Assignment

Task 1

Step 1

Install windows server through VMware

- Go to create new virtual machine Wizard

- And click on custom and click on next
- And click next
- Next it will ask for iso file but chose another option “ I will install the operating system later.
- Next it will asked for to select the operating system and choose the windows server 2019
- Next, firmware need to be choose when I choose BIOS.
- Next choose the processor and next need to choose the memory. And next choose for
network type and select the NAT network type.
- Next select the controller type and next and it will come with to create a new virtual disk
and then add the size of the disk. And everything will be ok and press finish button.
- Then your virtual machine as Window Server 2016 will be created.
- Next go to edit virtual machine setting and select CD/DVD and click on use ISO image file and
put the ISO file from download file and window setup will popup and need to put
information and it will install and the user name will be Administrator by default and
password need to put and windows will popup.

Step 2

To install DC and configure DC to centralized the authentication.

 - Next go to Dashboard
- Next go to Add Roles and Features Wizard

- Click to Next
 - Select the installation type as Role-based or feature based and click to the Next button

- sever role will come up and click on Active directory Domain Services and click on Next.
 - Add role and feature Wizard screen will popup and click on Add Features

- And Active Directory Domain services screen will popup and need to click the Next button.
- Installation screen will popup and need to click on install button.

- ADDs will be seen on side and post deployment configuration need to be promote this
server to a domain controller.
- Click on the Deployment configuration and select the deployment operation, where add a
new forest need to be select.

- Click next and Domain controller option screen will show and select forest functional level
and domain functional level and password need to be put.
- Click on next

- Click next and Domain controller option screen will show and select forest functional level
and domain functional level and password need to be put.
- Click on next
- Click on Next and installation and click Install
- Then restart and the domain name will come and pass word need to put to open the Domain
account.
Step 3:

To install one more machine for user’s workstation

- Go to create new virtual machine Wizard

- And click on custom and click on next
- And click next
- Next it will ask for iso file but chose another option “ I will install the operating system later.
- Next it will asked for to select the operating system and choose the windows 10
- Next, firmware need to be choose when I choose BIOS.
- Next choose the processor and next need to choose the memory. And next choose for
network type and select the NAT network type.
- Next select the controller type and next and it will come with to create a new virtual disk
and then add the size of the disk. And everything will be ok and press finish button.
- Then your virtual machine as Window Server 2016 will be created.
- Next go to edit virtual machine setting and select CD/DVD and click on use ISO image file and
put the ISO file from download file and window setup will popup and need to put
information and it will install and the user name will be Administrator by default and
password need to put and windows will popup.
- Need to go the Network and sharing centre and click on ethernet status and then click on
the Ethernet properties and go on advanced and click on Internet protocol version 4
TCP/IPv4) properties.
 - Click on Use the following DNS server addresses and in Preferred DNS server put the IP
address of the server and click ok.

- next go to system and security and click on change setting and the need to click on change and
computer name / Domain change. Type the computer name and click on Domain where the Domain
name come and click on ok.

- Next small screen will popup which is window security where need to put the password of
the domain and click on ok.

- Next computer name / Domain changes and click on ok .

Task 2

1. Open Network and Sharing Centre.

2. Right click on Local Area Connection and click Properties.

3. Double click on Internet Protocol TCP/IPv4.
4. Change the Preferred DNS server address to match the Primary Domain Controller's IP
Address (e.g. "192.168.1.10" in this example).
6. Click OK twice and close all windows.

Task 3

Step 1

- Go to Active Directory Users and Computer and click on ITcareer.com.au and click on New
and go to Organizational Unit.
- Next enter the name as Extratech and click on Ok then ExtraTech OU will create.
- Next Inside the OU ExtraTech create IT OU and then in IT OU create Engineering,
Networking, Software Organization Unit similarly create other OU in Engineering,
Networking and Software.
- Next After creating different OU for each department below screen will be seen.
- To create the user go to new object user in Civil OU and fill the detail of the user.
- Next enter the Password of complexity of 12 letter and confirm password and untick all the
list and click Next button.
- Similarly create all the user for the Civil Organizational Unit.
- Next Highlight all the users and go to the properties where different option will be shown to
change .
- Where need to write the information of the particular users.
- Next after putting all the information click on Apply and ok.
- Similarly it will goes to all the users of other Organizational Unit.

- Next From the below screen cisco has two users and they need to have membership of
Telecommunication.
- Next In Telecommunication OU need to create the new group and named as
telecommunication group .
- Next Go to the properties of the telecommunication Group and add the users from Cisco
OU.
- Next click on Ok and Member of telecommunication group will be seen and click on Apply and ok.

- Next Similarly Python should have membership of java.

- Next create the Java group and go to the properties and enter the object name from python
OU.
- And click on OK and apply and ok.

For Accidental deletion of users, please make the recovery plan.

Steps
- If we delete any users
- We cannot find the user , so we need to go to recycle bin to check.
- Next need to click on tools and go to the administrative center
-

-
- Then need to go ITcareer and upper side there is arrow which show to create the deletion
users.

- And need to fill up all the information

- Or need to enable recycle bin and on time enable the recycle bin cannot be disabled.

- Next after click ok the user will be restore in the same place.
Or

- Need to go to the browser,

- And AD restore need to be download and keep anywhere and extract the download file and
it always need to be login by administrative by default.
-
 Task 4
Create home Drive
Steps
- Create the New Home Folder in Local C in windows server.

- Next go to the properties of home folder by clicking right hand side. Then click on share button.
- Click on Advanced sharing Button where need to tick share this folder and click on apply and
ok.

- Next in permission for home folder full control will give to all the users and then click on ok.
- Next if we go to multiple users and click and go to the properties we will get different option where
we need to go profile and tick on home folder and click connect and Network path need to be write
and then Apply and click on ok.
- If we login with other users like pthapa then we will see Network location as home folder .
- Next for Advance security setting for home folder we can enable inheritance and remove users.
And allow full control to system, Administrator and Creator Owner.
Users on respective department should have read access and manager of each department should
have full access.

Steps

- Create the OU of different department and Create the group in different OU.
- Next Create the New group named as Telecommunication – folder RW group and click ok
- Similarly

- Similarly create another group named as Telecommunication- folder R Group in

Telecommunication OU and Click Ok.
- Next similarly for Java OU.
- Next similarly for civil OU. If we go to Civil -folder RW group properties below screen will come
where there are two members who have full control access.
- Next If we see Civil – folder R only group folder we see only one member has read access.
And click on apply and ok.
To give Permission of RW and R oly

Steps

-Go to the pc1

-And go to extratech folder

-Go to properties

-Go to sharing and then advanced sharing

-And click on share folder and give permission of full control for all users to extratech folder

-And go to civil folder and go to properties and after that go to security.

And go to advanced and then go to disable inheritance to remove the users and then click on add
and after that click on select a principle

- Next click on one object from the Civil-Folder RW group then we see Basic permission given
to RW group and we need to click on full control and ok.
 - Next after applying the RW permission and R permission to civil group. In Advanced security
setting for civil we see all permission which is allow to the users. And click to apply and ok.

For making shared drive

-go to tools

-And go to group policy management

Click on forest ITcareer.com.au and click on domain and then click on ITcareer.com.au and it comes
with New GPO and put the name company folder which is shared drive.

And click on company folder and go to edit

And go to the users and click on preference and click on windows setting and it come with drive
maps and click on drive map
And click right hand and click on new and mapped drive and copy the network path from extratech
properties
Shared folder

In different users Shared folder will be shown in Network location Named as Extratech(\\WINSER)
(J;).
- Since the permission of RW and RW access is applied. Folder cannot be open

- Next to hide unnecessary files and folder for those who doesn’t have permission
Go to the server manager

And go to files and storage

Click on share and go to extratech

Click on properties

And go to setting and tick to enable access based enumeration

Then click on Apply and ok.
And checking to the other user

For example, I am checking for Ganesh Gurung who only has a permission of civil folder.

After login

As as we go on Extratech network drive we see

Task 5

Go to the internet explore in windows server.

Then go the www.google.com

And search for Firefox download for msi

Click on Firefox ESR-68.12.0 to download

Make the folder as a software in the local C.

And go the properties of the software folder and go to sharing

And copy the network path

Then go to group policy management

And click on Extratech and create new GPO

- Next the name of GPO will be Firefox installation then click on ok.
- Next go to edit by clicking on Firefox installation

- And go to policies where we see software setting

- And it come with software installation

- Click on New and go to package

-
 - Next it automatically shows to “The PC” where in file name need to put the network path \\
WINSER\software. Then it automatically shows the Mozilla Firefox.

- next the software will be assigned in computer Configuration.

If we logout and again sign in we see Mozilla Firefox in the screen.

- Next Similarly it need to done on user configuration. Where we can see the Mozilla Firefox
on user pc’s.

- Similarly, same process is done to deploy Note++ software in the windows server.
 -

Click on ok.

- Next go to the policies and software setting and Software installation

-
- Next After sign out and new sign in the Notepad++ will Popup in the Windows screen.