networking applications chapter 2 bb posting

8/7/2019 Networking Applications Chapter 2 BB posting

1/23

11

ADMINISTERING

MICROSOFTWINDOWS SERVER

2003

ADMINISTERING

MICROSOFTWINDOWS SERVER

2003

Chapter 2Chapter 2


2/23

Chapter 2: ADMINISTERING MICROSOFT WINDOWS SERVER 2003Chapter 2: ADMINISTERING MICROSOFT WINDOWS SERVER 2003 22

CHAPTER OVERVIEWCHAPTER OVERVIEW

Manage a Windows Server 2003 system usingMMC

Access a remote computer using an MMCconsole

Configure a server to enable Remote Desktop forAdministration

Enable a computer to accept requests forRemote Assistance

Manage a Windows Server 2003 system usingMMC

Access a remote computer using an MMCconsole

Configure a server to enable Remote Desktop forAdministration

Enable a computer to accept requests forRemote Assistance


3/23


USING THE MICROSOFT

MANAGEMENT CONSOLE

USING THE MICROSOFT

MANAGEMENT CONSOLE

SCOPE PANE DETAIL PANE


4/23


Microsoft Management Console (MMC)Microsoft Management Console (MMC) It is the primary Windows Server 2003 system

administration tool

Makes it possible to consolidate your mostcommonly used tools into a single interface anduse them to manage Windows computersanywhere on the network or locally.

It is a shell application in which you can combineone or more application modules (called snap-ins)that are suited for a specific purpose.

Like creating a shortcut.sortof!

It is the primary Windows Server 2003 systemadministration tool

Makes it possible to consolidate your mostcommonly used tools into a single interface anduse them to manage Windows computersanywhere on the network or locally.

It is a shell application in which you can combineone or more application modules (called snap-ins)that are suited for a specific purpose.

Like creating a shortcut.sortof!


5/23


USING THE MMC INTERFACEUSING THE MMC INTERFACE

SomeMMC

consolesenableyou toopenmultiple

windows.


6/23


USING MMC MENUSUSING MMC MENUS

Action menu ithe primarymenu forcontext-specific

functions in anMMC console.This menuchanges toinclude

commandsspecific to theelement you arecreating in theMMC.


7/23


CREATING CUSTOMIZED MMC

CONSOLES

CREATING CUSTOMIZED MMC

CONSOLES

Combines one or more snap-ins or parts ofsnap-ins in a single console

Eliminates the need to switch between differentprograms or individual consoles

It is the snap-ins within the MMC shell, not theMMC itself, that provide the administrative tools

you use.

Combines one or more snap-ins or parts ofsnap-ins in a single console

Eliminates the need to switch between differentprograms or individual consoles

It is the snap-ins within the MMC shell, not theMMC itself, that provide the administrative tools

you use.


8/23


Setting Console OptionsSetting Console Options

You can set options that determine what changes otherusers can make to the consoles configuration:

This can be done in File/Option on the menu bar of the MMC By default, all new consoles you create are configured to use

Author mode, which provides full access to all console functions.

Other modes:

User Mode: Full Access

User Mode: Limited Access, Multiple Windows

User Mode: Limited Access, Single Window

You can set options that determine what changes otherusers can make to the consoles configuration:

This can be done in File/Option on the menu bar of the MMC By default, all new consoles you create are configured to use

Author mode, which provides full access to all console functions.

Other modes:

User Mode: Full Access

User Mode: Limited Access, Multiple Windows

User Mode: Limited Access, Single Window


9/23


Saving MMC ConsolesSaving MMC Consoles

Once you have configured a customconsole, you will want to save it so you can

access it later. MMC console files have an .msc extension.

By default, consoles are saved in the

Administrative Tools folder in the usersprofiles.

Once you have configured a customconsole, you will want to save it so you can

access it later. MMC console files have an .msc extension.

By default, consoles are saved in the

Administrative Tools folder in the usersprofiles.


10/23


Remote Desktop for AdministrationRemote Desktop for Administration

A client/server application that displaysthe local console of a remote server in

a window on your desktop, enablingyou to control the keyboard and mousefunctions as if you were logged on tothat server locally.

A client/server application that displaysthe local console of a remote server in

a window on your desktop, enablingyou to control the keyboard and mousefunctions as if you were logged on tothat server locally.


11/23


CONNECTING TO REMOTE COMPUTERSCONNECTING TO REMOTE COMPUTERS

Redirecting an MMC snap-in

Can be used to connect to and manage remote

computers

Creating a remote console

Redirecting an MMC snap-in

Can be used to connect to and manage remote

computers

Creating a remote console


12/23


MANAGING SERVERS WITH REMOTE

DESKTOP FOR ADMINISTRATION

MANAGING SERVERS WITH REMOTE

DESKTOP FOR ADMINISTRATION

Uses Terminal Services

Terminal Services Configuration (lab manual ex 2-5)

Configure parameters as to how you want the remoteuser to access the server

Terminal Services Manager (lab manual ex 2-5)

to manage the remote connection to the server

Allows two concurrent Remote Desktopconnections without additional licensing

Enables server to be managed as if you are

there

Uses Terminal Services

Terminal Services Configuration (lab manual ex 2-5)

Configure parameters as to how you want the remoteuser to access the server

Terminal Services Manager (lab manual ex 2-5)

to manage the remote connection to the server

Allows two concurrent Remote Desktopconnections without additional licensing

Enables server to be managed as if you are

there


13/23


ENABLING AND CONFIGURING THE

REMOTE DESKTOP SERVER

ENABLING AND CONFIGURING THE

REMOTE DESKTOP SERVER

By default, members of the

local Administrators groupare granted remote accesspermission. To allow otherusers to access the serverusing Remote Desktop, you

must click Select RemoteUsers and add them to thelist of remote desktop users.


14/23


CONFIGURING REMOTE DESKTOP

CONNECTION


CONNECTION

Use this on the client side to connect to the server. This option is

available in Windows Server 2003 and Windows XP.

This can befound in theCommunicationOption in the

Accessorieswindow.


15/23



CONNECTION


CONNECTION

Click theOptions box

and you canconfigure theclient.


16/23


INSTALLING AND CONFIGURING

REMOTE DESKTOP CONNECTION

INSTALLING AND CONFIGURING

REMOTE DESKTOP CONNECTION

The Windows Server 2003 distribution CD

The Systemroot\System32\Clients\Tsclient\Win32folder

This client program is installed by default with theWindows Server 2003 and Windows XP operatingsystems.

The Windows Server 2003 distribution CD

The Systemroot\System32\Clients\Tsclient\Win32folder

This client program is installed by default with theWindows Server 2003 and Windows XP operatingsystems.

Remote Desktop Connection client software can beinstalled from the following locations:Remote Desktop Connection client software can beinstalled from the following locations:


17/23


TERMINAL SERVICES

TROUBLESHOOTING

TERMINAL SERVICES

TROUBLESHOOTING

By default, Terminal Services uses TCP andUDP port number 3389 for all of its client/servercommunications. If either the client or the serverhas been configure to use a different portnumber (or is being blocked by a firewall), aTerminal Services client/server connection willnot be possible.

Users must belong to the Administrators orRemote Desktop Users group to successfullyconnect to the server using Remote Desktop for

Administration

By default, Terminal Services uses TCP andUDP port number 3389 for all of its client/servercommunications. If either the client or the serverhas been configure to use a different portnumber (or is being blocked by a firewall), aTerminal Services client/server connection willnot be possible.

Users must belong to the Administrators orRemote Desktop Users group to successfullyconnect to the server using Remote Desktop for

Administration


18/23


19/23


ENABLING REMOTE ASSISTANCEENABLING REMOTE ASSISTANCE

Using Control Panel

Using Group Policy

Using Control Panel

Using Group Policy

Remote Assistance must be enabled before itcan be used. It is disabled by default.


20/23


ENABLING REMOTE ASSISTANCEENABLING REMOTE ASSISTANCE

Open theSystemPropertiesfrom ControlPanel andselect the

Remote tab.


21/23


CREATING AN INVITATIONCREATING AN INVITATION

Select Help andSupport from theStart menu to open

the Help and SupportCenter screen andthen click the Remote

Assistance hyperlink.


22/23


SECURING REMOTE ASSISTANCESECURING REMOTE ASSISTANCE

Client can break a Remote Assistance sessionby pressing Esc.

The user must be present to accept a RemoteAssistance session.

Passwords for invitations should becommunicated by a different means than theinvitation itself.

Invitations should be issued for as short a period

of time as possible.

Remote Assistance uses TCP port number 3389for all its network communications. May need toblock this port to prevent users outside the

network from taking control of computers thatrequest remote assistance.

Client can break a Remote Assistance sessionby pressing Esc.

The user must be present to accept a RemoteAssistance session.

Passwords for invitations should becommunicated by a different means than theinvitation itself.

Invitations should be issued for as short a period

of time as possible.

Remote Assistance uses TCP port number 3389for all its network communications. May need toblock this port to prevent users outside the

network from taking control of computers thatrequest remote assistance.


23/23


SUMMARYSUMMARY

MMC is the primary system administration tool forWindows Server 2003.

MMC can be used to manage remote systems by theredirection of a snap-in.

Remote Desktop for Administration allows for the sameadministration of a server from a remote location as if theadministrator were logged on to the local console

interactively. Remote Assistance is a tool that enables users to

request assistance from an expert, who can then connectto the users computer and either view the users actionsor take over operation of the system.

MMC is the primary system administration tool forWindows Server 2003.

MMC can be used to manage remote systems by theredirection of a snap-in.

Remote Desktop for Administration allows for the sameadministration of a server from a remote location as if theadministrator were logged on to the local console

interactively. Remote Assistance is a tool that enables users to

request assistance from an expert, who can then connectto the users computer and either view the users actionsor take over operation of the system.

networking applications chapter 2 bb posting

Documents