MCP 70-290

Options under creating User

: The first option is User must change password at first

logon this means that the first time the user will logon he
has to change his password

2: The second option is User cannot change password this

means that the user will not be able to change the password
3: Password never expires means that the password which
the administrator has entered will never expires
4: This is same for creating user for Windows server 2003
and windows 2000 Server
MMC Microsoft Management Console
What is the Use of MMC ?
The Use of MMC is to Maintain the OS like windows xp and
windows server 2003. MMC is a tool which is used to manage
the operating system actually mmc is a tool which are located
under administrative tools the tools which are under
administrative tools are used to manage the machine these
mmc cant be modified or deleted they are called preconfigured
MMC which are installed during the operating system there is
an another type of mmc which is called custom mmc in which
you can add your own tools which are located under the os but
these will not be added in preconfigured mmc you can save
your own mmc in another drive or in desktop.
How to create MMC
How to enable Remote Desktop
1: Type the computer name or ip address
1: And click connect
2: If it is showing some error then do the following
3: Go to My computer right click properties
4: Select Remote Tab
5: And select enable Remote desktop on this computer
How to change the ip address of NIC card
How to Check whether Nic card is working
or not
1: The use of ping command is to check whether your
Physical connectivity is up or not .
2: For checking the connectivity the ip address which
was created by IANA is 127.0.0.1 this ip you have to
enter whether your machine is connected with the lan
or not .
3: The full form of ping is Packet internet gropher .
How to check the Mac-address of NIC card
Now there are so many options when you enter the ip
config /all
1: ip address –It shows the Ip address of Nic Card
2: Subnet Mask – Of ip address
3: Default Gateway- If you want to access the internet the
first thing is you have to purchase a broadband connection
after that you have to enter the default gateway if you want
to access the internet this gateway is provided by isp this
gateway is also used when you want to share the internet
connection among different workstations.
4: Physical address – This is the Mac-address of your Nic card
Except this there are many things when you go to Tcp/ip Properties located in NIC card .
Preferred Dns Server – Now when I talk about DNS what is DNS the full form of DNS is Domain Name
Service the use of this service is used for Name to Ip conversion and Ip to Name conversion for
ex: When ever you access any website like http://yahoo.com this is the name of the web server
the normal users access the website by using its Name but what happens in Background
nobody knows . Whenever you access any website after entering the information in the http
Bar it gows to your ISP DNS server it searches the Ip address for the particular Name which the
User has Requested if it finds any ip address registered to that name it converts that packet
from Name to ip and sends on to the Web server if it doesn’t find any registered ip to that
particular name it sends on to the other Isp or other DNS Server . If other Dns Server of
another Isp also doesn’t finds any entry it will forward to another dns server of another Isp
this happens because on Wan every ISP is connected directly to each other by the Use of
Router. Now If any of the Isp finds any entry for that particular name it send on to the Web
server but when the user will receive reply for the website he requested he will receive by its
name because when the packet comes back to your pc first your Isp receive the packet and
converts the request from Ip to Name and then sends the packet to your pc. Keep one thing in
mind that you can access any website by only using its name you cant access any website by its
ip address if you try to access any website by its Ip it will show Http 404 page not found .
How to Increase Licenses for Remote
Desktop Using Terminal Server
The Number which you have to enter it depends upon
how many Clients you have in your office for ex: if you
have 500 computers you have to install 500 licenses in
server so that they can easily access the server and run
the applications by using Remote desktop connection.
Chapter 2: Introducing Windows Server
2003 Editions
In Previous versions of Microsoft Windows like
Windows 2000 Server there were only two versions
were available but in Windows Server 2003 there are
different versions available for different purpose the
editions are .
Windows Server 2003 Standard edition
Windows Server 2003 Enterprise edition
Windows Server 2003 Web edition
Windows Server 2003 Datacenter edition
Windows Server 2003 Standard Edition
The use of standard edition is used in small to mid sized
companies where every office is connected with a central server like
in banks where every Branch office Bank is connected with the
Main head office Bank all the Transactions which are done in the
Branch office are stored on the main head office server even your
bank accounts also the use of this type of network is that if your
branch office server is failed or formatted there is no loss of data
because all the data are stored on a centralized server as soon as the
branch server comes up it can access the data from the main server
and the advantage is that if you want that your account should be
transferred from one city to another it can be easily transferred
from one location to another because the account is stored on a
centralized database .
Windows Server 2003 Enterprise edition
The use of windows Server 2003 enterprise edition is it
is used in central office or in big sized companies this
edition is normally used in Bank sectors or in
companies where different Branch offices are
connected with the central server all the security
policies are applied from the central server this type of
Network is called centralized management network
where every thing is being accessed from the central
server .
Windows Server 2003 Web-edition
The use of Windows server 2003 Web-edition is to host web-
applications and Web-sites of a particular company this a
advantage over previous windows versions where to host a
particular web-site there were no editions are available because
of that either the company has to host the web-site on the same
server or they have to purchase as separate os of another vendor
because in previous versions of windows the security was not up
to the mark for hosting a particular website. In windows server
2003 Web-edition the security is there because windows 2003
web-edition is built up on .NET framework and IIS version 6 the
full form of iis is internet information Service used for creating
Web-applications and web-sites in windows server 2003
Windows Server 2003 Datacenter edition
The use of windows server 2003 Datacenter edition is
that it is used to store the database of users the
database consists of files folders mailboxes and etc to
store in a centralized location for ex: Whenever you
access any website for checking your mail or if you want
to send any mail from your mail account all your mails
attachments photos and even your mailboxes are stored
on a Mail server in which the operating system can be
windows server 2003 Datacenter edition or enterprise
edition depends on the requirement of company .
HCL requirements for installing windows
server 2003
Web Standard Enterprise Datacenter
Min processor 133 MHz 133 MHz 133 MHz 400 MHz

Multiprocessor 2 4 8 64
Min ram 128 Mb 128 Mb 128 Mb 512 Mb

Max ram 2 Gb 4 Gb 8 Gb 32 to 512 GB

Types of Servers :
Now there are variety of servers which you can
configure in windows server 2003 every servers has a
different purpose for configuring you can configure
server from Start > Admintrative tools > Configure
your Server the servers which you can configure in
windows server 2003 are :
Application server
Print Server
Terminal Server
Remote access/ VPN Server
Mail Server
File Server
Streaming Media Server
Domain Controller (Active –Directory)
DNS Server
DHCP Server
WINS Server
Total there are 12 type of servers in windows server 2003
which you can configure in windows server 2003 which
we will see in the next section.
Application Server:
The use of Application server is to host application like
Vb.net and Asp.net this applications are used to create
software's web-applications and websites which users access
by sitting in the remote locations by using Remote Desktop
connection the use of this server is if you are having
machines of Pentium III and II these machines have very low
Hardware configurations because of that the higher
applications like vb.net and asp.net java and etc cant run on
these machines if you have configured an application server
then you can dump all this applications on the server and
users can access these applications by using remote desktop
connection by sitting in the remote location .
Print Server :
 The use of the print server is to share the printer in a local LAN but for only
sharing purpose the print server is not used it is used for different purposes also
the main use of print server is to assign priority to different groups now when I
say priority what is the use of giving priority in a print server suppose assume that
you are working in a company as a system administrator and your company have
different groups like Hr department Managers department and Account
department and the hr users report that whenever they send any documents for
printing their documents has to wait until the printer is free they want whenever
they will send any documents for printing their document should be printed first
even if printer is busy by printing some other groups documents in that case you
have to assign the hr group in a higher priority like 99 so that whenever they will
send any documents for printing their document will be printed first you can also
define that if hr group submits any document for printing and in that particular
time the printer is printing document of accounts group it has printed 54
documents and 55th document is printing in that case you can define what
actions the printer will take whether it will cancel the document or it will print
that document and after that it will start printing documents of hr group .
Terminal Server :
The use of the terminal server is it is being used to
provide licenses to the users so that they can access the
server by using Remote Desktop connection until you
will configure a terminal server users will not being
able to access the server by using Remote desktop
connection.
Remote access / Vpn server
The use of this server is that it provides remote connectivity by using
the internet connection if the user is sitting in a remote location and
suddenly his company calls him and says that there is some problem
in the server due to that users are not being able to access the server or
access the database in this type of scenario if the administrator is in
the office he can troubleshoot the problem but what if the
administrator is not in the location he is on leave in this type of
scenario if the administrator has a laptop and a internet connection
then he can connect to the server by sitting in his location by using
Vpn connection the advantage is that by sitting in the remote location
administrator can troubleshoot the problem but the administrator has
to know the public ip of the server unless he knows the public Ip he
will not being able to connect to the server .
Mail Server :
The use of mail server is to send mail from the local
intranet to the Internet it is also used for mail
receiving purpose the protocol which is used for mail
sending purpose and receiving is SMTP and POP3 the
port number for SMTP is 25 and POP3 is 110 the full
form of SMTP is Simple mail transfer protocol and
POP3 is Post office Protocol.
File Server
The use of file server is to store files and folders in centralized
server users access all files from the file server what ever changes
they make in the file are saved in the file server file server is also
used for assigning disk space to the users who are using the file
server to save their data this type of concept is called Disk quota
which we can assign in the file server by using disk quota the
advantage of disk quota is that we can limit disk space to the users
how much disk space the users will use for saving their data on the
file server by assigning minimum disk space and maximum disk
space for users. The users who will extend the disk space the server
will not permit them to save any additional data in the file server
because they have extended the limit of disk space.
Streaming media server
It is used to share audio and video files on the internet
the use of streaming media server is that by using this
server you can see movies listen songs on the internet
if your server is registered on the internet you can
upload video clips songs and etc.
DNS Server
Now when I talk about DNS what is DNS the full form of DNS is Domain Name Service
the use of this service is used for Name to Ip conversion and Ip to Name conversion for
ex: When ever you access any website like http://yahoo.com this is the name of the web
server the normal users access the website by using its Name but what happens in
Background nobody knows . Whenever you access any website after entering the
information in the http Bar it gows to your ISP DNS server it searches the Ip address for
the particular Name which the User has Requested if it finds any ip address registered
to that name it converts that packet from Name to ip and sends on to the Web server if
it doesn’t find any registered ip to that particular name it sends on to the other Isp or
other DNS Server . If other Dns Server of another Isp also doesn’t finds any entry it will
forward to another dns server of another Isp this happens because on Wan every ISP is
connected directly to each other by the Use of Router. Now If any of the Isp finds any
entry for that particular name it send on to the Web server but when the user will
receive reply for the website he requested he will receive by its name because when the
packet comes back to your pc first your Isp receive the packet and converts the request
from Ip to Name and then sends the packet to your pc. Keep one thing in mind that you
can access any website by only using its name you cant access any website by its ip
address if you try to access any website by its Ip it will show Http 404 page not found .
DHCP Server
The use of DHCP Server is to assign ip address to clients
automatically in Local area Network the use of this server is
that if you have not configured Dhcp then you have to assign
each and every machine a Ip address if you have configured a
dhcp server the server will assign a ip address automatically
to the client only thing which you have to assign in the dhcp
server is a scope of ip address in the server which will define
address pools like starting address and ending address plus if
there is a DNS server you can define the ip address of the
server also in the DHCP server plus the default gateway of
your router also from which the packets will travel outside of
the LAN.
WINS Server
The use of WINS server is to resolve name to ip and ip to
name conversion this server was used in pre windows 2000
server like windows NT,95,98 etc the concept of wins was
stopped when windows 2000 server was launched with that
DNS concept was also launched. When Wins server was used
at that time administrator has manually create a file which
was called Lmhosts file in this file the administrator has to
manually enter each and every website which are accessed in
the company the file contains name of the web site and its ip
address if any website which a user is trying to accessing is
not in the file then the wins server will not be able to resolve
that request properly.
Chapter 3: Introducing Active-Directory in
Windows Server 2003
Active-Directory is used called a centralized repository of
data which is used to store the data in the database. A
database is the collection of data which is used to store the
data in a centralized location ex: Sql, Exchange, oracle these
are some types of database. A good example of a database is
lets take a telephone directory the use of a telephone
directory is to locate the telephone numbers for a normal user
it is a centralized location where a user can search for
numbers very easily this eases the administration effort same
thing is in active-directory the data in active-directory can be
Users,Groups,Ou,Containers,Group policy,Files,Printers, and
etc.
Differences Between Global-Catalog Server
& AD Schema
The use of global catalog server is to locate the objects in active-
directory forest the main function of a global catalog is that
when ever you create objects in a member server the server
searches the global catalog for creating objects if global catalog
is not found you will not be able to create the object plus an
additional function of global catalog in a active-directory forest
is to locate the object from the forest for ex: if you are searching a
file or folder in an active-directory forest the global catalog will
search the forest for knowing which sever contains the exact data
by default the first server which you create in active-directory
forest becomes the first global-catalog server you can create
additional global catalog in active-directory forest.
Active-Directory Schema
One of the defining elements of a forest is schema. The schema is
the definition of the types of objects that are allowed in a
directory and the attributes that are associated with those objects.
These definitions must be consistent across domains in order for
the security policies and access rights to function commonly.
There are two types of definitions of schema attributes and
classes also known as schema objects or metadata. Attributes are
defined only once and then can be applied multiple classes as
needed. The objects classes, or metadata are used to define
objects. For ex: the users class requires certain attributes such as
user name password and so on. If you want to install Active-
directory Schema then go to Start>RUN> regsvr32 schmmgmt.dll
Active-Directory Forest and Trusts
What is a Active Directory Forest ?
A forest consists of domains which are created in the forest the domains
which are located inside the forest are Servers which contains the data for
users for ex: Lets take an example of yahoo.com whenever you visit the main
website of yahoo there are many options under the website in other words
these are links to connect to another server like
yahoomail.com,yahoogames.com,yahoonews.com,yahoobussiness.com and
etc. Each and every server contains its own data like yahoomail.com is
specifically for storing mailboxes of users yahoogames.com is used for playing
games these all the servers are interconnected with the main server which is
yahoo.com in other words Domain controller which controls all the server
inside the yahoo forest a user who has created a account in yahoomail.com
can access any server by using his mail account but inside a forest he will not
be able to access any server outside of the forest like hotmail.com.
Domain Controller Active-Directory Forest

Yahoo.co
m

Member Servers
Yahoogame
s.com

Yahoomai Yahoobus
l.com iness.com
Trusts
The trust relationship are by default created at the time when
you add member server in Active-directory there are many types
of trust relationship
Forest Trust
Parent-child Trust
External Trust
Realm Trust
Shortcut Trust
The use of trust relationship is when ever the DC communicates
with the member servers or replicates any changes from the DC
to the member servers the trust relationship are used.
 External
Trust used
Forest Trust Relationship for previous
Parent child
versions like
Trust
windows
Nt4.0

Yahoo.c Realm Trust msn.co

om used for Non m
windows OS like
Linux
Yahooga Microso
mes.co Shortcut Trust
ft.com
m

Yahoob Hotmail mcp.co

Yahoom
usiness. .com m
ail.com
com

Shortcut Trust: Is Normally used for improving the logon process for ex: if a user is
located in yahoobusiness.com and he is accessing a file which is located on
hotmail.com then the process has to go from yahoo.com to msn.com and then to
hotmail.com it is a time consuming process therefore for solving this purpose we
will create shortcut trust.
Active-Directory Users & Computers
The use of Active-Directory users and Computers to
create Users,Computers,Organisational Unit, Files,
Printers and etc.To access active-directory users and
computers go to Start>Run>Dsa.msc or from
Start>programs>Administrativetools>Active Directory
Users and Computers. You can also apply group policy
by using Active-directory users and computers.
Installing Active-Directory
Before Installing Active-Directory there are some
prerequisites which has to be followed they are.
Installing NetBIOS Protocol
Server should be in Workgroup
A Static ip should be Present in the NIC
For Installing Active-Directory do the following Steps
Start >Run>DCPROMO>Click ok
On the Welcome to the Active-Directory wizard Click
next
On the Operating System Compatibility Click Next
On the Domain Controller Select Domain Controller
for a new domain and Click next (figure 1)
On the create new domain page ensure that Domain
in a new forest is Selected and Click next (figure 2)
On the New domain page enter the full DNS Name for
new domain box type the name of the domain and click
next.(figure 3)
After a few minutes the NETBIOS name page appears. It is
recommended that you use the default NETBIOS name
and click next.(figure 4)
On the database and log folders type the location of the
active-directory database in the database folder and
active-directory log in the log folder box. It is
recommended that you place the database and the log file
on separated hard disks formatted with NTFS. (Figure 5)
On the shared volume page type the location of the Sysvol folder in
the folder location box. The shared system volume must be located
on a part ion or volume formatted with NTFS. Click next
 On the DNS Registration page view the details of the diagnostics
test. Then select the appropriate option, as follows
 If you have Configured DNS but there is a problem and you have fixed
it select I have corrected the problem. Perform the DNS test again.
 If you have not yet Configured DNS you want the wizard to configure
it select install and configure DNS server on this computer and then
click next.
 If you have configured DNS but there is a Problem you would like to
correct this problem later by configuring DNS manually and then
click next.
On the Permissions page select the appropriate default
permission for user and group objects and then click next.
On the Directory Service Restore mode password page
type the password you want to assign to this server
Administrator account in the event the Computer is
started in directory service restore mode in the restore
mode password box. Confirm the password in the confirm
password box and click next.
On the summary page click next
On Completing the Active-Directory installation wizard
page appears click finish and then click Restart now.
How to Create Child Domain
The Prerequisite for child domain is the Machine must have a
static ip address you must assign the ip address of the DNS server
in your preferred DNS Server tab and click ok. Plus the windows
should be windows server 2003 it should be in workgroup.
Start >Run>DCPROMO>Click ok
On the Welcome to the Active-Directory wizard Click next
On the Operating System Compatibility Click Next
On the Domain Controller Select Domain Controller for a new
domain and Click next (figure 1)
On the create new domain page ensure that Domain in a new
forest is Selected and Click next (figure 2)
When you click on next there will be three options in create a
new domain page Domain in a new forest, Child domain in an
existing domain tree, domain tree in an exist sting forest select
the second option and e click on next enter the credentials page
enter the username password of the main domain controller enter
the username of the user who has administrative privileges the
username which you will enter must be belong to the following
group Domain admin, Schema admin, Enterprise admin and the
password of the user account if you haven't created any user on
domain controller enter the username administrator and
password of the account the username password you have to
enter of the domain controller administrator account.