Professional Documents
Culture Documents
-1-
MC LC
LI CM N ................................................................................ Error! Bookmark not defined.
LI M U .................................................................................................................................4
CHNG I: TNG QUAN TI .............................................................................................. 5
I. GII THIU KHI QUT V CNG TY ...................... Error! Bookmark not defined.
1. GII THIU V DOANH NGHIP: ........................... Error! Bookmark not defined.
2. TR S V CC CHI NHNH: ................................. Error! Bookmark not defined.
II.
KHI QUT TI .....................................................................................................5
CHNG II: CC BC THC HIN TI .........................................................................6
I. Upgrade Domain Controller 2003 to Domain Controller 2008:..........................................6
1. Mc ch: .........................................................................................................................6
2. Cc bc thc hin: .........................................................................................................6
3. Cc bc thc hin: .........................................................................................................6
a. Nng cp Domain Functional Level: ...........................................................................6
b. Upgrade ln Windows Server 2008: ............................................................................7
c. Kim tra sau khi nng cp: ........................................................................................11
II.
Nng cp Domain Controller Domain Group Domain User Client Join Domain 12
1. Chun b:........................................................................................................................12
2. Cc bc thc hin: .......................................................................................................12
a. Nng cp Domain Controller:....................................................................................12
b. Join my workstation vo Domain: ...........................................................................18
c. To Domain Group: ...................................................................................................19
d. To Domain User: .....................................................................................................20
III.
Windows Deployment Services: ...................................................................................21
1. Mc ch: .......................................................................................................................21
2. Chun b:........................................................................................................................22
3. Cc bc thc hin: .......................................................................................................22
a. Ci t v cu hnh DHCP:........................................................................................22
b. Ci t v cu hnh WDS: .........................................................................................24
c. Thc hin ti my Client ........................................................................................... 29
IV.
Windows Server Backup ............................................................................................... 32
V. Network Access Protection ............................................................................................... 44
1. Mc ch: .......................................................................................................................44
2. Chun b:........................................................................................................................45
3. Cc bc thc hin ........................................................................................................45
a. Cu hnh Nap server: .................................................................................................45
b. Ci t v Cu hnh dch v DHCP ...........................................................................51
c. Cu hnh trn my Client ........................................................................................... 52
d. Cu hnh truy cp hn ch .........................................................................................55
VI.
VPN SSTP .....................................................................................................................58
1. Mc ch: .......................................................................................................................58
2. Ci t Stand Alone Root CA........................................................................................58
3. VPN Server xin v ci Certificate .................................................................................60
VII. Internet Information Service 7.0 ....................................................................................75
1. Cu hnh IIS Server .......................................................................................................75
VIII.
DFS ............................................................................................................................ 86
1. Gii thiu .......................................................................................................................86
-2-
-3-
LI M U
-4-
I.
KHI QUT TI
Terminal Services.
-5-
I.
1. Mc ch:
Nng cp h thng ang hot ng Windows Server 2003 ln Windows Server
2008. Gi nguyn ton b ti nguyn ang c trong h thng. v d: cc domain, OU,
user, GPO.
2. Cc bc thc hin:
Lu :
- Backup h thng hin ti, phng h s c.
Chun b:
-
athena.edu.vn)
-
2k3.
-
3. Cc bc thc hin:
a. Nng cp Domain Functional Level:
M Active Directory Users and Computers. Chut phi vo tn domain, chn
Raise Domain Functional Level. Chn Windows Server 2003 trong Select an
available domain functional level. Sau chn Raise, chn yes.
-6-
Trong Active Directory Users and Computers, ta to vi OU, User, Group sau khi
nng cp
-7-
-8-
-9-
-10-
-11-
II.
B1: Chnh IP (Start->Setting->Network Connection->Right Click Properties>Chn Internet Protocol Version 4 (TCP/IPV4) ).
-12-
-13-
B4: Next ->check Create a new domain in a new forest -> Next
-14-
-15-
-16-
-17-
-18-
B2: Chut phi My Computer -> Properties -> Computer Name-> Change->
Nhp tn Domain->Nhp User: Administrator v Password: @then@
c. To Domain Group:
M Active Directory Users And Computers-> chut phi ln domain
athena.edu.vn->New->Group
-19-
d. To Domain User:
M Active Directory Users And Computers-> chut phi ln domain
athena.edu.vn->New->User
-20-
III.
1. Mc ch:
-21-
IP: 192.168.21.1/24
PDNS: 192.168.2.1
-
Vo Admin Tools-> Server Manager -> Roles-> Add Roles-> Next-> Chn
DHCP Server->Next-> Next
-22-
-23-
-24-
Nhp phi Install Images -> Add Install Image copy source ci
-25-
Nhp phi Bootl Images -> Add Bootl Image thm file boot ca
-26-
<WillShowUI>OnError</WillShowUI>
<InstallImage>
<ImageName>Windows Longhorn SERVERENTERPRISE</ImageName>
<ImageGroup>Deploy Windows server 2008</ImageGroup>
<FileName>Install.wim</FileName>
</InstallImage>
<InstallTo>
<DiskID>0</DiskID>
<PartitionID>1</PartitionID>
</InstallTo>
</ImageSelection>
</WindowsDeploymentServices>
<DiskConfiguration>
<WillShowUI>OnError</WillShowUI>
<Disk>
<DiskID>0</DiskID>
<WillWipeDisk>True</WillWipeDisk>
<CreatePartitions>
<CreatePartition>
<Order>1</Order>
<Size>7000</Size>
<Type>Primary</Type>
</CreatePartition>
</CreatePartitions>
<ModifyPartions>
<ModifyPartion>
<Order>1</Order>
<PartitionID>1</PartitionID>
<Letter>C</Letter>
<Label>TestOS</Label>
<Format>NTFS</Format>
<Active>true</Active>
<Extend>false</Extend>
</ModifyPartion>
</ModifyPartions>
</Disk>
</DiskConfiguration>
</component>
<component name="Microsoft-Windows-International-Core-WinPE"
publicKeyToken="31bf3856ad364e35" language="neutral"
versionScope="nonSxS" processorArchitecture="x86">
<SetupUILanguage>
<WillShowUI>OnError</WillShowUI>
<UILanguage>en-US</UILanguage>
</SetupUILanguage>
<UILanguage>en-US</UILanguage>
</component>
</settings>
</unattend>
-27-
-28-
-29-
-30-
-31-
IV.
-32-
B1: M Windows Server Backup, vo Action->chn Backup Once>Ca s Backup Option, kim tra chn Different options chn Next
-33-
-34-
-35-
-36-
-37-
-> Kim tra Windows Explorer, vo cng lu file backup kim tra c folder
WindowsImageBackup (folder lu tr cc file backup).
-38-
-39-
-40-
-41-
-42-
-43-
B3:Ca s Restore your entire computer from a backup, chn Use the latest
available backup->Next
V.
-44-
domain Athena.edu.vn.
3. Cc bc thc hin
a. Cu hnh Nap server:
B1: Ci t Network Policy and Acces Service
-45-
I
n
s
t
a
l
l
->Qu trinh ci t din ra->hon tt->close
B2:Khai bo cc tiu chun sc khe:
-
-46-
-47-
-48-
-49-
Tng t to cho Limit Access Policy, chn Health Policies Add chn
Limit Access OK Next chn Access denied. Chn Perform machine
health check only, tt ht cc la chn cn li Next Next Finish.
-50-
-51-
-52-
-53-
-54-
d. Cu hnh truy cp hn ch
-
-55-
-56-
-57-
VI.
VPN SSTP
1. Mc ch:
VPN l gii php h tr truy cp t xa c chi ph v hiu qu tt nht hin
nay cho mt h thng mng doanh nghip. Ta c th trin khai h thng VPN
phc v cc nhu cu:
-
(HTTP over SSL) port 443. Thng thng, trong h thng mng hin nay d l
cc Firewall hay Proxy server u cho php truy cp HTTP v HTTPS. V vy, d
bt k u cc my client u c th kt ni VPN bng c ch SSTP v m bo
bo mt c gi tin v p dng phng php m ha SSL.
2. Ci t Stand Alone Root CA
-
-58-
-59-
certificate request.
-60-
-61-
-62-
-63-
-64-
-65-
-66-
-67-
-68-
-69-
-70-
-71-
-72-
-73-
-74-
-75-
-76-
-77-
-78-
-79-
Start Website.
-80-
-81-
C:\athena.txt
-
certificate.
-
chn link th 2
-
-82-
view status of the Pending certificate request xem trng thi ca Certificate
v ci CA v my.
-
vi tn certnew.cer
-83-
Response v t tn l athena.com.vn
-84-
-85-
VIII. DFS
1. Gii thiu
-
Trong mng LAN khi h thng mng i hi phi thc hin vic
chia s ti nguyn gia cc ngi dng trong mng vi nhau ngy cng nhiu
th i hi h thng phi c mt File Server m ng cng vic ny. Tuy
nhin, trn thc t, vi mt h thng mng ln th vic mt my File Server
gnh tt c cc yu cu l khng th. M yu cu l lm sao c nhiu File
Server hn v cng chia s mt lng ti nguyn no . gii quyt,
Microsoft a ra mt gii php l Distributed File System (DFS) hay cn
gi l h thng d liu phn tn. D liu dng chia s cho ngi dng s
khng cn nm trn 1 File Server na m ty vo yu cu thc t m ngi
-86-
qun tr s thit k 2 hay nhiu File Server cng thc hin vic chia s ny,
tng hp tt c cc File Server ny c gi l DFS.
2. Ci t DFS role service
-
-87-
To NameSpace
-
-88-
Setting
-89-
share
-
close.
-
-90-
To Replication group
-
-91-
-92-
dn n th mc d liu OK OK Next.
-
-93-
IX.
AD RMS
3. Ci Enterprise
-
-94-
Cu hnh HTTPS
-
-95-
Add site Binding : Type: HTTPS, IP:All unassigned, Port: 443, SSL
certificate : Web
-
Th truy cp https://athena.edu.vn
-96-
4. Ci t RMS
-
-97-
-98-
-99-
-100-
-101-
X.
Terminal Services
Trn my Server bt chc nng Allow Access trong Tab Dial-in cho
user cn Terminal.
-102-
-103-
-104-
-105-
-106-
-107-
-108-
-109-
-110-
XI.
1. Mc ch
-
-111-
Trong New Cluster: Connect chn card Lan Next Add thm
1 IP o Next.
-112-
-113-
next Finish.
-114-
-115-
ha.
-
Netsh
interface
ipv4
set
address
name=2
source=static
[DCINSTALL]
ReplicaOrNewDomain=Domain
TreeOrChild=Tree
-116-
CreateOrJoin=Create
NewDomainDNSName=athena.com
DNSOnNetwork=yes
DomainNetbiosName=athena
AutoConfigDNS=yes
SiteName=Default_First_Site_Name
AllowAnonymousAccess=no
DatabasePath=%systemroot%\ntds
LogPath=%systemroot%\ntds
SYSVOLPath=%systemroot%\sysvol
SafeModeAdminPassword=
CriticalReplicationOnly=No
RebootOnSuccess=yes
Lu file ny trong th mc gc C
DCPROMO /Unattend:unattend.txt
-117-
-118-
vo my client.
-119-
Core t xa.
-120-
-121-
OK.
-122-
Server
-
-123-
Chn Set add user mun y quyn qun l RODC Next Next
Chn Use this specific domain controller, chn Server DC chnh Next
Next Nhp mt khu Next Next Check v Reboot on
complete.
-124-
Kim tra.
-125-
-126-
-127-
Kim tra.
Quy M:
-128-
Gip cho sinh vin c kh nng nhn thc v cng vic tng lai v k nng
sinh vic.
-129-