Weekly Course Overview

R. Craig Collins >CPMT 2449 > Overview 7

Overview 7 © R. Craig Collins, 2005/6

•Items that should be accomplished before the beginning of the current time frame:
•Read Chapter 4

Items to accomplish during the current course time frame:

•Read Creating Users, below

Must supply:

log on
details
password
  *assigned, never change
  *assigned, allow change (how often?)
  *assigned, force change (when?)
contact info
group
  *as whe have yet to discuss creating groups, we must assume there are some already created. They are
    -administrators: lots of rights, that can't be adjusted
    -guests: few of rights, that can't be adjusted
    -users: everyone is a member of this group
  *We can create other groups as well.
    -distribution groups, just for group emailing
    -security groups: every other kind of group is a security related group
  *Since 2003 can be a domain, among trees or among forests, group members must match. They are
    -domain local groups: permission in the local domain they are placed in
    -global groups: permission in the trees of other trusted domains
    -universal groups: permission in the whole forest

Organizational units can be used to subdivide the domain, so you may create groups to logically organize certain users, or to control resources for that group, using a group policy.

•Review
•Chapter 4

•Activities Users and Templates Windows

Manually add user Windows
Specifications
1. In Windows Server command prompt
  dsadd /?
2. To create one user using DSADD, named Kent C Deforest
  dsadd user "cn=Kent C Deforest,cn=users,dc=your domain,[dc=522,]dc=templejc,dc=edu"
  Note: Other DSADD options you may add:
  -pwd value - memberof "cn=value" -profile "\\server\profiles\value" -disabled no
  Other DS related command DSMOD and DSMOVE and DSQUERY
  dsmod /?
  dsmove /?
  dsquery /?
Graphically add user Windows
1. Click Start, select Administrative Tools, and then click Active Directory Users and Computers
  Right Click the Users container, and select New, and click User
2. Example
  Create one user graphically, named Warren Peese;
  username wpeese,
  password Password1
3. Right click the users and to Memberof add Server Operators, not full administrator
  (in this class, all users need to be server operators or administrators in order to 'sit at' this machine.)
Automating user creation, by creating a template with all memberof, dialin, etc., already set
1. Creating a user Template
  Example
  - Right Click the Users container, and select New, and click User
  - In the New Object-User dialog box, type _Template in the First name text box
    (the _ ensures the templat account appears at the top of the user listing)
  - Press Tab four times to reach the User Logon name field. Type template and choose Next.
  - In the Password text box, type Password1, and again for the confirm password.
  - Right click the _Template user account, and choose Properties
  - In the description text box on the General tab, type typical user
  - Click the Profile tab, for the path \\your server's name\profiles\%username%
    (this will automatically create profiles based on the user name
  - Click the Memberof tab and add the template as a memberof Server Operators
- To Create one user via Template, named Ima Clone
  Specifications
  - Right click the _Template user account and click copy
  - User name Ima Clone, and username iclone, password Password1
Now create resources and groups to test the server

Create a folder named Faculty, and place within it a text document perhaps is named "Faculty.txt"
Create a folder named Students, and place within it a text document that is named "Students.txt"
Create a group called Faculty (local, security)
Create a group called Students (local, security)

To set the Faculty group up so that they have full control over both the Faculty and Students folders.
Set the Students group so that they have full control over the Students folder, and read only and list permissions for the Faculty Folder.

Right click on folder, choose Properties
Under Sharing, share the folder
Under security, add Faculty, then set permissions
Under security, add Students, then set permissions
Under security, remove permissions for the generic user group

Create a student user and add them to your student group,
Create a faculty user and them to the faculty group..

Recall, in this class, all users also have to be members of Server Operator
Note: record username, password, and group information in your notes
Test both users, verify faculty can see and change both files, but
students can see both files, but only change the student file.

•Activities Users and Templates Linux
1. Manually add user Linux
Specifications

In Linux Server command prompt
whatis useradd
To create one user using useradd, named Kent C Deforest

2. Graphically add user

3. Now create resources and groups to test the server

Create a folder named Faculty, and place within it a text document perhaps is named "Faculty.txt"
Create a folder named Students, and place within it a text document that is named "Students.txt"
Create a group called Faculty
Create a group called Students

To set the Faculty folder up so that Faculty (group) have full control and Students (others) have Read Execute.
chmod 775 foldername
Set the Students folder so that Students (group) have full control and Faculty (others) have Full Control.
chmod 777 foldername

Note, Internet guest access is limited by placing an index.html file in the user folder, which prevents browsing... individual files can be made -rwx --- --- to prevent anyone but the owner from accessing

   •review chmod here
    chmod rwx ugo file or folder
        •chmod g refers to changing permissions for the file or folders current group
   • to change which group a file belongs to, use chgrp
     chgrp groupname file or folder
   • to change which owner (user) a file belongs to, use chown
     chown ownername file or folder

•Controlling not just the folders, but the drive the folders are saved on: Dynamic Disks

RAID concepts

RAID 0: minimum two disks, stripped without parity-no fault tolerance
RAID 1; minimum two disks, mirrored without parity-basic fault tolerance
RAID 3,4; minimum three disks, with dedicated parity- parity drive can fail-fault tolerance
RAID 5; minimum three disks, with striped parity- any drive can fail- fault tolerance
RAID 6; minimum four disks, with striped parity- any two drives can fail- fault tolerance

Disks are divided into partitions, disks can be aggregated with volumes that span disks
   • to http://support.microsoft.com/kb/816307
Start/Administrative Tools/Computer Management/Disk Management
Right clickbasic disk that you want to change, and then click Convert to Dynamic Disk
     the gray area that contains the disk title, such as Disk 0
Creating a Simple Volume
Right click unallocated space, then choose New Volume
   • to http://support.microsoft.com/kb/323442

•Complete
   •Lab 5:
      •Create Groups and Users in both Linux and Windows
      •Create Faculty Folder and Files
         •Give Faculty full control in both,
          give students full control in the student folder, and read list in faculty
   •Lab 6:
      •Convert your Windows Server to a dynamic disk (ONE WAY CONVERSION, CAN'T BE UNDONE)
      •OSS5-6 Quiz in D2L:

•Submit
   •Something
   •MUD (My Understanding, Details) respond as directed to the following:
      What topics, if any, during this time frame do you feel very comfortable with? Why?
      What topics, if any, during this time frame do you not feel comfortable with?
   •Class Discussion/BFO (Blinding Flash of the Obvious): respond as directed to the following:
      aldljaldfjalkdfjlakdjf

•For the next time frame, read:
•Chapter 5

•Each test has a review; you may wish to write out pertinent information from the readings and activities

•After completing this overview, you may wish to start on the next Overview material, and preview Lab x