The difference between Windows system domain and workgroup for Safe Cow Learning notes

Local Area network (local areanetwork, LAN), also known as Intranet, refers to a group of computers interconnected by multiple computers in an area.

LAN can achieve file management, application software sharing, printer sharing, scanner sharing, workgroup scheduling, e-mail and fax communication services and other functions. The local area network is strictly closed in meaning. It can be made up of several or even thousands of computers in the office.

The resources on the LAN need to be managed, and the "Domain" and "workgroup" and "homegroup" are different network resource management modes. So what's the difference?  

I. Working Group work Group

In a network, there may be hundreds of computers, if these computers do not group, are listed in the "Network Neighborhood", it is conceivable how chaotic. In order to solve this problem, the concept of "workgroup" was quoted as early as Windows 9x/nt/2008, and different computers were included in different groups by function, such as the computer of the Finance Department was included in the "Finance Department" working Group, and the human resources computer was included in the "Personnel" working group. To access a department's resources, you can find that department's workgroup name in My Network Places and double-click to see that department's computer.

So how do you join a working group? Actually very simple, you just need to right click on your Windows desktop "Network Places", in the pop-up menu choose "Properties", click "Identity", in the "Computer name" column to add your desired name, in the "Workgroup" column to add the name of the workgroup you want to join.

If you entered a workgroup name that was not previously available, it would be equivalent to creating a new workgroup, but only your computer is in it. The computer name and workgroup length cannot exceed 15 English characters, you can enter Chinese characters, but not more than 7. "Computer description" is an additional information, do not fill, but it is better to fill in some information about this computer owner, such as "technical director" and so on. When the [OK] button is clicked, Windows prompts for a restart, restarts as required, and then goes to my Network Places to see the members of your workgroup.

In general, members of the same team have the highest frequency of exchanging information with each other, so as you enter your "Network Places", you first see members of your workgroup. If you want to access members of other workgroups, you need to double-click Entire Network, you'll see all the workgroups on the network, double-click the workgroup name, and you'll see the members inside.

You can also quit a workgroup, as long as you change the workgroup name. However, you can still access your shared resources on the Internet, just to change a workgroup. You can easily join any workgroup on the same network, or you can leave a workgroup. The "Workgroup", like a club that joins and exits freely, serves only as a "room" to facilitate the browsing of resources shared by the Internet.

Two. Domains domain

Unlike the team's loosely-made membership, the domain is a relatively rigid organization. "Domain" refers to a combination of computers that the server controls whether computers on the network can join.

Strict management is necessary for network security. In peer mode, any computer can access shared resources, such as shared ISDN Internet access, as long as it is connected to the network. Although shared files on the peer network can be accessed with passwords, they are easily cracked. In a peer network made up of windows9x, data is very insecure.

In "domain" mode, at least one server is responsible for the verification work of each computer and user Tsu into the network, which is the same as a gatekeeper of a unit, called a "domain controller, abbreviated DC." A domain controller contains a database of information such as the account, password, and computer belonging to the domain. When the computer is linked to the network, the domain controller first to identify whether this computer belongs to this domain, the user is using the login account exists, the password is correct. If the above information is incorrect, the domain controller denies the user from logging on to this computer. Unable to log on, the user can not access the server has rights to protect the resources, only to peer-to access the Windows shared resources, so as to a certain extent, protect the resources on the network.

In general, the domain controller integrates the DNS service to resolve the computer name (based on TCP/IP) within the domain, and resolves the problem that different network segment computers in the workgroup environment cannot use the computer name to exchange visits.

To join a computer to the domain, just so that it and the server in the "Network Places" to see each other is not enough, it must be the network administrator to the computer to join the domain of the relevant operations.

1. Settings for the domain controller

A. Installing the Active Directory

Install Active Directory/uninstall Active Directory using command dcpromo

B. Checking after installing the Active Directory

Change the local Area Connection DNS to point to your own IP address

Check that the SRV records on DNS are complete?

If the DNS on SRV is successful without autoenrollment, you need to restart the Netlogon service on the DC

If the Netlogon is restarted or is not registered successfully, check whether the DNS zone allows security updates, whether the local connection allows the address of this connection to be registered in DNS, and whether the domain controller name adds a domain suffix.

2. Join the computer to the domain

A. Change the address of the DNS address to the domain controller.

B. Change system Properties, computer name/domain join domain after restart.

C. A normal user can also join a computer to a domain

D. You can create a computer account in the organizational unit specified in the Active Directory before you join the computer to the domain

Iii. differences between domains, working groups and families (official explanation)

In the workgroup:

All computers are peers, and no computer can control another computer.

Each computer has a set of user accounts. To log on to any computer in the workgroup, you must have an account on that computer.

Typically, the number of computers does not exceed 20 units.

Workgroup is not password protected.

All computers must be on the same local network or subnet.

In a homegroup:

computers on a home network must belong to a workgroup, but they can also belong to a homegroup. With homegroup, you can easily share pictures, music, videos, documents, and printers with others on your home network.  

A homegroup is password-protected, but when you add a computer to a homegroup, you only need to type the password once.

In the domain:

There is one or more computers for the server. The network administrator uses the server to control the security and permissions of all computers in the domain. This makes it easier to make changes because the changes are automatically applied to all computers. Domain users must provide a password or other credentials each time they access the domain.

If you have a user account on the domain, you can log on to any computer in the domain without having to have an account on that computer.

Because network administrators often want to ensure consistency between computers, you may only have to change the settings of the computer in a limited way.

There can be thousands of computers in a domain.  

The computer can be on a different local network.

Iv. Common Intranet Commands------------> Join Windows Server Core to the domain netdomrenamecomputer fileserver/newname:profileserver Change the computer name to Profileserver netsh interface ipv4 set address name=" Local Area Connection " Source=static addr=192.168.10.212 mask= 255.255.255.0gateway=192.168.10.1 netsh interface ipv4 set dnsserver " Local connection " Static 192.168.10.200 primary netdom join%computername%/domain:ess.com/userd:administrator/passwordd:a1! /reboot:5

This note is for safe Cattle class student notes, want to see this course or information security of dry goods can go to safe cattle classes

security+ Certification Why is the Internet + era of the most popular certification?

Manifesto first introduce you to security+

security+ certification is a neutral third-party certification, the issuing agency for the United States Computer Industry Association CompTIA, and CISSP, ITIL and other common inclusion of the international IT Industry 10 Popular certification, and CISSP emphasis on information security management, compared to security+ Authentication is more emphasis on information security technology and operations.

This certification demonstrates your ability to network security, compliance and operational security, threats and vulnerabilities, application, data and Host security, access control and identity management, and encryption technology. Because of its difficult examination difficulty, the gold content is high, has been widely adopted by global enterprises and security professionals.

Why is security+ certification so hot?

        Reason one: In all information security certification, the emphasis on information security technology certification is blank,  security+ certification can make up for the gap in the field of information security technology.

      currently recognized in the industry of information security certification mainly Cisp and CISSP, but whether cisp or CISSP are emphasis on information security management, technical knowledge is broad and simple, the exam is around. And CISSP require a certificate of information security work experience for more than 5 years, Cisp also require a college education 4 years of working experience, these requirements will undoubtedly be able and motivated young people of the road blocked. In the real world, whether it is looking for a job or a raise, or a tender time to report personnel, certification is essential, which brings a lot of injustice to young people. The emergence of security+ can clear these young people career development obstacles, because security+ emphasis on information security technology, so there is no special requirements for work experience. As long as you have an IT-related background, the pursuit of progress can be studied and tested.

        reason two:  it operation and maintenance personnel work and turn over the weapon.

        in the banking, securities, insurance, information and communications industries, IT operations personnel are very many, it operations involved in the face is also very wide. is a network, system, security, application architecture, storage as one integrated technology post. Although no program ape "born as a Bachelor, Die also write code," The solemn and tragic, but also has "Hoe wo Day Copse, as the operation of suffering" feeling. Every day to the computer and machine, the time has been inevitable for career development confusion and confusion. The advent of security+ international certification allows the pursuit of IT operations personnel to learn network security knowledge, to master network security practices. Career development in the direction of network security, to solve the problem of the shortage of information security personnel in China. In addition, even if not transformation, to do a good job in operation and maintenance, learning safety knowledge to obtain safety certification is also essential.

Reason three: grounding gas, international stylish, easy to test, moderate cost!

As the most influential global leader in the global ICT sector, CompTIA is professional, fair and impartial in the field of information security talent certification. Security+ certification is highly operational and closely related to the daily work of frontline engineers. Suitable for banks, securities, insurance, internet companies and other IT-related personnel learning. As an international certification in 147 countries around the world are widely recognized.

Under the current tide of information security, talent is the key to the development of information security. and the current domestic information security personnel is very scarce, I believe security+ certification will become the most popular information security certification.

This article is from the "11662938" blog, please be sure to keep this source http://11672938.blog.51cto.com/11662938/1976498

The difference between Windows system domain and workgroup for Safe Cow Learning notes