BCA1995 Design, Deploy, Optimized SQL Server on VMware ESXi 5 Name, Title, Company.
SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective...
-
Upload
heather-hill -
Category
Documents
-
view
234 -
download
0
Transcript of SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective...
![Page 1: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/1.jpg)
SERVER I
SLIDE: 6
![Page 2: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/2.jpg)
SERVER I
Topics:
• Objective 4.3: Deploy and configure the DNS service
• Objective 5.1: Install domain controllers
![Page 3: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/3.jpg)
SERVER I
Objective 4.3: Deploy and configure the
DNS service
![Page 4: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/4.jpg)
SERVER I
![Page 5: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/5.jpg)
SERVER I
![Page 6: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/6.jpg)
SERVER I
![Page 7: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/7.jpg)
SERVER I
![Page 8: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/8.jpg)
SERVER I
![Page 9: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/9.jpg)
![Page 10: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/10.jpg)
![Page 11: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/11.jpg)
![Page 12: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/12.jpg)
![Page 13: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/13.jpg)
![Page 14: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/14.jpg)
SERVER I
![Page 15: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/15.jpg)
SERVER I
![Page 16: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/16.jpg)
SERVER I
![Page 17: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/17.jpg)
SERVER I
![Page 18: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/18.jpg)
SERVER I
![Page 19: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/19.jpg)
SERVER I
![Page 20: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/20.jpg)
The Start Of Authority (SOA) tab on a DNS server’s Properties sheet
![Page 21: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/21.jpg)
The Forwarders tab on a DNS server’s Properties sheet
![Page 22: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/22.jpg)
The DNS reverse lookup domain
![Page 23: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/23.jpg)
Valid zones must consist of contiguous domains
![Page 24: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/24.jpg)
The New Host dialog box
![Page 25: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/25.jpg)
A Reverse Lookup Zone Name page in the New Zone Wizard
![Page 26: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/26.jpg)
The Change Zone Replication Scope dialog box
![Page 27: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/27.jpg)
The Root Hints tab on a DNS server’s Properties sheet
![Page 28: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/28.jpg)
The Root Hints tab on a DNS server’s Properties sheet
![Page 29: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/29.jpg)
Recursive query vs. Iterative query
![Page 30: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/30.jpg)
SERVER I
Objective 5.1: Install Domain Controllers
![Page 31: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/31.jpg)
Why AD ?
![Page 32: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/32.jpg)
Why AD ?
![Page 33: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/33.jpg)
What AD is ? A Database (NTDS.DIT) ON A Domain Controller BASED on X.500 / LDAP USES KERBEROS CONSISTENT SYNC ACROSS PEER DC’s EXTENSIBLE INTEROPERATES WITH OTHER DOMAINS /
FORESTS
![Page 34: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/34.jpg)
AD STRUCTURE DOMAIN TREE FOREST TRUST FEDERATION
![Page 35: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/35.jpg)
AD OBJECTS USERS GROUP COMPUTER OU (ORGANIZATION UNIT) SITE SITE LINKS
![Page 36: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/36.jpg)
Open Standards
• LDAP– Low-Level API to Active Directory
• X.500– Active Directory Structure– Not fully standard-compliant
• DNS– Resource Location– Extensions, e. G. „Dynamic DNS“
• Kerberos– Authentication
![Page 37: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/37.jpg)
Active Directory Structure
• Hierarchical• Base object
Domain
OU
Domain
DomainOUOU
Objects
Domain
Tree
Domain
Domain
Domain
Tree
Forest
![Page 38: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/38.jpg)
Shortcut-Trusts
• Domain A users frequently access Domain B’s Resources
• No Change in logical StructureDomain
OU
DomainOUOU
Objects
Domain A
Tree
Domain
Domain
Domain B
Tree
Forest
![Page 39: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/39.jpg)
Which objects does Active Directory contain?
• „old Friends “– User– Group– Computer
• New Elements– Distribution Lists– System Policies
• Application defined custom objects• Described in the Schema
![Page 40: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/40.jpg)
What is the Schema?
• Definition of all AD– Object-Types (Classes)– Attributes– Data-Types (Syntaxes)
• Can be compared to a Database Schema• ONE consistent Schema inside a single Forest• Extensible
![Page 41: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/41.jpg)
What is a Domain?
• AD Base Element (Building Block)• NT 4 Compatible• Physically Implemented on Domain Controllers
(DC)• Border for– Replication Traffic– System Policies– Administration
Firma.de
![Page 42: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/42.jpg)
What is an Organizational Unit (OU)?
• Implements a Structure inside a Domain• Can be nested as needed• Typically used for Administrative Reasons– e.g. System Policies
LA
Admin
New York
SalesAdmin Sales
![Page 43: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/43.jpg)
What is a Tree?
• Hierarchical Domain Structure inside a single Namespace– adiscon.com– la.adiscon.com– ny.adiscon.com
• Transitive Trusts created automatically• Sub-Domain must be added to Root-Domain –
otherwise there will be no tree!
la.adiscon.com
adiscon.com
ny.adiscon.com
Tree
![Page 44: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/44.jpg)
What is a Forest?
• Combination of Trees• Disjunct Namespaces– adiscon.de– adiscon.com
• Transitive Trusts created automatically• There is one single tree-root!• Sub-Tree must be added to Root-Tree,
otherwise no Forest will be created
![Page 45: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/45.jpg)
Domain
The Tree-Root First Domain installed Single Schema Absolutely vital!
OU
DomainOUOU
Objects
Domain
Tree
Domain
Domain
Domain
Tree
Forest
![Page 46: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/46.jpg)
Modeling the physical Structure
• Not related to logical Structure• Modeled via „Sites“• A site is well connected via fast Network Links• One Site can home multiple Domains• One Domain can spread across many Sites• Domain Database is stored on Domain
Controllers
![Page 47: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/47.jpg)
Site New YorkSite LA
Sample Site Structure• Logical and physical Structure
are totally independent of each other!
Adiscon.com
sales.adiscon.comsales.adiscon.com
![Page 48: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/48.jpg)
Which Role can a Server have?
• Member Server• Domain Controller• Global Catalog• FSMO – Special Roles carried out by only a limited set of
Servers– e.g. PDC Emulator– e.g. Schema Master
![Page 49: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/49.jpg)
What is a Domain-Controller?
• Stores a physical Copy of the Active Directory Database– Currently a single Domain per DC supported!– ESE95 Database (MS Exchange)
• Logon Services– Kerberos– LAN Manager Authentication
• Recommendation: always have at least 2 Domain Controllers!
![Page 50: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/50.jpg)
What is a Global Catalog Server?
• Answers AD Search Queries• Must be present to successfully logon • Holds a copy of all Objects of the whole
Forest…• ...but holds only a subset of the Attributes– User definable
• Recommendation: at least one GC per (larger) Site
![Page 51: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/51.jpg)
The Deployment Configuration page of the ActiveDirectory Domain Services Configuration Wizard
![Page 52: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/52.jpg)
The Domain Controller Options page of the Active Directory Domain Services Configuration Wizard
![Page 53: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/53.jpg)
The Prerequisites Check page of the Active Directory Domain Services Configuration Wizard
![Page 54: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/54.jpg)
The Domain Controller Options page of the Active Directory Domain Services Configuration Wizard
![Page 55: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/55.jpg)
The Additional Options page of the Active Directory Domain Services Configuration Wizard
![Page 56: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/56.jpg)
The Deployment Configuration page of the Active Directory Domain Services Configuration Wizard
![Page 57: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/57.jpg)
Syntax for the Install-AddsForest cmdlet in Windows PowerShell
![Page 58: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/58.jpg)
An installation script generated by the Active Directory Domain Services Configuration Wizard
![Page 59: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/59.jpg)
Removing a domain controller
![Page 60: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/60.jpg)
SERVER ITo demote a domain controller by using WindowsPowerShell
Uninstall-ADDSDomainController –ForceRemoval LocalAdministratorPassword <password> –Force
![Page 61: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/61.jpg)
1. Install Active Directory Domain Service and DSN on Windows Server 2012.
2. Test DSN Service.
Task 6:
![Page 62: SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.](https://reader030.fdocuments.net/reader030/viewer/2022012908/56649e9f5503460f94ba2481/html5/thumbnails/62.jpg)
Join Client PC into domain envirnment.
Task 7: