# Yun-Xiao White's growth diary the next day-windows server

Yun-Xiao White's growth diary the next day-windows server

Network operation of the small white and want to join the network operation of the small partners are worth a look oh ~
Today is the second day of the first knowledge of network operations. Hope to have like-minded small partners to discuss and study, but also hope that the network operation of the Great God can help in the network operation and maintenance of the road to help guide, can give more advice to make me progress.

Share with you today the knowledge points in Windows Server .
One, domain, and domain controllers
1, Domain:
organize the computers on the network logically together for centralized management, a centrally managed environment called Domain
2, domain controller (DC)
in a domain, at least one domain controller, The domain controller holds the user account and security database for the entire domain, and a computer with Active Directory installed is called a domain controller, and the domain administrator can control the behavior of each domain user.
Second, Active Directory
1, Active Directory: is a directory database that stores information about objects throughout the Windows network and is a service that performs various actions on data in the Active Directory
2, Active Directory benefits
a) centralized management
B) Convenient network resource access
C) Extensibility
Third, domain tree and forest
1, domain tree: Multiple domains with contiguous namespaces
2, Forest
consists of one or more domain trees, Each domain tree in the forest has a unique namespace and is not contiguous.
Iv. Prerequisites for Installing DCS
1, local Administrator rights
2, operating system version must meet the criteria
Windows Server Edition
3, TCP/IP settings
4, There is enough free disk space for
5, NTFS partitions (at least one NTFS partition)
6, DNS support is required.
Four, install DC
Select New domain in New Forest
Database and log folder default save location c:\windows\ NTDS
Sysvol folder must be in NTFS partition
Enter Directory Services Restore Mode Administrator password
domain functional level supported domain controllers
Windows Server 2003 Windows Server 2003
Windows Server $
Windows Server

Windows Server in Windows Server

• 1. Windows Server 2012
     Windows Server Windows Server 2012

V. Joining a client to a domain
1, the client joins the domain condition:
Computer IP address and DNS configuration are correct
Ensure that the computer and the domain controller are connected to each other
Ping the IP of the DC
Nslookup domain name (test can parse)
2. Join the client to the domain
Right-click Computer Properties-Advanced system Settings-computer name-change-domain input domain name
VI. Basic management of Windows domains
1. Management of domain user accounts
Create a domain user account
Note: The user display name is unique in the current container, only in the login domain
To configure domain user account properties:
Logon Hours
Log on to
Vii. Management of the group
1. Type of group
Security groups: Setting access rights for users
Distribution groups: For e-mail communications, including contacts and user accounts
2, the scope of the group:
1), local domain Group
Create a local domain group for the resources for this field
Scope of application: this domain
2), global group
Scope of application: whole forest and trusting domain
Global groups are typically used to manage directory objects, such as user accounts and computer accounts, that require routine maintenance.
3), universal group
Identity information is logged in the global catalog
Fast query speed
Scope of application: whole forest and trusting domain, this is similar to global group.
Then the difference between the universal group and the global group is as follows:
In a multidomain environment, the identity information of universal group members is recorded in the global catalog, and global group memberships are stored in each domain. In a multi-domain environment, a universal group member is logged in or queries faster than in comparison.
VIII. Organizational Unit of OU
AGDLP extension: Domain environment Group Management:
Create a global group TX and join the QQ user to this group
Create a local domain Group WX, and join the TX global group to the WX local domain Group
Create shared folders on the DC server assign WX share permissions for changes, WX's NTFS permissions for read and write
Client authentication with UNC path via QQ user access

# Yun-Xiao White's growth diary the next day-windows server