Haitham Faisal Portofolio

IT PORTFOLIO PROJECTS

Haitham Faisal IT Engineer 2006 - 2015

MAY 1, 2015

Haitham Faisal IT Engineer 2006 - 2015 Personal Statement: I am an energetic and enthusiastic person who enjoys a challenge and achieving personal goals. My present career aim is to work within IT because I enjoy working with Information systems, I enjoy the environment and I find the work interesting and satisfying. The opportunity to learn new skills and work with new technologies is particularly attractive to me. 1. planning, designing and Implementing Windows Server 2003 Services

and configuring group policies (August 2007) Key phase of this project was designing and implementing Windows 2003 Active Directory. The solution designed and implemented has a domain in a single forest with dual redundant domain controllers The project had multiple phases– planning, designing, testing, implementing and closure with knowledge Transfer. Prepared & submitted a design document detailing the design of Forest, domains, OUs, DNS, DHCP, etc. before starting the execution phase. Objectives:

1- Active Directory was built on a single Forest -domain environment (mansouracollege.com). All computers, users, groups and servers were joined into a single domain. To manage 400 users and groups in the respective department’s tasks were delegated.

2- Domain Name System (DNS) is the name resolution protocol for TCP/IP networks, for mansouracollege zone and making DNS forwarder

3- DHCP Serve When to deploy Dynamic Host Configuration Protocol (DHCP) servers on Mansoura college network, that can automatically provide client computers and other TCP/IP-based network devices with valid IP addresses

4- File and print services were configured, each user had storage allocated on the SAN, and quota limitation was provided using group policies.

5- Group Policy configuration according to Mansoura college needs. 2. Planning and implementing single Microsoft Exchange 2003 October

2007 Exchange 2003 was configured to use the database to reside on the SAN ,mailbox management policies, quota management etc. were

Page 1 of 20

Haitham Faisal IT Engineer 2006 - 2015 configured for automatic cleaning of mailboxes , Recipient update policies were configured to automate configuration on mailboxes. Outlook web access was configured on the front end server to offload SSL encryption and decryption. Messaging Environment was built on MS Exchange server 2003 to ensure high reliability Centralized management, individual users were configured with mailboxes with quota and mailbox management policies. A comprehensive backup plan was designed to ensure business continuity and recover from disaster situations. Objectives: 1-Deployment of MS Exchange 2003 based messaging solution for 400 Users. 2-Implementing Outlook Web Access with Exchange Server 2003 Implementing RPC over HTTPS in Exchange Server 2003 environment 3. Migrating file server 2003 to Intel® Entry Storage System SS4200-E

December 2007 The Intel® Entry Storage System SS4200-E is a complete hardware and software Network Attached Storage (NAS) solution that instantly adds storage capacity to small business, small office/home office (SOHO), and home networks. Powered by software from EMC*, the worldwide leader in Information Management, the SS4200-E offers an intuitive user interface and an easy four-step setup process. Out-of-the-box RAID and Retrospect* backup software together deliver the necessary security to protect irreplaceable digital data like business files, photos, videos, and music libraries. Objectives: Migrating file server 2003 to Intel storage system and move all the storage from the old file server to the Intel storage. 4. Recover Intel® Entry Storage System SS4200-E data January 2010

Objectives: This project was aimed to recover the data on this storage after RAID 5 array crush due to Power loss, after contacting Intel support, they said no solution for this case, but after researching I recovered the data by rebuilding the array configuration using the Linux platform.

Page 2 of 20

Haitham Faisal IT Engineer 2006 - 2015 5. Implementing and Configuring ISA Server 2006 Enterprise Edition

(March 2009) ISA server was configured for HTTP, HTTPS browsing. ISA Server 2006 was configured to provide security as a perimeter firewall at the Internet edge, & to protect Microsoft applications such as Microsoft Exchange and other servers on the internal network, as well it was configured as a Web-caching server to ensure fast, secure Web access. ISA Server 2006 is the integrated edge security gateway that helps protect IT environment from Internet-based threats while providing users with fast and secure remote access to applications and data. Objectives: - Manage User internet usage and generate reports. -Create access policy according to the customer needs -Inbound and Outbound Filtering - Filter both inbound and outbound traffic. -Port Blocking - Block access to certain ports and protocols according to customer needs -Create Publish Policies to publish servers like Web Server, helpdesk system, ERP System, and Exchange. 6. Migrate Windows Server 2003 R2 to 2008 R2 Active Directory and FSMO

Roles 2009 Objectives:

• The project includes upgrading the infrastructure to Window Server 2008 R2 environment and also upgrading the current active directory infrastructure from 2003 R2 to 2008 R2 which will provide the infrastructure with latest features and expandability.

• Upgrade all Domain controllers to Windows server 2008 R2 and migrate all FSMO roles from Domain Controller servers 2003 to 2008 R2.

• Decommission the old domain controllers. 7. Transitioning from Exchange 2003 to Exchange Server 2007

This project specifically deals with a simple one-to-one transition from a single legacy Exchange server 2003 to a single Exchange Server 2007

Page 3 of 20

Haitham Faisal IT Engineer 2006 - 2015 server running the “typical” roles of Client Access, Hub Transport, and Mailbox Server We expected Exchange 2007 on Windows 64 bit to be faster due to I/O improvements but the main reason for upgrading was to provide an improved Outlook Web Access environment for students, one that also supports browsers other than Internet Explorer. Objectives: 1-The project design for Microsoft exchange 2007 will restructure the exchange design in accordance to Microsoft Best Practices. The solution will include one Exchange server with its roles. 2- We will move all Mailboxes from Exchange 2003 to Exchange 2007 and ensure all services up and running and mail service working perfectly before decommissioning the legacy Exchange 2003. 3- Exchange 2007 also has improved automation features that are sometimes required for all kinds of reasons. We were also expecting to upgrade to Outlook 2007 which provides all kinds of improvements when used with Exchange 2007. 8. Migrate Active Directory to 2012 and Exchange 2007 to Exchange

2010 Objectives

• The project includes upgrading the infrastructure to Window Server 2012 environment and also upgrading the current active directory infrastructure from 2008 R2 to 2012 which will provide the infrastructure with latest features and expandability.

• Upgrade all Domain controllers to Windows server 2012 and migrate all FSMO roles from Domain Controller servers 2008 R2 to 2012.

• Decommission the old domain controllers. • Add new UPN suffix (mc.edu.eg). • Create up to 2000 accounts for institute and school students. • The project design for Microsoft exchange 2010 will restructure the

exchange design in accordance to Microsoft Best Practices. The solution will include two Exchange servers with CAS + Mailbox.

Page 4 of 20


• We will move all Mailboxes from Exchange 2007 to Exchange 2010 and ensure all services up and running and mail service working perfectly before decommissioning the legacy Exchange 2007.

9. Switch physical Servers to Microsoft windows server 2012 R2 Hyper-V

Virtualization increases the efficiency of IT management and the availability of IT applications and resource Objectives: -Move all Mansoura college 15 physical Servers to 4 Microsoft windows server 2008 R2 Hyper-V Server and one Xen Server that holding all virtual severs - Using ISCSI service to get more free space between servers -Export and backup all servers periodically

Page 5 of 20

Haitham Faisal IT Engineer 2006 - 2015 10. Migrating from Microsoft ISA 2006 to Forefront Threat Management

Gateway (TMG) 2010 This Project aimed to migrate from ISA 2006 to TMG 2010, we should consider thoroughly documenting the existing environment as part of the migration process. This will include: •IP Addressing – Document IP addresses for all network interfaces, including the intra array Interface and any virtual IP addresses when using NLB. If you are using VPN Services, be sure to record IP address ranges for remote access clients and site-to-site Networks. • Routing – Document any static routes required for “network behind a network” Scenarios. • DNS – Record any and all A host records or CNAME alias records in DNS associated with Your ISA firewall. This will include statically configured host records for the ISA Firewalls themselves, alias records for the proxy array, or WPAD records for client Configuration. • WPAD – If you are using DHCP for client configuration, be sure to plan for those Changes as well. • Certificates – Be sure to export any and all certificates (along with the private keys) Required for operation. This includes machine certificates in a workgroup scenario and SSL certificates used for HTTPS publishing rules. • Active Directory – If you have published web sites utilizing Kerberos Constrained Delegation (KCD), configure the computer account of the new system for delegation

Page 6 of 20

Haitham Faisal IT Engineer 2006 - 2015 Plug-in for TMG is available. • Scheduled and Custom Reports – Document all reports, as they will not be migrated to TMG

11. Planning and Deploying Microsoft System Center Configuration

Manager 2007 System Center solutions help Mansoura College IT pros manage the physical and virtual information technology (IT) environments across data centers, client computers, and devices. Using these integrated and automated management solutions, organizations can be more productive service providers to their businesses:

Objectives:

1- Deploying operating systems, software applications and software updates to Mansoura College clients

2- Metering software usage 3- Taking hardware and software inventory 4- Remotely administering computers

Page 7 of 20


12. Planning and Deploying Microsoft Lync Server 2013 Mansoura College Educators, students, and staff can take advantage of complete presence, instant messaging, conferencing, and enterprise voice capabilities through a single interface that is consistent across PCs, browsers, and mobile devices, using Skype for Business/Microsoft Lync Server 2013. IT staff benefit from a single, consistent management infrastructure, new capabilities to increase availability, and interoperability with existing systems. Objectives: - Run Lync sever on windows server 2012 R2 OS on hyper-V. -Support your learning community with unified communications and Skype for Business (formerly Lync Server.) -Get easy, anywhere access to a unified communications experience -Connect with the right people fast -Schedule and join meetings with a single click -Extend and adapt Lync to your school’s changing needs 13. Migrate Exchange 2010 to office 365 Hybrid

Page 8 of 20


Thinking out-of-the-box, researching new technologies, selecting the best fit and implementing those solutions in a way that provides an added value to the end customers. This project has been embracing the concept of having a solid yet flexible, reliable, and secure E-mail and File server This project will provide its services and consultations to fully Migrate Office 365 from on-premises Exchange for Mansoura College.

We will do the Migration of On-premises Exchange server to Office 365 integrated with Active directory, Based on the information we have about the on- premises environment. The Environment is as follow 1- Exchange 2010. 2- Active directory 2012 3- TMG2010 4-Lync Server 2013 5-SharePoint 2010 Therefore, the only way we can go on with the migration is Remote move, which will lead us to setup a hybrid deployment of the Exchange and office 365 to migrate the mailboxes, and then we can close the On-premises Exchange servers and only use Office 365 with SSO. Remote Move Migration steps: 1- Sign-up Office 365 account 2- Prepare On-premises environment. 3- Configure Hybrid Deployment. 4- E-mail Migration. 5-Lync online Migration 6-Sharepoint Migration Objectives: -migrating up to 3600 mailbox from internal server to Office 365 in order to ensure the stability of service internal and external -use ADFS and proxy servers to connect between AD and Office 365. -These servers (ADFS and Proxy server) hosted on two separated machines on Hyper-v-D In case we create users and groups its will moving automatically to office 365 based on windows azure service All students and employees have: -Online mailbox. - Lync online.

Page 9 of 20

Haitham Faisal IT Engineer 2006 - 2015 -Onedrive (Microsoft storage). - Yammer Account (social network for Enterprises). -User grant license to access web mail from anywhere. 14. Planning and Implementing Microsoft SharePoint 2007:

In the world of education, SharePoint is used internationally to create a platform where teachers, students, and parents can share information. Also, school administrators can streamline a lot of what they need to do on a regular basis. Objectives: -Microsoft share point server hosted on two Windows server 2008 servers Hyper-V (SQL server and web server) - Provide a Simple, Familiar & Consistent User Experience -Simplify Everyday Business Activities -Help Meet Regulatory Requirements - Create Discussions Boards that provides an ideal opportunity for interaction and collaboration among teachers and students divided according Departments -Create Students Results System to view the Student Results Score using SharePoint List and Microsoft InfoPath 2007 All students have accounts in active directory from which they can view thier result through the SharePoint portal. - Provide a Single, Integrated Platform

Page 10 of 20

Haitham Faisal IT Engineer 2006 - 2015 15. Migration Microsoft SharePoint 2007 to

SharePoint 2010: Objectives:

• Reduced total migration time to Microsoft’s internal hosted SharePoint 2010 environment

• Migrated all site collections from SharePoint 2007 to SharePoint 2010

• Transferred approximately 200 lists to SharePoint 2010 while maintaining customizations, metadata, and field values

• Minimized business disruption by scheduling migration jobs to automatically occur off-hours

• Migrate all the Discussions Boards to SharePoint 2010

• Migrate the Students Results System list • Create Document library for the

Institutes Demonstrators and Doctors : This Library is Provided by Mansoura College Academy to easy and ensure the delivery of documents, notes and any other helpful materials for all students

Page 11 of 20


• Enhance the Discussions Boards to be like a forums for the Academic Educational Departments like Arabic, English and science forums to easy communication and collaboration

• Implement a document management system (DMS) or Digital archiving System to track, manage and store documents.

16. Planning and Implementing Microsoft System Center Data {rotection

Manager 2012: System Center 2012 – Data Protection Manager (DPM) is an enterprise backup system. Using DPM you can backup (copy) data from a source location to a target secondary location. If original data is unavailable because of planned or unexpected issues, Objectives: - this Server Hosted on windows Server 2012 R2 hyper-V. -Management, not just monitoring Focused troubleshooting Enhanced Hyper-V protection Optimized SharePoint restores Generic data source protection 17. Planning and

Implementing ManageEngine ServiceDesk Plus:

ServiceDesk Plus is a help desk software with integrated asset and project management built on the ITIL framework. It used to manage their IT help desk and assets Objectives: -Server hosted on Microsoft windows Server 2012 R2 Hyper-V -Set up Incident and Problem management -Define Change Management -Discover and manage assets -Enable a self-service and knowledge management portal

Page 12 of 20

Haitham Faisal IT Engineer 2006 - 2015 -Manage Software and Hardware inventory - Handle Purchase and Contract management. -Creating Reports

Page 13 of 20

Haitham Faisal IT Engineer 2006 - 2015 18. Migrating From Microsoft TMG 2010 to Cisco ASA 5525 Series Next

Generation Firewall Introduction There is often a reluctance to change firewall vendors due to the perception that the migration process is difficult. Indeed, there is no point hiding the fact that moving to a new vendor requires careful consideration. But concern over the potential pain of migration should not stand in the way of adopting new security technologies. The purpose of this document is to describe the best practices for performing such migrations, the benefits a migration process can achieve, and ultimately to ease the migration process itself. Firewall Migration Drivers: . We are moving to CISCO ASA in order to: • Consolidate multiple security functions without compromising functionality • Reduce total cost of ownership (TCO) • Achieve compliance with security standards (PCI, SOX, etc.) • Improve performance • Increase visibility of the network, users and applications Objectives:

● Migrating all our Firewall rules from TMG 2010 to Cisco ASA. ● planning to use the same Firewall policies in TMG to take advantage of ● Application layer filtering. Below are the steps we have taken. ● Uninstalled TMG 2010. ● Created a new network DMZ with new range.

Page 14 of 20


● All Published servers will be moved to DMZ. • Exceptional next-generation firewall services provide the visibility and

detailed control that your enterprise needs to safely take advantage of new applications and devices.

• Cisco AVC controls specific behaviors within allowed micro applications. • Cisco Web Security Essentials (WSE) restricts web and web application

use based on the reputation of a site.

• Broad and deep network security through an array of integrated cloud- and software-based next-generation firewall services is backed by Cisco Security Intelligence Operations (SIO).

• A highly effective intrusion prevention system (IPS) is provided with Cisco Global Correlation.

• A high-performance VPN and always-on remote access are included. • Additional security services can be implemented quickly and easily in

response to changing need Configuring and Managing Switches: Objectives:

• .Configuring and Managing the 5500 3com core switch • Configuring and Managing up to 42 HP Switches and 20 Cisco Switches • Creating and managing up to 29 Vlans for all departments and labs in the

Campus (IGLAB, Administration Department, international department, Servers , and Cameras vlan,..etc )

• Using SolerWinds for monitoring and manage the switches,

Page 15 of 20

Haitham Faisal IT Engineer 2006 - 2015 19. Planning and Implementing Blackberry Enterprise Server (BES):

BlackBerry Enterprise Server (or BES) is the backbone of any corporate deployment of BlackBerry devices. All messages and mail are routed through this server, and administrators have finely granulated control over employee devices. Policies dictate which applications and services can be used on a BES-administrated device, plus they can be remotely locked or wiped when needed. 20. Configure NAP(Network Access Protection) Enforcement for 802.1X

Wireless: Objective:

• This Server is running on the AD server on windows server 2012 R2 OS • Install and configure 802.1X wireless access points on the network • Configure 802.1X wireless clients using Group Policy • Create a user group in Active Directory® Domain Services (AD DS) that

contains the users who are allowed to access the network through the wireless access points

• On NAP-capable client computers, enable the EAP enforcement client. • In NPS, configure 802.1X wireless access points as RADIUS clients.

21. Installing Smart Boards in the Classroom: Smart boards are being used in many schools today. Smart boards are used by teachers and students, as young as five

years old.

Page 16 of 20


Some teachers even allow their students to lead the class for the day. The lessons are loaded and the students simply point and learn.

Objectives: Installing 32 Smart Boards in all classrooms at all grades Facilitate and Inspire Student Learning and Creativity Design and Develop Digital-Age Learning Experiences and

Assessments Model Digital-Age Work and Learning Promote and Model Digital Citizenship and Responsibility Engage in Professional Growth and Leadership

22. Installing and configuring Microsoft SQL Server 2014: Objectives: -Running the Server on Microsoft windows server 2012 R2 hosted by Hyper-V Server -Creating Database for each Server like ERP,School Management system,..etc -Schedule backup and maintenance

Page 17 of 20

Haitham Faisal IT Engineer 2006 - 2015 23. Managing Implementing of Web ‐ Ba sed Ed uc a

Solution (mySchool): mySchool™ is a highly ‐interactive web

that provides a complete market leading solution for your schoolʹs administration. We recognize that Parents, Teachers and Administrators, not Technology, shape and touch the minds of our children. mySchool™ is evidence of that understanding and commitment. It combines the evolution of software and the internet for the purpose of improving education by fostering an environment for communication, Manage, Control and Monitoring. mySchool™ is the ultimate tool for data, analysis and reporting, along with the means to communicate and collaborate with all stakeholders, immediately and effectively. Unique Features of mySchool 1) Purposefully designed to meet the varying needs of modern day schools (easily set and control: types of services, report configuration, access privileges, language preferences and more) 2) Simple to learn and maintain (no special codes to learn) 3) Immediate solution to leverage a school’s investment in technology (runs on various software/hardware platforms, fits thin client model, easy to use)

Page 18 of 20

Haitham Faisal IT Engineer 2006 - 2015 24. Installing and Configuring IBM System Storage DS3512 Express Dual

Controller Storage System: A storage area network (SAN) is a network of centralized storage disks that are connected to one or more servers. Because it ties multiple hosts into a single storage system, the use of a SAN offers greater performance speed and easier, more effective system administration Objectives:

Planning SAN and storage server Installing IBM System Storage DS Storage Manager DS3512 controller with standard port configuration Planning your storage structure Storage partitioning.

25. Setup External Microsoft Windows DNS Server 2012:

This is especially useful if running IIS and have a lot of sites and don’t want to use a 3rd party option for DNS. For example, at a client I worked with, they owned over 250 domain names and wanted to keep tight control over their DNS in case of server moves and other email considerations An external DNS server will also help limit the exposure of your network to security leaks in case the server is compromised

Page 19 of 20


Objectives: Install Windows DNS Server 2012 role Configure Windows DNS Server 2012 Forward and Reverse Lookup Zone

Create a Host (A) and PTR Records on Server 2012 DNS

Page 20 of 20

Haitham Faisal Portofolio

Documents

Transcript of Haitham Faisal Portofolio