technical documentation - · pdf filetechnical documentation five guys project manager...
TRANSCRIPT
TECHNICAL
DOCUMENTATION
FIVE GUYS
Project Manager
William Au
Eddie Kim
Farzad Savadkouhi David Rulofs Sungchul Kim
Course: Windows Server 2008 Intructor: Sarah Ashlie TA: Jak Poolthupya Date: March 28, 2013
2
Table of Contents
Overview .................................................................. 3
Team Members .............................................................. 4
Day 1 ..................................................................... 5
Network Diagram ..................................................... 5
Peer-to-Peer Configuration (Shared Folders) ......................... 6
Workstations ........................................................ 8
Mapping Network Drive .............................................. 10
Day 2 .................................................................... 11
Network Diagram .................................................... 11
Configuring Servers ................................................ 12
DHCP ......................................................... 12
DNS .......................................................... 13
Peer Networking with Windows Server ................................ 14
Mapping Network Drive .............................................. 15
Day 3 .................................................................... 16
Network Diagram .................................................... 16
Backup and Restore ................................................. 17
Configuring DFS Namespace .......................................... 18
Appendix A ............................................................... 19
Appendix B ............................................................... 20
Appendix C ............................................................... 21
3
Overview
Five Guys is a group of five students from Network System Security
Professional, UBC Continuing Studies. The students were given a group project to
accomplish in 3 days from 6419B Configuring, Managing, and Maintaining Windows Server
2008-based Servers course.
The group used computers in Room C600, Station 6-10, running Microsoft Windows
Server 2008 R2 Enterprise running Hyper-V Manager.
Each computer has a total of 9 virtual machines running (two Windows XP SP3,
two Windows Vista SP2, two Windows 7 SP1, and three Windows Server 2008 R2
Enterprise) with two Windows Server 2008 R2 servers running DHCP and DNS services.
HOST COMPUTER SPECIFICATION Username Password Operating
System Processor RAM Hard Disk Network
Administrator Pa$$w0rd Windows Server 2008 R2 Enterprise SP1 64bit
Intel Core i5 660 3.33 GHz
16 GB 320 GB Intel 82578M Gigabit
Retrieving Operating System ISOs Location \\137.82.206.54\iso Windows XP SP3 32bit XP_sp3.iso Windows Vista SP2 32bit Vista_sp2.iso Windows 7 SP1 32bit W7_sp1.iso Windows Server 2008 R2 Enterprise 64bit W2K8_r2_sp1.iso
4
Team Members
FIVE GUYS
Role Name Station Number Email
Project Manager William Au 7 [email protected]
David Rulofs 9 [email protected]
Eddie Kim 8 [email protected]
Farzad Savadkouhi 10 [email protected]
Sungchul Kim 6 [email protected]
5
Day 1 Network Diagram
Day 1 Hyper-V Settings Virtual Hard disks location C:\Users\Public\Documents\Hyper-V\Virtual Hard
Disks Virtual Network Manager Setting External Connection Type: Intel 82578M Gigabit
Network Connection Allow management operating system to share this network adapter
6
Peer-to-Peer Configuration (Shared Folders)
Windows XP SP3
Computer 5GWXPSP3A
Public Folder
Path C:\Public
UNC \\5GWXPSP3A\Public
Share Permission
User/Group Permission
Everyone Full Control
Authenticated Users Change, Read
Administrators Full Control
NTFS Permission
User/Group Permission
Everyone Read & Execute, List folder contents
Authenticated Users Modify
Administrators Full Control
Users Read & Execute, List folder contents
Private Folder
Path C:\Private
UNC \\5GWXPSP3A\Private
Share Permission
User/Group Permission
Authenticated Users Read
Administrators Full Control Power Users Change, Read NTFS Permission
User/Group Permission
Authenticated Users Modify Administrators Full Control Power Users Read & Execute, List folder contents Secure Folder
Path C:\Secure
UNC \\5GWXPSP3A\Secure$
Share Permission
User/Group Permission
Administrators Full Control
NTFS Permission
User/Group Permission
Administrators Full Control
7
Windows 7 SP1
Computer 5GW7SP1E
Public Folder
Path C:\Public
UNC \\5GW7SP1E\Public
Share Permission
User/Group Permission
Everyone Full Control
Authenticated Users Change, Read
Administrators Full Control
NTFS Permission
User/Group Permission
Everyone Read & Execute, List folder contents
Authenticated Users Modify
Administrators Full Control
Users Read & Execute, List folder contents
Private Folder
Path C:\Private
UNC \\5GW7SP1E\Private
Share Permission
User/Group Permission
Authenticated Users Read
Administrators Full Control Power Users Change, Read NTFS Permission
User/Group Permission
Authenticated Users Modify Administrators Full Control Power Users Read & Execute, List folder contents Secure Folder
Path C:\Secure
UNC \\5GW7SP1E\Secure$
Share Permission
User/Group Permission
Administrators Full Control
NTFS Permission
User/Group Permission
Administrators Full Control
8
Workstations Windows XP SP3 Virtual Machines
Computer Name 5GWXPSP3A Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting Default VHD File name 5GWXPSP3A.VHD
Accounts Group Username Password Administrators John Pa$$w0rd1 Power Users Ed Pa$$w0rd2 Standard Users Dave Pa$$w0rd3
Windows XP SP3 Virtual Machines Computer Name 5GWXPSP3B Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting Default VHD File name 5GWXPSP3B.VHD
Accounts Group Username Password Administrators John Pa$$w0rd4 Power Users Ed Pa$$w0rd5 Standard Users Dave Pa$$w0rd6
Windows Vista SP2 Virtual Machines Computer Name 5GWVISTASP2C Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting Default VHD File name 5GWVISTASP2C.VHD Requires installation of Integration Services.
Accounts Group Username Password Administrators John Pa$$w0rd7 Power Users Ed Pa$$w0rd8 Standard Users Dave Pa$$w0rd9
9
Windows Vista SP2 Virtual Machines Computer Name 5GWVISTASP2D Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting Default VHD File name 5GWVISTASP2D.VHD Requires installation of Integration Services.
Accounts Group Username Password Administrators John Pa$$w0rd10 Power Users Ed Pa$$w0rd11 Standard Users Dave Pa$$w0rd12
Windows 7 SP1 Virtual Machines Computer Name 5GW7SP1E Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting Default VHD File name 5GW7SP1E.VHD
Accounts Group Username Password Administrators John Pa$$w0rd13 Power Users Ed Pa$$w0rd14 Standard Users Dave Pa$$w0rd15
Windows 7 SP1 Virtual Machines Computer Name 5GW7SP1F Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting Default VHD File name 5GW7SP1F.VHD
Accounts Group Username Password Administrators John Pa$$w0rd16 Power Users Ed Pa$$w0rd17 Standard Users Dave Pa$$w0rd18
See Appendix A to automate creating accounts with a batch file.
10
Mapping Network Drive
UNC Mapping Drive Letter
\\5GWXPSP3A\Public R:
\\5GWXPSP3A\Private S:
\\5GWXPSP3A\Secure$ T:
\\5GW7SP1E\Public U:
\\5GW7SP1E\Private V:
\\5GW7SP1E\Secure$ W:
Map all these drives in all user accounts on all workstations.
See Appendix B to automate mapping process with a batch file.
If you run into issues correctly accessing the Windows 7 “secure$” share fold, please
refer to Appendix C for possible workaround.
11
Day 2 Network Diagram
Note: DHCP Reservation on 5GW7SP1E workstation.
Day 2 Hyper-V Settings Virtual Hard disks location C:\Users\Public\Documents\Hyper-V\Virtual Hard
Disks Virtual Network Manager Setting Private Virual Machine Network
12
Servers
DHCP
DHCP Primary Server
Computer 5GW2K8R2A
IP Address 192.168.0.1 Static IP Address
Scope
Address Pool 192.168.0.100 to
192.168.0.160
Address range for
distribution
192.168.0.140 to
192.168.0.160
IP Addresses excluded from
distribution
Reservation 192.168.0.137 00-15-5D-CE-03-09 (Static)
Delay Configuration 0 ms Subnet delay
Option 06 DNS – 192.168.0.1,
192.168.0.2
DHCP Secondary Server
Computer 5GW2K8R2B
IP Address 192.168.0.2 Static IP Address
Scope
Address Pool 192.168.0.100 to
192.168.0.160
Address range for
distribution
192.168.0.100 to
192.168.0.135
IP Addresses excluded from
distribution
Reservation 192.168.0.137 00-15-5D-CE-03-09 (Static)
Delay Configuration 2 ms Subnet delay
Option 06 DNS – 192.168.0.1,
192.168.0.2
13
DNS
DNS Primary Server
Computer 5GW2K8R2A
IP Address 192.168.0.1 Static IP Address
Forward Lookup Zones
Myco.com
Name Type Data
5GW2K8R2A Host (A) 192.168.0.1
5GW2K8R2B Host (A) 192.168.0.2
DNS Host (A) 192.168.0.2
DNS Secondary Server
Computer 5GW2K8R2B
IP Address 192.168.0.2 Static IP Address
Forward Lookup Zones
Myco.com
Name Type Data
5GW2K8R2A Host (A) 192.168.0.1
5GW2K8R2B Host (A) 192.168.0.2
DNS Host (A) 192.168.0.2
14
Peer Networking with Windows Server
Windows Server 2008 R2 Virtual Machine Computer Name 5GW2KR2A Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB IP Address Subnet Mask
192.168.0.1 (Static) 255.255.255.0
VHD File name 5GW2KR2A.VHD Accounts
Group Username Password Administrators Administrator Pa$$w0rd Administrators John Pa$$w0rd Power Users Ed Pa$$w0rd Standard Users Dave Pa$$w0rd
Windows Server 2008 R2 Virtual Machine Computer Name 5GW2KR2B Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB IP Address Subnet Mask
192.168.0.2 (Static) 255.255.255.0
VHD File name 5GW2KR2B.VHD Accounts
Group Username Password Administrators Administrator Pa$$w0rd Administrators John Pa$$w0rd Power Users Ed Pa$$w0rd Standard Users Dave Pa$$w0rd
15
Mapping Network Drive
UNC Mapping Drive Letter
\\5GW2KR2A\Public X
\\5GW2KR2A\Private Y
\\5GW2KR2A\Secure$ Z
Map all these drives in all user accounts on all workstations.
16
Day 3
Network Diagram
Note: DHCP Reservation on 5GW7SP1E workstation.
Day 3 Hyper-V Settings Virtual Hard disks location C:\Users\Public\Documents\Hyper-V\Virtual Hard
Disks Virtual Network Manager Setting Internal Only
17
Backup and Restore
Backup of Server 5GW2KR2A
Remote Backup Location: \\HostMachine\Backup
Windows Server 2008 R2 Virtual Machine Windows Server Backup
Computer Name 5GW2KR2C Workgroup FIVE GUYS RAM 1024 MB Hard Disk 20 GB Network Setting 192.168.0.3 (Static) VHD File name 5GW2KR2C.VHD Backup Type One time, Full Recovery Source \\5GW2KR2C\Backup
Accounts Group Username Password Administrators Administrator Pa$$w0rd
18
Configuring DFS Namespace
Computer 5GW2K8R2A Namespace UNC \\5GW2K8R2A\FIVEGUYS Type Stand-alone Target Folders \\5GWXPSP3A\PUBLIC
\\5GWXPSP3A\PRIVATE \\5GWXPSP3A\SECURE$ \\5GW7SP1E\PUBLIC \\5GW7SP1E\PRIVATE \\5GW7SP1E\SECURE$ \\5GW2KR2A\PUBLIC \\5GW2KR2A\PRIVATE \\5GW2KR2A\SECURE$
19
Appendix A
Batch File for Adding User Accounts and changing Password
NET USER JOHN Pa$$w0rd1 /ADD
NET LOCALGROUP Administrators John /ADD
NET USER ED Pa$$w0rd2 /ADD
NET LOCALGROUP “Power Users” Ed /ADD
NET USER DAVE Pa$$w0rd3 /ADD
NET LOCALGROUP USERS Dave /ADD
20
Appendix B
Batch File for Mapping Drives
NET USE R: \\5GWXPSP3A\PUBLIC /P:YES
NET USE S: \\5GWXPSP3A\PRIVATE /P:YES
NET USE T: \\5GWXPSP3A\SECURE$ /P:YES
NET USE U: \\5GW7SP1E\PUBLIC /P:YES
NET USE V: \\5GW7SP1E\PRIVATE /P:YES
NET USE W: \\5GW7SP1E\SECURE$ /P:YES
NET USE X: \\5GW2K8R2A\PUBLIC /P:YES
NET USE Y: \\5GW2K8R2A\PRIVATE /P:YES
NET USE Z: \\5GW2K8R2A\SECURE$ /P:YES
21
Appendix C
Windows 7 “Secure$” share folder access work around
On the share machine, run “gpedit.msc”
Computer configuration\Windows Setting\Security Settings\Local
Policies\Security Options:
Enable “User Account Control: Behavior of the elevation prompt for
administrators in Admin Approval Mode”
Warning: This will partially compromise the UAC for administrators on the
affected machine