Title: MC108 Lecture 1117
1MC108Lecture 11/17
- Reliability / Availability
2Specific Management Functional Areas
- Security/ Auditing Management
- - who? where? when?
- Configuration Management - what?
- Fault Management sup?
- Performance Management - how?
NOS
DOS
3Reliability and Accessibility- Strategic
Security Areas
Roles Consumer, Provider, 3rd party
Authenticator
- Access (interactive / network)
- Authentication
- Authorization
- Auditing \ Accounting
- Confidentiality (Encryption)
- Integrity
- Non-repudiation
4Enterprise Planning
- Design / Plan / Implement / Test
- Objective/Scope Startup Deployment
- Phase 1 Installation (local / remote)
- Phase 2 Configuration (attended / unattended)
- Phase 3 Test (local / remote)
- Q/A Objectives Ongoing Admin/Management
- Scope Security/Disaster Recovery
- Scope Admin Testing/Auditing Methodologies
- Scope Security Audit/Accounting
5Building Organization Property (folders),
People
- Build roots (DNS zones, Root Directories, File
Systems) separating Ps - Store system software, applications software,
data, system data (\profiles) separately. Use
defaults where appropriate. - Limit directory width and depth
- Using simple, universal naming conventions
6Tools - HOWTOs
CHKDSK /F or (in recovery console) /P
- DIR
- TREE
- ATTRIB
- COPY CON
- TYPE
- redirection using gt
- CD, MD, RD
NTBACKUP XCOPY (incremental BU) MOVE
7Tools Recovery Console
- 1. In Local Policies Security Options, enable
- Recovery Console All floppies
- Recovery Console All auto admin logon
- 2. Create a batch file in system partition named
SETADMIN.TXT as follows - Set AllowWildCards True
- Set AllowAllPaths True
- Set AllowRemovableMedia True
- Run BATCH SETADMIN.TXT from CLI in Recovery
Console mode.
8Is there a \regback?
- Confirm you have ..\system32\repair
- Confirm you do not have ..\systemroot\repair\reg
back - Create ERD through NTBACKUP
- Confirm you do have ..\winnt\repair\regback
9More Tools
- ..\WINNT\NTBtLOG.txt
- SafeMode
- Installation CROM Repair mode
- WINNT32 /cmdcons
- ..\BOOTDISK\makeboot a
- ERD with NTBACKUP
- SYSTEMROOT\REPAIR
- SYSTEMROOT\REPAIR\REGBACK
10Strategic Areas Disaster Recovery
- Security / Disaster Recovery Plan
- system preparation/maintenance/testing
- backup/recovery procedures/testing
- replacement strategies (reconstruction)
- local/interactive (recovery console) policies
- Administration of hardware (physical)
- TUI (CLI), GUI (MMC or HTTP)
- Local (interactive), remote (network)
- delegation of authority (site, domain, OU)
11Organizational Units
12Device Manager Snap-In
13Managing Devices
14NTBackup
15Implementing RAID Systems
16RAID 1 Mirrored Volumes
17RAID 5 - Striped Volumes w/parity
18Recovery - Mirrored Volume Failure
19Group Lab
- All DCs join the wheel modeled as COMDEX.
- One DC updates user accounts with 1000 users, 100
groups. - One DC applies DOMAIN GPO Welcome to COMDEX.
- Each DC creates a unique OU myCompany.
- Create one unique user for each OU.
- Each DC applies unique GPOs to their own OUs
Welcome to My Booth. - Test unique logons for appropriate Welcomes.
20To be continued
21Namespace
22Support for Standard Name Formats
23Relative Distinguished Name
24Generic Microsoft NOS Architecture
Win32 Apps
User Mode
CSS
Object Mngr
I/O Mngr
Win32 Mngr
Security Ref Mntr
Process Mngr
Loc Proc Call Fac
VM Mngr
Microkernel
Kernel Mode
Hardware Abstraction Layer
Hardware Substrate