one or more Windows 2000 dynamic disks that are combined to appear as one disk. A spanned volume can span any part of 2 to 32 disks Sai Bala SubrahmanyamSpanned Volume (continued): Spanned Volume (continued) Sai Bala Subrahmanyam Figure 7-5 Spanned volume One drive letterDesign Tip: Design Tip In a spanned volume if one disk fails, the entire volume is inaccessible. If a portion of a volume is deleted, such as one disk, the entire disk set is deleted. For these reasons, avoid placing mission-critical data and applications on a spanned volume. Sai Bala SubrahmanyamStriped Volume: Striped Volume Striped volume: Two or more dynamic disks (or equal portions of those disks) that use striping so that files are spread in blocks across the disks Also known as RAID level 0 Striping requires at least 2 disks (or equal portions of disks) and can include as many as 32. Striping equalizes the disk load, extends the life of disks, and increases disk performance Sai Bala SubrahmanyamStriped Volume Layout: Striped Volume Layout Sai Bala Subrahmanyam Figure 7-6 Disks in a striped volume Writing a 720KB file to a Striped Volume that spans 5 disksStriped Volumes: Striped Volumes If one or more disks in a striped volume fail, the data will be inaccessible. Frequently back up a striped volume so you do not lose data if a disk failure occurs. Sai Bala SubrahmanyamRAID-5 Volume: RAID-5 Volume RAID-5 volume: Three or more dynamic disks (or equal portions of those disks) that use provide fault tolerance through disk striping and creating parity blocks for data recovery A RAID-5 volume is not as fast at writing because it must calculate and write the parity block for each row RAID-5 is fault tolerant. If a single drive in the volume fails, the parity information can be used to regenerate the lost data. Sai Bala SubrahmanyamRAID-5 Layout: RAID-5 Layout Sai Bala Subrahmanyam Figure 7-7 Disks in a RAID-5 volumeDisk Spaced Used for Parity: Disk Spaced Used for Parity The amount of disk space used for parity is 1/n where n equals the number of physical disks When you plan disk capacity, take into account the amount of space (for parity) that cannot be used for production data Sai Bala SubrahmanyamMirrored Volume: Mirrored Volume Mirrored volume: Two dynamic disks that are set up so that data on one disk is stored (mirrored) on a redundant disk Disk read performance is the same as reading from a simple volume, but the disk write time is increased in order to write on both disks Sai Bala SubrahmanyamDesign Caution: Design Caution The system and boot partitions can be on a simple, spanned, or mirrored volume, but not on a striped or RAID-5 volume (unless hardware RAID is used) Sai Bala SubrahmanyamDisk Performance and Repair: Disk Performance and Repair You can extend the life of disks by using striped or RAID-5 volumes because read/write requests are spread across all disks. Regularly defragment disks to extend disk life and increase performance Sai Bala SubrahmanyamUsing the Disk Defragmenter: Using the Disk Defragmenter Sai Bala Subrahmanyam Figure 7-8 Analyzing a disk’s fragmentationTroubleshooting Tip: Troubleshooting Tip Ensure disk integrity and repair disk problems by using the “checkdisk” utility, called chkdsk Chkdsk can check FAT16, FAT32, and NTFS formatted volumes Sai Bala SubrahmanyamChkdsk: Chkdsk In NTFS, chkdsk can check: Files Folders Indexes Security descriptors User files Disk allocation units If there is physical damage on a disk, use chkdsk with the /r switch to identify bad sectors Sai Bala SubrahmanyamMounted Drive: Mounted Drive Windows 2000 offers the ability to access a physical disk, CD-ROM, or Zip drive through a folder that appears on another drive letter. Using mounted drives enables you to add new drives without allocating drive letters. Sai Bala SubrahmanyamDisk Security Through Backup: Disk Security Through Backup Try to backup a server to a tape drive attached to the server. This provides several advantages: No load on the network while backing up If each server has its own tape drive, you can backup other servers if one tape drive fails The registry can only be backed up locally (without 3 rd party backup tools) Sai Bala SubrahmanyamWindows 2000 Backup Options: Windows 2000 Backup Options Windows 2000 Server backup options: Normal – a full backup – backs up everything selected in the backup job (whether changed or not) and removes the archive attribute. Incremental – a partial backup – only backs up files that have changed since the last full backup or incremental backup and removes the archive attribute. Differential – a partial backup – backs up all files that have changed since the last full backup (even if they have not changed since the last differential backup) and does not remove the archive attribute. Sai Bala SubrahmanyamWindows 2000 Backup Options: Windows 2000 Backup Options Copy – backs up only the files or directories selected and leaves the archive attribute unchanged Daily – backs up only the files that have changed on the day the backup is performed and leaves the archive attribute unchanged Sai Bala SubrahmanyamStarting a Backup : Starting a Backup Sai Bala Subrahmanyam Figure 7-10 Manually starting a backupScheduling Backups: Scheduling Backups Sai Bala Subrahmanyam For regularly performed backups, use the scheduling capability in the Backup tool – which actually employs the Scheduled Tasks toolConfiguring a Scheduled Backup: Configuring a Scheduled Backup Sai Bala Subrahmanyam Figure 7-11 Scheduling a backup jobPerforming a Restore: Performing a Restore Perform a restore by using the Backup tool and clicking the Restore tab You can restore all files and folders from a backup job or only those you select specifically Sai Bala SubrahmanyamConfiguring Application Performance: Configuring Application Performance Windows 2000 can be optimized for applications or background services Use Applications performance when a system will be used by someone logged into the console Use background services when a system will fulfill requests for services on the network (file and print) Application performance is tuned by opening the Control Panel System icon, accessing the Advanced tab, and clicking the Performance Options button Sai Bala SubrahmanyamConfiguring Virtual Memory: Configuring Virtual Memory Virtual memory is a file (called the page file) stored on the hard disk and is used to store programs and data when there is little available RAM. The general formula for configuring a page file is to size it to match the amount of RAM times 1.5 For performance, you should tune a server by configuring the page file to be stored on a hard disk separate from the disk which contains the operating system. Virtual memory settings can be found under Control Panel, System, Advanced, Performance Options. Sai Bala SubrahmanyamPage File Configuration: Page File Configuration Sai Bala Subrahmanyam Figure 7-12 Configuring virtual memoryConfiguring Server RAM: Configuring Server RAM Sai Bala SubrahmanyamConfiguring Server RAM (continued): Configuring Server RAM (continued) Sai Bala Subrahmanyam These options are found in the properties of File and Printer Sharing.Configuring RAM Allocation: Configuring RAM Allocation Sai Bala Subrahmanyam Figure 7-13 Adjusting memory allocationChapter Summary: Chapter Summary Windows 2000 Server supports two kinds of disks, basic and dynamic Basic disks are for backward compatibility and dynamic disks offer comprehensive disk management Windows 2000 Server supports many kinds of removable storage such as tapes, CD-ROMs, CD-RWs, Zip, and Jaz drives Sai Bala SubrahmanyamChapter Summary: Chapter Summary Removable storage is managed through libraries and media pools Server backups are handled through the Backup tool which offers several backup alternatives Tune your server right away for running applications, virtual memory, and memory used for network connectivity Sai Bala Subrahmanyam Managing Accounts and Client Connectivity : Managing Accounts and Client Connectivity Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Establish account naming conventions Configure account security policies Create and manage accounts, including setting up a new account, configuring account properties, delegating account management, and renaming, disabling, and deleting an account Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Create local user profiles, roaming profiles, and mandatory profiles Configure client network operating systems to access Windows 2000 Server, and install client operating systems through Remote Installation Services Sai Bala SubrahmanyamAccount Policies: Account Policies Account policies: security measures set up in a group policy, such as for a domain or local computer Account policies particularly focus on: Password security Account lockout Kerberos security Use the Group Policy MMC snap-in to set up account policies Sai Bala SubrahmanyamSetting Account Policies: Setting Account Policies Sai Bala Subrahmanyam Figure 8-1 Account policiesPassword Policy Options: Password Policy Options Enforce password history : Enables you to require users to choose new passwords when they make a password change, because the system can remember the previously used passwords Maximum password age : Permits you to set the maximum time allowed until a password expires Minimum password age : Permits you to specify that a password must be used a minimum amount of time before it can be changed Sai Bala SubrahmanyamPassword Policy Options (continued): Password Policy Options (continued) Minimum password length : Enables you to require that passwords are a minimum length Passwords must meet complexity requirements : Requires passwords to be complex (use upper and lowercase letters, numbers and special characters; cannot contain the user name, etc.) Sai Bala SubrahmanyamAccount Lockout Policy Options: Account Lockout Policy Options Account lockout duration : Permits you to specify in minutes how long the system will keep an account locked out after reaching the specified number of unsuccessful log on attempts Account lockout threshold : Enables you to set a limit to the number of unsuccessful tries to log onto an account Sai Bala SubrahmanyamAccount Lockout Policy Options (continued): Account Lockout Policy Options (continued) Reset account lockout count after : Enables you to specify the number of minutes between two consecutive unsuccessful logon attempts to make sure that the account will not be locked out too soon Sai Bala SubrahmanyamKerberos Policy Options : Kerberos Policy Options Enforce user logon restrictions : Turns on Kerberos security, which is the default Maximum lifetime for a service ticket : Determines the maximum amount of time in minutes that a service ticket can be used to continually access a particular service in one service session Maximum lifetime for a user ticket : Determines the maximum amount of time in hours that a ticket can be used in one continuous session for access to a computer or domain Sai Bala SubrahmanyamCreating Accounts: Creating Accounts On a member server (not a domain controller) use the Local Users and Groups MMC snap-in to create accounts On a domain controller, use the Active Directory Users and Computers MMC snap-in to create accounts in the domain. Sai Bala SubrahmanyamCreating an OU: Creating an OU To create an OU: Click the container in which to create the OU, such as the domain or another OU Click the Create a new organizational unit in the current container button Enter the name of the OU Click OK Sai Bala SubrahmanyamDelegating Authority in an OU: Delegating Authority in an OU To delegate authority: Right-click the OU and click Delegate control Click Next after the wizard starts Click the Add button and specify the accounts, groups, or computers to have the control Click OK and click Next Select the tasks to delegate and click Next Click Finish Sai Bala SubrahmanyamDelegation of Control Options: Delegation of Control Options Sai Bala SubrahmanyamUsing Find to Locate an Account: Using Find to Locate an Account To locate a particular account in order to maintain it: Right-click the domain Click Find Enter the username or the account holder’s name Click Find Now Sai Bala SubrahmanyamAccount Maintenance Activities: Account Maintenance Activities Typical account maintenance activities include: Disabling an account, such as when a user takes a leave of absence Enabling an account, such as when a user returns Renaming an account, such as when one user leaves and another user is hired into the same position Moving an account, such as into a different OU Sai Bala SubrahmanyamAccount Maintenance Activities (continued): Account Maintenance Activities (continued) Typical account maintenance activities include (continued): Deleting an account, such as when a user leaves the organization and there will be no replacement Resetting a password for users who do not remember theirs Account auditing to track certain kinds of activity performed by an account holder Sai Bala SubrahmanyamSample Events that Can be Audited for an Account: Sample Events that Can be Audited for an Account Logon and logoff activity Account modifications through account management tools Accesses to files and other objects (for files, folders, and objects that are set up to be audited) Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip Management will usually want to audit EVERYTHING Use account auditing sparingly because every audited event is written to the Security log. A server can be overloaded by devoting too much of its resources to auditing. Sai Bala SubrahmanyamUser Profiles: User Profiles What is a profile? Windows maintains a group of settings for each individual user that logs into the system. This group of settings is known as a user “profile” What is included in a profile? Most anything that users may wish to set independently from other users (favorites, desktop wallpaper, email settings, web browser home page, etc.) Sai Bala SubrahmanyamUser Profiles: User Profiles Where are profiles stored? Under the “Documents and Settings” folder on the boot partition. Each time a new user logs in, a new profile is created for them based on the “Default” user profile. Sai Bala SubrahmanyamLocal vs. Roaming User Profile: Local vs. Roaming User Profile Local user profile: a user profile that is stored locally on the boot partition under “Documents and Settings”. Since the profile is local, it will only work on the machine on which it is created. Roaming user profile: a user profile that is copied to a network server so that it can be downloaded to each workstation where the user logs on. This allows the profile to “roam” with the user. Sai Bala SubrahmanyamMandatory User Profile: Mandatory User Profile Mandatory User Profile: A user profile set up by the server administrator that is loaded from the server to the client each time the user logs on. Changes that the user makes to the profile are not saved. Used to lock down the desktop and prevent users from customizing it. Sai Bala SubrahmanyamAssociating a Profile with an Account: Associating a Profile with an Account Sai Bala Subrahmanyam Figure 8-9 Setting a roaming profile in an account’s propertiesActive Directory Support for Non-Windows 2000 Clients: Active Directory Support for Non-Windows 2000 Clients Plan to install Directory Service Client (DSClient) on Windows 95 and Windows 98 clients DSClient enables non-Windows 2000 Clients for: Kerberos authentication Ability to view and search objects published in the Windows 2000 Active Directory Access a Windows 2000 Distributed File System The Directory Service client can be found on the Windows 2000 Server CD-ROM Sai Bala SubrahmanyamSetting Up Client Desktops Using Group Policy and Security Policy: Setting Up Client Desktops Using Group Policy and Security Policy Use the Group Policy snap-in to set up group policies that govern clients Group Policy can only be applied to Windows 2000 or later clients. The System Policy Editor (Poledit.exe) can be used to configure system policies for Windows NT and Win9x. Sai Bala SubrahmanyamRemote Installation Services: Remote Installation Services Remote Installation Services (RIS): Services installed on a Windows 2000 Server that enable you to remotely install Windows 2000 Professional on one or more client computers Sai Bala SubrahmanyamRIS Pre-Installation Steps: RIS Pre-Installation Steps Purchase the appropriate number of Windows 2000 Professional licenses Make sure the Active Directory is implemented and that there are DHCP and DNS servers on the network Create a Windows 2000 Professional operating system image on a standard PC Create user accounts for the Windows 2000 Professional clients (called pre-staging the clients). This prevents unauthorized users from using Windows 2000 licenses. Sai Bala SubrahmanyamRIS Installation Steps: RIS Installation Steps Installing RIS is a two stage process: First install RIS using the Control Panel Add/Remove Programs tool Configure RIS from the Add/Remove Programs tool Sai Bala SubrahmanyamInstalling RIS on the Client: Installing RIS on the Client Install in one of two ways: Using a computer that has a boot-enabled PXE compliant NIC Creating a remote boot disk Both methods use the Preboot eXecution Environment (PXE):Services that enable a prospective client to obtain an IP address and to connect to a RIS server in order to install Windows 2000 Professional Sai Bala SubrahmanyamInstalling RIS on the Client: Installing RIS on the Client After booting and contacting the RIS server, the user is presented with a menu to select which RIS image to load. Sai Bala SubrahmanyamChapter Summary: Chapter Summary Preparing a server and domain entail configuring accounts and configuring client computers Before configuring accounts, consult with members of your organization about naming standards Set up account policies before configuring accounts Sai Bala SubrahmanyamChapter Summary: Chapter Summary After accounts are created, use the account properties capability to supplement or modify parameters for the accounts, such as time of day access restrictions Configure client computers to access Windows 2000 Server, such as installing DSClient Sai Bala SubrahmanyamChapter Summary: Chapter Summary Manage clients by setting up group policies or system policies Use RIS to install multiple Windows 2000 Professional clients in order to reduce your TCO Sai Bala Subrahmanyam Installing and Managing Printers : Installing and Managing Printers Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Explain and apply the fundamentals of Windows 2000 Server printing Install local, network, and Internet printing services in Windows 2000 Server Configure printing services for all types of needs Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Manage printers and print services Solve common printing problems Sai Bala SubrahmanyamBasic Concepts: Basic Concepts Print server: A network computer or server device that connects printers to the network for sharing and that receives and processes print requests from print clients Print client: A client computer that generates a print job Sai Bala SubrahmanyamStandalone Print Server Devices: Standalone Print Server Devices Sai Bala Subrahmanyam Figure 11-1 Print server devicesBasic Concepts (continued): Basic Concepts (continued) Spooling: A process working in the background to enable several print files to go to a single printer. Each file is placed in temporary storage until its turn comes to be printed. Printer driver: A file containing information needed to control a specific printer, implementing customized printer control codes, font, and style information. Sai Bala SubrahmanyamPrinting Stages: Printing Stages Sai Bala Subrahmanyam Figure 11-2 Printing stagesHow Network Printing Works: How Network Printing Works A software application creates a print file, communicating with the graphics device interface (GDI) as it creates the file to include printer control information The print file is temporarily spooled at the client The remote print provider at the client makes a remote procedure call to the network print server Sai Bala SubrahmanyamHow Network Printing Works (continued): How Network Printing Works (continued) The print file is transmitted to the Server service on the Windows 2000 Server print server At the print server, the “router” (Print Spool service) directs the print file to the print provider The print provider stores the file in the print server’s spooler Sai Bala SubrahmanyamHow Network Printing Works (continued): How Network Printing Works (continued) While in the spooler, the print provider works with the print processor to format the printing for the correct data type (such as TEXT or RAW) When the file is completely formatted the print monitor sends the print file from the spooler to the printer Sai Bala SubrahmanyamDesign Tip: Design Tip When you plan disk space for a Windows 2000 Server, take into account the type of printing at that server and the number of users. For example, if there are times when 50 users are sending 1 MB print files simultaneously, then you need to plan on at least 50 MB of disk space just for the print spooler. Sai Bala SubrahmanyamHow Internet Printing Works: How Internet Printing Works Sai Bala Subrahmanyam When an application generates a print file, the file is processed through the client’s browser, which works with the GDI The browser makes a remote procedure call (using the HTTP and IPP protocols) to the Internet Information Services (IIS) in Windows 2000 Server The IIS transfers the print file to the regular Windows 2000 Print Spool servicePrint Job Data Type: Print Job Data Type Data type: The way in which information is formatted in a print file, such as with no formatting, text-type formatting, formatting for Windows-based systems, and formatting for postscript systems Sai Bala SubrahmanyamData Types: Data Types RAW: Used with MS-DOS, Windows 3.x, and UNIX RAW with FF appended: Puts a form feed code at the end of the print file RAW with FF auto: Checks for a form feed code at the end of the print file and inserts a form feed if one is not present Sai Bala SubrahmanyamData Types: Data Types TEXT: Used for ANSI-type files, such as from older word processors and text editors Enhanced Metafile (EMF): Used for Windows-based print files that use GDI at the client PSCRIPT1: Used to translate Macintosh Postscript formatted files to non-Postscript Sai Bala SubrahmanyamPrint Monitors: Print Monitors Local port : sends print jobs to a local port, such as LPT1 or COM1 and to a regular file Standard TCP/IP Port: sends print jobs to IP print servers, such as an HP print server card LPR : used to coordinate printing with LPR compatible UNIX, DEC, and IBM mainframe and minicomputers Sai Bala SubrahmanyamPrint Monitors (continued): Print Monitors (continued) Hewlett-Packard Network Port : used for older HP-type printers with print server cards that do not support TCP/IP but that do support printing through the DLC protocol AppleTalk Printing Devices Port: used for Macintosh clients that communicate via the AppleTalk protocol to PostScript LaserWriter-type printers Sai Bala SubrahmanyamPrint Monitors (continued): Print Monitors (continued) Pjlmon.dll and Usbmon.dll: monitors that you install manually and that are used for bidirectional printers and printers attached to USB ports Sai Bala SubrahmanyamWindows 2000 Server Print Monitors: Windows 2000 Server Print Monitors Sai Bala Subrahmanyam Table 11-1 Windows 2000 Server Print MonitorsSample Candidates That Can Host a Shared Printer: Sample Candidates That Can Host a Shared Printer Windows 2000 Server and Professional Windows NT Server and Workstation Windows 98 Windows 95 Sai Bala SubrahmanyamPrinter Sharing: Printer Sharing Sai Bala Subrahmanyam Figure 11-3 Shared network printersPrinter Installation: Printer Installation Depending on the level of Plug and Play sophistication, a printer can be installed in one of several ways, such as: Automatic or manual detection (or a combination of both) using the Add/Remove Hardware Wizard Automatic or manual detection (or a combination of both) using the Add Printer Wizard Sai Bala SubrahmanyamDetecting a Newly Connected Printer: Detecting a Newly Connected Printer Sai Bala Subrahmanyam Figure 11-4 Add/Remove Hardware Wizard detecting the printerConfiguring a Local Printer via the Add Printer Wizard: Configuring a Local Printer via the Add Printer Wizard Sai Bala Subrahmanyam Figure 11-5 Setting up a local printerTroubleshooting Tip: Troubleshooting Tip If a Plug and Play compatible printer is not automatically detected, make sure that the Plug and Play service is started Sai Bala SubrahmanyamConfiguring a Print Monitor: Configuring a Print Monitor During a manual installation process, use the Create a new port radio button to configure a particular print monitor (or configure one later in the printer’s properties) and select from: AppleTalk Printing Devices Hewlett-Packard Network Port Local Port Standard TCP/IP Port Sai Bala SubrahmanyamSelecting the Type of Printer: Selecting the Type of Printer Also during the manual installation process, you can specify the manufacturer and model of printer in order to select the right printer driver Sai Bala SubrahmanyamSelecting the Type of Printer (continued): Selecting the Type of Printer (continued) Sai Bala Subrahmanyam Figure 11-6 Entering the type of printerSpecifying a Printer Name and Printer Share Name: Specifying a Printer Name and Printer Share Name During a manual installation, you can specify a printer name and a printer share name Sai Bala SubrahmanyamEntering a Printer Share Name: Entering a Printer Share Name Sai Bala Subrahmanyam Figure 11-7 Creating a shared printerPrinter and Printer Share Name Guidelines: Printer and Printer Share Name Guidelines Compose names that are easily understood and spelled by those who will use the printer Include a room number, floor, or workstation name to help identify where the printer is located Include descriptive information about the printer, such as the type, manufacturer, or model Sai Bala SubrahmanyamReview of the Setup Parameters: Review of the Setup Parameters When you manually set up a printer, there is the option to review setup parameters Sai Bala SubrahmanyamReview of the Setup Parameters (continued): Review of the Setup Parameters (continued) Sai Bala Subrahmanyam Figure 11-8 Printer setup summaryPrinter Properties: Printer Properties After a printer is set up you can manage the printer’s properties that include: General printer information Printer sharing Printer port setup Printer scheduling and advanced options Security Device settings Sai Bala SubrahmanyamGeneral Printer Properties: General Printer Properties The general printer properties include: The printer name The printer location A descriptive comment about the printer The printer model The printer’s features Sai Bala SubrahmanyamGeneral Printer Properties (continued): General Printer Properties (continued) Sai Bala Subrahmanyam Figure 11-9 Printer Properties General tabSharing Properties: Sharing Properties The sharing tab is used to: Enable or disable sharing Specify the share name Publish the printer in the Active Directory (if the Active Directory is installed) Install additional drivers for clients other than Windows 2000 Sai Bala SubrahmanyamSharing Properties (continued): Sharing Properties (continued) Sai Bala Subrahmanyam Figure 11-10 Configuring printer sharingPort Properties: Port Properties The Ports tab enables you to: Associate a printer with a port Set up printer pooling Enable bidirectional printing Add a new port, such as a print monitor Remove a port Configure a port in terms of timeout parameters (for parallel ports); and port speed, data bits, parity, stop bits, and flow control (for serial ports) Sai Bala SubrahmanyamPrinter Pooling: Printer Pooling Printer pooling: Linking two or more identical printers with one printer setup or printer share Sai Bala SubrahmanyamConfiguring Ports: Configuring Ports Sai Bala Subrahmanyam Figure 11-11 Configuring printer portsTroubleshooting Tip: Troubleshooting Tip When configuring a bidirectional printer, make sure that you use an IEEE 1284 cable and check the BIOS setup to configure the port as bidirectional Sai Bala SubrahmanyamAdvanced Printer Properties: Advanced Printer Properties The printer properties that you can configure on the Advanced tab include: Printer scheduling The printer’s priority Printer spooling Holding mismatched documents Printing spooled documents first Keeping printed documents (after they have printed) Enabling advanced printing features Specifying print processors and data types Configuring the separator page Sai Bala SubrahmanyamAdvanced Printer Properties (continued): Advanced Printer Properties (continued) Sai Bala Subrahmanyam Figure 11-12 Advanced printer propertiesTroubleshooting Tip: Troubleshooting Tip If pages are intermixing from different printouts try selecting the option, Start printing after last page is spooled Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip Use the Hold mismatched documents option to save paper and free the printer when there are users who often send a document formatted for another printer Sai Bala SubrahmanyamSeparator Page files: Separator Page files Sysprint.sep: used for PostScript-only printers Pcl.sep: used to print in Printer Control Language (PCL) for printers that can do either PCL or PostScript Pscript.sep: used to print in PostScript for printers that can do either PCL or PostScript Sai Bala SubrahmanyamSeparator Page Customization Codes: Separator Page Customization Codes Sai Bala Subrahmanyam Table 11-2 Separator Page Customization CodesSeparator Page Customization Codes (continued): Separator Page Customization Codes (continued) Sai Bala SubrahmanyamDesign Tip: Design Tip Use separator and banner pages sparingly because they can add to paper costs Sai Bala SubrahmanyamSecurity Properties: Security Properties The printer Properties Security tab enables you set up: Printer permissions Special permissions Auditing Ownership Sai Bala SubrahmanyamPrinter Share Permissions: Printer Share Permissions Sai Bala Subrahmanyam Table 11-3 Printer Share PermissionsSecurity Properties (continued): Security Properties (continued) Sai Bala Subrahmanyam Figure 11-13 Configuring securityPrinter Events That Can Be Audited: Printer Events That Can Be Audited The successful or failed activities that can be audited are: Print jobs Manage printers Manage documents Read printer share permissions Change printer share permissions Take ownership of the printer Sai Bala SubrahmanyamDesign Tip: Design Tip Periodically use the Security Configuration and Analysis MMC snap-in to review analyze the security and group policies that are set up for printers, accounts, and other objects Sai Bala SubrahmanyamPrinter Device Properties: Printer Device Properties The Device Settings tab in the printer Properties is used to configure: Printer trays Printer memory Paper size Fonts Specialized features of a printer Sai Bala SubrahmanyamPrinter Device Properties (continued): Printer Device Properties (continued) Sai Bala Subrahmanyam Figure 11-14 Configuring printer device settingsTroubleshooting Tip: Troubleshooting Tip If a PostScript printer seems slow, use the Device Settings tab in that printer’s properties to set up virtual memory for the printer Sai Bala SubrahmanyamConfiguring a Nonlocal or Internet Printer: Configuring a Nonlocal or Internet Printer You can set up and even manage a printer that is not physically connected to the server by: Starting the Add Printer Wizard and selecting to configure a network printer Locating the printer on the network or through the Internet (or specifying the printer’s name or URL) Completing the steps as prompted by the Wizard Sai Bala SubrahmanyamConfiguring a Printer by IP and MAC Addresses: Configuring a Printer by IP and MAC Addresses Configure print server cards by using the IP and MAC address to identify the card: Start the Add Printer Wizard Select to install a local printer without PnP Select to create a new port and use the Standard TCP/IP Port option Specify the print server’s IP address Specify the type of print server Complete the remaining steps under the guidance of the Wizard Sai Bala SubrahmanyamConfiguring a Printer by IP and MAC Addresses (continued): Configuring a Printer by IP and MAC Addresses (continued) Sai Bala Subrahmanyam Figure 11-15 Configuring a TCP/IP portConfiguring a Printer by IP and MAC Addresses (continued): Configuring a Printer by IP and MAC Addresses (continued) Sai Bala Subrahmanyam Figure 11-16 The new TCP/IP portDesign Tip: Design Tip If you are configuring a print server that is a mainframe, UNIX, or other similar computer, use the LPR print monitor in the setup Sai Bala SubrahmanyamManaging a Printer: Managing a Printer You can manage a printer in the Printers folder through its icon Example activities that you can manage are: To make a printer the default To pause a printer To set printing preferences To configure the printer’s properties Sai Bala SubrahmanyamManaging a Printer (continued): Managing a Printer (continued) Sai Bala Subrahmanyam Figure 11-17 Designating a default printerManaging Print Documents: Managing Print Documents You can also manage documents sent to a printer by opening that printer’s icon in the Printers folder Example activities that you can manage include: Pausing a print job Restarting a print job Viewing the properties of a print job (including resetting the priority of the hob) Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip If a printer malfunctions, move the jobs in its queue to another printer by one of two methods: Move the jobs to a port already configured for multiple or pooled printers connected to the same computer Add a new port on the broken printer’s setup that points to a printer that is working Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip If all printing stops or hangs on computers connected to a Windows 2000 print server, try stopping and starting the Print Spooler service (but warn users that their print jobs will be deleted) Sai Bala SubrahmanyamChapter Summary: Chapter Summary A Windows 2000 Server can be turned into a print server to manage printers connected to it and shared printers connected to other computers Learn how to use the appropriate print monitors and data types for specific kinds of printer setups Sai Bala SubrahmanyamChapter Summary: Chapter Summary A new printer can be installed using the Add/Remove Hardware Wizard, the Add Printer Wizard, or both There are a full range of printer properties that you can configure for all kinds of purposes such spooling parameters, printer drivers, printer ports, print monitors, data types, printer scheduling, security, and many others Sai Bala SubrahmanyamChapter Summary: Chapter Summary Windows 2000 Server includes options to manage a printer, such as pausing it, as well as options to manage documents, such as pausing or deleting documents Sai Bala Subrahmanyam Network Monitoring and Tuning : Network Monitoring and Tuning Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Establish network benchmarks Install Network Monitor Driver Install, configure, and use Network Monitor, including setting up filters and triggers Install and configure SNMP service Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Use System Monitor to monitor a network Troubleshoot and tune a network Sai Bala SubrahmanyamNetwork Monitoring: Network Monitoring Networks are dynamic with changing patterns of activity and rapid growth toward more high-bandwidth demand Monitoring a network is important to be able to distinguish between problems due to the network and problems due to servers connected to the network Sai Bala SubrahmanyamNetwork Benchmarks: Network Benchmarks Plan to obtain network benchmarks to help with problem diagnosis and planning, such as: Slow, average, and peak network activity in relation to the work patterns of an organization Network activity that is related to specific protocols Network activity that is related to specific servers and host computers Sai Bala SubrahmanyamNetwork Benchmarks (continued): Network Benchmarks (continued) Network activity that is related to workstations Network activity on individual subnets or portions of a larger network Network traffic related to WAN transmissions Network traffic created by particular software Sai Bala SubrahmanyamWindows 2000 Network Monitoring Tools: Windows 2000 Network Monitoring Tools Network monitoring and management tools in Windows 2000 include: Network Monitor Driver Network Monitor SNMP service System Monitor Sai Bala Subrahmanyam You do not have the permission to view this presentation. In order to view it, please contact the author of the presentation.
Sverver Administrator Part 3 networking tool (1) baluglow Download Post to : URL : Related Presentations : Share Add to Flag Embed Email Send to Blogs and Networks Add to Channel Uploaded from authorPOINT lite Insert YouTube videos in PowerPont slides with aS Desktop Copy embed code: (To copy code, click on the text box) Embed: URL: Thumbnail: WordPress Embed Customize Embed The presentation is successfully added In Your Favorites. Views: 14 Category: Entertainment License: All Rights Reserved Like it (0) Dislike it (0) Added: December 23, 2011 This Presentation is Public Favorites: 0 Presentation Description Sverver Administrator Part 3 networking tool (1) by Sai Bala subrahmanyam Comments Posting comment... Premium member Presentation Transcript Configuring Server Storage, Backup, and Performance Options : Configuring Server Storage, Backup, and Performance Options Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Explain basic and dynamic disks Partition, format, and manage basic disks and convert them to dynamic disks Create and manage simple, spanned, striped, RAID-5, and mirrored dynamic disks Mount a drive Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Manage removable storage and set up media pools Perform disk backups Tune server performance Configure Windows 2000 Server for an uninterruptible power supply (UPS) Sai Bala SubrahmanyamBasic Disk: Basic Disk Uses traditional disk management techniques for partitions and formatting Supports primary and extended partitions, RAID 0, RAID1 and RAID5 Default disk structure for a new 2000 server install and when upgrading any previous versions of NT Server Offered for backward compatibility with earlier versions of Windows and MS-DOS Sai Bala SubrahmanyamDisk Partitioning: Disk Partitioning Process of dividing a disk into sections (partitions) and formatting those sections into tracks and sectors for a file system Each partition is assigned a drive letter (C:, D:, etc.) in Windows Places a master boot record and partition table at the beginning of the disk Sai Bala SubrahmanyamPartitioning Tip: Partitioning Tip When you partition a basic disk, leave 1 MB free for workspace which is necessary to later convert to a dynamic disk Sai Bala SubrahmanyamPrimary and Extended Partitions: Primary and Extended Partitions Primary partition: A partition or portion of a hard disk that is bootable Disks must have at least one primary partition and can have up to four Extended Partition: Linked to a primary partition in order to increase the available disk space Disks can have only one extended partition, but the extended partition can have many logical drive letters (C:, D:, etc.) Used mainly to overcome the limit of 4 primary partitions per disk Sai Bala SubrahmanyamBoot and System Partitions: Boot and System Partitions Boot partition: A partition that holds the Windows 2000 Server system files (the WINNT folder) System partition: A partition that contains boot files, such as Boot.ini and Ntldr in Windows 2000 Server Sai Bala SubrahmanyamViewing the System and Boot Partitions: Viewing the System and Boot Partitions Sai Bala Subrahmanyam Figure 7-3 System and boot partitionsFormatting Using the Disk Management Tool: Formatting Using the Disk Management Tool Sai Bala Subrahmanyam Figure 7-4 Formatting a partitionFormatting Tips : Formatting Tips When you format a partition, avoid using the quick format option, because it does not check for bad sectors during the format After you partition and format a disk, be sure to update the emergency repair disk to reflect your change Sai Bala SubrahmanyamVolume and Stripe Sets: Volume and Stripe Sets Volume set: Two or more formatted basic disk partitions that are combined to look like one partition with a single drive letter Stripe set: Two or more basic disks set up so that files are striped for RAID0 or RAID5. Sai Bala Subrahmanyam Converting a Basic Disk to a Dynamic Disk: Converting a Basic Disk to a Dynamic Disk To convert a disk: Right-click on the basic disk (not on a partition) to convert Click Upgrade to Dynamic Disk Sai Bala SubrahmanyamConverting a Dynamic Disk to a Basic Disk: Converting a Dynamic Disk to a Basic Disk To convert back to a basic disk: Back up the dynamic disk Delete the dynamic disk volume Click the disk, click the Action menu, and click Restore Basic Disk Partition and format the disk Sai Bala SubrahmanyamDynamic Disks: Dynamic Disks Dynamic disk: In Windows 2000 Server, a disk that does not use traditional partitioning There is no restriction to the number of volumes that can be set up on one disk You can extend volumes onto other physical disks if more space is needed Dynamic disks are only compatible with Windows 2000. Sai Bala SubrahmanyamDynamic Disks (continued): Dynamic Disks (continued) Dynamic disks support: Spanned volumes and volume extensions Up to 32 disks in one spanned volume RAID levels 0, 1, and 5 FAT16, FAT32, and NTFS Reactivation if they go off line Sai Bala SubrahmanyamSimple Volume: Simple Volume Simple volume: A portion of a single disk or an entire single disk that is has been converted to a dynamic disk and formatted. A simple volume is not fault tolerant. Sai Bala SubrahmanyamSpanned Volume: Spanned Volume Spanned volume: Two or more sections of one or more Windows 2000 dynamic disks that are combined to appear as one disk. A spanned volume can span any part of 2 to 32 disks Sai Bala SubrahmanyamSpanned Volume (continued): Spanned Volume (continued) Sai Bala Subrahmanyam Figure 7-5 Spanned volume One drive letterDesign Tip: Design Tip In a spanned volume if one disk fails, the entire volume is inaccessible. If a portion of a volume is deleted, such as one disk, the entire disk set is deleted. For these reasons, avoid placing mission-critical data and applications on a spanned volume. Sai Bala SubrahmanyamStriped Volume: Striped Volume Striped volume: Two or more dynamic disks (or equal portions of those disks) that use striping so that files are spread in blocks across the disks Also known as RAID level 0 Striping requires at least 2 disks (or equal portions of disks) and can include as many as 32. Striping equalizes the disk load, extends the life of disks, and increases disk performance Sai Bala SubrahmanyamStriped Volume Layout: Striped Volume Layout Sai Bala Subrahmanyam Figure 7-6 Disks in a striped volume Writing a 720KB file to a Striped Volume that spans 5 disksStriped Volumes: Striped Volumes If one or more disks in a striped volume fail, the data will be inaccessible. Frequently back up a striped volume so you do not lose data if a disk failure occurs. Sai Bala SubrahmanyamRAID-5 Volume: RAID-5 Volume RAID-5 volume: Three or more dynamic disks (or equal portions of those disks) that use provide fault tolerance through disk striping and creating parity blocks for data recovery A RAID-5 volume is not as fast at writing because it must calculate and write the parity block for each row RAID-5 is fault tolerant. If a single drive in the volume fails, the parity information can be used to regenerate the lost data. Sai Bala SubrahmanyamRAID-5 Layout: RAID-5 Layout Sai Bala Subrahmanyam Figure 7-7 Disks in a RAID-5 volumeDisk Spaced Used for Parity: Disk Spaced Used for Parity The amount of disk space used for parity is 1/n where n equals the number of physical disks When you plan disk capacity, take into account the amount of space (for parity) that cannot be used for production data Sai Bala SubrahmanyamMirrored Volume: Mirrored Volume Mirrored volume: Two dynamic disks that are set up so that data on one disk is stored (mirrored) on a redundant disk Disk read performance is the same as reading from a simple volume, but the disk write time is increased in order to write on both disks Sai Bala SubrahmanyamDesign Caution: Design Caution The system and boot partitions can be on a simple, spanned, or mirrored volume, but not on a striped or RAID-5 volume (unless hardware RAID is used) Sai Bala SubrahmanyamDisk Performance and Repair: Disk Performance and Repair You can extend the life of disks by using striped or RAID-5 volumes because read/write requests are spread across all disks. Regularly defragment disks to extend disk life and increase performance Sai Bala SubrahmanyamUsing the Disk Defragmenter: Using the Disk Defragmenter Sai Bala Subrahmanyam Figure 7-8 Analyzing a disk’s fragmentationTroubleshooting Tip: Troubleshooting Tip Ensure disk integrity and repair disk problems by using the “checkdisk” utility, called chkdsk Chkdsk can check FAT16, FAT32, and NTFS formatted volumes Sai Bala SubrahmanyamChkdsk: Chkdsk In NTFS, chkdsk can check: Files Folders Indexes Security descriptors User files Disk allocation units If there is physical damage on a disk, use chkdsk with the /r switch to identify bad sectors Sai Bala SubrahmanyamMounted Drive: Mounted Drive Windows 2000 offers the ability to access a physical disk, CD-ROM, or Zip drive through a folder that appears on another drive letter. Using mounted drives enables you to add new drives without allocating drive letters. Sai Bala SubrahmanyamDisk Security Through Backup: Disk Security Through Backup Try to backup a server to a tape drive attached to the server. This provides several advantages: No load on the network while backing up If each server has its own tape drive, you can backup other servers if one tape drive fails The registry can only be backed up locally (without 3 rd party backup tools) Sai Bala SubrahmanyamWindows 2000 Backup Options: Windows 2000 Backup Options Windows 2000 Server backup options: Normal – a full backup – backs up everything selected in the backup job (whether changed or not) and removes the archive attribute. Incremental – a partial backup – only backs up files that have changed since the last full backup or incremental backup and removes the archive attribute. Differential – a partial backup – backs up all files that have changed since the last full backup (even if they have not changed since the last differential backup) and does not remove the archive attribute. Sai Bala SubrahmanyamWindows 2000 Backup Options: Windows 2000 Backup Options Copy – backs up only the files or directories selected and leaves the archive attribute unchanged Daily – backs up only the files that have changed on the day the backup is performed and leaves the archive attribute unchanged Sai Bala SubrahmanyamStarting a Backup : Starting a Backup Sai Bala Subrahmanyam Figure 7-10 Manually starting a backupScheduling Backups: Scheduling Backups Sai Bala Subrahmanyam For regularly performed backups, use the scheduling capability in the Backup tool – which actually employs the Scheduled Tasks toolConfiguring a Scheduled Backup: Configuring a Scheduled Backup Sai Bala Subrahmanyam Figure 7-11 Scheduling a backup jobPerforming a Restore: Performing a Restore Perform a restore by using the Backup tool and clicking the Restore tab You can restore all files and folders from a backup job or only those you select specifically Sai Bala SubrahmanyamConfiguring Application Performance: Configuring Application Performance Windows 2000 can be optimized for applications or background services Use Applications performance when a system will be used by someone logged into the console Use background services when a system will fulfill requests for services on the network (file and print) Application performance is tuned by opening the Control Panel System icon, accessing the Advanced tab, and clicking the Performance Options button Sai Bala SubrahmanyamConfiguring Virtual Memory: Configuring Virtual Memory Virtual memory is a file (called the page file) stored on the hard disk and is used to store programs and data when there is little available RAM. The general formula for configuring a page file is to size it to match the amount of RAM times 1.5 For performance, you should tune a server by configuring the page file to be stored on a hard disk separate from the disk which contains the operating system. Virtual memory settings can be found under Control Panel, System, Advanced, Performance Options. Sai Bala SubrahmanyamPage File Configuration: Page File Configuration Sai Bala Subrahmanyam Figure 7-12 Configuring virtual memoryConfiguring Server RAM: Configuring Server RAM Sai Bala SubrahmanyamConfiguring Server RAM (continued): Configuring Server RAM (continued) Sai Bala Subrahmanyam These options are found in the properties of File and Printer Sharing.Configuring RAM Allocation: Configuring RAM Allocation Sai Bala Subrahmanyam Figure 7-13 Adjusting memory allocationChapter Summary: Chapter Summary Windows 2000 Server supports two kinds of disks, basic and dynamic Basic disks are for backward compatibility and dynamic disks offer comprehensive disk management Windows 2000 Server supports many kinds of removable storage such as tapes, CD-ROMs, CD-RWs, Zip, and Jaz drives Sai Bala SubrahmanyamChapter Summary: Chapter Summary Removable storage is managed through libraries and media pools Server backups are handled through the Backup tool which offers several backup alternatives Tune your server right away for running applications, virtual memory, and memory used for network connectivity Sai Bala Subrahmanyam Managing Accounts and Client Connectivity : Managing Accounts and Client Connectivity Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Establish account naming conventions Configure account security policies Create and manage accounts, including setting up a new account, configuring account properties, delegating account management, and renaming, disabling, and deleting an account Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Create local user profiles, roaming profiles, and mandatory profiles Configure client network operating systems to access Windows 2000 Server, and install client operating systems through Remote Installation Services Sai Bala SubrahmanyamAccount Policies: Account Policies Account policies: security measures set up in a group policy, such as for a domain or local computer Account policies particularly focus on: Password security Account lockout Kerberos security Use the Group Policy MMC snap-in to set up account policies Sai Bala SubrahmanyamSetting Account Policies: Setting Account Policies Sai Bala Subrahmanyam Figure 8-1 Account policiesPassword Policy Options: Password Policy Options Enforce password history : Enables you to require users to choose new passwords when they make a password change, because the system can remember the previously used passwords Maximum password age : Permits you to set the maximum time allowed until a password expires Minimum password age : Permits you to specify that a password must be used a minimum amount of time before it can be changed Sai Bala SubrahmanyamPassword Policy Options (continued): Password Policy Options (continued) Minimum password length : Enables you to require that passwords are a minimum length Passwords must meet complexity requirements : Requires passwords to be complex (use upper and lowercase letters, numbers and special characters; cannot contain the user name, etc.) Sai Bala SubrahmanyamAccount Lockout Policy Options: Account Lockout Policy Options Account lockout duration : Permits you to specify in minutes how long the system will keep an account locked out after reaching the specified number of unsuccessful log on attempts Account lockout threshold : Enables you to set a limit to the number of unsuccessful tries to log onto an account Sai Bala SubrahmanyamAccount Lockout Policy Options (continued): Account Lockout Policy Options (continued) Reset account lockout count after : Enables you to specify the number of minutes between two consecutive unsuccessful logon attempts to make sure that the account will not be locked out too soon Sai Bala SubrahmanyamKerberos Policy Options : Kerberos Policy Options Enforce user logon restrictions : Turns on Kerberos security, which is the default Maximum lifetime for a service ticket : Determines the maximum amount of time in minutes that a service ticket can be used to continually access a particular service in one service session Maximum lifetime for a user ticket : Determines the maximum amount of time in hours that a ticket can be used in one continuous session for access to a computer or domain Sai Bala SubrahmanyamCreating Accounts: Creating Accounts On a member server (not a domain controller) use the Local Users and Groups MMC snap-in to create accounts On a domain controller, use the Active Directory Users and Computers MMC snap-in to create accounts in the domain. Sai Bala SubrahmanyamCreating an OU: Creating an OU To create an OU: Click the container in which to create the OU, such as the domain or another OU Click the Create a new organizational unit in the current container button Enter the name of the OU Click OK Sai Bala SubrahmanyamDelegating Authority in an OU: Delegating Authority in an OU To delegate authority: Right-click the OU and click Delegate control Click Next after the wizard starts Click the Add button and specify the accounts, groups, or computers to have the control Click OK and click Next Select the tasks to delegate and click Next Click Finish Sai Bala SubrahmanyamDelegation of Control Options: Delegation of Control Options Sai Bala SubrahmanyamUsing Find to Locate an Account: Using Find to Locate an Account To locate a particular account in order to maintain it: Right-click the domain Click Find Enter the username or the account holder’s name Click Find Now Sai Bala SubrahmanyamAccount Maintenance Activities: Account Maintenance Activities Typical account maintenance activities include: Disabling an account, such as when a user takes a leave of absence Enabling an account, such as when a user returns Renaming an account, such as when one user leaves and another user is hired into the same position Moving an account, such as into a different OU Sai Bala SubrahmanyamAccount Maintenance Activities (continued): Account Maintenance Activities (continued) Typical account maintenance activities include (continued): Deleting an account, such as when a user leaves the organization and there will be no replacement Resetting a password for users who do not remember theirs Account auditing to track certain kinds of activity performed by an account holder Sai Bala SubrahmanyamSample Events that Can be Audited for an Account: Sample Events that Can be Audited for an Account Logon and logoff activity Account modifications through account management tools Accesses to files and other objects (for files, folders, and objects that are set up to be audited) Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip Management will usually want to audit EVERYTHING Use account auditing sparingly because every audited event is written to the Security log. A server can be overloaded by devoting too much of its resources to auditing. Sai Bala SubrahmanyamUser Profiles: User Profiles What is a profile? Windows maintains a group of settings for each individual user that logs into the system. This group of settings is known as a user “profile” What is included in a profile? Most anything that users may wish to set independently from other users (favorites, desktop wallpaper, email settings, web browser home page, etc.) Sai Bala SubrahmanyamUser Profiles: User Profiles Where are profiles stored? Under the “Documents and Settings” folder on the boot partition. Each time a new user logs in, a new profile is created for them based on the “Default” user profile. Sai Bala SubrahmanyamLocal vs. Roaming User Profile: Local vs. Roaming User Profile Local user profile: a user profile that is stored locally on the boot partition under “Documents and Settings”. Since the profile is local, it will only work on the machine on which it is created. Roaming user profile: a user profile that is copied to a network server so that it can be downloaded to each workstation where the user logs on. This allows the profile to “roam” with the user. Sai Bala SubrahmanyamMandatory User Profile: Mandatory User Profile Mandatory User Profile: A user profile set up by the server administrator that is loaded from the server to the client each time the user logs on. Changes that the user makes to the profile are not saved. Used to lock down the desktop and prevent users from customizing it. Sai Bala SubrahmanyamAssociating a Profile with an Account: Associating a Profile with an Account Sai Bala Subrahmanyam Figure 8-9 Setting a roaming profile in an account’s propertiesActive Directory Support for Non-Windows 2000 Clients: Active Directory Support for Non-Windows 2000 Clients Plan to install Directory Service Client (DSClient) on Windows 95 and Windows 98 clients DSClient enables non-Windows 2000 Clients for: Kerberos authentication Ability to view and search objects published in the Windows 2000 Active Directory Access a Windows 2000 Distributed File System The Directory Service client can be found on the Windows 2000 Server CD-ROM Sai Bala SubrahmanyamSetting Up Client Desktops Using Group Policy and Security Policy: Setting Up Client Desktops Using Group Policy and Security Policy Use the Group Policy snap-in to set up group policies that govern clients Group Policy can only be applied to Windows 2000 or later clients. The System Policy Editor (Poledit.exe) can be used to configure system policies for Windows NT and Win9x. Sai Bala SubrahmanyamRemote Installation Services: Remote Installation Services Remote Installation Services (RIS): Services installed on a Windows 2000 Server that enable you to remotely install Windows 2000 Professional on one or more client computers Sai Bala SubrahmanyamRIS Pre-Installation Steps: RIS Pre-Installation Steps Purchase the appropriate number of Windows 2000 Professional licenses Make sure the Active Directory is implemented and that there are DHCP and DNS servers on the network Create a Windows 2000 Professional operating system image on a standard PC Create user accounts for the Windows 2000 Professional clients (called pre-staging the clients). This prevents unauthorized users from using Windows 2000 licenses. Sai Bala SubrahmanyamRIS Installation Steps: RIS Installation Steps Installing RIS is a two stage process: First install RIS using the Control Panel Add/Remove Programs tool Configure RIS from the Add/Remove Programs tool Sai Bala SubrahmanyamInstalling RIS on the Client: Installing RIS on the Client Install in one of two ways: Using a computer that has a boot-enabled PXE compliant NIC Creating a remote boot disk Both methods use the Preboot eXecution Environment (PXE):Services that enable a prospective client to obtain an IP address and to connect to a RIS server in order to install Windows 2000 Professional Sai Bala SubrahmanyamInstalling RIS on the Client: Installing RIS on the Client After booting and contacting the RIS server, the user is presented with a menu to select which RIS image to load. Sai Bala SubrahmanyamChapter Summary: Chapter Summary Preparing a server and domain entail configuring accounts and configuring client computers Before configuring accounts, consult with members of your organization about naming standards Set up account policies before configuring accounts Sai Bala SubrahmanyamChapter Summary: Chapter Summary After accounts are created, use the account properties capability to supplement or modify parameters for the accounts, such as time of day access restrictions Configure client computers to access Windows 2000 Server, such as installing DSClient Sai Bala SubrahmanyamChapter Summary: Chapter Summary Manage clients by setting up group policies or system policies Use RIS to install multiple Windows 2000 Professional clients in order to reduce your TCO Sai Bala Subrahmanyam Installing and Managing Printers : Installing and Managing Printers Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Explain and apply the fundamentals of Windows 2000 Server printing Install local, network, and Internet printing services in Windows 2000 Server Configure printing services for all types of needs Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Manage printers and print services Solve common printing problems Sai Bala SubrahmanyamBasic Concepts: Basic Concepts Print server: A network computer or server device that connects printers to the network for sharing and that receives and processes print requests from print clients Print client: A client computer that generates a print job Sai Bala SubrahmanyamStandalone Print Server Devices: Standalone Print Server Devices Sai Bala Subrahmanyam Figure 11-1 Print server devicesBasic Concepts (continued): Basic Concepts (continued) Spooling: A process working in the background to enable several print files to go to a single printer. Each file is placed in temporary storage until its turn comes to be printed. Printer driver: A file containing information needed to control a specific printer, implementing customized printer control codes, font, and style information. Sai Bala SubrahmanyamPrinting Stages: Printing Stages Sai Bala Subrahmanyam Figure 11-2 Printing stagesHow Network Printing Works: How Network Printing Works A software application creates a print file, communicating with the graphics device interface (GDI) as it creates the file to include printer control information The print file is temporarily spooled at the client The remote print provider at the client makes a remote procedure call to the network print server Sai Bala SubrahmanyamHow Network Printing Works (continued): How Network Printing Works (continued) The print file is transmitted to the Server service on the Windows 2000 Server print server At the print server, the “router” (Print Spool service) directs the print file to the print provider The print provider stores the file in the print server’s spooler Sai Bala SubrahmanyamHow Network Printing Works (continued): How Network Printing Works (continued) While in the spooler, the print provider works with the print processor to format the printing for the correct data type (such as TEXT or RAW) When the file is completely formatted the print monitor sends the print file from the spooler to the printer Sai Bala SubrahmanyamDesign Tip: Design Tip When you plan disk space for a Windows 2000 Server, take into account the type of printing at that server and the number of users. For example, if there are times when 50 users are sending 1 MB print files simultaneously, then you need to plan on at least 50 MB of disk space just for the print spooler. Sai Bala SubrahmanyamHow Internet Printing Works: How Internet Printing Works Sai Bala Subrahmanyam When an application generates a print file, the file is processed through the client’s browser, which works with the GDI The browser makes a remote procedure call (using the HTTP and IPP protocols) to the Internet Information Services (IIS) in Windows 2000 Server The IIS transfers the print file to the regular Windows 2000 Print Spool servicePrint Job Data Type: Print Job Data Type Data type: The way in which information is formatted in a print file, such as with no formatting, text-type formatting, formatting for Windows-based systems, and formatting for postscript systems Sai Bala SubrahmanyamData Types: Data Types RAW: Used with MS-DOS, Windows 3.x, and UNIX RAW with FF appended: Puts a form feed code at the end of the print file RAW with FF auto: Checks for a form feed code at the end of the print file and inserts a form feed if one is not present Sai Bala SubrahmanyamData Types: Data Types TEXT: Used for ANSI-type files, such as from older word processors and text editors Enhanced Metafile (EMF): Used for Windows-based print files that use GDI at the client PSCRIPT1: Used to translate Macintosh Postscript formatted files to non-Postscript Sai Bala SubrahmanyamPrint Monitors: Print Monitors Local port : sends print jobs to a local port, such as LPT1 or COM1 and to a regular file Standard TCP/IP Port: sends print jobs to IP print servers, such as an HP print server card LPR : used to coordinate printing with LPR compatible UNIX, DEC, and IBM mainframe and minicomputers Sai Bala SubrahmanyamPrint Monitors (continued): Print Monitors (continued) Hewlett-Packard Network Port : used for older HP-type printers with print server cards that do not support TCP/IP but that do support printing through the DLC protocol AppleTalk Printing Devices Port: used for Macintosh clients that communicate via the AppleTalk protocol to PostScript LaserWriter-type printers Sai Bala SubrahmanyamPrint Monitors (continued): Print Monitors (continued) Pjlmon.dll and Usbmon.dll: monitors that you install manually and that are used for bidirectional printers and printers attached to USB ports Sai Bala SubrahmanyamWindows 2000 Server Print Monitors: Windows 2000 Server Print Monitors Sai Bala Subrahmanyam Table 11-1 Windows 2000 Server Print MonitorsSample Candidates That Can Host a Shared Printer: Sample Candidates That Can Host a Shared Printer Windows 2000 Server and Professional Windows NT Server and Workstation Windows 98 Windows 95 Sai Bala SubrahmanyamPrinter Sharing: Printer Sharing Sai Bala Subrahmanyam Figure 11-3 Shared network printersPrinter Installation: Printer Installation Depending on the level of Plug and Play sophistication, a printer can be installed in one of several ways, such as: Automatic or manual detection (or a combination of both) using the Add/Remove Hardware Wizard Automatic or manual detection (or a combination of both) using the Add Printer Wizard Sai Bala SubrahmanyamDetecting a Newly Connected Printer: Detecting a Newly Connected Printer Sai Bala Subrahmanyam Figure 11-4 Add/Remove Hardware Wizard detecting the printerConfiguring a Local Printer via the Add Printer Wizard: Configuring a Local Printer via the Add Printer Wizard Sai Bala Subrahmanyam Figure 11-5 Setting up a local printerTroubleshooting Tip: Troubleshooting Tip If a Plug and Play compatible printer is not automatically detected, make sure that the Plug and Play service is started Sai Bala SubrahmanyamConfiguring a Print Monitor: Configuring a Print Monitor During a manual installation process, use the Create a new port radio button to configure a particular print monitor (or configure one later in the printer’s properties) and select from: AppleTalk Printing Devices Hewlett-Packard Network Port Local Port Standard TCP/IP Port Sai Bala SubrahmanyamSelecting the Type of Printer: Selecting the Type of Printer Also during the manual installation process, you can specify the manufacturer and model of printer in order to select the right printer driver Sai Bala SubrahmanyamSelecting the Type of Printer (continued): Selecting the Type of Printer (continued) Sai Bala Subrahmanyam Figure 11-6 Entering the type of printerSpecifying a Printer Name and Printer Share Name: Specifying a Printer Name and Printer Share Name During a manual installation, you can specify a printer name and a printer share name Sai Bala SubrahmanyamEntering a Printer Share Name: Entering a Printer Share Name Sai Bala Subrahmanyam Figure 11-7 Creating a shared printerPrinter and Printer Share Name Guidelines: Printer and Printer Share Name Guidelines Compose names that are easily understood and spelled by those who will use the printer Include a room number, floor, or workstation name to help identify where the printer is located Include descriptive information about the printer, such as the type, manufacturer, or model Sai Bala SubrahmanyamReview of the Setup Parameters: Review of the Setup Parameters When you manually set up a printer, there is the option to review setup parameters Sai Bala SubrahmanyamReview of the Setup Parameters (continued): Review of the Setup Parameters (continued) Sai Bala Subrahmanyam Figure 11-8 Printer setup summaryPrinter Properties: Printer Properties After a printer is set up you can manage the printer’s properties that include: General printer information Printer sharing Printer port setup Printer scheduling and advanced options Security Device settings Sai Bala SubrahmanyamGeneral Printer Properties: General Printer Properties The general printer properties include: The printer name The printer location A descriptive comment about the printer The printer model The printer’s features Sai Bala SubrahmanyamGeneral Printer Properties (continued): General Printer Properties (continued) Sai Bala Subrahmanyam Figure 11-9 Printer Properties General tabSharing Properties: Sharing Properties The sharing tab is used to: Enable or disable sharing Specify the share name Publish the printer in the Active Directory (if the Active Directory is installed) Install additional drivers for clients other than Windows 2000 Sai Bala SubrahmanyamSharing Properties (continued): Sharing Properties (continued) Sai Bala Subrahmanyam Figure 11-10 Configuring printer sharingPort Properties: Port Properties The Ports tab enables you to: Associate a printer with a port Set up printer pooling Enable bidirectional printing Add a new port, such as a print monitor Remove a port Configure a port in terms of timeout parameters (for parallel ports); and port speed, data bits, parity, stop bits, and flow control (for serial ports) Sai Bala SubrahmanyamPrinter Pooling: Printer Pooling Printer pooling: Linking two or more identical printers with one printer setup or printer share Sai Bala SubrahmanyamConfiguring Ports: Configuring Ports Sai Bala Subrahmanyam Figure 11-11 Configuring printer portsTroubleshooting Tip: Troubleshooting Tip When configuring a bidirectional printer, make sure that you use an IEEE 1284 cable and check the BIOS setup to configure the port as bidirectional Sai Bala SubrahmanyamAdvanced Printer Properties: Advanced Printer Properties The printer properties that you can configure on the Advanced tab include: Printer scheduling The printer’s priority Printer spooling Holding mismatched documents Printing spooled documents first Keeping printed documents (after they have printed) Enabling advanced printing features Specifying print processors and data types Configuring the separator page Sai Bala SubrahmanyamAdvanced Printer Properties (continued): Advanced Printer Properties (continued) Sai Bala Subrahmanyam Figure 11-12 Advanced printer propertiesTroubleshooting Tip: Troubleshooting Tip If pages are intermixing from different printouts try selecting the option, Start printing after last page is spooled Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip Use the Hold mismatched documents option to save paper and free the printer when there are users who often send a document formatted for another printer Sai Bala SubrahmanyamSeparator Page files: Separator Page files Sysprint.sep: used for PostScript-only printers Pcl.sep: used to print in Printer Control Language (PCL) for printers that can do either PCL or PostScript Pscript.sep: used to print in PostScript for printers that can do either PCL or PostScript Sai Bala SubrahmanyamSeparator Page Customization Codes: Separator Page Customization Codes Sai Bala Subrahmanyam Table 11-2 Separator Page Customization CodesSeparator Page Customization Codes (continued): Separator Page Customization Codes (continued) Sai Bala SubrahmanyamDesign Tip: Design Tip Use separator and banner pages sparingly because they can add to paper costs Sai Bala SubrahmanyamSecurity Properties: Security Properties The printer Properties Security tab enables you set up: Printer permissions Special permissions Auditing Ownership Sai Bala SubrahmanyamPrinter Share Permissions: Printer Share Permissions Sai Bala Subrahmanyam Table 11-3 Printer Share PermissionsSecurity Properties (continued): Security Properties (continued) Sai Bala Subrahmanyam Figure 11-13 Configuring securityPrinter Events That Can Be Audited: Printer Events That Can Be Audited The successful or failed activities that can be audited are: Print jobs Manage printers Manage documents Read printer share permissions Change printer share permissions Take ownership of the printer Sai Bala SubrahmanyamDesign Tip: Design Tip Periodically use the Security Configuration and Analysis MMC snap-in to review analyze the security and group policies that are set up for printers, accounts, and other objects Sai Bala SubrahmanyamPrinter Device Properties: Printer Device Properties The Device Settings tab in the printer Properties is used to configure: Printer trays Printer memory Paper size Fonts Specialized features of a printer Sai Bala SubrahmanyamPrinter Device Properties (continued): Printer Device Properties (continued) Sai Bala Subrahmanyam Figure 11-14 Configuring printer device settingsTroubleshooting Tip: Troubleshooting Tip If a PostScript printer seems slow, use the Device Settings tab in that printer’s properties to set up virtual memory for the printer Sai Bala SubrahmanyamConfiguring a Nonlocal or Internet Printer: Configuring a Nonlocal or Internet Printer You can set up and even manage a printer that is not physically connected to the server by: Starting the Add Printer Wizard and selecting to configure a network printer Locating the printer on the network or through the Internet (or specifying the printer’s name or URL) Completing the steps as prompted by the Wizard Sai Bala SubrahmanyamConfiguring a Printer by IP and MAC Addresses: Configuring a Printer by IP and MAC Addresses Configure print server cards by using the IP and MAC address to identify the card: Start the Add Printer Wizard Select to install a local printer without PnP Select to create a new port and use the Standard TCP/IP Port option Specify the print server’s IP address Specify the type of print server Complete the remaining steps under the guidance of the Wizard Sai Bala SubrahmanyamConfiguring a Printer by IP and MAC Addresses (continued): Configuring a Printer by IP and MAC Addresses (continued) Sai Bala Subrahmanyam Figure 11-15 Configuring a TCP/IP portConfiguring a Printer by IP and MAC Addresses (continued): Configuring a Printer by IP and MAC Addresses (continued) Sai Bala Subrahmanyam Figure 11-16 The new TCP/IP portDesign Tip: Design Tip If you are configuring a print server that is a mainframe, UNIX, or other similar computer, use the LPR print monitor in the setup Sai Bala SubrahmanyamManaging a Printer: Managing a Printer You can manage a printer in the Printers folder through its icon Example activities that you can manage are: To make a printer the default To pause a printer To set printing preferences To configure the printer’s properties Sai Bala SubrahmanyamManaging a Printer (continued): Managing a Printer (continued) Sai Bala Subrahmanyam Figure 11-17 Designating a default printerManaging Print Documents: Managing Print Documents You can also manage documents sent to a printer by opening that printer’s icon in the Printers folder Example activities that you can manage include: Pausing a print job Restarting a print job Viewing the properties of a print job (including resetting the priority of the hob) Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip If a printer malfunctions, move the jobs in its queue to another printer by one of two methods: Move the jobs to a port already configured for multiple or pooled printers connected to the same computer Add a new port on the broken printer’s setup that points to a printer that is working Sai Bala SubrahmanyamTroubleshooting Tip: Troubleshooting Tip If all printing stops or hangs on computers connected to a Windows 2000 print server, try stopping and starting the Print Spooler service (but warn users that their print jobs will be deleted) Sai Bala SubrahmanyamChapter Summary: Chapter Summary A Windows 2000 Server can be turned into a print server to manage printers connected to it and shared printers connected to other computers Learn how to use the appropriate print monitors and data types for specific kinds of printer setups Sai Bala SubrahmanyamChapter Summary: Chapter Summary A new printer can be installed using the Add/Remove Hardware Wizard, the Add Printer Wizard, or both There are a full range of printer properties that you can configure for all kinds of purposes such spooling parameters, printer drivers, printer ports, print monitors, data types, printer scheduling, security, and many others Sai Bala SubrahmanyamChapter Summary: Chapter Summary Windows 2000 Server includes options to manage a printer, such as pausing it, as well as options to manage documents, such as pausing or deleting documents Sai Bala Subrahmanyam Network Monitoring and Tuning : Network Monitoring and Tuning Sai Bala SubrahmanyamLearning Objectives: Learning Objectives Establish network benchmarks Install Network Monitor Driver Install, configure, and use Network Monitor, including setting up filters and triggers Install and configure SNMP service Sai Bala SubrahmanyamLearning Objectives (continued): Learning Objectives (continued) Use System Monitor to monitor a network Troubleshoot and tune a network Sai Bala SubrahmanyamNetwork Monitoring: Network Monitoring Networks are dynamic with changing patterns of activity and rapid growth toward more high-bandwidth demand Monitoring a network is important to be able to distinguish between problems due to the network and problems due to servers connected to the network Sai Bala SubrahmanyamNetwork Benchmarks: Network Benchmarks Plan to obtain network benchmarks to help with problem diagnosis and planning, such as: Slow, average, and peak network activity in relation to the work patterns of an organization Network activity that is related to specific protocols Network activity that is related to specific servers and host computers Sai Bala SubrahmanyamNetwork Benchmarks (continued): Network Benchmarks (continued) Network activity that is related to workstations Network activity on individual subnets or portions of a larger network Network traffic related to WAN transmissions Network traffic created by particular software Sai Bala SubrahmanyamWindows 2000 Network Monitoring Tools: Windows 2000 Network Monitoring Tools Network monitoring and management tools in Windows 2000 include: Network Monitor Driver Network Monitor SNMP service System Monitor Sai Bala Subrahmanyam