 |
Managing desktop settings & Control panel
(Performance options)
Select windows classic themes:
1. Right click on Desktop.
2. Click Properties.
3. Select Windows Classic.
4. Click Apply.
5. Click OK.
Customize Start Menu Option:
1. Right click on Taskbar.
2. Click Properties.
3. Uncheck Group Similar Taskbar buttons.
4. Click Start Menu.
5. Click Classic Start Menu.
6. Click Customize.
Check following Advance Start Menu Options:
7. Display Administrative Tools.
8. Display Favorites.
9. Display Log Off.
10. Display Run.
11. Enable Dragging and dropping.
12. Use Personalized Menus.
13. Click Ok.
14. Click Apply.
15. Click Ok.
Customize files, folders and windows.
1. Double-click My Computer.
2. Select Icons.
3. Tools
4. Folder Options
5. General Tab Select followings:
6. Use windows classic folders
7. Open each folder in the same window
8. double click to open an item
9. View
10. Apply to all folders
11. Apply
12. Ok
Disable Windows firewall, automatic Updates and Change Security Center
- Start
- Settings
- Control Panel
- Double-click
- Windows Firewall
- Select Off (not recommended)
- Ok
- Automatic Updates
- Select Turn off automatic updates
- Apply
- Ok
- Resource:
- Change the way Security Center Alerts me
- Uncheck following alert Settings:
- Firewall
- Automatic updates
- Virus protection
- Ok
Disable user switching and enable offline files.
You must have a computer administrator account on a computer that is a member of a workgroup or is stand-alone computer to turn on or turn off the User Fast User Switching feature. Fast User Switching is not available on computers that are members of a network domain.
- Start
- Settings
- Control Panel
- Double-click User Accounts
- Change the way users log on or off
- Uncheck following options from User Accounts:
- Use the Welcome screen
- Use Fast User switching
- Apply Options.
OFFLINE FILES OVERVIEW
You can make network files available offline by sorting shared files on your computer so this can be helpful when you use a portable computer to accomplish most of your work or if your stand-alone computer is frequently disconnected from the network. You can work with offline files the same way you work with files when you’re connected to the network.
When you reconnect to the network, any changes that you made to files while working offline are updated to the network. This process is called synchronization. If you and someone else on the network made changes to the same file, you cane save your version of the file to the network, keep the other version, or save both.
If you share folders on your computer with others on the network, they can work offline with those folders. To protest files in your shared folders, you can specify whether other users can change your documents or just view them. You can also control which shared files users can access offline.
Enable offline files:
Double-click my computer
Tools
Folder Options
Offline files tab
Check Enable offline files
Apply
Ok
6. Sharing and security settings.
Double-click my computer
Tools
Folder options
View
Advance settings:
Uncheck use simple file sharing (recommended)
Apply
Ok
7. Assigning IP address and display network icon in notification area:
Double-click my network places
Right-click
Properties
Right-click on local area connection
Properties
Check following Options from general tab:
Notify me when this connection has limited or No known drug allergies Connectivity
Select internet protocol (tcp/ip)
Properties
Select use the following ip address:
IP address: 192.168.0.1
Subnet mask: 255.255.255.0
Ok
8. Set up hardware profiles for different hardware configuration. At startup, you can choose the profile you want to use.
Hardware profiles provide a way for you to set up and store different hardware configuration. You can set up hardware profiles for different hardware configuration. At startup, you can choose the profile you want to use.
Right-click on my computer
Properties
Hardware Tab
Hardware profiles
Select Profiles 1 (Current) from available hardware profile:
Copy
Copy profiles name to : Home
Ok
Ok
9. Select default operating system at system startup “Mircrosoft Windows XP Professional” or “Micrcosoft Windows Server 2003”
Right-click on My Computer
Properties
Advance Tab
Startup and Recovery:
Settings
Select Default operating system
Uncheck following from system startup:
Time to display list of operating systems:
Time to display recovery options when needed:
Ok
Ok
10. Delete old operating system support files (AUTOEXEC.BAT.CONFIG.SYS 10.SYS, MSDOS.SYS).
Double-click My computer
Tools
Folder Options
View
Select show hidden files and folders
Uncheck following from Advance settings:
Hide extensions for known file types
Hide protected operating system files (recommended)
Apply
Ok
GotoC:\ and delete following files (these files are used for old operating system software)
Auto exec.bat
Config.sys
IO.sys
MSDOS.sys
11. Enable/Disable hiberfile.sys (this file is use for hibernation i.e when we hibernate windows it keep all the open windows, files etc. in hibernate file and when we start windows it shown all the files and windows in the same place.
When your computer hibernates it stores whatever it has in memory on your hard disk and then shuts down. When your computer comes out of hibernation, it returns to its previous state.
o Start
o Settings
o Control panel
o Double-click power options
o Hibernate Tab
o Uncheck enable Hibernation
o Apply
o Ok
12. Remove pagefile.sys form Carotid:/drive or move it to any other drive. Pagefile.sys support RAM it is by default 1 and half of the RAM size.
· Right-click on My computer
· Properties
· Advanced
· Select from Performance:
· Settings
· Advance Tab
· Virtual memory:
· Change
· Select Carotid: form drive
· Custom size:
· Initial size (MB):0
· Maximum size (MB):0
· Set
· Ok
· Apply
· Ok
· Ok
Restart computer to take effect.
· Right-click on my computer
· Properties
· Advance Select Performance
· Settings
· Advance Tab
· Virtual Memory
· Change
· Select D: from drive
· Custom Size:
· Initaial size (MB):100
· Maximum size (MB):300
· Set
· Ok
· Apply
· Ok
· Ok
Restart computer to take effect. After restart the file will more to drive D:/
1. Crate Answering file for XP installation
· Insert Bootable CD into CD ROM
· Right-click on CD ROM icon
· Open
· Double-click XP SP2 support tools
· Double-click Tools
· Double-click Deploy.cab file
· Extract to E:/Unattended folder
· Goto Unattended Folder
· Double.click Setupmgr.exe
· Welcome to Setup Manager
· Next
· New or Existing Answer file
Create New
Modify Existing
Select Create New
Next
Type of Setup
Unattended Setup
Sysprep Setup
Remote installation Service (RIS)
· Select Unattended setup
· Next
· User Interaction
· Select fully automated
· Next User interaction
· Select fully automated
· Next
· Distribution share
· Select Set up form a CD
· Next
· License Agreement
· Check I accept the terms of the License Agreement
· Next
General Settings
Ø Name and Organization
Ø Name: Tariq Abbasi
Ø Organizatino Vs
Ø Next
Display Settings (Use windows default)
Ø Next
Ø Time Zone
Ø Select (GMT=05:00)
Ø Next
Product Key
Ø QW4HD-DQCRG-HM64M-6GJRK-8K83T
Ø Next
Ø Network Settings
Ø Computer Names
Ø Computer Nme: Server
Ø Add
Ø Next
Administrator Password
Password: 123456
Confirm Password 123456
Check encrypt the Administrator password in the answer file
Check when a destination computer starts, automatically log on as administrator
Number of times to log on automatically
Networking components
Select Custom Settins
Select internet Protocol (TCP/IP)
Click properties
Internet Protocol ((TCP/IP)) Properties
Select Use the following IP Address:
IP address: 192.168.0.1
Subnet mask: 255.255.255.0
Ok
Next
Workgroup or Domain
Default selected workgroup and Next
Advanced Settings
Telephony (nill)
Next
Regional Settings
Default English (Unitd States)
Next
Languages
Select Western Europe and United States
Next
Browser and Shell Settings
Default Next
Installation folder
Default A folder named windows
Next
Install Printers
Network Printer name:
Add
Next
Run Once (nil)
Next
Additional Commands (nil)
Finish
Setup Manager
Enter path and file name
E:\Unatteded \winnt.sif
Ok
Completing Setup Manager
Close(X) Cancel
2. Sysprep: (System Preparatin)
It is use for desktop prepation on all other PC’s in network. It is responsible for mini setup on other PC’s in network.
For Example: If my company policy to prepare such type of Desktop on all other PC’s in network i.e (1) Windows (2) Office (3) Coral Draw (4) data Base (5) firewall (6) Antivirus (7) Adobe Acrobat (8) Adobe Photoshop
Then Microsoft gives an option for such conditions, the “sysprep”.
Microsoft say take an image of all above 8 option then this image is restore on all other network PC’s (i.e 500 PC’s)
Requirement for Sysprep:-
a. PC of same company i.e Dell Company
b. Same size of company Hard Disk
c. Use only one partition ie C or D or E
After making answer file (winnt.sif & winnt.bat) then goto E: drive, open unattended folder
- Double-click sysrep.exe
- Ok
- Select Use mini setup
- Reseal
- Read a message i.e regenerate SID
- Ok
- Yes
Now, then system is shut down automatically. Now extra hard disk + floopy is needed at this time and attached with your PC. Then make image of C Drive.
- To image (from image Disk)
- Boot from Hard disk
- Now window SP, mini setup is running
- Setup wizard of XP start
- Next
- Accept
- Next
- Next
- Name: Tariq Abbasi
- Organization: VS
- Next
- Give CD key
- Computer Name : abc
- Password: abc
- Next
- Next
- Typical
- Next
- Next
- Finish
- Restart system automatically
14. Start “server” or “XP” by default
- Right-click My computer.
- Click Properties.
- Click Advanced.
- Click Settings (Startup an Recovery)
- Select “Windows Server 2003,
- Unchek Time to display list of operating systems
- Uncheck Time the display recovery options when needed
- Click ok
- Click ok
To check IP Address of your own PC
· Goto start
· Click run
· Type Cmd
· Click ok
· Type command: ipconfig
· Press Enter and see the detail.
· To Display full config: information
· Type command : ipconfig/all (see the details and MAC address)
Sharing Right
These rights are applicable on ” Users” from Server PC (admin).
For sharing right first users to be created on Server PC.
We can creat users by goto:-
- Right-click My computer
- Click Manage
- Double-click Local User a groups
- Right-click Users
- Click New User
- Enter User Name: user1
- Enter password: user 1
- Confirm password: user 1
- Uncheck User must change password at next logon
- Check User cannot chage password
- Password never expires
- Click Create
Create a new folder named “sharing” on desktop with file in it and share it b:
- Right-click on sharing folder
- Click sharing an Security
- Click share this folder
- Click permissions
- Select Everyone
- Click Allow full control
- Click apply
- Click ok
- Click apply
- Click ok
Now access the server by go through on PC 8.
- Goto Start
- Click run
- Type \\ server
Click ok
Then all the shared folder including “Sharing” folder of Server is viewed, why because all users have same password. It means that Server is accessed through PC8.
Now we want that no use can directly access the server or ther PC of user. But require password. So we set a password from server PC. Then No known drug allergies one can access “sharing” folder without password.
· Right-click on My computer
· Click Manager
· Double-Click Local User and Groups
· Click users
· Right-Click on Administrator
· Click Set password
· Click proceed
· Type new password: 123
· Confirm Password: 123
Click ok
Logoff PC8 and again logon PC8 and access Server run \\server then this time it will need a username Administrator and password 123. after this all the share folder of server is again access able on PC8.
NTFS rights
These rights are applicable on folders of users from Server PC (Admin). First create 5 users on Server PC. Now create a “sharing” folder (full control everyone) and data in it on desktop of server. Now logoff and logon from “user 1” on Server PC.
Access it \\PC3
Then PC 3 is accessed through “user1”, but shared folder data is not open, because the permission is not given to “user1”. Now logoff and logon from admin again.
· Right-click on sharing folder
· Click sharing & Security
· Click permission
· Select Everyone
· Click remove
· Click Add
· Click Advanced
· Click find now
· Click user1
· Click ok
· Click ok
· Click full control
· Click Apply
· Click ok
· Click apply
Click ok
Now again logoff and logon from “user1”. But the folder will not access again. Logoff and logon from admin.
- Right-click on sharing folder
- Click Sharing and Security
- Click security
Now try to remove the administrator of PC3, but it will not removed.
· Click Advanced
· Uncheck Inherit from parent the permission entries
· Click Remove
· Click Apply
· Click ok
Logoff and logon from “user1” but shared folder will not access again, because we remove all type of users+admin permission.
· Logoff and logon from administrator:
· Right-click sharing folder
· Click sharing & Security
· Click Security
· Click add
· Click Advanced
· Click Find Now
· Click user1
· Click ok
· Click Ok
· Click apply
· Click ok
Now logoff and logon from user1. Sharing folder is accessed, but when we access a file data in it, then access is denied. Because we add only user1, not added the administrator.
Logoff and logon from administrator now by following the above steps and the administrator too.
Logoff and logon from user1 now shared folder+file in it both are accessed.
Encryption
Specifies that the contents of file or folder be encrypted. Only the user who encrypts the file or folder can access the content. However, files and folders might be decrypted depending on how they are moved or copied. Encrypted files and folders cannot be compressed.
If administrator shared a folder + file on Desktop on Server PC and set permission to access this folder+file for anyone. Then any user can access this folder+file and user can encrypt this file.
Logon as a administrator and create a folder on D: drive and create a file in it. Now share this folder any set permissions for everyone+add everyone in security tab+check full control for everyone to access this folder+file to change.
Logoff a administrator and logon as a user 1 to encrypt file.
- Right-click file
- Click properties
- Click advance
- Check encrypt contents to secure data
- Click ok
- Click apply
- Check encrypt the file only
- Click ok
- Click ok
After encryption of file the color of file will be changed to “Green” it means that file has been encrypted.
Now logoff as a user and logon as a administrator and try to open shared folder file. This file will not be opened because encrypted file can not be opened by administrator. It means that user work against the policy of administrator. To block user1.
- Right-click on shared folder
- Click sharing and security
- Click security tab
- Click advance
- Select user1 (or everyone)
- Click remove
- Click apply
- Click ok
- Click ok
Now user1 can not access the encrypted shared folder of administrator.
Logon as a administrator and advised the user1 again
14. Remote desktop (to access computer remotely from other computer
With remoter desktop on Windows XP Professional, you can have access to a windows session that is running on your computer when you are at another computer. This means, for example, that you can connect to your work computer from home and have access to all of your applications, files, and network resources as though you were in front of your computer at work.
You can leave programs running at work and when you get home, you can see your desktop at work displayed on your home computer, with the same programs running.
When you connect to your computer at work, remoter desktop automatically locks that computer so no one else can access your applications and files while you are gone.
Remote desktop also allows more that one user to have active sessions on a single computer.
This means that multiple users can leave their applications running and preserve the state of their windows session even while others are logged on.
To use remote desktop, you need the following:
A computer running Windows XP Professional (“remote computer ) with a connection to a local area network or the internet.
A second computer (“home” computer) with access to the local area network via network connection. Modem, or virtual private network (vpn) connection. This computer must have remote desktop connection, formerly called the terminal services client, installed.
Appropriate user accounts and permissions.
· Right-click on my computer
· Select properties
· Remote
· Remote desktop
· Check allow users to connect remotely to this computer (check this above option on both computers)
· Apply
· Ok
· Goto start
· Programs
· Accessories
· Communications
· Remote desktop connections
· Computer (name, vsl)
· Options
· Username: administrator
· Password: 123
· Check save my password
Optional local resources
· Check disk drives
· Check printers
· Serial ports
Connect
Or
Save as
Save on desktop
File name PC2.rdp
Save
Close (X)/cancel
Double-click on PC2.rdp file on desktop
15. Remote assistance (remote assistance access systems remotely through live IP on the internet or computers on LAN.
Remote assistance is a convenient way for friend in another location to connect to your computer from another computer running a compatible operating system, such as Microsoft windows XP.
After your friend is connected, he will be able to view your computer screen and chant online with you in real time about what you both see. With your permission, your friend can even use his or her mouse and key board to work with you on your computer.
NOTES
Both you and your assistant must be using either windows messenger or a MAPI complaint e-mail account such as Microsoft outlook or outlook express.
You and your assistant need to be connected to the internet while using remote assistance.
If windows firewall is turned on, remote assistance will temporarily open firewall ports.
If you are working on a corporate or local area network, firewalls might stop you from using remote assistance, in this case, check with your network administrator before using remote assistance.
· Right-click on my computer
· Select properties
· Remote
· Remote assistance
· Apply
· Ok
· Goto start
· Programs
· Remote assistance
· Clicks invite someone to help you
· Click save invitation as a file (advanced)
· Set the invitation to expire
· Select 30 form combo boxes
· Select days from combo box
· Continue
· Type password: 123
· Confirm password: 123
· Click save invitation
· Select desktop
· File name: PC2. msrcincident
· Save
· Close remote assistance
· (now you can send this file to your remote user or friend through e-mail or any other way_ or
· Right-click on desktop
· Select new
· Select new folder
· Type folder name PC2
· Drag and drop PC2. msrcincident file into folder named PC2
· Right-click on PC2 folder
· Sharing and security
· Sharing tab
· Share this folder
· Check full control
·
· Security tab
· Add
· Advanced
· Find now
· Select everyone
· Ok
· Ok
· Check full control
·
· Apply
· Ok
· Goto other PC (Server)
· Goto start
· Run
· Open:\\VS1
· Ok
· Double-click shared folder PC2
· Copy PC.msrcincident
· Goto desktop
· Past PC2.msrcincident file
· Double-lick PC2.msrcindiden file on desktop
· Type password:123
· Yes
If the other user accepts your invitation by clicking yes then you can access his PC or send messages or files etc to each other.
15. Files and Settings transfer Wizard (FastWiz)
The files and settings transfer wizard helps you move your data files and personal settings from your old computer to your new one, without having to go through much of the same configuration you did with your old computer. For example, you can take your personal display properties, folder and taskbar options, and internet browser and e-mail settings from your old computer and place them on the new one. The wizard will also move specific files or entire folders, such ad my documents, My Pictures, and Favorites. Passwords are not moved with program settings when you use the files and settings transfer wizard. This is a feature of the files and settings transfer wizard that helps to keep your passwords confidential.
We recommend that you install a virus detection program on the new computer before transferring files over from the old computer. This can help protect your new computer form viruses that may be contained in the files transferred over from your old computer.
· Goto Start
· Programs
· Accessories
· System tools
· Files and settings transfer wizard
· Next
· Click old computer
· Next
· Click others
· Click browser
· Select desktop
· Ok
· Next
· Click both files and settings
· Next
· Finish
It will create USMT2.UNC folder on Desktop copy this folder to other PC that you want to deploy settings and follow the following steps:
- Goto start
- Programs
- Accessories
- System tools
- Files and settings transfer wizard
- Next
- Click new computer
- Next
- Click I don’t the need the wizard disk. I have already collected my files and settings from my old computer.
- Click other
- Click browse and give the path of copied folder USMT2.UNC
- Next
16. Quota (the amount of disk space available to a user.)
Ø Organization level
Ø Group level
Ø User level
Organization
In organization level all users can see data i.e. folders and files of each other.
Logon as administrator
Ø Create a folder name org in E: drive
Ø Right-click org folder
Ø Select sharing an Security
Ø Click share this folder
Ø Click Permissions
Ø Check Full Control (for everyone)
Ø Ok
Ø Click Security tab
Ø Add
Ø Advanced
Ø Find now
Ø Select everyone
Ø Ok
Ø Ok
Ø Check full control (for Everyone)
Ø Apply
Ø Ok
Ø Right-click on E: drive
Ø Properties
Ø Click on quota Tab
Ø Check enable quota management
Ø Check deny disk space to users exceeding quota limit
Ø Click limit disk space to 100 MB
Ø Set warning level to 99 MB
Ø Check log event when a user exceeds their quota limit
Ø Check log event when a user exceeds their warning lever
Ø Apply
Ø Ok
Ø Disk quota message ok
Ø Wait for the green light and ok
Now create 5 users
a. Right-Click on my computer
b. Manage
c. Local Users and groups
d. Users
e. Right-click on users
f. Select new user
g. User name: use 1
h. Password: user1
i. Confirm Password: user1
j. Uncheck user must change password at next logon
k. User cannot change password
l. Password never expires
m. Click create
n. Close
(Repeat above a to n step for other 4 users i.e. user2, user3, user4 and user 5)
a. Double click on user1
b. Click profile tab
c. Click connect
d. Select Z driver from combo box
e. Set path To:\\server\org
f. Apply
g. Ok
(repeat above a to g step and set the patient \\server\org for other 4 users i.e user2, user3, user4 and user5)
After creating 5 users and setting their patient logoff administrator and logon as user1
a. Click start
b. Click My computer
c. Now you can see Z drive org on “PC” (Z:)
d. Double-click on Z: drive
e. Right-click
f. Select New
g. Select folder
h. Rename folder to user1
i. Double-click user1 folder
j. Right-click
k. Select new
l. Select text documented
m. Rename Text Document to user1
(Logoff user1 and logon as user2 and repeat above step a to m for user2, user3, user4 &user5)
Group Level
In group level users can see each other data in group but then can’the see data of other group.
Logon as administrator
Double-click
Double-click E: Drive
Double-click org folder
Create 2 folder named g1 and g2 (for group level)
Right-click My computer
Manage
Local users and groups
Select users
Double-click user1
Set path To:\\server\org\g1
Apply
Ok
Double-clik user2
Set path To:\\server\org\g1
Apply
Ok
Double-clik user3
Set path To:\\server\org\g2
Apply
Ok
Double-clik user4
Set path To:\\server\org\g3
Apply
Ok
(User 1 and 2 are in group 1 and then can see each other data and user3 and user 4 are in group 2 and then can see each other data. Group 1 and group 2 can’t see data of each other user 5 can see data of both groups)
Logoff administrator and logon as user1
a. Click-start
b. Click my computer
c. Double-click on Z: Drive
d. Right-click
e. Select new
f. Select Text document
g. Rename text Document to user1
(Logoff user1 and logon as user2 and repeat above step a to m for user3 and user4)
User Level
In user level only the logon user can see data of his own other user cant see.
Logon as administrator
Double-click my computer
Double-click E: Drive
Double-click Org folder
Create 3 folders named mark, sales & acc
(Marketing, sales and account department)
Right-click user1
Profile
Set path To:\\server\org\mark\%username%
“\%username%name of user. It will creat folder named user1 in mark folder.
Apply
Ok
Double-click user2
Profile
Set path To:\\server\org\sales\%username%
Apply
Ok
Double-click user3
Profile
Set path To:\\server\org\acc\%username%
Apply
Ok
Double-click user4
Profile
Set path To:\\server\org\acc\%username%
Apply
Ok
(User1 is working in Marketing department, user2 is working in sales department, user3 and user 4 are working in account department)
Logoff administrator and logon as user1
a. Click start
b. Click my computer
c. Double-click on Z: Drive
d. Right-click
e. Select new
f. Select text document
g. Rename text document to user1
(logoff user1 and logon as user2 and repeat above step a to g for user2, user3 and users4)
Revolvers
1. Local host
2. LM host
3. Net bios
4. Win server
5. DNS server
6. Broadcast
When we ping to any PC on network our requests pass through above sequence i.e (1 to 6) ping Pc3 (when we ping any PC by its name it will gives us IP address of that PC)
Pin Localhost (when we ping Localhost it give us IP of 127.0.0.1. it is used for loopback to check hardware
1. Local host
The host file used to store information on where to fine a node on a computer network. This file maps hostnames to IP address. The hosts file us used as a supplement to (or instead of) the domain name system on networks of varying sized. Unlike DNS, the hosts files us under the control of the local computer’s administrator.
The hosts file has No known drug allergies extension and can be edited using most text editors.
Location of local host
The hosts file is located in different locations in different operating systems and even in different windows versions.
WindowsNT/2000/XP/2003/vista/7: %systemroot%system32/drivers/etc/host is the default location, which may be changed. The actual directory is determined by the registry
/HKEY_LOCAL-MACHINE/SYSTEM/CurrentControlSet\Services\Tepip\parameters\databasepath.
Double-click host and open in notepad and see 127.0.0.1 localhost. 127.0.0.1 resolve FQDN.
Windows 95/98/me:%windir%\
2. LMHOSTS
The LMHOSTS (LAN Manager Hosts) file is used to enable domain name resolution when other methods, e.g WINS, fail.
The file, if it exists, is read as the LMHOSTS setting file. A sample file is provided During today’s visit, windows installations. The sample file contains Documentation for manually configuring the file.
Local of LMHOSTS
Windows NT 4, Windows 2000, Windows XP, vista and windows server 2003
The file is located at C:\windows\system32\drivers\etc\, and a sample file is located at C:\windoes\system32\drivers\etc\lmhosts.sam. if a different install directory was used for the windows files, the file can be located with the path %systemroot%\system32\drivers\etc\.
Open Lmhost.sam in notepad
Goto last and write your won PC IP address.i.e
192.168.0.2 press tab abc
Close the file, save and rename it as
Lmhosts.sam to imhost only
Now ping PC2 then its ping and also ping by abc
Ping abc (abc is at LM host)
3. NetBIOS name eache
The Net bios name each contains every Netbios name that was recently associated with an IP address. This local cache helps reduce network traffic by eliminating the need for broadcasting or WINS queries, it can sampling start communicating with the lost.
Right-click on my network places
Click properties
Righ-click local area connection
Click properties
Click internet protocol (TCP/IP)
Click properties
Click obtain an IP address automatically
Click ok
Click close
Now “yellow Bar” is running near time bar due to removing IP address of its own PC. Then ping server or other PC then its again ping. Because Microsoft give IP address by self default i.e. 169.254.29.30
Note: No known drug allergies work can be done without IP address on network.
It means, that if Netbios work is done on user own PC or in network then IP address are given by Microsoft by default.
In network if all PC’s are connected through “Cables” only an No known drug allergies IP addresses are given manually, then Microsoft give Ip addresses by self and also give facilities to ping any PC in network.
The local Netbios cache can be viewed with the nbtstate.exe command.
C:\>nbtstat-Carotid
Syntax:
Nbtstat [-a remotename][-A IP address][-c][-n][-r][-R][-s][-S][interval]]
-a (adapter status) lists the remote machine’s name table given its name
-A (adapter status) lists the remote machine’s name table given its IP address
-C (cache) lists the remote name cache including the IP address
-n (names) lists local Netbios names.
-r (resolved) lists names resolved by broadcast and via WINS
-R (Reload) purges and reloads the remote cache name table
-S (sessions) lists session table with the destination IP address
-s (sessions) lists session table converting destination IP
Addresses to host names via the hosts file.
Remote name: remote host machine name.
IP address: dotted decimal representation of the IP address.
Interval: Redisplays selected statistics, pausing interval seconds
Between each display press Ctrl+C to stop redisplaying
Statistics.
ICS (Internet Connection sharing )
Through this we can configure internet in Net cafe/net club. Microsoft says that we can give internet sharing to 253 PC’s Minimum. To use ICS 2 NIC cards are must:
- 1 NIC card for WAN connection and
- 1 NIC car for LAN connection
In network (net club), on server PC (i.e PCI)
1. right-click My Network places.
2. Double-click LAN (local area connection)
3. Click support
Its IP address will 192.168.0.1 (this “1” must be here) no other PC have such like “1” IP address.
LAN CARD
1. Right-click My Network Places
2. Right-click on LAN
3. Click Properties
4. click Internet Protocol (TCP/IP)
5. Click Properties
6. Click Obtain an IP address automatically
7. Click Obtain DNS server address automatically
8. Click ok
9. Click close
Check IP address of WAN card
1. Right-click My Network Places
2. Double-click WAN
3. Click Support
Its IP address 10.0.0.30
WAN CARD
1. Right-click My Network Places
2. Right-click on WAN
3. Click Properties
4. Click internet protocol (TCP/IP)
5. Click properties
6. Click obtain an IP address automatically
7. Click obtain DNS server address automatically
8. Click ok
9. Click close
To share “WAN”:
1. Right click my Network places
2. Right click on WAN
3. Click Properties
4. Click Advanced tab
5. Check allow other network users to connect through this computer’s internet connection.
6. Check allows other network users to control or disable the shared internet connection.
7. Click ok
There or 2 methods are used to share internet from Server PC (i.e PC1) to client PC’s. one NIC card is needed for LAN.
Goto client PC (I.e PC2):
Method 1:
1. Right click My network places
2. Right click LAN
3. click properties
4. Click internet protocol (TCP/IP)
5. Click Obtain an IP address automatically
6. Click obtain DNS server address automatically
7. Click ok
8. click close
Then browse any site it will be accessed.
Method 2:
1. Right click my network places.
2. Right click LAN
3. Click Properties
4. Click internet protocol (TCP/IP)
5. Click Use the following IP address.
6. Enter IP address: 192.168.0.10.
7. Enter Subnet mask: 255.255.255.0
8. Enter Default gateway: 192.168.0.1
9. Click Use the following DNS server addresses.
10. Enter preferred DNS server: 192.168.0.1
11. Click obtain DNS server address automatically
12. Click ok
13. Click close
Then browse any site it will be accessed.
To create a new forest / Domain
1. Click Start, Click Run, and then type depromo to start the active directory installation wizard.
2. Welcome to the active Directory Installation wizard page click next.
3. On the Operating system compatibility page, red the information and then click next.
4. On the Domain controller Type page, Click Domain controller for a new Domain and then click Next.
5. On the Create New Domain page, Click Domain in a new forest, and then click Next.
6. On the New Domain Name page, type the full DNS name for the new domain, and then click Next i.e corvit.com.
Note : On 1 server only 1 domain can be created.
7. On the NETBIOS Domain name page, verify the NETBIOS Name, and then click Next.
8. On the Database and Log Folders page, type the location in which you want to install the database and log folders, or click Browse to choose a location, and then click Next.
Note: Change the Database Folder path i.e E:\NTDS, because if server crash\damage then other path is workable.
9. On the shared System Volume page, type the location in which you want to install the SYSVOL folder, or click Browse to choose a location, and then click Next.
Note: Change the Log folder path i.e E:\sysvol, to save policies on other location incase server crash\damage then other path is workable.
10. Optional: on the DNS Registration Diagnostics page, verify if an existing DNS server will be authoritative for this forest or, if necessary, choose to install an configure DNS on this server by clicking install and configure the DNS server on this computer, and set this computer to use this DNS server as its preferred DNS server, and then click Next.
11. On the Permissions page, select one of the following:
Permissions compatible with pre-windows 2000 server operating systems.
Permissions compatible only with windows 2000 or windows server 2003 operating systems, click next
12. On the directory Services Restore Mode Administrator Password page, click next.
Note: Restore password is not necessary. it is used only when we make a backup. This password will be different from other passwords.
13. Review the Summary page, and then click next to begin the installation.
14. On the completing the Active Directory installation wizard, click Finish.
15. You Must restart Windows before the changes made by the active Directory installation wizard take effect, click restart now to restart the computer.
Demote/remove a domain controller
1. On a domain controller, click Start, and then click Run.
2. In Open, type depromo to open the Active Directory Installation wizard.
Welcome to the active Directory Installation Wizard click Next.
3. If you remove active Directory, this computer will become a standalone or domain member server. Click Next.
Remove Active Directory
Indicate whether this is the last domain controller in the domain.
4. Removing Active Directory converts this domain controller to a member server. Or, if this is the last domain controller in the domain, it will become a standalone server. Check This server is the last domain controller in the domain and click next.
Application directory partitions
Applications create these partitions for storing and replicating data.
5. If you want the wizard to remove all partitions from this domain controller, click next.
Confirm Deletion
Removing Active Directory will delete all application apparitions from this domain controller
6. Check Delete all application directory partitions on this domain controller. Click next.
Administrator password
Specify an administrator password. (before deleting domain server, first we resolve the complexity of password.)
7. New Administration Password: 123, confirm password:123 and click next.
Summary
Review and confirm the options you selected.
8. To begin the operation, click next.
(The remove Active Directory from computer process will start.)
9. Finish
10. Restart now
Resolve the complexity of password
Before creating users on domain Server, first we resolve the complexity of password I,e if give error in creating users in domain PC.
Goto start
Program
Administrative tools
Right click on Domain i.e YASSER.com
Properties
Click Group Policy tab
Select Default Domain Policy
Click edit button
Group Policy object editor
Windows settings
Security settings
Account policies
Double click on password policy
Double click password must meet complexity requirements
Select Disabled
Apply
Ok
Double click on minimum password length
Add 0 characters
Apply
Ok
Close all windows
Goto start
Run
Gpupdata
Ok
Create user on Domain PC
1. Click start
2. Programs
3. Administrative Tools
4. Active Directory user and computers
5. Right click on Domain name orvit.com
6. Select new
7. Select new
8. First Name: Yasser
9. Full name: Raja Yasser Nawaz
10. User Logon name: Yasser.
11. Click next
12. Enter password: 123
13. Confirm password: 123
14. Uncheck user must change password at next logon
15. Check user cannot change password
16. Password never expires
17. Click next
18. Finish
To check following Roles are present in Domain
1. Schema Master: The schema master domain controller controls all updates and modifications to the schema. There can be only one schema master in the whole forest.
2. Domain naming master: The domain naming master domain controller controls the addition or removal of domains in the forest. There can be only on domain naming master in the whole forest.
3. Infrastructure master: The infrastructure is responsible for updating references from objects in its domain to objects in other domains. At any one time, there can be only one domain controller acting as the infrastructure master in each domain.
4. Relative ID (RID) Master: The RID master is responsible for processing RID pool requests from all domain controllers in a particular domain. At any one time, there can be only one domain controller acting as the RID master in the domain.
5. PDC Emulator: The PDC emulator is a domain controller that advertises itself as the primary domain controller (PDC) to workstations, member server, and domain controllers that are running earlier versions of windows. For example, if the domain contains computers that are not running Microsoft Windows XP Professional or Microsoft Windows 2000 client software, or if it contains Microsoft Windows NT backup domain controllers, the PDC emulator master acts as a Windows NT PDC. It is also the Domain Master Browser, and it handles password discrepancies. At any on time, there can be only one domain controller acting as the PDC emulator master in each domain in the forest.
6. Global Catalog
7. LDAP
1- Schema Master
Run type MMC & OK
File
Add/remove Snap-in
Add
Schema Master
Add
Close
File
Save
Type file name Shema.msc
Close
2. Domain Naming Master
Start
Programs
Administrative Tools
Active Directory domains and Trusts
Right Click on domain name (corvit.com)
Properties
3. Infrastructure Master
4. Relative ID (RID) Master
5. PDC Emulator
Start
Programs
Administrative tools
Active Directory Users and Computers
Right Click on domain (yasser.com)
Operations Masters
(see RID ,PDC & Infrastructure)
6. Global Catalog
Start
Programs
Administrative Tools
Active Directory sites and Services
Sites
Default First Site Name
Servers
Server (PCI)
Right Click on NTDS Settings
Properties (see Global Catalog)
7. LDAP
Start
Programs
Administrative Tools
DNS
Server
Forward Lookup zone
_msdes.yasser.com
dc
_sites
Default First Site Name
_tep
_idap (see LDAP file)
Add client (window XP) in Domain
Goto PCI (Client)
Right Click on My Network Places
Right Click on LAN
Select TCP/IP
Click on properties
Use the following DNS server addresses:
Preferred DNS server 192.168.0.1 (Server (main PC) IP address)
Ok
Ok
Right click on My Computers
Properties
Computer Name
Change
Select domain
Enter domain Name yasser.com
Ok
Enter user name: administrator (server PC administrator)
Password: mcse2003 (server PC password)
Ok
Ok
Ok
Ok
Restart
Yes
Logon as a member (user) of Domain
User name: user1
Password: user1
Click options
Log on to yasser (domain name)
Ok
Quota and profiling
Right click on E: drive
Properties
Click on quota tab
Check Enable quota management
Check deny disk space to users exceeding quota limit
Click limit disk space to 100 MB
Set warning level to 99 MB
Check log event when a user exceeds their quota limit
Check log event when a user exceeds their warning level
Apply
Ok
Disk quota message ok
Wait for the green light and ok
Double click on E: Drive
Create 3 folder (Home, Roaming & main) in E: Drive
Right click on Home folder
Properties
Permissions
Check full control
Apply
Ok
Click security tab
Advanced
Remove inheritance
Click add
Add everyone
Ok
Full control
Ok
Apply
Ok
Apply
Ok
(follow the above steps for reaming and man folders to apply permissions and security to everyone)
Goto start
Programs
Administrative tools
Active Directory users and computers
Create 3 users
Click yasser.com
Right click on users
Select new
Select user
First name: user1
Full name: user1
User logon name: user1
Password: user1
Confirm password: user1
Uncheck user must change password at next logon
Check user cannot change password
Check password never expires
Next
Finish
(follow the above steps and create other 2 users i.e user2 and user3)
Assigning quota, roaming and Mandatory path to Users
Goto Start
Programs
Administrative Tools
Active Directory Users and Computers
Click yasser.com
Click on users
Double click on user1
Select Profile tab
Profile path:\\server\Roaming\%username%
Select Connect:Zto:\\server\Home\%username% (Home folder is a Data Server)
Apply
Ok
Double click on user2
Select profile tab
Profile path:\\server\man
Select Connect:Zto:\\server\Home\%username% (Home folder is a Data Server)
Apply
Ok
Double click on user3
Select profile tab
Profile path:\\server\Roaming\%username&
Select Connect:Zto:\\server\Home\%username% (Home folder is a Data Server)
Apply
Ok
To check profiling
Right click on My computers
Select Advanced tab
User Profiles
Click Settings
DNS: Web Server + FTP Server
Installation & configuration of Web Server +FTP Server
Web Server: we require IIS and DNS to configure web server.
Enter server 2003 CD into CD-ROM
1. Goto start
2. Click run
3. Type appwiz.cpl
4. Click ok
5. Click Add/Remove windows Components
6. Select Application Server
7. Click Details.
8. Select Internet information service (IIS)
9. Click Details
10. Check internet information serviced Manger (IIS)
11. Check World Wide Web Service
12. Click ok
13. Click ok
14. Click Next (Installation of Web Server Started.)
15. Click finish
FTP Server: we require FTP to configure Web Server
1. Goto Start
2. Click Run
3. Type appwiz.cpl
4. Click ok
5. Click Add/Remove Windows Components
6. Select application Server
7. Clik Details
8. Select Internet Information Services (IIS)
9. Click Details
10. Check File Transfer Protocol (FTP) Service
11. Check World Wide Web Service
12. Click ok
13. Click ok
14. Click Next (installation of FTP Server Started)
15. Click Finish
Note: we can install Web Server + FTP Server on same PC or different PC’s
