VERSION 0326 QUE BLUEBOOK SERVER 4 THIS TEXT IS FROM QUE'S BLUE BOOK. ********************************************************* DO NOT...REPEAT DO NOT ADD THIS TEXT YO YOUR SYBEX SERVER DOC SINCE THEY ARE ENTIRELY DIFFERENT BOOKS!!!! *********************************************************** THIS DOCUMENT DOES NOT MERGE INTO ANOTHER OTHER DOCUMENT!!! ************************************************************************** CHAPTER 1 PLANNING *************************************************************************** MICROSOFT HAS 3 OS'S IN THE MARKET PLACE 1.WINDOWS 95/98 2.NT WORKSTATION 3.NT SERVER WINDOWS 95/98 ************* REQUIRES A MIMIMUM 386DX/20 4/8MB 40MB 95/98 HAS PRE-EMPTIVE MULTITASKING BUT NO MULTIPROCESSOR SUPPORT. 95/98 SUPPORTS PNP AND HAS MANY MORE DRIVERS THAT DOES NT. 95/98 RUNS WIN32 WIN16 AND DOS PROGRAMS, INCLUDING SOFTWARE THAT CAN ACCESS THE HARDWARE DIRCECTLY. THUS YOUR GAMING PLATFORM FOR WINDOWS SHOULD BE 95/98 95/98 ONLY RUNS ON INTEL PROCESSORS. 95/98 USED A FAT16 CALLED VFAT. THEN WITH OSR2 AND LATER SUPPORTED A VFAT CALLED FAT32. ONLY 95/98 OSR2 CAN ACCESS FAT32 PARTITIONS. NT CANNOT ACCESS FAT32 95/98 IN NO WAY CAN PROVIDE ANY SECURITY OR USER AUTHENTICATION. WINDOWS NT WORKSTATION ************************** NT WORKSTATION AND NT SERVER ARE VIRTUALLY IDENTICAL, BUT CONFIGURED FOR DIFFERENT ROLES. ONE A SERVER PRODUCT, THE OTHER A WORKSTATION. 48633DX 12MB/16MB 125MB NT HAS MULTIPROCESSING+MULTITASKING+MULTITHREADING. NT CANNOT SUPPORT THE AMOUNT OF PERIPHERALS THAT 95/98 CAN, BUT NT CAN RUN ON THER PROCESSORS, SOMETHING 95/98 CANNOT DO. SERVER FEATURES THAT WORKSTATION DOES NOT ******************************************** SERVER WORKSTATION *************************** SEFVICES FOR MACINTOSH YES NO RAID SUPPORT 015 YES RAID 0 ONLY DOMAIN CONTROLLER YES NO USER AUTHENTICATIONS YES NO DIRECTORY REPLICATION YES IMPORT ONLY EXPORT SERVER YES NO IMPORT SERVER YES YES NTDS NT DIRECTORY SERVICES YES NO DNS DHCP WINS SERVERS YES NO CONCURRENT CONNECTIONS UNLIMITED 10 RAS USERS (SESSIONS) 256 1 MULTIPROCESSORS 4 2 MULTITASKING YES YES MULTITHREADING YES YES WEB SERVER IIS PEER WEB SERVER BACKOFFICE SUPPORT EXCELLENT FAIR PRELOADS THE DOS-VDM? NO YES* OPTIMIZED AS A SERVER YES** NO PRONE TO PAGING OUT ?? NO YES*** *PRELOADING THE DOS VDM IS ENABLED ON WORKSTATIONS, SINCE THIS SPEEDS UP DOS AND WIN16 PROGRAMS WHEN THEY FIRST LOAD. DOS AND WIN16 PROGRAMS CAN BE RUN ON NT SERVER, BUT THAT SHOULD NOT BE NECESSARY. **CACHING ON NT SERVERS IS OPTIMIZED FOR NETWORK PERFORMANCE. WHEREAS, WORKSTATION IS OPTIMIZED FOR BETTER LOCAL DISK TIMES. ONLY ON NT-SERVER, CAN THE SERVER SERVICE BE CONFIGURED FOR OPTIMUM PERFORMANCE. WORKSTATION'S SERVER SERVICE CANNOT BE CONFIGURED. WORKSTATION'S SERVER SERVICE DOES NOT NEED TO BE CONFIGURED, SINCE WORKSTATION CAN ONLY ACCEPT 10 CONCURRENT USERS. ***THE NETWORKING SPEED IN WORKSTATION REALLY STARTS TO SUCK WHEN RAM GETS LOW, BUT THE APPS KEEP RUNNING GOOD. IT WILL PAGE OUT (PAGEFILE.SYS) MORE OFTEN (THAT IS SWAP OUT TO DISK) A LOT MORE THAN NT SERVER WILL. WHEN RAM GETS LOW IN NT SERVER, IT TRIES TO KEEP THE NETWORK PERFORMANCE UP. BY SLOWING DOWN THE LOCAL APPLICATIONS RUNNING ON THE SERVER. NT SERVER WILL TRY AND AVOID PAGING OUT TO DISK AS MUCH AS POSSIBLE. HOWEVER IT MAY BE FORCE TO IF RAM GETS TOO LOW. DISK THRASHING FOR A SERVER IS LIKE SO BAD! THIS IS WHY IT IS SO IMPORTANT TO DROP AS MUCH MEMORY IN YOUR SERVER AS REQUIRED!! REMEMBER THAT BOTH SERVER+WORKSTATION VERSIONS CAN BE INSTALLED ON RISC (DEC ALPHAS) AND INTEL. (NOT MIPS OR POWERPC ANYMORE) WORKGROUPS+DOMAINS ********************** A WORKGROUP IS A GROUP OF WINDOW COMPUTERS THAT SHARE THE SAME WORKGROUP NAME. EACH COMPUTER IN THE WORKGROUP HAS TO MANAGE THEIR OWN ACCOUNTS AND RESOURCES AND PERMISSIONS. A WORKGROUP IS NOT DEPENDANT ON THE DOMAIN CONTROLLERS BEING UP AND RUNNING. IF ALL DOMAIN CONTROLLERS GO DOWN IN A DOMAIN, THEN THAT DOMAIN/NETWORK BECOMES VIRTUALLY UNUSEABLE FOR THOSE USERS. ALL CAN PARTICIPATE IN A WORKGROUP. NT SERVER (CONFIGURED AS A STANDALONE) NT WORKSTATION WINDOWS 95/98 WFW WINDWS 3.11 MSDOS (WITH PROPER CLIENT SOFTWARE ADDED) TO BE IN A WORKGROUP, AN NT SERVER MUST BE CONFIGURED AS "STANDALONE" DOMAINS ******** ONLY NT SERVERS CAN BE DOMAIN CONTROLLERS THERE ARE ONLY 2 KINDS OF DOMAIN CONTROLLERS. (PDC + BDC) CENTRALIZE USER MANAGEMENT WORKS BEST FOR LARGE USERS WORKS BEST FOR "ROAMING USERS" PRIMARY AND EXTENDED PARTITIONS ********************************* EACH PHYSICAL HARD DRIVE CAN SUPPORT UPTO 4 PRIMARY PARTITIONS AND MANY MANY LOGICAL PARTITIONS INSIDE AN EXTENDED PARTITION. IF YOU USE AN EXTENDED PARTITINO, THEN YOU ARE LIMITED TO 3 PRIMARY PARTITIONS. SYSTEM PARTITION=BOOTSTRAP THE COMPUTER SO THE... BOOT PARTITION=CAN BOOT UP THE ACTUAL WINDOWS NT OS \WINNT SYSTEM PARTITION MUST BE THE "ACTIVE PARTITION" IN FDISK RISC SYSTEMS USE A CONFIGURATION UTILITY TO DETERMINE THE ACTIVE PARTITION. NT SUPORTS 1. FAT 2.VFAT 3.NTFS 4.CDFS IF NT3X IS INSTALLED ON HPFS, IT MUST BE CONVERTED TO NTFS BEFORE INSTALLING NT 4!!! FAT HAS LOWER OVERHEAD THAN NTFS FOR SMALLER PARTITIONS. PARTITINOS LARGER THAN 200MB, AND FAT PERFORMANCE REALLY STARTS TO BITE. FRAGMENTATION SETS IN. IF YOU HAVE A RISC SYSTEM, THEN YOUR SYSTEM PARTITION MUST BE FAT. FAT16 FAT32 VFAT NTFS ******************************************************************* FILENAMES 8.3 255 255 255 8.3 COMPATIBLE ? YES YES YES YES MAXIMUM FILESIZE 2GB 8GB 4GB 16EB MAXIMUM PARTITION 2GB 8GB 4GB 16EB DIRECTORY STRUCTURE LINKED LIST LINKED LIST B-TREE LOCAL SECURITY ? NO NO NO YES TRANSACTION TRACKING* NO NO NO YES HOTFIXING** NO NO NO YES FILESYSTEM OVERHEAD 1MB 1MB 1MB 5-10MB AVG ACCESSIBLE FROM DOS YES NO*** YES YES ACCESSIBLE FROM OS/2 ? YES ? YES NO CASE-SENSITIVE ? NO NO NO POSIX ONLY PRESERVES CASE ?**** YES YES YES YES SUPPORTS COMPRESSION ? NO***** NO***** NO***** YES***** MAXIMUM EFFICIENY IS <200MB ? ? >400MB CONVERTIBLE TO NTFS ? YES NO YES NA ACCESSIBLE BY NTFS ? YES NO YES YES PRONE TO FRAGMENTATION ? YES YES YES NO FLOPPY DISK FORMATTABLE ? YES YES YES NO EXTRA ATTRIBUTES ? NO NO NO YES CREATE/MODIFY/ACCESS THE NO NO NO YES DATE+TIMES? *TRANSACTION TRACKING **HOTFIXING ***FAT32 VOLUMES ARE ACCESSIBLE ONLY FROM DOS, IF THAT DOS IS FAT32 ****PRESERVES CASE *****COMPRESSION RAID 0 DISK STRIPNG RAID 1 DISK MIRRORING/DUPLEXING RAID 5 DISK STRIPING WITH PARITY 1/N IS THE AMOUNT OF DISK SPACE USED BY PARITY IN A RAID 5 SYSTEM WHERE N REPRESENTS NUMBER OF DISKS. PRACTICE QUESTIONS AND ANSWERS 1. THE BOOT PARTITION CONTAINS \WINNT, THE NT OPERATING SYSTEM THE SYSTEM PARTITION CONTAINS THE FILES REQUIRED TO BOOTSTRAP NT 2.THERE CAN BE UPTO 4 PRIMARY PARTIONS PER DISK OR THREE PRIMARY PARTITIONS AND 1 EXTENDED PARTITION 3. NT'S INTERNAL RAID SUPPORTS RAIDS 015 4. NT SUPPORTS FAT CDFS VFAT NTFS 5. TO SUPPORT DOS PROGRAMS THAT ACCESS HARDWARE YOU HAVE TO INSTALL A DUAL BOOTING SYSTEM, WITH ONE PARTITION BEING FAT. 6.USING NTFS MEANS HOT-FIXING. HOT-FIXING IS WHEN A BAD SECTOR GETS REMAPPED AUTOMATICALLY TO A GOOD SECTOR. USUALLY ONLY ON SCSI DRIVES. 7. WHEN USING RAID 5 STRIPE SET WITH PARITY, READS ARE MUCH FASTER, AND RECOVERY FROM DISK FAILURE IS VERY FAST (IF IN A HARDWARE RAID) 8. RAID 1 MIRROR MEANS SYSTEM+BOOT PARTITIONS CAN ONLY BE MIRRORED (NEVER STRIPED!!) RECOVERY FROM A DISK FAILURE IS FAST, SINCE ONLY A BREAK MIRROR+REPLACE DRIVE AND ESTABLISH MIRROR NEED TO BE DONE. COST IS LOWER THAN A STRIPE SET, SINCE ONLY 2 DRIVES NEEDED FOR A MIRROR. 9. DISK DUPLEXING (RAID 1 MIRRORING/DUPLEXING) USES TWO SCSI CONTROLLERS (OR IDE) AND 2 SCSI DRIVES (OR IDE) 10, MIRRORS REQUIRE 2 DISKS. STRIPE SET 2 DISKS STRIPE SET WITH PARITY 3 DISKS CHOOSING NT NETWORKING PROTOCOLS *********************************** MANY MICROSFT EXAMS QUESTIONS DEAL WITH CHOOSING THE RIGHT NETWORK PROTOCOL FOR A GIVEN SITUTATION. TCPIP NWLINK NETBEUI ********************************************************* ROUTEABLE VIA ROUTERS ? YES YES NO NATIVE PROTOCOL ON A WAN YES YES NO ENTIRE INTERNET RUNS ON YES NO NO WASTES ITS BANDWIDTH ? NO NO YES WORLWIDE STANDARD ? YES YES VARIES WORKS ON MOST PLATFORMS ? YES NO NO DIFFICULT TO CONFIGURE ? YES NO NO SUPPORTS DHCP? YES NO NO SUPPORTS DNS ? YES NO NO SUPPORTS WINS ? YES YES YES WORKS WITH NOVELL SERVERS ? NO YES NO OVERALL PERFORMANCE GOOD GOOD FASTEST RESTRICTED TO A NETWORK SEGMENT NO NO YES BROADCAST PACKETS SUBNET SUBNET SUBNET DESIGNED FOR NETWORKS LARGE LARGE SMALL TCPIP FEATURES ************** TCPIP IS TRANSMISSION CONTROL PROTOCOL/INTERNET PROTOCOL TCPIP IS THE DEFAULT PROTOCOL FOR ANY INTEL VERSION OF WINDOWS NT!!!!! THATS INCREDIBLE!!!! MICROSOFT WROTE ITS OWN TCPIP SUITE OF 32-BIT TCPIP, CALLED MICROSOFT TCPIP. TCPIP IS ROUTEABLE. TCPIP IS MEANT FOR ROUTERS TCPIP IS THE NETWORK PROTOCOL FOR THE INTERNET TCPIP IS A WORLDWIDE STANDARD, USE BY MORE COMPUTERS THAN ANY OTHER PROTOCOL. TCPIP CAN THEREFORE INTERCONNECT AN AWESOME AMOUNT OF DIFFERENT COMPUTERS, OPERATING SYSTEMS, PERIPHERALS AND APPLICATIONS. THESE SERVICES (ALONG WITH MANY OTHERS) GREATLY SUPPLEMENT TCPIP'S USEFULNESS. DHCP =PROTOCOL DESIGNED TO DYNAMICALLY SETUP TCPIP SETTINGS DNS = SERVICE DESIGNED TO RESOLVE DOMAIN NAMES TO IP'S WINS =MICROSOFT SERVICE DESIGNED TO RESOLVE NETBIOS NAMES TO IP'S NNTP =PROTOCOL USE FOR USENET HTTP =PROTOCOL DESIGNED FOR WWW WEB PAGES FTP =PROTOCOL DESIGN TO TRANSFER FILES SMTP =PROTOCOL DESIGN FOR MAIL DELIVERY SENDMAIL =EMAIL PROGRAM THAT USES SMTP TO ROUTE MAIL A DHCP SERVER IS GIVEN A "POOL" OF IP NUMBERS AND AS EACH COMPUTER LOGS IN AND REQUESTS AN IP, THE DHCP GIVES IT A TEMPORARY IP. (THAT IS, TILL THE USER DISCONNECTS FROM THE DHCP SERVER AT HIS ISP) DNS TRANSLATES WWW.MICROSOFT.COM TO 145.56.78.43 OR WWW.COMPAQ..COM TO 34.123.34.55 DNS CAN BE IMPLEMENTED ON THAT INTERNET OR IN YOUR OWN LOCAL INTRANET. WINS TRANSLATES \\PROLIANT\MARKETING TO 192.168.1.5 OR \\MYSERVER\FINANCE TO 202.56.3.53 DNS REQUIRES THAT HOST PC'S KEEP THE SAME IP'S IN ORDER TO RESOLVE. I MEAN IF MICROSOFT.COM CHANGED IT'S IP EVERY DAY, NO ONE WOULD EVER BE ABLE TO GET TO WWW.MICROSOFT.COM (WOULD THAT BE A GOOD THING OR A BAD THING ? :) WINS HOWEVER, DOES NOT CARE IF YOU CHANGE YOUR IP EVERY DAY. WINS CAN STILL FIND YOU. THIS IS BECAUSE THE WINS SERVER AUTOMATICALLY UPDATES ITS INTERNAL DATABASE. WHEN YOU CHANGE YOUR IP. WINS WILL KNOW SOON ENOUGH WHAT IT IS. SO IF YOU DHCP, WINS WILL FIND YOUR NEW IP. DNS'S "INTERNAL DATABASE" ARE CALLED DNS RECORDS. THEY ARE JUST TEXT FILES. THESE TXT FILES MUST BE MANUALLY UPDATED EVERY TIME SOMEONE WITH A STATIC IP WANTS TO CHANGE IT. STATIC IP'S ARE IP'S THAT ARE ASSIGNED TO YOU AND NEVER CHANGE. DYNAMIC IP'S MEAN YOU ARE USING DHCP. EVERYTIME YOU LOGIN THE DHCP SERVER WILL GIVE YOU A DIFFERENT IP NUMBER. NWLINK ******** NWLINK IS A NETWORK PROTOCOL WRITTEN BY MICROSOFT THAT IS 100% COMPATIBLE WITH NOVELL'S IPX/SPX PROTOCOL. THIS NWLINK LETS MICROSOFT USERS, BE ABLE TO COMMUNCIATE (ON A NETWORK PROTOCOL LEVEL) WITH NOVELL SERVERS!! COOL!! IF YOU NEED FILE+PRINT SERVICES FROM NOVELL, YOU NEED CSNW OR GSNW IF YOU NEED JUST TO "TALK" TO A CLIENT/SERVER APPLICATION ON NOVELL NETWARE THEN NWLINK IS WHAT YOU NEED. I REPEAT, IF ALL YOU NEED IS A CLIENT/APPLICATION CONNECTION (LIKE SQL RUNNING ON NETWARE) ALL YOU NEED IS THE NWLINK. IF YOU HAVE EXISTING NOVELL NETWARE PRODUCTS IN YOUR NETWORK AND ARE ADDING NT, THEN MAKE SURE ALL NEWLY INSTALLED COMPUTERS GET NWLINK INSTALLED. FEATURES TO REMEMBER ABOUT NWLINK ************************************ COMPATIBILE WITH NOVELLS IPX/SPX ONLY NT4 WORKSTATION CAN RUN CSNW ONLY NT4 SERVER CAN RUN GSNW BOTH CSNW AND GSNW REQUIRE THE NWLINK PROTOCOL TO OPERATE. WHEN INSTALLING CSNW+GSNW, BOTH WILL INSTALL NWLINK IF IT IS NOT ALREADY INSTALLED. ALL MICROSFT CLIENTS USE SMB. SYSTEM MESSAGING BLOCK (UNIX CALLS SMB, SAMBA) WINDOWS NT / 95/98/WFW ALL USE SMB (SAMBA) ANY MICROSOFT CLIENT RUNNING SMB (NT/95/98/WFW) CAN ALL ACCESS NOVELL NETWARE RESOURCES THROUGH A NT SERVER THAT RUNS GSNW. ALL THE NOVELL RESOURCES SETUP, APPEAR TO THE MICORSOFT CLIENTS AS NT RESOURCES. NETBEUI ******* NETBEUI IS THE FASTEST OF ALL THE NETWORK PROTOCOLS. NETBEUI ALSO CANNOT BE ROUTED (UNLESS SPECIALLY TUNNELED) THIS NON-ROUTEABLE FEATURE OF NETBEUI MAKES NETBEUI GOOD FOR ONLY SMALL TO SMALL-MEDIUM LANS. NETBEUI WAS THE DEFAULT PROTOCOL MICROSOFT CHOSE, UP TO NT 3.1 AFTER NT3.1, MICROSOFTS DEFAULT PROTOCOL HAS BEEN TCPIP. NETBEUI WAS DESIGNED IN 1985, SO NO WONDER IT BITES TODAY. ON GOOD THING THAT NETBEUI DOES IS LET TODAYS WINDOWS NT TALK WITH OLDER SYSTEMS LIKE WFW AND LANMANAGER. ANOTHER GOOD THING ABOUT NETBEUI IS THAT YOU JUST HAVE TO INSTALL IT. NO CONFIGURING IS REQUIRED FOR NETBEUI. HOWEVER THE SPEED AND EASY OF USE OF NETBEUI COMES WITH A VERY DARK SIDE. NETBEUI RELIES A LOT ON BROADCASTS (SEND PACKETS TO EVERYONE) SO NETBEUI PACKETS CAN REALLY KILL THE PERFORMANCE IN A LARGE AND BUSY SUBNET. LOTS OF COMPUTERS RUNNING NETBEUI CAN REALLY START TO FLOOD THE NETWORK WITH NETBIOS NETBEUI BROADCASTING PACKETS. THEN EVERYONE GETS UPSET THAT THE NETWORK IS SLOW, AND START WIGGIN' ON YOU. THEN YOU GO POSTAL. WELL, DON'T GO POSTAL! :) PLANNING FOR NETWORK CLIENTS ******************************\ THE NT CDROM INCLUDES CLIENT SOFTWARE FOR THE "NETWORK-CHALLENGED" MICROSOFT NETWORK CLIENT 3.0 FOR MSDOS *************************************** ENABLES DOS USERS TO PARTICIPATE IN NT NETWORKS !! COOL!!! ANY DOS USER USING MICROSOFT NETWORK CLIENT 3.0 FOR DOS CAN LOGON TO A DOMAIN RUN LOGON SCRIPTS (POWERFUL!!) ACCESS IPC (RPCS NAMED PIPES AND WINSOCK) USE RAS v1.1 !!! YOU CANNOT BROWSE COMPUTERS BEYOND YOUR WORKGROUP. HOW TO CHOOSE A NETWORK PROTOCOL ************************************ 1. CHOOSE NETBEUI IF SMALL LAN, NO ROUTERS, NO NOVELL SERVERS 2. CHOOSE NWLINK(IPX/SPX) IF LARGE LAN, WAN, NOVELL SERVERS OR NETWARE, ROUTERS, REMOTE LOCATIONS 3. CHOOSE TCPIP IF LARGE LAN, WANS, REMOTE LOCATIONS, INTERNET WILL BE USED PRACTICE PROBLEMS AND ANSWERS ******************************** 1. NWLINK(IPX/SPX) IS MAINLY USED FOR CONNECTING TO NOVELL NETWARE 2.IPX/SPX AND TCPIP ARE ROUTEABLE. NETBEUI+NETBIOS ARE NOT ROUTEABLE. 3.MSDOS WFW 95 98 NT ALL CAN RUN TCPIP (DOS REQUIRES MICROSOFT NETWORK CLIENT 3.0 FOR MSDOS TO RUN TCPIP) 4. PROBLEM: RECENTLY ADDED COMPUTERS SLOW DOWN A NETBEUI NETWORK. SOLUTION A:KEEP NETBEUI AND SPLIT THE NETWORK WITH A BRIDGE SOLUTION B: SWITCHING ALL COMPUTERS OVER TO TCPIP. EITHER SOLUTION WILL REDUCE THE NETBEUI BROADCASTING PROBLEM. SOLUTION A IS EASIER TO IMPLEMENT. HOWEVER THIS METHOD CREATES 2 NETWORKS THAT CAN'T SEE EACH OTHER!! NETBEUI PACKETS CAN'T CROSS A BRIDGE! 5. TO EXCHANGE MESSAGES WITH A NOVELL NETWARE 4.0 SERVER VIA THE INTERNET REQUIRES TCPIP. REASON:ANYTHING OVER THE INTERNET REQUIRES TCPIP. ONCE THE PACKETS ARRIVE THERE, IT IS ASSUMED THAT THE NOVELL 4.0 SERVER ON THE INTERNET IS PROPERLY CONFIGURED TO ACCEPT TCPIP PACKETS. (NOT JUST IPX/SPX) 6. TO MAKE YOUR COMPUTER "INTERNET-READY" REQUIRES TCPIP. 7. NETBEUI IS FAST AND USES LITTLE MEMORY NETBEUI CAN BE USED IN NETWORKS WITH BRIDGES AND ROUTERS. NETBEUI PACKETS JUST WON'T CROSS THE BRIDGES OR ROUTERS. NETBEUI RELIES ON BROADCASTS TO WORK. IF YOUR ENTIRE NETWORK USED NETBEUI AND SEPERATED BY BRIDGES OR ROUTERS. ALL NETBEUI SUBNETS WOULD NOT BE ABLE TO SEE EACH OTHER! YIKES ! TALK ABOUT A NETWORK PROBLEM!!! 8.WINS RESOLVES NETBIOS (COMPUTER) NAMES TO THAT COMPUTERS IP. WINS ONLY RUNS ON NT SERVER. PRACTICE EXAM QUESTIONS+ANSWERS FOR PLANNING ************************************************ 1. SALLY NEEDS TO ENABLE MAC USERS FROM SALES DEPARTMENT TO SHARE FILES WITH PC USERS. WHICH OS SUPPORTS SHARES OF BOTH MAC+PC USERS ? ONLY NT SERVER CAN RUN SERVICES FOR MACINTOSH. AND THUS FILE SHARE FOR MAC+PC USERS. 2. NT SERVER IS DESIGNED TO OPERATE AS A SERVER AND DOMAIN CONTROLLER NT WORKSTATION, LIKE 95 IS DESIGNED TO OPERATE AS A DESKTOP OPERATING SYSTEM AND NETWORK CLIENT. NT WORKSTATION CAN SERVER AS A STANDALONE OPERATING SYSTEM. THE MAIN DIFFERENCE BETWEEN NT WORKSTATION AND 95 IS SECURITY! WORKSTATION NT IS SECURE, WIN95/98 IS NOT. 3. NWLINK IS AN IPX/SPX COMPATIBLE TRANSPORT THAT PROVIDES IPX/SPX SOCKETS AND NETBIOS API CALLS. 4. ONLY A NT SERVER "STANDALONE" SERVER CAN JOIN A WORKGROUP A WORKGROUP IS SIMPLER + EASIER TO INSTALL THAN A DOMAIN A WORKGROUP DOES NOT USE DOMAIN CONTROLLERS (PDC OR BDC) 5. CREATING AN EXTENDED PARTITION MEANS YOU ARE LIMITED TO 3 PRIMARY PARTITIONS FOR THAT DISK. PRIMARY PARTITIONS CANNOT BE SLICED INTO LOGICAL PARTITIONS ONLY AN EXTENDED PARTITION CAN BE SLICED INTO LOGICAL PARTITIONS A HARD DISK CAN HAVE 4 PRIMARY PARTITIONS OR 3 PRIMARYS AND 1 EXTENDED 6. MSDOS 5.0 WINDOWS 3X WFW POSIX(TEXT) AND OS2.1 APPLICATIONS ARE ALL COMPATIBLE WITH NT SERVER . NETBEUI SHOULD NOT BE USED ON NETWORKS WITH BRIDGES NETBEUI USES SMALL MEMORY AND IS FAST. NETBEUI CAN BE USED ON LANS NOT WANS NETBEUI IS NOT ROUTEABLE (WITHOUT ENCAPSULATION) 8. TCPIP IS ROUTEABLE TCPIP IS THE NETWORK THAT RUNS THE WORLD (WELL AT LEAST THE INTERNET) YOU CAN INTERNCONNECT WITH ALMOST ANYTHING WHEN YOU DECIDE TO USE TCPIP TCPIP IS PORTED TO MORE COMPUTERS AND PLATFORMS THAN ANY OTHER PROTOCOL TCPIP IS A WORLDWIDE STANDARD THAT IS OWNED BY NOBODY. 9. FAT IS EFFICIENT WHEN PARTITIONS ARE LESS THAN 200MB FAT IS TERRIBLE WHEN PARTITIONS ARE MORE THAN 400MB FAT IS GENERALLY SLOWER THAN NTFS YOU CAN COMPRESS A FAT PARTITION (ONLY BY USING A FAT COMPRESSION TOOL) YOU CAN COMPRESS A NTFS PARTITION(ONLY BY USING COMPACT.EXE OR PROPERTIES) FAT HAS ZERO SECURITY. NTFS HAS MAJOR SECURITY (WELL PRETTY DARN GOOD, BETTER THAN FAT :) A DUAL BOOTING SYSTEM THAT NEEDS MSDOS, OBVIOUSLY NEEDS A FAT PARTITION 10. ONLY NT CAN ACCESS NTFS PARTITIONS (LINUX I BELIEVE CAN ?) PARTITIONS UNDER 400MB, FAT SHOULD BE USED, NOT NTFS YOU CAN INCREASE SPACE ON AN NTFS PARTITION BY COMPACT.EXE' ING IT. NTFS SUPPORTS UPTO 16EB. EXABYTES. 16,384 GIGABYTES! (WHERE IS MY 16EB DRIVE?) NTFS SUPPORTS HOT-FIXING (AKA SECTOR SPARING) ONLY ON SCSI-DRIVES. HOT-FIXING (SECTOR SPARING) IS DATA GETS REAMPPED TO ANOTHER SECTOR AUTOMATICALLY BY THE SCSI DRIVE IN CASE A SECTOR GOES BAD. (ALL SCSI DRIVES DO THIS AUTOMATICALLY IN THE HARD DRIVES ELECTRONICS LEVEL, SO IT DOESN'T MATTER WHAT OS YOU USE) 11. FAULT TOLERANCE IS DEFINED AS A SYSTEMS ABILITY TO COMPENSATE I NTHE EVENT OF A HARDWARE FAULT. RAID IS ITSELF NOT FAULT TOLERANCE!! RAID IS A DRIVE ARRAY SYSTEM THAT INCREASES FAULT TOLERANCE!! LIKE USING JUST NTFS ITSELF, IS PROVIDING FAULT TOLERANCE. 12. DISK MIRRORING IS RAID LEVEL 1 DISK MIRRORING RAID 1, SAME DATA WRITTEN TO 2 SEPERATE DRIVES DISK MIRRORING/DUPLEXING DOES NOT USE PARITY. REPEAT DOES NOT!! 13. NT WORKSTATION PRELOADS THE DOS NTVDM TO SUPPORT MSDOS PROGRAMS NT SERVER DOES NOT PRELOAD THE DOS NTVDM, BUT MUST LOAD IT WHEN A MSDOS PROGRAM IS STARTED. CACHING IS HANDLED DIFFERENTLY ON NT SERVER+WORKSTATION. NT SERVER IS OPTIMIZED FOR NETWORK THOROUGHPUT. NT WORKSTATION IS OPTIMIZED FOR LOCAL DISK PERFORMANCE NT WORKSTATION SERVER SERVICE CANNOT BE CONFIGURED (LIMITED TO 10 USERS!!!) NT SERVER' SERVER SERVICE IS CUSTOMIZABLE, SINCE AN NT SERVER CAN BE SUPPORTING THOUSANDS OF USERS. SRV.SYS IS THE SERVER FILE SYSTEMS DRIVER USED ON WORKSTATION AND SERVER. WHEN RAM GETS LOW. UNDER WORKSTATION, SRV.SYS FILES GET PAGED OUT TO DISK AND NETWORK PERFORMANCE DECREASES. UNDER SERVER, SRV.SYS FILES DON'T GET PAGED OUT. NETWORK PERFORMANCE REMAINS GOOD, BUT LOCAL DRIVE PERFORMANCE DECREASES. **************************************************************************** CHAPTER 2 : INSTALLATION + CONFIGURATION **************************************************************************** NT SERVER 4 HARDWARE MINIMUM REQUIREMENTS=INTEL 486DX/33 16MB RAM 125MB DISKSPACE VGA 3.5" CDROM (NOT REQUIRED IF INSTALLING VIA NETWORK) NIC (NOT REQUIRED IF INSTALLING VIA CDROM) TO UPGRADE AN OLDER WINDOWS NT 3X ************************************ INSTALL WINDOWS NT 4 OVER TOP. (HPFS MUST BE CONVERTED TO NTFS FIRST) EVERYTHING GETS UPGRADED PROPERLY. TO UPGRADE AN EXISTING NT 4 INSTALLATION ***************************************** YOU SHOULDN'T. EITHER REPAIR YOUR EXISTING NT 4 INSTALLATION OR DELETE IT AND START A NEW INSTALL TO UPGRADE WINDOWS 95/97/98 TO WINDOWS NT 4 ********************************************* DON.T WINDOWS NT 4 WILL NOT UPGRADE ANY WINDOWS 95/97/98 TO NT 4. YOU CAN INSTALL WINDOWS NT 4 INTO C:\WINDOWS, BUT THE "UPGRADE" IS REALLY JUST A NEW INSTALL OF NT 4, AND WILL KILL YOUR WHOLE WINDOWS 95/97/98 OS!!!!!! THE REGISTRY BETWEEN NT AND 95/97/98 IS INCOMPATIBLE. IN THIS CASE IT IS BETTER, TO INSTALL WINDOWS NT INTO ITS SEPERATE DIRECTORY \WINNT OVER YOUR CURRENT DRIVE. IT WILL GO INTO A DIFFERENT DIRECTORY THAN YOUR WINDOWS 95/97/98 OS, SO BOTH OS'S WILL RESIDE PEACEFULLY ON YOUR COMPUTER AS A DUAL BOOTING COMPUTER. NT-CDROM\I386\WINNT.EXE (USED TO INSTALL WINDOWS FROM COMMANDLINE) /B TELLS WINNT WE ARE NOT USING THE 3 SETUP FLOPPIES /S TELLS WINNT WHERE I386 DIRECTORY IS (EXAMPLE IS /S:F:\I386) /U UNATTENDED TEXT FILE. UNATTENED REALLY BITES. DONT EVERY USE UNATTENDED /UDF SPECIFY A UDF FILE. UNIQUE DATABASE FILE FOR THE UNATTNENED INSTALL BITES!! /T SPECIFY A TEMP DIRECTORY DURING THE INSTALL. /OX DON'T INSTALL NT. JUST CREATE THE 3 SETUP DISKS (HAVE 3 FORMATTED DISKS READY) /F DON'T VERIFY FILES AS THEY ARE COPIED TO THE HARD DISK (SPEED IT UP MAN!!!) /C DON'T CHECK FOR FREE SPACE (ONLY USE IF YOU THE HARD-DRIVE KING BABY!!!) INSTALLATION PHASES OF WINDOWS NT 4 ************************************* THERE ARE 4 INSTALLATION PHASES PHASE 0 PREINSTALLATION *********************** DURING PREINSTALLATION, SETUP COPYS THE SETUP FILES TO YOUR DRIVE. 3 SETUP DISKS ARE CREATED (IF /B NOT USED) SETUP DISK1-MBR PASSES CONTROL TO NTLDR. NLDR LOADS THE MULTIPROCESSOR KERNEL NTLRNMP.EXE HAL IS LOADED SETUP DISK2=A VERY MINIMUM REGISTRY IS LOADED INSTRUCT WINNT TO LOAD GENERIC DRIVERS TO MOST DEVICES FAT DRIVER IS USED SCSI DRIVER SETUP DISK3=MORE SCSI DRIVERS, NTFS DRIVER, OTHER HARD DISK DRIVERS AT THIS STAGE SETUP HAS LOADED UP MINIMUM GENERIC DRIVERS FOR THE HARDWARE AND A FAT FILESYSTEM. MASS STORAGE=ASKS FOR DETECTION OF MASS STORAGE DEVICES (ENTER OR S TO SPECIFIY ADDITIONAL HARDWARE MASS STORAGE DEVICES) SETUP DISPLAYS LIST FOR KEYBOARD MOUSE + VIDEO AND WAITS FOR ANY ADDTIONAL DRIVERS. PARTITIONS=USER DECIDES WHERE NT GETS INSTALLED. USER DECIDES WEATHER TO CREATE A NEW PARTITON/DELETE OR INSTALL FORMAT THE NEW DRIVE VIA FAT OR NTFS SETUP EXAMINES THE DISK FOR STRUCTURE. SETUP STARTS TO COPY THE SETUP FILES TO THE HARD DISK WHEN DONE, PRESS ENTER TO REBOOT. PHASE 1:GATHERING INFORMATION ******************************* SETUP DISPAYS THE EULA. END USER LICENSE AGREEMENT BULLSHIT. SETUP STARTS COPYING FILES FROM THE SOURCE TO THE DRIVE. SETUP WIZARD GATHERS INFORMATION INSTALLS NETWORKING FINISHING SETUP SERVER LICENSE MODE PER SERVER LICENSE PER SEAT LICENSE (BOTH LICENSE METHODS ARE ON THE HONOUR SYSTEM) COMPUTER NETBIOS NAME (15 CHARS) SERVER TYPE PDC BDC OR MEMEBER SERVER OR STANDALONE ADMINISTRATOR PASSWORD 14 CHARS AND CASE SENSITIVE!! ERD EMERGENCY REPAIR DISK OPTIONAL COMPONENTS PHASE 2:INSTALLIG NETWORK ************************** NETWORK PARTICIPATION VIA NETWORK OR MODEM INTRANET INTERNET IIS WEB SERVER NETWORK ADAPTOR CARD NETWORK PROTOCOLS NETWORK SERVICES NETWORK COMPONENTS PHASE 3:FINISHING SETUP ********************** TIME ZONE EXCHANGE INFORMATION DISPLAY SETTINGS ERD PRACTICE PROBLEMS AND ANSWERS ******************************** 1. NT SERVER REQUIRES 486DX/33 16MB 125MB CGA CDROM OR NIC 2. BEFORE PURCHASING NEW HARDWARE FOR AN NT COMPUTER, FIRST.. CHECK THE PACKAGING TO VERIFY IT SUPPORTS NT4, OR CHECK THE OEM'S WEBSITE OR CHECK MICROSOFT WEB SITE THAT IT IS ON THE HCL 3. DUALBOOTING NT WITH 95 THE BEST IDEA FOR A SINGLE DRIVE SYSTEM IS TO REPARTITION YOUR DRIVE SUCH THAT 95 GETS ABOUT 1GB, AND NT GETS THE REMAINDER. FORMAT NT WITH NTFS AND LEAVE 95 AS FAT. THAT IS THE BEST METHOD. FOR A DUAL DRIVE SYSTEM, INSTALL NT ON ONE DRIVE, 95 ON THE OTHER. INSTALLING 95 AND NT IN THE SAME PARTITION, BUT SEPERATE DIRECTORIES. MEANS YOUR \WINNT BOOT PARTITION WILL BE FAT. (YOU CAN STILL CREATE MORE PARTITIONS AND FORMAT THEM AS NTFS) BUT HAVING YOUR BOOT PARTITION AND ALL YOUR \WINNT FILES IN A FAT PARTITION SHOULD BE AVOIDED IF AT ALL POSSIBLE. 4. WINNT32.EXE SHOULD ONLY BE USED TO INSTALL NT FROM WITHIN NT. (SO YOU CAN INSTALL AN ADDITIONAL VERSION OF NT) OTHERWISE USE WINNT.EXE 5. NT'S SYSTEM PARTITION IS USED TO BOOTSTRAP NT'S BOOT PARTITION IS \WINNT (THE MAIN NT OPERATING SYSTEM FILES) 6. TO UPGRADE YOUR CURRENT NT 3X INSTALLATION OPEN THE COMMAND PROMPT C:\ RUN \CDROM\I386\WINNT32.EXE FROM INSIDE NT 3X. 7. TO INSTALL NT 4 WORKSTATION ON 100 COMPUTERS SHARE THE NT WORKSTATION CDROM ON NT SERVER AND INSTALL VIA A SPECIALLY CREATED NETWORK INSTALLATION DISK. THIS METHOS ONLY INSTALLS THE NT OS, AND NOTHING ELSE! A BETTER METHOD IS CREATE A MASTER COMPUTER THAT YOU WILL TEMPLATE. MAKE ALL THE CHANGES AND SOFTWARE UPDATES YOU WILL NEED. THEN USE A GHOSTING PRODUCT LIKE NORTON GHOST AND IMAGE THIS FILE ONTO AS MANY COMPUTERS AS YOU NEED. (AND CHANGE SIDS VIA GHOSTWLK.EXE) 8. WINNT /B (SAYS INSTALL NT, DON'T CREATE THE 3 SETUP DISKS) 9. NT PASSWORDS ARE CASE-SENSITIVE AND LIMITED TO 14 CHARACTERS 10. HAL SEPERATES THE NT OS FROM THE HARDWARE. THE HAL IS WHAT MAKES NT SO PORTABLE. (WELL IF MICROSOFT REALLY WANTED TO. SEEMS MICROSOFT ONLY CARES ABOUT INTEL PROCESSORS) 11. SETUP FLOPPY DISK2, LOADS GENERIC DRIVERS AND THE FAT DRIVER 12. SETUP DISKS 2+3 INCLUDE MANY SCSI DRIVERS. THIS IS IMPORTANT BECAUSE A SCSI DRIVER MIGHT BE REQUIRED TO ACCESS A SCSI CDROM OR DRIVES IN ORDER TO CONTINUE THE INSTALLATION. (ESPECIALLY ON SCSI-ONLY SYSTEMS) 13. IF DURING NT INSTALLATION, A MASS STORAGE DEVICE IS NOT FOUND AUTOMATICALLY, YOU SHOULD PRESS "S" TO SPECIFY THE MASS STORAGE DEVICE. 14. IF DURING INSTALLATION, SETUP'S HARDWARE FOUND LIST IS INCORRECT YOU SHOULD, USE THE ARROW KEYS, SELECT THE INCORRECT DEVICE AND PRESS ENTER TO SELECT THE PROPER DEVICE. 15. WHEN INSTALLING NT, IT'S DEFAULT INSTALLATION DIRECTORY IS \WINNT 18. DURING NT INSTALLATION YOU CAN EITHER CHOOSE FORMAT AS FAT OR NTFS OR LEAVE ALONE (LEAVE ALONE DOES NOT FORMAT THE PARTITION, BUT INSTALLS NT ON IT) 19. YOUR BOSS SAYS NOT TO USE NTFS, SINCE HE IS CONCERNED ABOUT NTFS'S COMPATIBILITY ON OTHER SYSTEMS ON THE NETWORK. YOU SAY, THIS IS NOT A CONCERN, SINCE OVER THE NETWORK NTFS IS AS ACCESSIBLE AS FAT IS. HOWEVER, YOU THE ADMINISTRATOR, WILL HAVE TO MAKE SURE THAT NTFS' S PERMISSIONS ARE SET CORRECTLY, SO THAT YOUR BOSS WON'T BE WIGGIN ON YOU, AND SAYING I TOLD YOU SO! 20. AFTER INSTALLING NT, YOU MAY NOT BE ABLE TO PROPERLY BOOT INTO YOUR OTHER OPERATING SYTEMS. THUS YOUR BOOT.INI FILE PROBABLY NEEDS SOME FINE-TUNING. 21. DURING NT INSTALLATION, THE CONVERSION TO NTFS IS DONE AFTER NT IS FULLY INSTALLED AND REBOOTS FOR THE FIRST TIME. 22. DURING NT INSTALLATION, SETUP BY DEFAULT WANTS TO DO AN EXHAUSTIVE SCAN OF YOUR WHOLE HARD DISK. THIS IS A BADBLOCK SCAN AND ON A LARGE HARD DRIVE CAN TAKE HOURS!!! ALWAYS BYPASS THIS TEST. IF YOUR NOT SURE OF THE HARD DRIVE'S RELIABILITY, THEN YOU SHOULDN'T BE INSTALLING NT SERVER ON IT. 23. DURING NT INSTALLATION, IT ASKS FOR A USER NAME. THIS IS A MANDATORY FIELD!! THE COMPANY FIELD IS NOT MANDATORY!!! 24. IF YOU CANNOT FIND THE OEM PRODUCT ID FOR NT WHEN INSTALLING IT, MICROSOFT SAYS TO STOP INSTALLATION UNTIL THE PROPER OEM ID NUMBER IS FOUND. WOOO-HAHAHHHAHHAAAAAA YOOO HAHAHAHAAHAA. THAT'S WAS A GOOD ONE! SERIOUSLY, IF IT IS FOR A BUSINESS CLIENT , YOU BETTER GET A VALID PRODUCT ID. DON'T USE PRODUCT ID'S FROM ANYWHERE. ESPCIALLY IF YOUR MCSE DESIGNATION IS ON THE LINE!! MICROSOFT WILL TAKE YOUR MCSE STATUS AWAY FROM YOU FASTER THAN YOU CAN SAY "MCSE" 25. PER SERVER ALLOWS FOR X NUMBER OF CONCURRENT USERS TO THAT SERVER ONLY 26. PER SEAT ALLOWS A CLIENT TO ACCESS AN UNLIMITED NUMBER OF SERVERS. WINDOWS NT SERVER ROLES ************************* PRIMARY DOMAIN CONTROLLER PDC ******************************** MUST ALWAYS BE THE FIRST COMPUTER SETUP WHEN INSTALLING A NEW DOMAIN CONTAINS THE MASTER SAM DATABASE ONLY 1 PDC PER DOMAIN BACKUP DOMAIN CONTROLLER BDC ******************************* PERIODICALLY RECIEVES A READ-ONLY VERSION OF THE SAM FROM THE PDC CAN PERFORM INITIAL USER AUTHENTICATIONS CAN BE PROMOTED TO PDC (FORCES PDC TO A BDC) A DOMAIN CAN HAVE MULTIPLE BDC;S MEMBER SERVER ************** NT SERVER THAT JOINS A DOMAIN, BUT NOT A DOMAIN CONTROLLER MEMBER SERVERS NEVER DO USER AUTHENTICATIONS OR GET A COPY OF THE SAM USUALLY IS A SPECIALIZED SERVER FOR WEB EMAIL APPLICATION OR A FILE SERVER MEMBER SERVERS CANNOT BE PROMOTED TO BDC. REPEAT! MEMBER SERVERS ARE STUCK AS MEMBER SERVERS. MEMBER SERVERS CAN CHANGE DOMAINS (AFTER ALL THEY ARE NOT DOMAIN CONTROLLERS) MEMEBER SERVERS CANNOT BECOME DOMAIN CONTROLLERS!! A DOMAIN CAN HAVE MANY MEMBER SERVERS IN A DOMAIN. DOMAIN ATTRIBUTES ******************* ONLY NT SERVERS AND NT WORKSTATIONS CAN BE TRUE DOMAIN USERS. WINDOWS 98/95/WFW/DOS USERS IN THE DOMAIN ARE ALL DOMAIN CLIENTS!!!! NT USERS CAN ACT SNOBBY AND LOOK DOWN ON WINDOW USERS, SINCE THEY ARE ONLY "DOMAIN CLIENTS". NOT "DOMAIN USERS"! PRIMARY DOMAIN CONTROLLERS ***************************** THE PDC SAM HOLD ALL THE USER ACCOUNT INFORMATION. (BDC'S KEEP A BACKUP READ-ONLY VERSION OF THE SAM. MULTIPLE BDC'S MEANS MULTIPLE BACKUP'S IN CASE YOUR PDC GETS WAXED) IN A SMALLER ENVIRONMENT (OR A MORE POWERFUL SERVER) A PDC CAN ALSO PERFORM AS A FILE+PRINT AND APPLICATION SERVER. THIS CAN BE DONE AS LONG AS THE SERVER HAS ENOUGH RAM AND DOESN'T GET BOGGED DOWN. (BOGGED DOWN?? HAVE YOU EVER BEEN BOGGED DOWN JOHN ? NO? WELL WHY BRING IT UP??) BACKUP DOMAIN CONTROLLERS **************************** PERFORM USER AUTHENTICATIONS JUST LIKE THE PDC DOES GETS SCHRONIZED WITH THE PDC AND RECIEVES A READ-ONLY COPY OF THE SAM A BDC CAN ALSO BE A FILE PRINTER AND APPLICATIONS SERVER. THERE CAN BE AN UNLIMITED AMOUNT OF BDC'S IN A DOMAIN. IT IS IMPORTANT THAT A BDC THAT IS A FILE PRINT AND APPLICATION SERVER THAT GETS PROMOTED TO A PDC, SHOULD BE ABLE TO HANDLE THE JOB. DON'T PROMOTE A WUSSY BDC TO THE TOP DOG STATUS OF PDC. MEMBER SERVERS **************** MEMBER SERVERS ARE NT SERVERS THAT ARE PART OF A DOMAIN. MEMBER SERVERS ARE NOT DOMAIN CONTROLLERS (PDC OR BDC) MEMBER SERVERS CANNOT BECOME DOMAIN CONTROLLERS (PDC OR BDC) ONLY WAY A MEMBER SERVER CAN BECOME A DOMAIN CONTROLLER IS TO REINSTALL NT SERVER AGAIN. SERVER MAINTENANCE ******************** ONLY THE ADMINISTRATOR, USING SERVER MANAGER CAN PROMOTE A BDC TO PDC. THIS IS A MANUAL STEP. PROMOTION OF A BDC TO PDC IS NOT AUTOMATIC. THE SAM DATABASE CAN BE SYNCHRONIZED (UPDATED) TO EITHER 1 BDC OR ALL BDC'S NET ACCOUNTS /SYNC ONCE A DOMAIN CONTROLLER FOR A DOMAIN, ALWAYS A DOMAIN CONTROLLER FOR THAT DOMAIN. THERE IS NO WAY TO MOVE A DOMAIN CONTROLLER FROM ONE DOMAIN TO ANOTHER. THE SIDS IN THE SAM WILL FREAK OUT!!! YOU CAN EITHER REINSTALL OR INSTALL A NEW VERSION OF NT SERVER ON THAT DOMAIN CONTROLLER, THEN MOVE THAT DOMAIN CONTROLLER TO A NEW DOMAIN. YOU CANNOT INSTALL A BDC UNLESS THE PDC IS ONLINE. TO JOIN A DOMAIN, A COMPUTER MUST HAVE A COMPUTER ACCOUNT. A COMPUTER ACCOUNT CAN BE CREATED 2 WAYS 1.ADMINISTRATOR ADDS THE COMPUTER ACCOUNT IN SERVER MANAGER BEFORE COMPUTER JOINS THE DOMAIN 2.ONLY IF COMPUTER IS A SERVER, YOU CAN SPECIFY A COMPUTER ACCOUNT DURING NT INSTALLATION. THIS REQUIRES THE ADMINISTRATORS USERNAME +PASSWORD. A DOMAIN CONTROLLER CAN USER AUTHENTICATE ********************************************* NT/95/98/WFW/LANMANAGER/MSDOS CLIENTS DOMAIN CONTROLLERS AND MEMBER SERVERS HAVE *********************************************** SUPPORT FOR 256 RAS USERS FAULT TOLERANCE IIS GSNW GATEWAY SERVICES FOR NETWARE SFM, SERVICES FOR MACINTOSH HOW TO PROMOTE A BDC TO PDC **************************** 1. LOGON AS ADMINISTRATOR 2.START SERVER MANAGER AND SELECT THE BDC TO PROMOTE 3.COMPUTER MENU>PROMOTE TO PDC SYNCHRONIZING JUST ONE BDC *************************** 1. SERVER MANAGER>CHOOSE THE BDC TO SYNCHRONIZE 2. COMPUTER MENU>SYNCHRONIZE WITH PRIMARY DOMAIN CONTROLLER SYNCHRONIZING THE ENTIRE DOMAIN ******************************** THIS IS DONE SO THAT ANY AND ALL CHANGES ARE FORCED TO UPDATE. SYNCHRONIZATION BETWEEN PDC AND BDCS HAPPENS PERIOCALLY. THIS FORCES SYNCHRONIZATION, SO EVERYONE IS ONE THE "SAME PAGE" 1.SERVER MANAGER>CHHOSE THE PDC 2.COMPUTER MENU>SYNCHRONIZE THE ENTIRE DOMAIN PRACTICE PROBLEMS AND ANSWERS ******************************** 1. MEMBER SERVERS CAN ALSO DO FILE PRINT AND APPLICATION SERVER DUTIES. USERS DATA CAN BE STORED SECURELY AND BACKED UP ON A MEMBER SERVER.(NTFS) SHARE LEVEL SECURITY USERS (95/98/WFW/DOS) CAN NOW DO USER-LEVEL SECURITY(NTFS) 2.YOU CANNOT MOVE ANY DOMAIN CONTROLLER (PDC OR BDC) FROM ONE DOMAIN INTO ANOTHER. THE DOMAIN SID IS TIED TO THAT DOMAIN. YOU WILL HAVE TO USE A NEW COMPUTER OR REINSTALL NT SERVER TO MAKE A NEW PDC. 3.WHEN YOU ADD A BDC TO A DOMAIN AND GET A "DOMAIN CONTROLLER COULD NOT BE FOUND" AND EVERYTHING LOOKS OKAY. (NETWORKING/PDC IS ONLINE), REMEMBER... 1.WHO ARE YOU LOGGED IN AS ? YOU MAY NOT CURRENTLY HAVE ADMINISTRATIVE RIGHTS TO ADD A BDC TO A DOMAIN 2 THE PDC AND YOUR BDC MAY BE ON DIFFERENT PROTOCOLS!!!!! 4.WHEN INSTALLING NT SERVER, IT IS NOT POSSIBLE TO CREATE A BDC UNLESS 1.YOU ARE ON THAT LAN 2.THE PDC IS UP AND RUNNING PROPERLY 3. YOUR BDC AND THE PDC ARE TALKING WITH THE SAME NETWORK PROTOCOL 4. YOU ARE THE LOGGED IN AS THE ADMINISTRATOR 5. A COMPUTER ACCOUNT WAS CREATED + READY TO BE USED BY THIS BDC!! 6. YOU ENTERED THE DOMAIN NAME CORRECTLY 7. YOU SPECIFIED A "BDC" DURING INSTALLATION, NOT A "PDC"!! THESE 7 REQUIREMENTS ARE ABSOLUTELY NECESSARY, SINCE THE BDC WILL NEED TO GET A READ-ONLY COPY OF THE SAM AND GET SYNCHRONIZED WITH THE PDC. 5. TO MAKE A NEW MACHINE THE PDC FOR A DOMAIN, THE BEST PROCEDURE IS TO... ************************************************************************ 1.CONNECT THE NEW MACHINE UPTO THE NETWORK 2.INSTALL NT 4 AND CONFIGURE AS A BDC FOR THAT DOMAIN 3.SERVER MANAGER>PROMOTE THIS BDC TO THE PDC. 6. THE PDC BE SETUP FIRST WHEN INSTALLING A NEW DOMAIN. 7.NETBIOS NAMES MUST BE UNIQUE!! NO OTHER RESOURCE (DOMAINNAME WORKGROUP NAME ETC) CAN BE SHARE THE SAME NAME AS A COMPUTER (NETBIOS) NAME 8.SERVER AND WORKSTATION NAMES ARE NETBIOS NAMES AND LIMITED TO 15 CHARS. 9.MEMBER SERVERS CANNOT BE PROMOTED TO DOMAIN CONTROLLERS. THE ONLY WAY TO PROMOTED MEMBER SERVERS TO DOMAIN CONTROLLERS IS REINSTALL NT SERVER. 10.PASSWORDS ARE MAX OF 14 CHARACTERS AND CASE-SENSITIVE 11.DOMAIN CONTROLLERS CAN BE DHCP CLIENTS!! (SOUNDS CRAZY I KNOW!) CHANGE IN NETWORK CONTROL PANEL>TCPIP 13. THERE ARE 2 WAYS TO CREATE A COMPUTER ACCOUNT FOR A BDC. ********************************************************** 1. DURING INSTALLATION (REQUIRES ADMINISTRATOR NAME+PASSWORD) 2. PRIOR TO CONNECTING THE BDC, CREATE THE COMPUTER ACCOUNT USING SERVER MANAGER. 14.YOU CANNOT HAVE MORE THAN 1 PDC PER DOMAIN. 15. A BDC CAN IS VERY USEFUL SINCE IT CAN..... 1. DO USER AUTHENTICATIONS (DOMAIN CONTROLLERS ONLY) 2. PROVIDES SAM BACKUP FOR THE PDC, IN CASE THE PDC GETS VISITED BY THE ANGEL OF DEATH.*** 3. CAN ALSO PERFORM ALL THE DUTIES OF A MEMBER SERVER: FILE PRINT+APPLICATION SERVER, WINS, DHCP,DNS,WEB IIS,RAS SERVER ***SAY THE PDC DOES GET VISITED BY THE GRIM REAPER. THE 25GB DRIVE CRASHES BIGTIME. IT IS IMPORTANT TO NOTE THAT PROMOTING A BDC TO A PDC ONLY SAVES THE DOMAIN SAM. ALL OTHER DATA ON THE PDC IS LIKE WASTED. ANY USER DATA FILES ARE ALL GONE!!! HISTORY. AND IF YOUR THE SYSADMIN AT THE TIME, AND THIS HAPPENS TO YOU, YOU TOO WILL BE GONE!!!! SO REMEMBER KIDDIES, A BDC ONLY CAN RETRIEVE THE SAM DATABASE. 17.A PDC CAN PERFORM ALL MEMBER SERVER DUTIES + USER AUTHENTICATIONS A BDC CAN PERFORM ALL MEMBER SERVER DUTIES + USER AUTHENTICATIONS A MEMBER SERVER CAN BE A FILE PRINT+APPLICATION SERVER, WIN,DHCP,DNS,WEB IIS,RAS SERVER 18.IF YOU NEED TO TAKE A PDC DOWN FOR REPAIRS, FIRST PROMOTE A BDC TO PDC. THEN AFTER REPAIRS, RETURN THE ORIGINAL PDC TO ITS RIGHTFUL PLACE IN THE UNIVERSE. 19.IF YOU HAVE A VERY BUSY PDC, AND NO OTHER BDC'S, THEN YOU WILL EITHER HAVE TO TAKE THE PDC DOWN AND REALLY BEEF IT UP (FASTER OR MORE CPUS!!) OR CREATE A NEW BDC (THIS IS A BETTER OPTION, SINCE YOU NOW HAVE A BACKUP!) 20.ONLY /BDC/MEMBER SERVERS+ NT WORKSTATIONS CAN BE DOMAIN MEMBERS EVERYONE ELSE WINDOWS 95/98/DOS CAN ALL BE CONNECTED TO THE DOMAIN, BUT ARE ONLY DOMAIN CLIENTS, NOT DOMAIN MEMBERS! THEY GO IN THE WORKGROUP LIST. ONLY DOMAIN MEMBERS SHOW UP IN THE DOMAIN LIST. TO GET THE DOMAIN CLIENTS IN THE DOMAIN LIST, MAKE THE WORKGROUP NAME THE SAME AS THE DOMAIN NAME. 21.A DOMAIN CONTROLLER AUTHENTICATES USERS THE "NETLOGON" SERVICE RUNNING ON THE DOMAIN CONTROLLER DOES THE ACTUAL USER AUTHENTICATION. 22.YOU CAN HAVE UNLIMITED BDCS PER DOMAIN (ACTUALLY I THINK IT IS ABOUT 20) 23.SAY YOU WANT TO UPGRADE OR REPAIR THE PDC. WHEN YOU TRY TO PROMOTED A BDC TO PDC VIA SERVER MANAGER, YOU CANNOT DO SO, THEN MAKE SURE THAT YOUR LOGGED IN AND PART OF THE ADMINISTRATORS OR SERVER OPERATORS GROUP. 24. THE ENTIRE DOMAIN NAME CAN BE CHANGED IF SO DESIRED! (WILD!!!) DOMAIN CLIENTS WILL HAVE TO GET MANUALLY CHANGED TO THE NEW DOMAIN NAME. DOMAIN MEMEBERS CAN EASILY SWITCH TO THE NEW DOMAIN NAME. 26.A DOMAIN CONTROLLER CAN AUTHENTICATE USERS FROM NT LANMANAGER WFW MSDOS CLIENTS WITH REDIRECTOR A DOMAIN CONTROLLER CANNOT AUTHENTICATE OS2.1+ USERS 27.FOR THE FRICKING LAST TIME!, YOU FRICKING CAN'T MOVE A DOMAIN CONTROLLER TO ANOTHER DOMAIN!!!! THE FRICKING SIDS FROM THE OTHER DOMAIN ARE INCOMPATIBLE. THE DOMAIN NAMES CAN EXACTLY THE SAME, BUT IF THE DOMAIN SIDS ARE DIFFERENT, THEN THERE AIN'T NO FRICKING WAY IT IS GOING TO WORK, SISTER! 28. NT SERVER HAS MAX OF 256 RAS CONNECTIONS UNLIMITED NETWORK CONNECTIONS. NT 4.0 SERVER INSTALLATION METHODS *********************************** 1.SETUP DISKS+CDROM OR JUST BOOTING OFF THE CDROM 2.NETWORK CLIENT INSTALLATION FLOPPY AND NETWORK SHARED CDROM 3. INSTALLING FROM WITHIN AN EXISTING OS CDROM INSTALLATIONS ********************* INSTALLING VIA CDROM IS THE MOST COMMON METHOD. TO INSTALL OVER THE NETWORK YOU MUST MAP A DRIVE TO THE CDROM\I386. NETWARE USES "MAP" WINDOWS PRODUCTS CAN USE NETWORK NEIGHBOURHOOD TO MAP DRIVES WINDOW PRODUCTS AND DOS CAN USE THE NET USE Z:\\SERVER\I386 WINDOWS 3X MUST USE FILE MANAGER>CONNECT NETWORK DRIVE>DISK COMMAND TO MAP A NETWORK DRIVE. CLIENT ADMINISTRATOR INSTALLATION *********************************** Introduction to the Network Client Administrator The WindowsNT Server compact disc (CD) contains the following types of installation files: Microsoft Windows95 Microsoft Network Client for MS-DOS version 3.0 Microsoft LANManager for MS-DOS version 2.2c Microsoft LANManager for OS/2 version 2.2c Client-based network administration tools Microsoft Remote Access Service (RAS) for MS-DOS version 1.1a Microsoft TCP/IP-32 for Windows for Workgroups, Microsoft's 32-bit implementation of the industry-standard TCP/IP internet-working protocols The Network Client Administrator enables you to quickly install the programs and tools contained on the WindowsNT Server CD. The Network Client Administrator is automatically installed in %systemroot%\system32 directory. Using the Network Client Administrator ****************************** You can use Network Client Administrator to do the following: Share the installation files contained on the WindowsNT Server CD. Copy the directories and files contained on the CD to a network server (recommended). If you use the second method, you can use the CD as a backup copy. For information about the location and size of the installation files on the CD, see the Help topic "The CLIENTS Directory." Using the Network Client Administrator, you can quickly install network client software by creating a network installation startup disk or an installation disk set. The type of installation disk you need to create depends on the type of software you intend to install. To determine whether you need to create a network installation startup disk or an installation disk set, see the Help topic "Determining the Type of Disk You Need to Create." After you have installed the network client software on the target computer, you can install RAS for MS-DOS, TCP/IP-32 for Windows for Workgroups, or client-based network administration tools. ADMIN TOOLS>NETWORK CLIENT ADMINISTRATOR Network Client Administrator You can use this WindowsNT Server program to create media for installing the following network client software and administration tools on computers: Microsoft Windows for Workgroups version 3.11 Microsoft Network Client for MS-DOS version 3.0 Microsoft LAN Manager for MS-DOS version 2.2 Microsoft LAN Manager for MS OS/2 version 2.2 Client-based network administration tools Remote Access Service (RAS) for MS-DOS Microsoft TCP/IP-32 for Windows for Workgroups NETWORK INSTALLATION STARTUP DISK ************************************ Select this option if you want to create an installation startup disk that enables you to automate the installation process for WindowsNT Server, WindowsNT Workstation, Windows95, Windows for Workgroups version 3.11, or Microsoft Network Client for MS-DOS version 3.0. During the installation process, the disk you create automatically: starts the computer, connects to the server containing the installation files, and initiates the installation process. MAKE AN INSTALLATION DISK SET ****************************** Select this option if you want to create an installation disk set containing the installation files for Microsoft Network Client for MS-DOS, LAN Manager for MS-DOS, LAN Manager for MSOS/2, RAS for MS-DOS, or TCP/IP-32 for Windows for Workgroups. Using the installation disk set, you can manually install the software on each computer. You can also install RAS for MS-DOS or TCP/IP-32 for Windows for Workgroups by creating a connection to the network share containing the installation files, and then installing the software over the network. COPY THE CLIENT-BASED NETWORK ADMINISTRATION TOOLS ****************************************************** Select this option to complete one of the following tasks: To share the installation files for the client-based network administration tools on the WindowsNT Server compact disc (CD). To copy the installation files for the client-based network administration tools to a new directory on a network-server hard disk, and then share the files. Note Client-based Network Administration Tools enable you to have full administrative support for WindowsNT, LANManager for MSOS/2, or LANManager for UNIX servers from a computer running Windows95, WindowsNT Workstation, or WindowsNT Server. VIEW REMOTEBOOK CLIENT INFORMATION ************************************* Select this option if you want to view information about the Remoteboot service, a WindowsNT Server feature that starts MS-DOS and Microsoft Windows computers over the network. If you need the target computer to have remote booting capabilities, please note that you cannot install the Remoteboot service using the Network Client Administrator. For details on how to install the Remoteboot service, see the WindowsNT Networking Guide in the WindowsNT Server Resource Kit version 4.0. Determining the Type of Disk You Need to Create ************************************** Use the following table to determine whether you need to create a network installation startup disk or installation disk set. Description Installation startup disk Installation diskset ******************************************************** WindowsNT Server X -- WindowsNT Workstation X -- Windows 95 X -- Windows for Workgroups X -- Network Client for MS-DOS X X TCP/IP-32 for Windows for Workgroups -- X LAN Manager for MS-DOS -- X LAN Manager for MSOS/2 -- X RAS for MS-DOS -- X CONFIGURING PROTOCOLS AND NETWORK BINDINGS ********************************************* CONTROL PANEL>NETWORK INDENTIFICATION=NETBIOS COMPUTER NAME AND DOMAIN OR WORKGROUP SERVICES =ADD/REMOVE/MODIFY NETWORK SERVICES PROTOCOLS =ADD/REMOVE/MODIFY NETWORK PROTOCOLS ADAPTERS =ADD/REMOVE/MODIFY NIC CARDS BINDINGS =ARRANGE/OPTIMIZE NETWORK PROTOCOLS TO SERVICES INSTALLING+CONFIGURING NWLINK ******************************* NWLINK IS THE MICROSOFT 32-BIT VERSION OF IPX/SPX. NWLINK IS THE MAIN TRANSPORT PROTOCOL THAT NT USES TO ACCESS NOVELL RESOURCES+SERVERS. AS STATED MANY TIMES BEFORE, USING NWLINK ALONE ONLY PROVIDES SERVER-CLIENT APPLICATION SUPPORT. TO GET FILE+PRINT SERVICES, YOU NEED EITHER GSNW OR CSNW OR NOVELL'S CLIENT32 FOR WINDOWS. IPX FRAME TYPES BY DEFAULT NT WILL AUTO-DETECT OF THE NOVELL FRAME TYPE BY SENDING OUT A BROADCAST RIP REQUEST WHEN NWLINK GETS INITIALIZED. SCENERIOS ARE: 1.NO RESPONSE BACK FROM ANY OF THE FRAME TYPE: NWLINK WILL THEN USE 802.2 2.ONE RESPONSE TO ONE OF THE FRAME TYPES: NWLINK WILL USE THIS FRAME TYPE. THIS WILL NOW BE THE DEFAULT PROTOCOL WHEN AUTODECTECTION IS USED. 3.MULTIPLE RESPONSES RECEIVED: NWLINK PROCESSES THROUGH THE LIST MATCHING FRAME TYPES TO RESPONSES BOTH WORKSTATION AND SERVER CAN BE CONFIGURED TO ACCEPT MULTIPLE NOVELL IPX FRAME TYPES, BUT ONLY THE SERVER'S NETWORK CONTROL PANEL CAN DO THIS. TO SETUP MULTIPLE FRAME TYPES FOR WORKSTATION, YOU HAVE TO EDIT THE REGISTRY MANUALLY! YIKES!! (TRY THAT ON 100 NT NOVELL CLIENTS!) USING AN INCORRECT FRAME TYPE RESULTS IN FANTASTIC DROP IN NETWORK PERFORMANCE. "IPXROUTE CONFIG" DISPLAYS WHAT FRAME TYPES ARE CURRENTLY BEING USED. ETHERNET 802.2 ETHERNET 802.3 ETHERNET II SNAP ETHERNET 802.2 ETHERNET 802.3 ************************************************** NETWARE 4X + 3.12 NETWARE 3.11 AND LESS NT 3.5X NT 3.1 WFW 3.11 WFW 3.X RETAIL IPX INTERNAL NETWORK NUMBER IS IPX'S SUBNET MASK. IT DETERMINES LOCAL IPX NETWORKS AND REMOTE IPX NETWORKS. USING TCPIP ********** CLASS A=1 OCTET=NNNNNNNN**HHHHHHHH.HHHHHHHH.HHHHHHHHH CLASS B=2 OCTET=NNNNNNNN.NNNNNNNNN**HHHHHHHH.HHHHHHHH CLASS C=3 OCTET=NNNNNNNN.NNNNNNNNN.NNNNNNNN**HHHHHHHH HOSTS CANNOT BE ALL ZEROS'S THAT IS THE NETWORK ITSELF. HOSTS CANNOT BE ALL 1'S THAT IS USUALLY THE BROADCAST ADDRESS. 127.0.0.0 172.0.0.0 192.168.0.0 ARE ALL SPECIAL INTERNAL TCPIP NETWORKS ONLY. A DEFAULT GATEWAY IS USUALLY A ROUTER. A DEFAULT GATEWAY CAN ALSO BE AN NT SERVER THAT HAS 2 NICS AND HAS IP ROUTING ENABLED. THE IP AND SUBNET MASK MUST BE CORRECT FOR THE INTERFACE TO TALK TO OTHER INTERFACES. THEDEFAULT GATEWAY MUST BE CORRECT TO TALK TO OTHER NETWORKS. INSTALLING TCPIP *************** YOU CAN INSTALL TCPIP VIA DHCP (A DHCP SERVER ASSIGNS ALL THE TCPIP INFO) OR MANUALLY WITH A STATIC IP. WINS ***** WINS ONLY RUNS ON AN NT SERVER. WINS RESOLVES NETBIOS NAMES TO IT'S IP. THE LMHOSTS FILE ALSO RESOLVES NETBIOS NAMES TO IP'S, BUT IT IS A STATIC FILE LIKE DNS. WINS IS DYNAMIC. IF COMPUTERS CHANGE THEIR IP'S OR NETBIOS NAMES, WINS CAN UPDATE. ENABLE DNS FOR WINDOWS RESOLUTION TELLS NT TO USE A DNS NAMESERVER AS ITS WINS SERVER. THIS ENABLES WINS RESOLUTION OVER A DNS NAMESERVER, BUT NETBIOS AND IP'S CANNOT CHANGE. THAT IS TO SAY, CHECKING ENABLED DNS FOR WINS RESOLUTION IS NOT DYNAMIC LIKE WINS ITSELF IS. ENABLE LMHOSTS FILE USES A LMHOSTS TEXT FILE AS ITS NETBIOS TO IP'S SCOPE ID WINS SCOPE ID, MAKES LOGICAL IP NETWORKS THAT ARE NOT VISIABLE TO EACH OTHER. HOSTS MUST BELONG TO A THE SAME "NETBIOS SCOPE" TO COMMUNICATE. DNS **** DNS IS USED TO RESOLVE FQDN'S TO IP'S EXAMPLE. WWW.MCSE.COM TO 104.64.32.45 IPCONFIG =DISPLAYS TCPIP CONFIGURATION FOR DEFAULT INTERFACE IPCONFIG /A =DISPLAYS TCPIP CONFIGURATIONS FOR ALL INTERFACES PING =TESTS THE CONNECTION BETWEEN INTERFACES TRACERT =TRACES THE HOPS (ROUTERS) PACKETS TAKE TO A DESTINATION PRACTICE QUESTIONS AND ANSWERS 1. THE PRIMARY LOCATION TO ADD OR CONFIGURE NETWORK PROTOCOLS IS CONTROL PANEL>NETWORK. 2.YOU WANT TO CHANGE THE NAME OF YOUR DOMAIN FOR SALES TO MARKETING. IF YOU ARE NOT A DOMAIN CONTROLLER(DOMAIN CONTROLLERS CANNOT CHANGE DOMAINS) THEN IT IS NETWORK CONTROL PANEL. 3.GSNW CAN BE ADDED VIA NETWORK CONTROL PANEL>SERVICES TAB>ADD 4.TO ADD/REMOVE/MODIFY PROTOCOLS, IT IS CONTROL PANELS>NETWORK>PROTOCOLS 5. TO ADD NEW HARDWARE THAT WAS NOT DETECTED, IN NT JUST INSTALL THE CORRECT DRIVER (AND KNOW THE SETTINGS FOR THAT CARD (IRQ IO ETC) THERE IS NO 'ADD NEW HARDWARE" IN NT. "ADD NEW HARDWARE" IS 95/98 ONLY. 6.YOU ARE INTEGRATING NT SERVERS WITH THE NETWARE SERVERS. NT SERVER IS UP AND RUNNING BUT YOU CANNOT YET ACCESS ANY NETWARE SERVERS. YOU NEED TO INSTALL NWLINK AND POSSIBLY GSNW, IF GSNW IS THE SOLUTION YOU ARE PROVIDING. 7.SO YOU INSTALLED NWLINK, BUT STILL CAN'T ACCESS NETWARE SERVERS FROM YOUR NT. NWLINK WILL ONLY PROVIDE CLIENT-APPLICATION LEVEL SUPPORT. YOU MAY NEED TO CONFIGURE FRAMETYPES AND THEN INSTALL GSNW. 8.YOU HAVE NETWARE4 SERVERS AND NETWARE3 SERVERS, THAT YOU FIND USE DIFFERENT FRAME TYPES. BECAUSE NT USES AUTODETECT FRAMETYPES BY DEFAULT, YOU DO NOT KNOW WHICH FRAMETYPE NT IS USING. HOW DO YOU FIND OUT WHAT FRAMETYPE NT IS USING?? "IPXROUTE CONFIG" FROM COMMAND PROMPT WILL DISPLAY ALL THE NOVELL FRAMETYPES NT HAS DISCOVERED AND ALSO DISPLAY IT'S DEFAULT NOVELL FRAMETYPE. 9.YOU HAVE NETWARE4 AND NETWARE3 NOVELL SERVERS THAT USE DIFFERENT FRAMETYPES. HOW CAN YOU ADD MORE FRAMETYPES TO YOUR NT SERVER SO IT WILL ACCESS BOTH NETWARE4 AND NETWARE3 SERVERS ?? ON NT SERVER ADD MORE NOVELL FRAMETYPES VIA NETWORK CONTROL PANEL. ON WORKSTATION, TO ADD MORE FRAMETYPES MENAS YOU HAVE TO EDIT THE REGISTRY 10.YOU AND YOUR LACKEY ARE INSTALLING AN NT SERVER WITH GSNW. YOUR LACKEY IS CONFUSED HOW NT CAN AUTODETECT THE NOVELL FRAMETYPE? YOU SAY, HEY, LACKEY, NT'S NWLINK, WHEN INITIALIZING, SENDS OUT A RIP BROADCAST, ASKING ALL NETWARE SERVERS TO RESPOND. 11.YOU NT WORKSTATION CURRENTLY IS USING CSNW AND NWLINK. HOWEVER YOU NEED TO ADD ANOTHER FRAMETYPE TO YOUR NT WORKSTATION SO YOU CAN WORK WITH ANOTHER VERSION OF A NOVELL SERVER. YOU MUST EDIT THE REGISTRY TO DO THIS. SO YOU COWER AND ASK YOUR SYSADMIN FOR HELP. 12.ARCNET PROTOCOL DOES NOT SHIP WITH NT. 13.YOU HAVE YOUR NT WEBSERVER INSTALLED AS A MEMBER SERVER. YOU ALSO HAVE NOVELL SERVERS. HOW CAN WIN95 USERS ACCESS BOTH THE NT MEMBER WEBSERVER AND NOVELL SERVERS? WIN95 USERS CAN ACCESS NOVELL SERVERS VIA IT'S MICROSOFT CLIENT FOR NETWARE" AND THE NT WEBSERVER VIA "MICROSOFT CLIENT FOR MICROSOFT NETWORKS," 14.DURING INSTALLATION OF NWLINK, YOU SEE INTERNAL NETWORK NUMBER. WHAT DOES INTERNAL NETWORK NUMBER DO FOR NWLINK? NWLINK'S AND IPX'S INTERNAL NETWORK NUMBER IS LIKE TCPIPS SUBNET MASK. THE IPX'S INTERNAL NETWORK NUMBER DETERMINES IF NETWORKS ARE LOCAL OR REMOTE. 15.YOUR NEW NETWORK HAS NOVELL 3.51 AND NT4.0 SERVERS AND WIN95 CLIENTS. WIN95 USERS NOW HAVE TO LOGON TO BOTH SERVERS. HOW CAN YOU DO THIS ?? "MICROSOFT CLIENT FOR MICROSOFT NETWORKS" TAKES CARE OF THE NT4 SERVER SUPPORT "MICROSOFT CLIENT FOR NETWARE" TAKES CARE OF THE NOVELL SERVER SUPPORT. THEN CONFIGURE EACH SERVICE AS REQUIRED. WHAT SERVERS+DOMAINS TO LOGON TO, 16.TCPIP DOES NOT NEED TO BE INSTALLED ON NT SERVERS. TCPIP HAS BEEN THE DEFAULT PROTOCOL FOR NT SINCE NT 3.1. TCPIP IS INSTALLED DURING INSTALLATION. 17.YOU WANT TO CONVERT A LARGE NETBEUI NETWORK OVER TO TCPIP. YOUR BOSS IS WIGGIN SINCE HE THINKS HE'LL HAVE TO PURCHASE IP NUMBERS TO MAKE TCPIP WORK. THEN YOU SAY YOU ONLY NEED TO BUY IP'S NUMBERS IF YOU WANT TO CONNECT THOSE COMPUTERS DIRECTLY UP TO THE INTERNET. WE HERE AT XYZ DON'T WANT THAT. SO WE'LL HAVE OUR OWN INTERNAL TCPIP NETWORK, COMRADE! AND THOSE IMPERIALIST SPIES WILL NEVER KNOW!!! 18.YOUR INSTALLING A NEW BDC. YOU ENTER A NEW IP, BUT THERE IS AN IP CONFLICT. WHY IS THIS A PROBLEM?? BECAUSE COMPUTERS USING TCPIP CANNOT SHARE IP NUMBERS AT THE SAME TIME. AS LONG AS COMPUTERS AREN'T CONNECTED TO THE NETWORK, SHARE ALL THE IPS YOU WANT. 19. YOU MAKE A TOTALLY MIND-BOGGLING DISCOVERY THAT YOU SHARE WITH ALL YOUR CO-WORKERS. SEEMS THAT ALL TCPIP NUMBERS HAVE PERIODS IN THEM. LIKE 123.56.78.56 THEN YOU FIND OUT EACH IS CALLED AN OCTET. 20.YOUR INSTALLING A NEW BDC USING TCPIP. WHAT TCPIP PARAMETERS DO YOU ABSOLUTELY NEED ? AN ADDRESS AND SUBNET MASK ALL OTHER TCPIP PARAMETERS LIKE DEFAULT GATEWAY, WINS, DHCP AND OTHERS ARE OPTIONAL DEPENDING ON YOUR TCPIP CONFIGURATION. IF THIS BDC WERE ON A DIFFERENT SUBNET THAT THE PDC, THEN A DEFAULT GATEWAY ADDRESS WOULD THEN BECOME A REQUIREMENT. 21.YOUR INSTALLING NT SERVER. A SUN SPARC IS THE COMPANYS DHCP SERVER. YOU WONDER IF IT IS POSSIBLE TO SET THE NT SERVER TO USE DHCP. NT SERVERS CAN USE DHCP. NT SERVERS CAN BE EITHER A DHCP CLIENT OR A DHCP SERVER (REQUIRES DHCP SERVICE) DHCP AUTOMATICALLY ASSIGNS ALL TCPIP CONFIGURATIONS FOR DHCP CLIENTS. 22.YOU AND A COWORKER ARE INSTALLING A NEW NT SERVER. YOUR NOT SURE IF YOU SHOULD PARTICIPATE IN THE WINS SERVER THAT IS ALREADY INSTALLED AT THE COMPANY, WINS DYNAMICALLY MAPS NETBIOS NAMES TO IP ADDRESSES. THEN YOUR BOSS COMES OVER AND SLAPS YOU BOTH ON THE HEAD. 23.YOUR CONFIGURING SOME NT WORKSTATIONS. YOU ARE USING DHCP, BE MUST ENTER A DNS NAMESERVER MANUALLY. A CLIENT ASKS YOU WHAT DNS IS ? YOU SAY TO YOUR CO WORKER THAT DNS IS DOMAIN NAME SERVICE. DNS TRANSLATES FQDN'S TO IP NUMBERS. THAT IS. STUFF LIKE WWW.MYNEWIBM.COM TO 134.32.124.46 24.A SUBNET MASK MARKS THE DIVIDING LINE BETWEEN NETWORK ID AND HOST ID IN ALL 32-BIT IP NUMBERS. DEPENDING ON THE SUBNET MASK YOU USE, YOU CAN HAVE EITHER LESS NETWORKS AND MORE COMPUTERS PER NETWORK OR LESS COMPUTERS PER NETWORK AND MORE NETWORKS 26.YOUR USING DHCP. HOW CAN YOU FIND OUT WHAT IP NUMBERS YOU ARE USING ? IPCONFIG /ALL TELLS US ALL WE WANT TO KNOW AND MORE. 27.A FELLOW WORKS SAYS THEY CANNOT CONNECT TO THE INTERNET. BEFORE TRAVELLING ALL THE WAY OVER TO THEIR OFFICE, WHAT SHOULD YOU DO AT YOUR OFFICE ? PING THEIR COMPUTER FROM YOURS. THIS TELLS YOU IF TCPIP IS WORKING FROM YOUR COMPUTER TO THEIRS. 28.YOU HAVE A SMALL GROUP OF NT WORKSTATIONS OF 10 OR SO. WHAT PROTOCOL SHOULD YOU USE ? NETBEUI. NETBEUI ROCKS WITH A SMALL AMOUNT OF NETBEUI USERS. 29.YOU HAVE A DOMAIN THAT SPANS 2 STATES. YOUR BOSS HAS READ THAT NETBEUI IS FAST AND NEEDS NO CONFIGURATION. HE WANTS YOU TO TAKE OUT TCPIP AND INSTALL NETBEUI INSTEAD. YOU SCREAM AT YOUR BOSS WITH 20 PEOPLE WATCHING "BOSS YOUR AN IDIOT!!!!" HE FIRES YOU ON THE SPOT. YOU KEEP IT TO YOURSELF THAT TCPIP IS DESIGNED FOR WANS. NETBEUI IS NOT. NETBEUI PACKETS WON'T EVEN CROSS A ROUTER WITHOUT BEING SPECIALLY ENCAPSULATED. 30.AFTER GETTING YOUR JOB BACK, YOUR BOSS ASKS YOU WHAT PROTOCOL BINDING IS. SEEMS THAT A NEWLY HIRED MCSE WAS PLAYING AROUND ON YOUR NT SERVERS AND TOTALLY FUCKED UP THE NETWORK PROTOCOL BINDINGS. YOU SAY PROTOCOL BINDING IS ASSOCIATING A SERVICE OR NIC WITH A NETWORK PROTOCOL. THEN YOU YOU GO FIX THE MESS. . MORE PRACTICE PROBLEMS ************************ 1. YOUR INSTALLING A NEW PDC FOR A NEW CUSTOMER ON A COMPAQ PROLIANT 5300. YOU HAVE A 100BASE-TX 3COM CARD AND A THOMAS-CONRAD TOKENRING CARD. DURING THE INSTALLATION OF NT, NT ONLY FINDS THE INTEL CARD. NOT THE TOKENRING CARD. WHAT DO YOU DO ? SETUP WILL STOP AFTER FINDING THE FIRST NIC. PRESS THE "FIND NEXT" BUTTON TO START THE SEARCH AND ADD OF THE TOEKNRING CARD. 2.YOUR INSTALLING NT SERVER. THIS NIC HOWEVER IS NOT IN THE HCL. YOU DO HAVE AN NT4.0 DRIVER FOR IT. HOW CAN YOU TELL SETUP TO USE THE NIC?? YOU WANT TO ADD THE NIC DURING SETUP, SINCE ADDING THE NIC AFTER SETUP MEANS ALL THE SERVICES AND NETWORKING PRODUCTS YOU DECIDED DURING SETUP HAVE NOT BEEN PROPLERLY BINDED!! FOR RELIABILITY SAKE, YOU MUST INSTALL THE NIC DURING SETUP SO YOU PRESS THE "HAVE DISK" BUTTON IN THE NIC INSTALLATION PHASE. 3.YOUR ADDING A SOUNDCARD BUT IT DOESN'T WORK. YOU TRY AND FIND OUT THE IRQ OF YOUR NIC. HOW? TWO WAYS. EITHER WINMSD.EXE WINDOWS DIAGNOSTICS OR NETWORK CONTROL PANEL>ADAPTERS>PROPERTIES. 4.AN IRQ IS A HARDWARE SIGNAL TO THE CPU THAT I NEED SOME ATTENTION. IF YOUR NIC IS IRQ 5. WHEN THE NIC NEEDS THE CPU. IT SENDS OUT A IRQ 5 REQUEST TO THE CPU. 5.AN IO ADDRESS IS A LOW LEVEL AREA OF MEMORY THAT DEVICES USE IN ORDER TO BE ADDRESSED. IF THE IO ADDRESS IS NOT CONFIGURED CORRECTLY, THAT DEVICE WIL LNOT WORK RIGHT. WINDOWS NT CORE SERVICES ************************** SERVICES ARE PROGRAMS THAT RUN IN THE BACKGROUND THAT PROVIDE EXTRA SERVICES. SERVICES OFTEN NEED TO BE CONFIGURED, BUT DON'T INTERACT WITH THE USER. SOME SERVICES ARE.. WINS SERVICE DYNAMCAILLY RESOLVES NETBIOS NAMES TO IP'S UPS SERVICE CONTROLS INTERACTION BETWEEN NT AND YOUR UPS SERVICE SERVICE ACCEPTS REQUESTS FROM THE REMOTE NETWORK COMPUTERS AND GIVES TO THE LOCAL COMPUTER WORKSTATION SERVICE ACCEPTS REQUESTS FROM LOCAL COMPUTER AND GIVES TO A REMOTE NETWORK COMPUTER. SERVICES CONTROL PANEL *********************** NETWORK CONTROL PANEL>SERVICES IS HOW YOU MANAGE SERVICES ON YOUR NT. STOP/START/PAUSE/OR CHANGE THE BOOTING STATUS OF A PARTICULAR SERVICE. YOU CAN CONFIGURE EACH SERVICE FOR EACH HARDWARE PROFILE. VERY COOL!! SO IF YOU MAKE A LAPTOP HARDWARE PROFILE, YOU CAN SHUTDOWN CERTAIN SERVICES YOU DON'T NEED. SERVICES ARE WIN32 PROGRAMS, SO THEY MUST RUN UNDER A USER ACCOUNT. SYSTEM ACCOUNT **************** THERE IS AN INTERNAL ACCOUNT CALLED "SYSTEM" THIS "SYSTEM" ACCOUNT CAN EITHER BE USED BY NT OS OR A SERVICE. USING THE SYSTEM ACCOUNT IS PRETTY BOGUS, SINCE YOU CANNOT MODIFY THE RIGHTS+PERMISSIONS. IF YOU DO OTHER SERVICES THAT USE THE SYSTEM ACCOUNT MAY FAIL. THIS ACCOUNT ************* YOU CAN CREATE A USER ACCOUNT AND USE THAT TO RUN THIS SERVICE. YOU SHOULD CREATE A SEPERATE USER ACCOUNT FOR EACH SERVICE.. THEN YOU CAN MODIFY THE RIGHTS+PERMISSIONS OF THAT USER ACCOUNT (THAT SERVICE) AND NO OTHER SERVICE GETS ANNOYED. NETWORK SERVICES ***************** ADD/REMOVE/MODIFY SERVICES VIA NETWORK CONTROL PANEL>SERVICES. MOST SERVICES ARE CONFIGURABLE IN NETWORK CONTROL PANEL, BUT SOME ARE NOT. DIRECTORY REPLICATION ********************** DIRECTORY REPLICATION WORKS ON NT COMPUTERS ONLY. ONLY NT SERVERS CAN BE EXPORT SERVERS. NT SERVERS/WORKSTATION/LANMANAGER OS/2 CAN BE IMPORT SERVERS. DIRECTORY REPLICATION IS A TOOL THAT LETS YOU AUTOMATICALLY DISTRIBUTE FILES TO OTHER NT SERVERS (EXPORT+IMPORT) AND WORKSTATIONS (IMPORT ONLY) REPLICATION CAN GREATLY SIMPLY THE TASK OF DISTRIBUTING FILES ACROSS ALL NT COMPUTERS. A SINGE EXPORT SERVER DISTRIBUTES ITS EXPORT FILES TO ALL CONFIGURED IMPORT SERVERS. LOGON.BAT SCRIPTS/PHONE LISTS/HELP FILES/LMHOSTS/ANY AND ALL KINDS OF DATA. ALTHOUGH THIS SHOULD BE "SYSTEM STUFF" SINCE YOU CAN SETUP A SHARED FOLDER ON A SERVER MUCH EASIER AND FASTER THAN AN EXPORT/IMPORT SERVER. DIRECTORY REPLICATION IS A REAL PAIN TO SETUP. HOWEVER THE ONE COOL THING ABOUT REPLICATION IS THAT ONCE IT IS UP AND WORKING, DISTRIBUTION OF THOSE FILES TO ALL YOUR IMPORT SERVERS IS AUTOMATIC!! VERY COOL YOU CAN EDIT THE REGISTRY TO DETERMINE HOW FAST REPLICATION OCCURS (1 TO 60MIN). BY DEFAULT REPLICATION OCCURS EVERY 5 MINUTES. A GUARDTIME IS HOW LONG A DIRECTORY MUST BE STABLE BEFORE REPLICATION OCCURS. GUARDTIME IS FROM 0 TO 1/2 THE REPLICATION PERIOD. \WINNT\SYSTEM32\REPL\EXPORT FILES TO BE DISTRIBUTED \WINNT\SYSTEM32\REPL\IMPORT INCOMING FILES FROM THE EXPORT SERVER THE SERVICE CALLED "DIRECTORY REPLICATOR" RUNS REPLICATION. WHEN "DIRECTORY REPLICATION" SERVICE STARTS IT SETS UP A SHARE CALLED $REPL. THE $ MEANS THAT SHARED DIRECTORY WILL NOT SHOW UP IN ANY BROWSELIST. (IE. HIDDEN) THE DIRECTORY REPLICATION SERVER WILL OVERWRITE ANY OLD DATA IN THE IMPORT FOLDER. THE IMPORT FOLDER WILL BECOME AN EXACT COPY OF THE EXPORT FOLDER. DIRECTORY REPLICATION PROCESS ****************************** 1. EVERY 5 MINUTES(BY DEFAULT) EXPORT SERVER CHECKS IT'S \WINNT\SYSTEM32\REPL\EXPORT DIRECTORY FOR ANY CHANGES. IF A CHANGE HAS OCCURED, EXPORT SERVER INFORMS ALL IMPORT COMPUTERS 2.ALL IMPORT COMPUTERS RECIEVE THAT UPDATE NOTICE AND CONTACTS THE EXPORT SERVER. 3.IMPORT SERVER READS THE EXPORT SERVERS DIRECTORY AND COPIES IT TO IT'S IMPORT DIRECTORY. IS IS IMPORTANT TO REMEMBER THAT THE EXPORT SERVER SENDS OUT AN UPDATE MESSAGE AND THAT IS IS UPTO EACH IMPORT SERVERS TO CONTACT THE EXPORT SERVER, TROUBLESHOOTING DIRECTORY REPLICATION *************************************** STATUS MESSAGES OF DIRCTORY REPLICATION ARE OK =MEANS EXPORT SERVER IS SENDING REGULAR UPDATES. IMPORT SERVERS PICKING THEM UP. NO MASTER =MEANS IMPORT SERVERS NOT RECIEVING UPDATES. EXPORT SERVER MAY NOT BE RUNNING OR OFFLINE OR NO CONNECTION DIRECTORY REPLICATION SERVICE ON EXPORT NOT RUNNING OR REQUIRES A RESTART NO SYNC =MEANS IMPORT SERVERS RECIEVE UPDATES BUT DATA IN THE UPDATES IS BAD. MEANS EXPORT SERVER MALFUNCTION, NO CONNECTION OR OPENED FILES ON THE EXPORT SERVER. BLANK =MEANS REPLICATION HAS NEVER OCCURRED. IMPROPER CONFIGURATION OR EITHER EXPORT OR IMPORT SERVERS. WHEN THE DIRECTORY REPLICATION SERVICE GENERATES AN ERROR CHECK EVENTVIEWER ****************************************************************************** ACCESS DENIED =MEANS DIRECTORY REPLICATOR SERVICE CANNOT LOGON TO A SPECIFIC ACCOUNT WHEN EXPORTING TO A SPECIFIC COMPUTER(S) ***************************************** REMEMBER YOU MUST SETUP A NEW EXPORT SERVER JUST FOR THAT IMPORT SERVER. REPLICATION OVER A WAN *********************** WHEN REPLICATION OCCURS OVER A WAN, SPECIFY THE REMOTE COMPUTER NAME, NOT JUST THE DOMAIN. WINDOWS NT CLIENT LICENSES *************************** PER SERVER MODE = LICENSE IS ASSIGNED TO THE SERVER. AN NT SERVER MAYBE LICENSED FOR SAY 200 CONCURRENT USERS. LEGALLY + MORALLY NO MORE THAN 200 USERS CAN CONNECT TO THIS SERVER. PER SEAT MODE =CAL IS ASSIGNED TO THE CLIENT. A CAL MUST BE PURCHASED FOR EACH CLIENT ON THE NETWORK. MICROSOFT ALLOWS A 1 TIME SWITCH FROM PER SERVER TO PER SEAT. FOR ONE NT SERVER NETWORKS USE PER SERVER. FOR MULTIPLE NT SERVER NETWORKS, USE PER SEAT. A=NT SERVERS (SAY 5) B=CONCURRENT USERS (SAY 100 CONCURRENT USERS) C=TOTAL CLIENTS (SAY 125 CLIENTS) IF ((NUMBER OF SERVERS*CONCURRENT USERS)TOTAL CLIENTS) USE PER SEAT (EXAMPLE IS 5*100>125 SO WE'LL USE PER SEAT) LICENSING CONTROL PANEL ************************ LETS YOU ADD/REMOVE CLIENT LICENSES LETS YOU SWITCH FROM PER SERVER TO PER SEAT. ADMINTOOLS>LICENSE MANAGER ***************************** LICENSE MANAGER DISPLYS LICENSE INFO FOR THE ENTIRE NT NETWORK. MAINTAINS A HISTORY OF LICENSES. THIS IS WHAT MICROSOFT WILL CHECK IF THEY EVER AUDIT YOU. COMPUTER BROWSER SERVICE ************************** THE COMPUTER BROWSER SERVICE IS THE SERVICE THAT WORKS WITH BROWSERS. A BROWSER IS A COMPUTER THAT MAINTAINS A BROWSELIST. BROWSELISTS CAN BE VIEWED WITH NETWORK NEIGHBOURHOOD OR THE NET VIEW COMMAND. THERE ARE 5 TYPES OF BROWSERS ***************************** 1. MASTER BROWSER EACH WORKGROUP OR TCPIP SUBNET MUST HAVE IT'S OWN MASTER BROWSER. EACH COMPUTER RUNNING THE SERVICE SERVICE WHEN INITIALIZING, REGISTERS ITSELF WITH IT'S MASTER BROWSER. 2.DOMAIN MASTER BROWSER(PDC) THE DOMAIN MASTER BROWSER COLLECTS BROWSELISTS FROM ALL THE MASTER BROWSERS AND MERGES THEM INTO A MASTER BROWSE LIST. THIS MASTER BROWSE LIST IS MAINTAINED ALMOST ALWAYS BY THE PDC. 3.BACKUP BROWSERS BACKUP BROWSERS GET A COPY OF THE BROWSELIST FROM IT'S LOCAL MASTER BROWSER. IT ASSISTS IT'S MASTER BROWSER WITH ANY BROWSE REQUESTS. 4.POTENTIAL BROWSER THIS IS A COMPUTER THAT IS NOT A BROWSER CURRENTLY, BUT CAN BE A BROWSER. A MASTER BROWSER CAN FORCE A POTENTIAL BROWSER TO WORK, OR IF A BROWSE ELECTION OCCURS, A POTENTIAL BROWSER MAY HAVE TO GET OFF IT'S ASS. 5. NON BROWSER NO BROWSERS ARE COMPUTERS THAT CANNOT BE BROWSERS. WHEN A CLIENT COMPUTER ACCESSES THE NETWORK, IT GETS A LIST OF BACKUP BROWSERS FROM IT'S MASTER BROWSER. IT THEN ASKS ONE OF THOSE BACKUP BROWSERS FOR IT'S BROWSELIST. A BROWSE ELECTION OCCUR WHEN A MASTER BROWSER CANNOT BE ACCESSED. (IE. IF A MASTER BROWSER FAILS, A BROWSE ELECTION OCCURS.) BROWSER PRIORITY ***************** PDCS PRIMARY DOMAIN CONTROLLERS BDCS BACKUP DOMAIN CONTROLLERS NT SERVER 4 MEMBER SERVERS NT WORKSTATION 4 NT SERVER 3X WINDOWS 95/98 YOU CAN CONFIGURE NT COMPUTERS FOR BROWSING HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BROWSR\PARAMET YES =ALWAYS RUN FOR OFFICE! TRY AND BE A BROWSER! BE ALL YOU CAN BE! NO =I HATE THE POLITICAL PROCESS. LET OTHERS DO THE BROWSING FOR ME AUTO=MAKE ME A POTENTIAL BROWSER. ALL NT MEMBER SERVERS AND WORKSTATIONS ARE BY DEFAULT "AUTO" OR "POTENTIAL BROWSERS" THEY'LL BE BROWSERS BUT ONLY IF ELECTED TO DO SO. INSTALLATION+CONFIGURATION PROBLEMS AND ANSWERS ***************************************************** 1.A SERVICE IS A BACKGROUND APPLICATIOM THAT PROVIDES EXTRA SERVICES. 2.WINS SERVICE DYNAMICALLY RESOLVES NETBIOS NAMES TO THEIR IP'S 3.DHCP SERVICE DYNAMICALLY ASSIGNS TCPIP CONFIGURATIONS TO DHCP CLIENTS 4.YOUR COMPUTER SHOWS UP IN THE BROWSELIST. OTHERS CAN CONNECT TO YOUR SHARES. YOU CANNOT CONNECT TO RESOURCES ? WHATS WRONG? YOUR WORKSTATION SERVICE IS STOPPED OR NEEDS RESTARTING. 5.ALL THE "SHARING HANDS" ON ALL THE SHARED FOLDERS ARE GONE. NO ONE CAN CONNECT TO YOUR COMPUTERS SHARES. WHATS' WRONG ? THE SERVER SERVICE IS STOPPED OR NEEDS RESTARTING. 6.AN ENGINEER HAS ASKED YOU TO STOP AN NT SERVICE ON SOME OF YOUR NT SERVERS TO DIAGNOSE A PROBLEM. HOW ? CONTROL PANEL>SERVICES STOP THE REQUESTED SERVICE. CONTROL PANEL>DEVICES, CONTROLS HARDWARE DEVICE DRIVERS, NOT NETWORK SERVICES! 7.WHICH SEFVICE HANDLES PRINTING ? A:SPOOLER SERVICE 8.YOU WANT TO SCHEDULE SOME SERVICES TO START AND STOP PERIODICALLY. HOW CAN THIS BE DONE? A: USE THE AT COMMAND AND USE NET START "SERVICE" OR NET STOP "SERVICE" AT COMMANDS CAN BE SCHEDULED TO RUN AT ANY TIME. 9.YOU ARE CONFIGURING A SERVICE AND NOT SURE WHAT ACCOUNT TO USE A SYSTEM ACCOUNT OR A SPECIAL USER ACCOUNT. A CO-WORKER ASKS YOU WHY DOES IT MATTER. A:SERVICES ARE PART OF THE NT OS. SERVICES RUN FOR THE MOST PART IN REALTIME, A VERY HIGH PRIORITY. WHEN YOU BOND A SERVICE TO A USER ACCOUNT THE SERVICE WILL NOT HAVE THE SAME REALTIME PRIORITY. SERVICES RUN SLOWER WHEN BONDED TO A USER ACCOUNT 10.YOU ARE CONFIGURING A SERVICE AND BOND IT TO THE SYSTEM ACCOUNT. ANOTHER MCSE SAYS THIS IS NOT GOOD. WHY ? A:THE SYSTEM ACCOUNT IS USED BY MANY SERVICES AND BY NT ITSELF! ANY SECURITY CHANGES TO THE SYSTEM ACCOUNT AFFECTS YOUR ENTIRE NT SERVER'S SECURITY+POSSIBLY RELIABILTY!! THE PROPER SOLUTION IS TO CREATE A USER ACCOUNT JUST FOR THIS SERVICE IN USERMANAGER. 11.YOU AND A YOUR STUDENT ARE INSTALLING A BDC. YOUR STUDENT IS WONDERING WHY YOU ARE USING DIRECTORY REPLICTION. WHAT IS DIRECTORY REPLICATION? A:DIRECTORY REPLICATION IS A REAL PAIN TO SETUP, BUT ONCE IT IS WORKING AUTOMATICALLY DISTRIBUTES FILES FOR US. CAN GET LOGON SCRIPTS/FILES/POLICIES ALL UPDATED FROM THE EXPORT SERVER. ONLY WORKS ON NT COMPUTERS. 12.ONLY NT SERVER CAN BE AN EXPORT SERVER. 13.YOU NEED TO MODIFY HOW OFTEN REPLICATION OCCURS. WHERE IS THIS DONE ? A:YOU CAN ONLY DO THIS VIA THE REGISTRY ON THE EXPORT SERVER.(BE CAREFUL!) 14.A REMOTE MANAGER WANTS TO KNOW WHAT INTERVAL IN REPLICATION MEANS ? A:REPLICATION'S INTERVAL IS A REGISTRY SETTING THAT SAYS HOW OFTEN THE EXPORT SERVER IS CHECKED FOR CHANGES. 15.YOU SETUP REPLICATION, BUT DECIDE TO INCREASE THE GUARDTIME TO ENSURE STABALIZATION OF THE DATA. WHAT DO YOU DO? A:CHANGE THE GUARDTIME IN THE REGISTRY ON THE EXPORT SERVER 16.WHAT IS THE DEFAULT DIRECTORY FOR EXPORTING ? A:\WINNT\SYSTEM32\REPL\EXPORT 17.YOU SETUP REPLICATION BUT WANT TO MONITOR IT. HOW ? A:ADMINTOOLS>SERVER MANAGER OR ON THE EXPORT SERVER ITSELF, CONTROL PANEL>SERVER>DIRECTORY REPLICATION 18.YOUR USING ADMINTOOLS>SERVER MANAGER> AND CHECKING YOUR DIRECTORY REPLICATION. YOU SEE "NO MASTER" WHAT DOES IT MEAN? A:THE IMPORT COMPUTER IS NOT RECIEVING UPDATES FROM THE EXPORT SERVER. 19.YOU HAVE CONFIGURE DIRECTORY REPLICATION BETWEEN DOMAINS. HOWEVER I NTHE OTEHR DOMAIN, YOU GET ALSO "NO MASTER" WHAT GIVES ? A:YOU MUST SPECIFY A COMPUTER NAME NOT A DOMAIN NAME WHEN REPLICATING BETWEEN TRUSTED DOMAINS. OOORRRRR YOUR REPL ACCOUNT MUST HAVE THE SAME USERNAME AND PASSWORD IN BOTH DOMAINS. 20.YOU ARE SETTING UP A SINGLE NT SERVER IN A NEW DOMAIN. YOUR SUPERVISOR ASKS WHY PER SERVER INSTEAD OF PER SEAT MODE? A:PER SERVER IS BEST SINCE NOT ENOUGH CLIENTS OR SERVERS TO JUSTIFY PER SEAT. 21.YOU PURCHASED A NT SERFVER WITH 25 CLIENT ACCESS LICENSES AND INSTALLED IT AS PDC. THE COMPANY HIRED 20 MORE PEOPLE. TO GIVE THESE 20 NEW PEOPLE ACCESS, WHAT DO YOU HAVE TO DO ? A:BUY ANOTHER 20 PER SERVER CLIENT ACCESS LICENSES. ADD THESE LICENSES VIA ADMINTOOLS>LICENSE MANAGER. 22.YOUR NT WEBSERVER (MEMBER SERVER) IS GETTING 10 MILLION HITS A DAY. YOU WANT TO MAKE SURE IT DOES NOT HAVE TO BE A BROWSER. HOW DO YOU DO THIS? A:YOU MUST EDIT THE REGISTRY ON THIS NT SERVER SO THAT IT WILL NOT BE A BROWSER. 23.YOUR NT DOMAIN HAS 3 SUBNETS. YOU HAVE A BDC IN 2 SUBNETS, THE PDC IN THE THIRD SUBNET. WHAT ARE THEIR BROWSER ROLES ? A: PDC IS THE DOMAIN MASTER BROWSER. PDC HAS SOME BACKUP BROWSERS TO HELP IT EACH BDC IS THE MASTER BROWSER IN IT'S DOMAIN. EACH BDC HAS BACKUP BROWSERS TO HELP THEM. 24.YOU ARE TESTING A PDC. EVERYTIME YOU REBOOT THE PDC, YOU SEE IN EVENTVIEWER THAT BROWSER SERVICE HAS FORCED AN ELECTION WHY ? A:EACH TIME A PDC INITIALIZES ON THE NETWORK, A BROWSER ELECTION OCCURS. THE PDC ALWAYS WINS THE STATUS OF DOMAIN MASTER BROWSER. 25.YOU WANT TO STOP THE YOUR TEST PDC FROM FORCING BROWSER ELECTIONS. WHAT DO YOU DO? A:EDIT THE REGISTRY ON YOUR TEST PDC AND INSTRUCT IT NOT TO MAINTAIN A SERVERLIST. 26. INSTALLATION+CONFIGURATION>>CONFIGURING PERIPHERAL AND DEVICES ****************************************************************** THE CONTROL PANEL "DEVICES" CONTROLS HARDWARE DEVICES. NOT NETWORKING SERVICES. CHANGING ITEMS IN THE "DEVICES" CONTROL PANEL IS EDITING THE REGISTRY TREE \HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES YOU CAN /START/STOP/ENABLE/DISABLE ALL DEVICE DRIVERS WITH DEVICE CONTROL PANEL DEVICE DRIVER STARTUP TYPES *************************** BOOT =THESE DEVICE DRIVERS INITIALIZE WHEN NT OS BOOTS UP+INITIALIZES SYSTEM =LOAD AFTER BOOT DEVICE DRIVERS AND REGISTRY LOADS AUTOMATIC =LATE IN THE BOOT SEQUENCE. JUST BEFORE WINLOGON APPEARS. MANUAL =DEVICE DRIVERS THAT MUST BE STARTED MANUALLY AND ONCE THE COMPUTER REBOOTS, MUST BE STARTED MANUALLY AGAIN! DISABLED =DEVICE DRIVERS THAT ARE DISABLED. UPS DEVICE DRIVER **************** IF YOUR COMPUTER HAS A UPS, NT BE ABLE TO COMMUNICATE WITH IT. USUALLY VIA A RS232 SERIAL CABLE. SOME UPS SIGNALS ARE POWER FAILURE SIGNAL ********************* THE SERVER SERVER IS PAUSED (NT IS NOT ACCEPTING ANY MORE INCOMING CONNECTIONS) CURRENT USER CONNECTIONS ARE MAINTAINED LOW BATTERY SIGNAL AT LEAST 2MIN BEFORE SHUTDOWN *************************************************** NT RECOGNIZES UOS IS ABOUT TO CONK OUT. REMOTE UPS SHUTDOWN ********************** UPS SIGNALS NT THAT IT IS IN PROCESSING IF CONKING OUT. THERE IS AN EXECUTE COMMAND OPTION IN THE UPS CONTROL PANEL. YOU CAN SPECIFY A BATCH OR SOME OTHER COMMANDS TO RUN UPON A UPS SHUTDOWN. I GUESS THESE WOULD BE LIKE PROGRAMS TO QUIT AND NOTIFY USERS, SYNC DISKS AND SUCH. SCSI ADAPTERS ************** THE SCSI ADAPTER CONTROL PANEL IS WHERE YOU ADD/REMOVE/MODIFY ALL SCSI AND IDE DRIVERS. IDE DRIVERS WERE ADDED TO THE SCSI CONTROL PANEL BECAUSE IDE DRIVERS ARE ATAPI DRIVERS. ATAPI DRIVERS ARE A SUBSET OF THE SCSI DRIVERS. PRACTICE PROBLEMS AND ANSWERS ******************************** 1.YOU OPEN CONTROL PANEL>PORTS. AND COM1 DOES NOT APPEAR IN THE LIST. WHY? A:BECAUSE COM1 IS IN USE. THE LIST ONLY SHOWS THE PORTS THAT ARE AVAILABLE. 2.YOU ADDED A UPS TO YOUR SERVER. THE UPS ONE ADYS KICKS IN A POWER FAILURE SIGNAL, YET ALL USERS STAY CONNECTED. WHY? A:A POWER FAILURE SIGNAL ONLY PAUSES THE SERVER SERVICE SO THAT NO NEW CONNECTIONS ARE ACCPETED. THE CURRENT USERS CONNECTIONS ARE MAINTAINED. 3.YOUR ADDING A NEW IDE CDROM BURNER TO A BDC. HOW? A: ADD THE HARDWARE. THEN USE THE "SCSI ADAPTERS" CONTROL PANEL TO ADD THE REQUIRED NT DRIVER. 4.WHAT OTIONS CAN BE DONE IN KEYBOARD CONTROL PANEL? A: HOW FAST THE CURSOR BLINKS AND HOW FAST A KEY REPEATS. 5.YOU CHANGED YOUR DISPLAY SETTINGS FROM 640X480 TO 1024X768. HOW DO YOU TEST THIS SETTING? A: PRESS THE TEST BUTTON. IF IT IS A BAD SETTING, THE PREVIOUS WORKING SETTING IS USED. THIS IS BETTER THAN LOSING CONTROL OF YOUR VIDEO DISPLAY. 6.IN THE DEVICES CONTROL PANELS YOU CAN SET DEVICE DRIVERS FOR BOOT/SYSTEM/AUTOMATIC/AND MANUAL 7.THE CONTROL PANEL MULTIMEDIA LETS YOU ADD MULTIMEDIA DEVICE DRIVERS. DEVICE DRIVERS FOR MIDI/VIDEO/AND SOUND+VIDEO CARDS 8.YOU JUST ADDED A UPS TO A CLIENTS NT SERVER. WHAT IS THE REMOTE UPS SHUTDOWN OPTION? ATHE REMOTE UPS SHUTDOWN IS A SIGNAL THAT THE UPS GIVES NT, THAT SAYS..I'M SHUTTING DOWN SOON. 9.NOW YOUR GETTING A POWER FAILURE SIGNAL FROM THE UPS. WHATS THAT? A: THE POWER FAILURE SIGNAL FROM THE UPS FORCES NT TO PAUSE THE SERVER SERVICE AND LOG THE EVENT. 10.YOUR CLIENT WANTS ALL USERS TO BE NOTIFIED WHEN THE UPS IS SHUTTING THE SERVER DOWN. HOW DO YOU DO THIS? A:IN THE UPS DIALOG BOX, SPECIFY A BATCHFILE OR COMMAND TO RUN. A BATCHFILE THAT DOES A NET SEND MESSAGE TO THE ENTIRE DOMAIN SHOULD HANDLE IT NICELY. 11.YOU HAVE INSTALLED A NEW UPS AT AN IMPORTANT CLIENTS NT SERVER. YOU PULL THE PLUG ON THE UPS TO TEST IT. WHEN DOES NT SEND AN ALERT MESSAGE TO ALL CONNECT USERS? A:NT RECIEVES A POWEROUT MESSAGE FROM THE UPS, WHEN UPS GOES INTO UPS MODE. WAITS BETWEEN POWER FAILURE AND INITIAL WARNING MESSAGE BEFORE SENDING ITS MESSAGES. 13.YOU HAVE BEEN HAVING SOME KERNEL CRASHES. THE OEM OF YOUR SCSI DRIVER HAS PROVIDED AN UPDATED DRIVER THAT FIXES THE PROBLEM. HOW DO YOU UPDATE THE SCSAI DRIVER? A:CONTROL PANEL>SCSI ADAPTERS>DRIVERS TAB>ADD 14.YOU JUST INSTALLED A TAPE DRIVE, BUT IT DOESN'T SHOW UP IN EXPLORER. HOW DO YOU GET IT TO WORK? A:CONTROL PANEL>TAPE DEVICES 15.NOW THE TAPE DEVICE WORKS. THEN YOU ADD A MODEM. IT IS NOT RECOGNIZED EITHER. HOW DO YOU FIX THIS? A:CONTROL PANELS>MODEM 16.YOU ARE LOOKING TO INSTALL AN EXTERNAL MODEM FOR RAS SESSIONS. HOW CAN YOU DETERMINE WHAT PORTS ARE AVAILABLE ON YOUR NT SERVER? A:CONTROL PANEL>PORTS LISTS ALL AVAILABLE PORTS. IF IT IS NOT I NTHE LIST IT IS BEING USED OR NOT AVAILABLE. 18.YOU WANT TO ADD AND MODIFY THE IRQS TO COM PORTS TO YOUR NT RAS SERVER. HOW? CONTROL PANEL>PORTS CONFIGURING HARD DISKS WITH DISK ADMINISTRATOR ************************************************* DISK ADMINISTRATOR IS NT'S VERY POWERFUL FORMATTING TOOL. TO USE DISK ADMINISTRAOTR YOU MUST BE THE ADMINISTRATOR. WHEN USING DA FOR THE FIRST TIME, YOU'LL GET A "NO SIGNATURE FOUND" MESSAGE. IF YOU SAY NO, DA WILL NOT WORK WITH THIS DRIVE! CHOOSE YES, AND DA WILL BE ABLE TO WORK WITH THIS DISK. DA>OPTIONS>REGION DISPLAY CAN SHOW PARTITIONS PROPORTIONALLY OR LINEAR. YOU CAN MODIFY DA'S COLORS, BUT FOR STANDARDIZATION, JSUT LEAVE THE COLORS THEY WAY THEY ARE. TO CREATE A VOLUME SET 1. SELECT 2 NON-CONTIGOUS PARTITIONS ON A SINGLE DISK OR 2-32 NON-CONTIGOUS PARTTIONS. 2.PARTITION>CREATE VOLUME SET 1.SYSTEM+BOOT PARTITIONS CAN ONLY BE PART OF A MIRROR 2.SYSTEM+BOOT PARTITIONS CANNOT BE PART OF A VOLUME SET 3.SYSTEM+BOOT PARTITIONS CANNOT BE PART OF A STRIPE SET 4.SYSTEM+BOOT PARTITIONS CANNOT BE PART OF A STRIPE SET WITH PARITY RULES ABOUT VOLUME SETS ********************************************* RULE #1. VOLUME SETS REALLY BITE. A VOLUME SET IS ACCESSIBLE ONLY FROM WITHIN NT DUALBOOTING TO WINDOWS OR 95/98 WILL LOSE ACCESS TO THE VOLUME SET!! VOLUME SETS HAVE NO FAULT TOLERANCE OR RAID TO PROTECT THEM. A VOLUME SET CANNOT INCLUDE SYSTEM+BOOT PARTITIONS A VOLUME SET IS LIKE THE BLOB. IT CAN NEVER SHRINK. ONLY GET BIGGER. A VOLUME SET CANNOT BE MADE SMALLER. YOU CAN EXTEND A VOLUME SET ONLY IF ALL PARTITIONS ARE NTFS. A VOLUME SET THAT INCLUDES A FAT PARTITION CANNOT BE RESIZED. CREATING STRIPE SETS (RAID 0) *************************** A STRIPE SET REQUIRES 2-32 DISK. THE FREESPACES SELECTED OF A STRIPE SET MUST BE ALL OF EQUAL SIZES!!!! DATA IO IN AND OUT IS ALL IN 64KB BLOCKS. IF YOUR HARD DRIVE CONTROLLER AND IT'S SOFTWARE DRIVER CAN SUPPORT MULTIPLE DRIVES (CONCURRENTLY) THIS CAN GREATLY INCREASE PERFORMANCE. IF YOUR HARD DRIVE CONTROLLER AND DRIVER, DO NOT SUPPORT CONCURRENT IO REQUESTS FROM MULTIPLE DRIVES, THEN USING CONTROLLER FOR MUTIPLE DRIVES IS NOT A VERY GOOD IDEA. EITHER GET A NEW HARD DRIVE CONTROLLER THAT DOES, OR GET 2 HARD DRIVE CONTROLLERS. A STRIPE SET CAN EITHER BE BOTH IDE OR SCSI UPTO THE POINT THAT COMMIT CHANGES, YOUR HARD DISK PARTITION TABLE HAS NOT BEEN WRITTEN TO. ONCE YOU COMMIT CHANGES, THAT WRITES THE HARD DISK PARTITION TABLE PERMANENTLY. YOU CAN DELETE ANY PARTITION YOU WANT, EXCEPT BOOT+SYSTEM PARTITIONS. THE SAVED DISK CONFIGURATION SAVES YOUR PARTITION TABLE TO A FLOPPY DISK. ACTUALLY THIS IS A PRETTY GOOD IDEA IN CASE YOUR PARTITINO TABLE GETS DAMAGED IN ANYWAY. PRACTICE PROBLEMS QUESTIONS ANSWERS ************************************** 1.YOU WANT TO ADD A PARTITION TO YUOR NT SERVER, YOU MUST USE ? A:DISK ADMINISTATOR 2.TO ADD A PARTITION TO NT SERVER, YOU MUST BE LOGGED IN AS ? A:ADMINISTRATORS GROUP 3.WHEN RUNNING DA, YOU GET A SIGNATURE MESSAGE. WHAT IS THIS ? A:THIS LETS DA ACCESS THIS DISK FOR CONFIGURATIONS. 4.WHAT CAN YOU CREATE ON WORKSTATION ? A: ONLY STRIPE SETS (2-32) NO PARITY RAID 0 CAN BE USED ON WORKSTATIONS 5.WHAT CAN YOU CREATE ON NT SERVER? A:STRIPE SET STRIPE SETS WITH PARITY MIRROR SETS 6.HOW MANY PRIMARY PARTITIONS CAN YOU CREATE IN NT ON ONE DISK? A: UPTO 4 PRIMARIES (OTHER OS'S LIKE LINUX CAN SUPPORT MORE PRIMARIES THAN 4) 7.WHAT FILESYSTEMS CAN YOU FORMAT TO IN NT ? A: NTFS AND FAT ONLY 8.YOU CREATE A PARTITION IN NT, BUT IN WINDOWS 98, YOU CANNOT SEE IT. WHY ? A: CHANCES ARE, YOU FORMATTED THE PARTITION AS NTFS 9.YOU JUST CREATED THE PARTITION ON A NEW DISK, BUT THE FORMAT BUTTON IS GREYED OUT ? NOW WHAT ? A:COMMIT CHANGES, BEFORE YOU ARE ALLOWED TO FORMAT THE PARTITION. 10.YOU WANT TO DELETE A PARTITION, BUT THE DELETE KEY WON'T WORK. WHY? A:FOR SAFETY REASONS, ONL Y YOU CAN ONLY DELETE PARTITIONS FROM THE MENU. 11.YOU WANT TO INCREASE A VOLUME SET FOR SOME USERS CAD FILES. THE EXTEND OPTION FOR THE VOLUME SET IS GREY OUT. WHY? A:ALL PARTITIONS IN THE VOLUME SET MUST BE NTFS. 12.YOU WANT TO CREATE A VOLUME SET FOR TESTING. HOW MANY FREESPACES DO YOU NEED? A:YOU NEED AT MINIMUM,2 NON-CONTIGOUS FREESPACES. THESE 2 FREESPACES CAN EVEN EXIST ON THE SAME PHYSICAL DRIVE! 13.YOU HAVE 40 OLD SCSI DRIVES IN A SUPERDUPER VOLUME SET. YOU WANT TO MAKE A HUGE VOLUME SET. YOU MANY DISKS CAN YOU USE FOR YOUR SUPERDUPER VOLUME SET? A:ONLY 32 OF YOUR 40 DISKS COULD BE USED FOR YOUR SUPER DUPER VOLUME SET. (HARD TO BELIVE 32, 40MB DISKS IS ONLY 1600MB) 14.YOUR NEW SEXY BOSS SAYS IN A BREATHY VOICE, SHE WANT TO TO MAKE A STRIPE SET ON HER DRIVE. HOW? A:YOUR TELL HER BLUNTLY THAT SHE NEEDS 2-32 PHYSICAL DRIVES TO MAKE A STRIPE SET. 15.YOU WANT TO MAKE A HUGE STRIPE SET. WHAT IS THAT MAXIMUM NUMBER OF DRIVES? A: 32 16.HOW ARE STRIPE SETS DANGEROUS? A:STRIPE SET NO PARITY HAS NO FAULT TOLERANCE. A FAILED DRIVE KILLS THE ENTIRE RAID. 17.DISK 0=400MB, DISK1=150MB, DISK2=500MB,DISK3=200MB. WHAT SIZE IS THE STRIPE SET ? A: 18.DATA IS WRITTEN TO A STRIPE IN WHAT SIZE BY DEFAULT? A:64Kb 19.A COLLEGUE HAS AN 1 IDE, 1 SCSI AND A JAZ DRIVE AND IS TRYING TO MAKE A STRIPE. IT IS NOT WORKING. WHY? A:I THINK IDE AND SCSI CAN BE USED TOGETHER , BUT REMOVEABLE MEDIA DEFINITELY CANNOT BE USED FOR A RAID. 20.YOUR IN DA. YOUR BOSS ASKS YOU WHAT IS THE ACTIVE PARTITION ON THE DEC ALPHA. A:YOU TELL HIM, SEE THAT ASTERISK IN THE TITLEBAR? THATS THE ACTIVE PARTITION. 21.YOU AND A COWORKER ARE WORKING ON A CRASHED DEC ALPHA NT SERVER. YOU WANT TO SAVE THE CURRENT DISK CONFIGURATION BEFORE EDITING IT TO TRY AND REPAIR IT. HOW? A:PARTITION MENU>EXPORT WILL SAVE THE DISK CONFIGURATION ONTO A FILE OR FLOPPY 22.YOU WANT TO CHANGE THE CDROM DRIVE LETTERS. HOW? A:CHANGE DRIVE LETTERS VIA DISK ADMINISTRATOR. TOOLS MENU>CHANGE DRIVE LETTER 23.YOU HAVE AN NT WORKSTATION ON A HEAVY DUTY AUTOCAD STATION. TO IMPROVE FAULT TOLERANCE ON THIS IMPORTANT STATION YOU IMPLEMENT MIRRORING. HOW? A:ONLY STRIPE SET RAID 0 CAN BE DONE ON NT WORKSTATION 24.YOU HAVE 5 MISSION CRITICAL NT SERVERS THAT ALL HAVE 2GB IDE IN THEM. YOU IMPROVE FAULT TOLERANCE, HOW MANY DRIVES WILL YOU NEED ? A:EACH NT SERVER NEEDS 2 EACH, SO 5 MORE. PLUS ANOTHER EXTRA 2 FOR SPARES. 25.WHAT MUST A MIRROR SET BE? A:PARTITIONS MUST BE OF EQUAL SIZES. YOU CAN MIRROR SYSTEM+BOOT PARTITIONS. 26. 27.DISK 0=150 DISK1=300MB DISK2=500MB DISK3=650. STRIPE SET W PARITY SIZES ARE? YOU COULD USE THE 150X4=600MB STRIPE SET WITH PARITY. OR YOU COULD USE THE 300X3=900MB THIS IS THE LARGEST STRIPE SET W/ PARITY YOU CAN MAKE. LOOK FOR THE LARGEST FREESPACE ON MULTIPLE DRIVES OF 3 MORE MORE. 28.SO IS YOU NOW HAVE A 900MB STRIPE SET WITH PARITY. HOW MUCH WILL BE USED FOR PARITY? HOW MUCH REAL DISKSPACE IN THE RAID? A: USE THE 1/N RULE. PARITY IN THIS CASE IS 1/3=300MB FOR PARITY! THERFORE ONLY 600MB IS USEABLE. 29.YOUR SETTING UP A NEW DEC ALPHA RISC. HOW DO YOU MARK THE ACTIVE PARTITION? A:YOU DON'T MARK PARTITIONS AS ACTIVE ON RISC. ONLY INTEL COMPUTERS. CONFIGURING PRINTING ********************* "PRINTER" IS THE SOFTWARE THAT CONTROLS THE "PRINT DEVICE" "PRINT DEVICE" IS YOUR ACTUAL PRINTER. "PRINT QUEUE" IS JUST THE LIST OF DOCUMENTS WAITING TO PRINT, BEING HELD IN THE PRINT QUEUE FOLDER. NT PRINTER DRIVERS ******************* 1. WHEN A NT CLIENT SENDS A PRINT JOB... NT VERFIES THE PRINTER DRIVER VERSION IS THE SAME AS THE PRINTER DRIVER'S VERSION. IF NOT, THE PRINT SERVER WILL DOWNLOAD THE UPDATED VERSION FROM THE PRINT SERVER TO THE NT CLIENT.ON NT CLIENTS, THIS PROCESS CAN CONTINUE OVER AND OVER. ON NON-NT CLIENTS LIKE WIN95/98/DOS, THE DRIVER IS DOWNLOADED ONCE!! IF THE PRINT DRIVER IS UPDATED ON THE PRINT SERVER, ALL NON-NT CLIENTS NEED TO GET UPDATED MANUALLY!! WINDOW NT PRINTING PROCESS --MAJOR STEPS **************************************** 1.NT CLIENT SENDS THE PRINT JOB. NT CHECKS TO SEE IF PRINTER DRIVERS MATCH. IF NOT NT DOWNLOADS THE PRINTER DRIVER FROM THE PRINT SERVER. (NT CLIENTS ONLY) 2.LOCAL PRINTER DRIVER SENDS THE PRINTJOB TO THE CLIENTS LOCAL SPOOLER. 3.LOCAL PRINTER DRIVER THEN MAKES AN RPC CALL TO THE PRINT SERVERS SPOOLER. LOCAL PRINTER TRANSMITS THE PRINTJOB. (PRINTING PROCESS WORKS VIA RPC !!!) 4.THE PRINTJOB IS NOW ON THE PRINT SERVERS SPOOLER. SERVERS SPOOLER GIVES IT O THE LOCAL PRINT PROVIDER. 5.LOCAL PRINT PROVIDER GIVES IT TO THE SELECTED PRINT PROCESSOR. WHO FORMATS THE PRINTJOB LEGIBLE TO THE PRINTDEVICE. AFTER MASSAGING THE PRINTJOB LPP GIVES IT TO THE PRINT MONITOR. 6.PRINT MONITOR DELIVERS THE PRINTJOB TO THE PRINTDEVICE TO BE PRINTED. WINDOWS NT PRINT DRIVERS ************************* THE FIRST STEP OF THE PRITN PROCESS, NT CHECKS THE PRINT DRIVER ON THE CLIENT, IF NOT CURRENT, A NEW COPY IS DOWNLOADED FROM THE PRINT SERVER. WHEN YOU INITIALLY SETUP A PRINTER, SETUP WIZARD ASKS WHAT OPERATING SYSTEMS WILL BE USING THIS PRINTER. SETUP WIZARD THEN WILL INSTALL THOSE PRINTER DRIVERS ON THE PRINT SERVER AVAILABLE FOR DOWNLOADING. WINDOWS NT PRINT DRIVERS CONSIST OF 2 DLL'S AND A CONFIGURATION FILE SUPPLIED BY THE OEM. PRINTER GRAPHICS DRIVER (GDI) AND PRINTER DRIVER INTERFACE. CHARACTERIZATION FILE IS SUPPLIED BY THE OEM. THESE 3 FILES ARE LOCATED IN \WINNT\SYSTEM32\SPOOL\DRIVER.XXX WHERE XXX IS THE OPERATING SYSTEMS OF w32x8 =WINDOWS NT w32MIPS =MIPS w32ALPHA =DEC ALPHAS w32PPC =POWER PC SPOOLER ******** SPOOLER SERVICE IS A BACKGROUND TASK THAT MANAGES THE PRINTING SERVICE. SPOOLER SERVICE MUST BE RUNNING PROPERLY ON BOTH PRINT CLIENT AND PRINT SERVER FOR THE PRINT PROCESS TO WORK CORRECTLY. THE DEFAULT SPOOL DIRECTORY IS: \WINNT\SYSTEM32\SPOOL\PRINTERS TO CHANGE THE LOCATION OF THE SPOOL DIRECTORY USE PRINTER>PROPERTIES>ADVANCED IF A PRINTJOB GETS STUCK IN THE SPOOL DIRECTORY, PERHAPS YOU CANNOT EVEN REMOVE IT, THEN STOP+RESTART THE SPOOLER SERVICE VIA CONTROLPANEL>SERVICES>SPOOLER OR USE COMMANDLINE "NET STOP SPOOLER, NET START SPOOLER" THE PRINT ROUTER GETS THE PRINT JOB FROM THE SPOOLER AND GIVES IT TO THE RIGHT PRINT PROCESSOR. PRINT PROCESSOR **************** RENDERING IS THE PROCESS OF TRANSLATING THE PRINTJOB INTO A FORM THAT THE PRINTDEVICE CAN UNDERSTAND. PRINT DRIVER STARTS THE RENDERING. PRINT PROCESSOR COMPLETES THE RENDERING. THE DEFAULT WINDOWS NT PRITN DRIVER IS CALLED WINPRINT.DLL PRINT PROCESSOR, WINPRINT.DLL UNDERSTANDS.. RAW= PRINT JOBS THAT ARE ALREADY FULLY RENDERED, READY TO BE PRINTED EMF= WINDOWS ENHANCED METAFILE. EMF IS A STANDARD FILE FOAMT USED BY MANY PRINT DEVICES. INSTEAD OF RAW, THE GDI WILL MAKE NT EMF. TEXT= RAW, WITH MINIMAL FORMATTING. THIS SHOULD BE USED FOR SOME PRINTERS THAT CANNOT DIRCTLY ACCEPT ASCII TEXT. PRINT MONITORS *************** PRINT MONITORS MAINTAIN COMMUNICATION BETWEEN NT AND PRINT DEVICES. STATUS OF THE DEVICE. TO INSTALL A NEW PRINT MONITOR, "ADD PORTS" IN THE PORTS TAB. THEN "NEW MONITOR" PRINT MONITORS ARE "NEW MONITORS" NOT "ADD PORTS" PRINT MONITORS CAN 1.DETECT ALL KINDS OF PRINTER ERRORS (LOW TONERS ETC) 2.HANDLE END OF JOB NOTIFICATION 3.MONITOR PRINT DEVICE STATUS STANDARD PRINT MONITORS ************************* WINDOWS NT COMES WITH SOME STANDARD PRITN MONITORS. 1.\WINNT\SYSTEM32\LOCALMON.DLL LOCAL OUTPUT TO LPT AND COM PORTS RPC'S AND NAMED PIPES 2.\WINNT\SYSTEM32\HPMON.DLL OUTPUT TO HP NETWORK INTERFACES. HPMON.DLL SUPPORS 64 HP NICS, 225 MAX. HPMON.DLL REQUIRES THE DLC PROTOCOL TO BE INSTALLED. 3.\WINNT\SYSTEM32\DECPSMON.DLL OUTPUT TO DIGITAL NETWORK PORTS. SUPPORTS TCPIP AND DECNET PORTS. DECNET INS NOT INCLUDED WITH NT, MUST COME FROM DEC. 4.\WINNT\SYSTEM32\LPRMON.DLL REQUIRES TCPIP PRINTING SERVICES TO BE INSTALLED. LETS NT PRINT TO UNIX LPD PRINT SERVERS OR DIRECTLY TO TCPIP PRINTERS. 5.\WINNT\SYSTEM32\PJL 6.\WINNT\SYSTEM32\SFMMON.DLL SFMMON.DLL IS SERVICES FOR MACINTOSH PRINT DRIVER FOR OUTPUT TO APPLE POSTSCRIPT PRINTERS. PRINT FOLDERS ************* START MENU>SETTINGS>PRINTERS IS WHERE TO INSTALL/REMOVE/MODIFY/ADMIN YOUR PRINTERS. SUPERVISE PRINT QUEUES, PAUSE, PURGE, RESTART, SHARE PRINTERS. BASICALLY ALL PRINTER ADMIN IS DONE HERE. YOU CAN INSTALL A PRINTER DRIVER ON 1.YOUR LOCAL COMPUTER OR 2.CONNECT TO AN EXISTING SHARED PRINTER OVER THE NETWORK. INSTALL A PRINTER ON YOUR LOCAL COMPUTER (MY COMPUTER) REQUIRES YOU BE A MEMEBER OF ADMINISTRATORS OR PRINT OPERATOR OR SERVER OPERATOR OR POWER USER. TO CONNECT TO A PRINTER OVER THE NETWORK DOES NOT REQUIRE ANY RIGHTS !!!! INSTALLING A PRINTER ON LOCAL COMPUTER (MY COMPUTER) ****************************************************** ADD PRINTER>MY COMPUTER> DOCUMENT DEFAULTS ******************** PAGE SETUP =PAPERSIZE/PAPER SOURCE/ORIENTATION PRINTER>PROPERTIES>SCHEDULE TAB ********************************* AVAILABLE RADIO BUTTON= LIMIT THE PRINTER TO SPECIFIC TIMES PRIORITY= DEFAULT PRIORITY=1, PRIORITY MAX=99. THIS PRIORITY BUTTON IS ONLY USEFUL MULTIPLE PRINTERS TO THE SAME PRINT DEVICE. THE PRINT WITH PRIORITY OF 99 WILL PRINT BEFORE A PRINTER OF 1 PRINTS. Specifies the default document priority. Higher-priority documents will print before lower-priority documents. SPOOL PRINT DOCUMENTS= IF YOU SPOOL DOCUMENTS, THE COMPUTER AND PRINTER AND SPOOLER DON'T HAVE TO WAIT FOR EACH OTHER. Specifies that documents should be spooled before being printed. Spooling is the process of first storing the document on the hard disk and then sending the document to the printing device. You can continue working with your application as soon as the document is stored on the disk. The spooler sends the document to the printing device in the background. HOLD MISMATCHED DOCUMENTS= PRINTER PROPERTIES SCHEDULE TAB AVAILABLE= LIMIT THE PRINTER TO BE AVAILABLE CERTAIN HOURS PRIORITY= USEFUL WHEN MORE THAN ONE PRINTER TO THE SAME PRINT DEVICE. PRINTER WITH THE HIGHER PRIORITY SETTING PRINTS BEFORE LOWER PRIORITY DEFAULT PRIORITY IS 1, MAX IS 99. SPOOL PRINT DOCUMENTS= SPOOLER DIRECTORY USED TO HOLD PRINT JOBS. SPOOLING DOCUMENTS MEANS COMPUTER AND PRINTER DO NOT WAIT FOR EACH OTHER. HOLD MISMATCHED DOCUMENTS= A IMPROPERLY CONFIGURED PRINT JOB CAN MAKE A PRINTER ERROR AND HANG. BUT NT, CHECKS THE PRINT JOB AND THE PRINTER TO MAKE SURE THEY AGREE BEFORE SENDING THE PRINT JOB TO THE PRINT DEVICE. THE PRINT JOB MAY HANG AT THE SPOOLER, BUT THIS IS FAR BETTER THAN A SINGLE IMPROPERLY CONFIGURED PRINT JOB TAKING THE PRINTER OFFLINE. PRINT SPOOLED DOCUMENTS FIRST= CHECKING THIS OPTION SAYS "I'LL PRINT WHOEVER IS READY FIRST". THIS OPTION WILL PRINT THE FIRST SPOOLED PRINT JOB READY TO PRINT, NOT THE FIRST PRINT JOB IN THE QUEUE. BY DEFAULT NT PRINTS "FIRST COME-FIRST SERVE" BY DEFAULT, NT WILL PRINT THE FIRST PRINT JOB IN THE QUEUE. KEEP POST PRINT DOCUMENTS= AFTER PRINTING EACH JOB, NT CLEANS UP THE SPOOL DIRECTORY. ENABLING THIS OPTION MEANS THE SPOOL DIRECTORY KEEPS EVERYTHING IT EVER PRINTED. THIS CAN BE USEFUL, WHEN??? PRINT PROPERTIES>SHARING TAB ***************************** THE PRINTERS SHARING TAB LETS YOU SHARE THIS PRINTER WITH OTHER USERS. 1.SELECT PRINTER PROPERTIES>SHARING TAB 2.SPECIFY A SHARE NAME. THE DEFAULT IS THE FIRST 8 CHARS OF THE PRINTERS NAME!!! 3.SPECIFY WHAT OTHER OS'S WILL BE USING THIS PRINTER.(FOR DRIVER DOWNLOADS) 4.OK PRINTER PROPERTIES>SECURITY TAB ******************************** PRINTER PROPERTIES>SECURITY TAB LETS YOU CONFIGURE PRINTER PERMISSIONS, PRINTER AUDITING PRINTER OWNERSHIP ******************************************************************************** ON ANY WINDOWS OBJECT(PRINTERS TOO), TO SET OR CHANGE PERMISSIONS, USER MUST BE 1.ADMINISTRATORS 2.POWER USER 3.SERVER OPERATOR 4.PRINT OPERATOR 5.ASSIGNED OWNER OF THE PRINTER 6.ANY USER WHO HAS FULL CONTROL PERMISSIONS TO THE PRINTER ******************************************************************************** THE FOUR PRINTER PERMISSIONS ARE 1.NO ACCESS= NO ACCESS AT ALL TO THIS PRINTER 2.PRINT= ALLOWED TO PRINT, PRINTER SETTINGS, PRINT STATUS, FOR ONLY YOUR OWN PRINTJOBS 3.MANGE DOCUMENTS= ALLOWED TO PRINT. PRINTER SETTINGS, PRINT STATUS FOR ALL PRINT JOBS INCLUDING OTHER USERS. 4.FULL CONTROL= ALLOWED TO PRINT, PRINTER SETTINGS, PRINT STATUS FOR ALL PRINT JOBS INCLUDING OTHER USERS. ALLOWED TO CHANGE HARDWARE PRINT SETTINGS. ABLE TO STOP/ START/ SHARE/ STOP SHARE / PERMISSIONS/ DELETE A PRINTER. THESE 4 PRINTER PERMISSIONS, 1)NO ACCESS 2)PRINT 3)MANGE DOCUMENTS 4)FULL CONTROL AFFECT BOTH LOCAL AND REMOTE USERS. THIS IS THE DEFAULT SETTINGS FOR EVERY NEWLY CREATED PRINTER 1.ADMINISTRATORS FULL CONTROL 2.SERVER OPERATORS FULL CONTROL 3.PRINT OPERATORS FULL CONTROL 4.SERVER OPERATORS FULL CONTROL 5.CREATOR/OWNER MANAGE DOCUMENTS 6.EVERYONE PRINT (EVERYONE HAS PERMISSIONS TO PRINT BY DEFAULT!!!!) 7.POWER USERS FULL CONTROL(WORKSTATION + MEMBER SERVERS) PRINTER POOLS ************* A PRINTER POOL IS ONE PRINTER CONFIGURED TO PRINT TO MANY PRINT DEVICES. THE PRINTER SENDS THE NEXT PRINT JOB OUT THE NEXT AVAILABLE PRINT DEVICE. TO CREATE A PRINTER POOL YOU MUST ********************************** 1.TO PRINT DEVICES THAT CAN USE THE SAME PRINT DRIVER. IT IS NOT REQUIRED THAT THE PRINTERS BE THE SAME IN A PRINTER POOL, BUT BETTER FOR COMPATIBILITY. AFTER ALL, THE NT PRINT DRIVER IS GOING TO PRINT TO ALL THE PRINT DEVICES EXACTLY THE SAME. 2.PRINT DEVICES IN A PRINTER POOL SHOULD BE CLOSE TOGETHER. OTHERWISE USERS WILL BE RUNNING AROUND TRYING TO FIND THEIR PRINT JOB, AND START WIGGIN' ON YOU. SAY YOU HAVE 5 HP4000 PRINTERS A VERY BUSY OFFICE.ALL IN A ROW. CONFIGURE 1 PRINTER AND CREATE A PRINTER POOL FOR ALL 5 HP'S. NOW ALL 5 PRINTERS ARE PRINTING CONTINOUSLY FOR MAXIMUM PERFORMANCE! EFFIENCY IS SMOKING! THE MORE PRINTING THAT IS DONE IN THE OFFICE, THE MORE PRINTER POOLS MAKE SENSE. STEPS TO CREATE A PRINTER POOL ****************************** 1.CONFIGURE A PRINTER TO PRINT TO AS MANY PORTS AS PRINT DEVICES IN THE POOL. 2.CONFIGURE EACH PRINT DEVICE TO ONE OF THOSE PORTS WHEN CREATING THIS PRINTER POOL, CONFIGURE THE FASTEST PORTS TO THE FASTEST PRINTERS FIRST SINCE THAT WILL BE THE HANDLING THE MAJORITY OF THE PRINT WORK. SINCE THOSE 1 OR 2 PRINTERS WILL PROBABLY BE HANDLING 90% OF THE WORK. PRINTING FROM MS-DOS PROGRAMS ******************************* MS-DOS PROGRAMS DO NOT USE WINDOW PRINT DRIVERS. MS DOS PROGRAMS USE THEIR OWN PRINT DRIVERS AND PRINT VIA LPT1 PORT HOWEVER YOU CAN DO YOUR MS-DOS PROGRAMS A FAVOUR AND MAP A PRINTER TO AN LPT PORT SO MS-DOS PROGRAMS CAN THEN PRINT TO IT. VIA... NET USE LPT2: \\PRINTSERVER\HP4000 NOW LPT2: IS MAPPED TO THE HP4000 NETWORK PRINTER! HOWEVER THE MS-DOS PROGRAM IS STILL NOT USING ANY WINDOWS PRINT DRIVERS. THE MS-DOS PROGRAM IS STILL RESPONSIBLE FOR OUTPUTTING ITS DATA TO THAT LPT2. MS-DOS PROGRAMS ARE'NT GOING TO OUT PUT TOO MUCH GRAPHICAL DATA, USUALLY IT WILL BE TEXT OR ASCII DATA. CONFIGURING NT SERVER FOR CLIENT COMPUTERS ******************************************** NETWORK CLIENT WIN95/98 NT WORKSTATION CLIENT FOR MSDOS NETBEUI YES YES YES TCPIP YES YES YES IPX/SPX IPX ONLY YES YES DLC YES NO YES DHCP CLIENT YES YES YES WINS CLIENT NO YES YES DNS CLIENT NO YES YES WIN95/98 HAS NO DLC SUPPORT NETWORK CLIENT FOR MSDOS CANNOT USE WINS OR DNS AND IPX ONLY INSTALLATION AND CONFIGURATION PRACTICE PROBLEMS AND QUESTIONS ********************************** 1. WHAT IS THE DIFFERENCE BETWEEN A PRINTER AND PRINT DEVICE? A:PRINT DEVICE IS THE ACTUAL REAL PRINTER. PRINTER IS THE SOFTWARE COMPONENT USED TO PRINT TO THE PRINT DEVICE. 2.WHAT DOES NT DO IF YOUR PRINTING TO A NETWORK PRINTER, AND LOCAL DRIVER DOES NOT MATCH THE DRIVER ON THE PRINT SERVER? A:NT CLIENTS WILL RECIEVE THR UPDATED DRIVER FORM THE PRINT SERVER EVERY TIME.. ANY WIN95/98/WFW CLIENTS WILL RECIEVE A ONE-TIME DOWNLOAD OF THE PRINT DRIVER. THE PRINT DRIVER WILL NEED TO MANUALLY SINTALLED AT EACH NON-NT CLIENT THEREAFTER. 3.WHAT IS THE MAJOR NT COMPONENT USED FOR PRINTING? A:GDI 4.ON LOCAL COMPUTERS, WHAT IS THE SPOOLERS PRIMARY JOB? A:TO MOVE PRINT JOBS FROM THE LOCAL COMPUTER TO THE PRINT SERVER VIA RPC. 5.WHAT IS THE PRINT PROCESORS PRIMARY JOB? A:TO RENDER(MASSAGE) A PRINT JOB INTO SOMETHING THE PRINT DEVICE CAN PRINT. 6.WHAT IS THE PRINT MONITORS PRIMARY JOB? A:TO SEND EACH PRINT JOB TO THE CONFIGURED PRINTER PORT. 7.WHEN INSTALLING A PRINTER ON NT, WHY DOES IT ASK ABOUT OTHER OPERATING SYSTEMS? A:SO THOSE PRINT DRIVERS FOR THOSE OPERATING SYSTEMS CAN GET INSTALLED. AND A ONE-TIME DOWN TO THOSE CLIENTS. 8.WHAT 3 NT COMPONENTS MAKE UP A NT PRINT DRIVER? A: 1)GRAPHICS DRIVER DLL 2)PRINTER INTERFACE DRIVER 3)OEMS' CHARACTERIZATION FILE 9.WHAT DOES GRAPHICS DRIVER DLL DO? A:RENDERING AND MANAGING 10.WHAT DOES PRINTER INTERFACE DRIVER DO? A:HANDLES USER INTERACE AND PRINTER CONFIGURATION ISSUES 11.WHAT DOES THE OEM'S CHARACTERIZATION FILE DO? A:CONTAINS ALL THE SPECIFIC INFORMATION ABOUT THAT PRINTER. 12.WHAT DOES SPOOLER SERVICE DO? A:MANAGES THE PRINT PROCESS. MOVING PRINT JOBS TO THE PRINTER OR PRINT SERVER. LIKE ALL SERVICES, DOES THIS IN THE BACKGROUND. 13.IF A DOCUMENT DOES NOT PRINT, WHAT INCREASING STEPS DO YOU TAKE TO RESUME PRINTING? A: 1) CHOOSE THE ONE PRINTJOB THAT IS NOT PRINTING, CANCEL/DELETE THAT PRINT JOB 2) DELETE ALL PRINT JOBS IN THE QUEUE. 3) STOP+START SPOOLER SERVICE ON LOCAL COMPUTER 4) STOP+START SPOOLER SERVICE ON PRINT SERVER. 5) REBOOT PRINT SERVER. 6) CALL AN OLD PRIEST AND A YOUNG PRIEST. 15.WHAT 2 WAYS CAN YOU STOP+START THE SPOOLER SERVICE? A:1)CONTROL PANEL>SERVICES>SPOOLER 2)NET STOP SPOOLER, NET START SPOOLER 16.WHAT DOES THE PRINT ROUTER DO? A:ACCEPTS THE PRINTJOB AND SEND IT TO THE RIGHT PRINT PROCESSOR. 17.NT'S DEFAULT PRINT PROCESSOR IS? A:WINPRINT.DLL 18.WHAT IS THE ADVANTAGE OF USING ENHANVED METAFILE SPOOLING? A:FASTER THAN RAW. GIVES CONTROL BACK TO THE APPLICATION FASTER. 19.WHAT DOES THE PRINT MONITOR DO ? A:1) DETECTS PRINT ERRORS. 2) MONITORS THE PRINTER FOR ERRORS 3) HANDLES END OF JOB NOTIFICATION 20.WHEN YOUR IN THE NT PRINTERS FOLDER, WHAT CAN YOU DO? A: 1)INSTALL PRINTERS 2)CONFIGURE INSTALLED PRINTERS 3)ADMINISTER PRINTER JOBS AND SETTINGS 4)DELETE PRINTERS. 21.WHAT IS THE MAX LENGTH OF A NT PRINTER NAME? A:32 CHARS 22.YOU ARE SETTING UP A NEW HP8500 NETWORK PRINTER. THE FORM NEEDS TO BE 8.5X11. HOW DO YOU DO THIS ON THE PRINT SERVER? A:SERVER PROPERTIES>FORMS TAB 23.YOU ADDED AN NT SERVER INSTALLED AS A PDC, TO A NT WORKSTATION GROUP. WHAT ELSE NEEDS TO BE DONE? A:1) ADD COMPUTER ACCOUNTS TO THE DOMAIN VIA SERVER MANAGER 2) ADD USER ACCOUNTSS TO THEDOMAIN VIA USER MANAGER 3) CONFIGURE THE NT WORKSTATION TO LOGON TO THE DOMAIN. 24.YOU INSTALLED A NEW PDC NT SERVER TO A WORKSTATION GROUP. ALL USER AND COMPUTER ACCOUNTS WERE CREATED. HOWEVER THE NT WORKSTATIONS STILL CAN'T BE CONFIGURED TO LOGON TO THE DOMAIN? WHAT COULD BE WRONG? A: 1) NIC CARD IMPROPERLY CONFIGURED 2) NIC SOFTWARE IMPROPERLY INSTALLED 3) PHYSICAL NETWORK CABLING PROBLEM 4) SERVER AND WORKSTATIONS USING DIFFERENT NETWORKING PROTOCOLS 25.YOU ARE INSTALLING A NT SERVER. YOU HAVE 100 WINDOWS 95 USERS. HOW DO YOU ADD ALL THOSE WIN95 USERS TO YUOR NEW NT DOMAIN? A:1) INSTALL "CLIENT FOR MICROSOFT NETWORKS" ON EACH WIN95 2) NO COMPUTER ACCOUNTS NEEDED (ONLY FOR NT WORKSTATION CLIENTS!!!) 3) CREATE THE 100 USER ACCOUNTS (EVERYONE NEEDS A USER ACCOUNT!!! 4) CONFIGURE EACH WIN95 TO JOIN THE DOMAIN PRACTICE EXAMINATION FOR INSTALLATION AND CONFIGURATION *********************************************************** 1. YOU INSTALLED NT SERVER USING PER SEAT. YOU BOUGHT 50 CLIENT CALS. DUE TO MORE USERS JUST ADDED, MORE THAN 50 CLIENTS WILL BE CONNECTING. WHAT IS GOING TO HAPPEN? A:THE 51ST USER WILL NOT BE ABLE TO CONNECT. IN LICENSE CONTROL PANEL, THE ADMINISTRATOR COULD INCREASE THE NUMBER PAST 50, BUT WITHOUT THE PROPER LICENSES THIS IS IN VIOLATION OF THE LICENSE AGREEMENT. 2.YOUR INSTALLING A NEW NT SERVER FOR TORSTAR CORP. SINCE THIS IS THEIR FIRST AND A VERY SMALL,NT DOMAIN, YOU ARE USING PER SERVER LICENSING. WHERE DO YOU ENTER PER-SERVER LICENSING? A:PER SERVER HAS NO REQUIREMENT FOR SER-SERVER LICENSING. PER-SERVER IS ALSO ON THE HONOR SYSTEM. 3.A USER SAYS HE CANNOT LOGON USING HIS PASSWORD. WHAT IS WRONG? A:PASSWORDS IN NT ARE CASE-SENSITIVE. TURN OFF CAPS LOCK. 4.DURING THE TORSTAR SERVER INSTALLATION, YOU CHOOSE TO CREATE THE ERD DISK. WHAT IS THE ERD SAVING TO FLOPPY? A: \WINNT\REPAIR IS COPIED TO THE FLOPPY 5.NT SERVER, NOT WORKSTATION COMES WITH IIS WEB SERVER. DURING INSTALLATION YOU BYPASS IIS, BUT LATER ARE TOLD TO MAKE IT A WEB SERVER. HOW?? A.IF YOU CHOOSE NOT TO INSTALL IIS, THERE IS AN INSTALL IIS ICON ON THE DESKTOP. 6.DURING FINISHING SETUP, YOU CHOOSE DAYLIGHT SAVINGS TIME, SINCE IT WILL OCCUR IN 3 WEEKS TIME. WHAT DO YOU DO? A:ADJUST TIME/DATE FROM TASKBAR>TIME ZONE TAB, SELECT DAYLIGHT SAVINGS. 7.WHEN MAKING A NERD DISK ,REMEMBER IT WILL FORMAT THAT FLOPPY BEFORE INSTALLING THE \WINNT\REAPIR FILES. 8.DOMAIN CONTROLLERS AND MEMBER SERVERS CAN... A:1) RAS SERVERS 2) HAVE UNLIMITED NETWORK CONNECTIONS 3) BE A SERVICES FOR MACINTOSH SERVER 4) DNS/ DHCP /IIS /WINS /FILE AND PRINT SERVER 9.YOUR THE ADMIN FOR 3 NT DOMAINS. EACH DOMAIN HAS A 1 PDC 3 BDCS, 5 MEMBER SERVERS. TEXAS NEEDS ANOTHER MEMBER SERVER. UTAH IS NOT USING ONE OF THEIRS. TO MOVE THAT MEMBER SERVER FROM UTAH TO TEXAS, WHAT NEEDS TO BE DONE? A:HOOK IT UP, NETWORK CONTROL PANEL>JOIN THE DOMAIN AND PROVIDE ADMINISTRATORS NAME AND PASSWORD. OR USE SERVER MANAGER TO CREATE AN ACCOUNT, THEN JOIN. 10.WHERE IS WINNT.EXE AND WINTT32.EXE LOCATED ON THE CD-ROM? A: ALL INSTALLATIN FILES ARE LOCATED IN NT-CDROM\I386 11.WHERE DO YOU CONFIGURE NETWORK BINDINGS? A:NETWORK CONTROL PANEL>BINDING TAB 12.A NT WORKSTATION IS SHARING TO VIA TCPIP. THIS NT WORKSTATION IS ALSO USING NETWARE RESOURCES. HOW SHOULD NETWORK BINDINGS BE CONFIGURED? A:NWLINK IS NOT REQUIRED ON SERVER SERVICE, SO DISABLE THAT. TCPIP IS NOT REQUIRED ON WORKSTATION SERVICE. DISABLE THAT. WORKSTATION SERVICE CALLS OTHER COMPUTERS. SERVER SERVICE, ANSWERS THOSE CALLS. 13.WHAT PROTOCOLS ARE INSTALLED BY DEFAULT ON NT SERVER? A:TCPIP AND IPX/SPX ARE INSTALLED BY DEFAULT. 14.WHAT IS AN IO ADDRESS? A:SPECIAL MEMORY ADDRESS USED TO ACCESS EACH HARDWARE DEVICES. 15.YOU NETWORK HAS 3 SEGMENTS. HOW DOES THE BROWSELIST GET REPLICATED TO ALL OTHER SEGMENTS? A:EACH SEGMENT HAS A MASTER BROWSER. EACH MASTER BROWSER SENDS ITS LIST TO THE DOMAIN MASTER BROWSER. DOMAIN MASTER BROWSER COMBINES ALL THE LISTS FROM EACH MASTER BROWSER AND SENDS THE COMPLETE ENTERPRISE BROWSELIST BACK TO EACH MASTER BROWSER. 16.YOU JUST ADDED A UPS TO YOUR SERVER. YOU WANT TO RUN A BATCHFILE WHEN A UPS SHUTDOWN SIGNAL OCCURS. HOW? A:CONTROL PANEL>UPS>EXECUTE COMMAND FILE 17. YOU WANT TO ADD A NEW CDRW IDE DRIVE TO YOUR SERVER. HOW? A:CONTROL PANEL>SCSI ADAPTERS>DRIVERS TAB>ADD 18.WHAT ARE SOME FEATURES OF NT'S SOFTWARE-BASED STRIPE SET WITH PARITY? A:YOU CANNOT STRIPE THE SYSTEM OR BOOT PARTITIONS. (PARTITIONS ONLY!!!) YOU CAN USE THE DRIVE THAT CONTAINS SYSTEM OR BOOT PARTITION FOR A STRIPE AS LONG AS IT IS NOT THE SYSTEM OR BOOT PARTITION ITSELF. STRIPE SET WITH PARITY REQUIRES 3-32 DRIVES. STRIPE SET ONLY NEEDS 2-32 DRIVES. PARITY INFORMATION IS WRITTEN TO EACH DRIVE EQUAL TO 1/N. 19.HOW DOES NT SEPERATE PRINT JOBS, BY DEFAULT? A:BY DEFAULT, NT DOES NOT SEPERATE PRINT JOBS. (A REAL PAPER WASTER) 20.WHAT DOES THE PRINT PROCESSOR DO AGAIN? A:PRINT PROCESSOR RENDERS THE JOB BEFORE FINAL DESTINATION TO THE PRINT DEVICE. CHAPTER 3 MANAGING RESOURCES ********************************************************************************** OBJECTIVES FOR CHAPTER 3 MANAGING WINDOWS NT GROUPS MANAGING WINDOWS NT USER RIGHTS / ACCOUNT POLICIES / AUDITING USERS GET THEIR RIGHTS AND PERMISSIONS IN 2 WAYS 1.PERMISSIONS OR RIGHTS ASSIGNED TO THEIR USER ACCOUNT 2.PERMISSIONS OR RIGHTS ASSIGNED TO A GROUP ACCOUNT THEY BELONG TO THERE ARE 2 TYPES OF ACCOUNTS 1.USER ACCOUNTS= ONLY A SINGLE USER RECIEVES RIGHTS + PERMISSIONS. 2.GROUP ACCOUNTS= ANY NUMBER OF USER ACCOUNTS RECIEVE COMMON RIGHTS+PERMISSIONS. IF 3 OR MORE USERS REQUIRE SPECIAL PERMISSIONS TO BE SETUP, CREATE A GROUP. ADMINISTERING 1 GROUP IS FAR EASIER THAN ADMINISTERING MANY USER ACCOUNTS. WINDOWS NT HAS 3 KINDS OF GROUPS 1. LOCAL GROUPS= LOCAL GROUPS ASSIGN RIGHTS+PERMISSIONS TO RESOURCES ON THAT LOCAL MACHINE LOCAL GROUPS ONLY APPLY TO THAT COMPUTER ONLY, NO OTHER. LOCAL GROUPS ON A DOMAIN CONTROLLER SUCH AS PDC OR BDC IS USED ON ALL DOMAIN CONTROLLERS IN THE DOMAIN. 2.GLOBAL GROUPS= A GLOBAL GROUP IS JUST A GROUP IN A DOMAIN. GLOBAL GROUPS BY THEMSELVES HAVE NO POWER. WHEN GLOBAL GROUPS ARE ADDED TO A LOCAL GROUP, DO GLOBAL GROUPS .WORK 3.SPECIAL= SPECIAL GROUPS ARE USED FOR SYSTEM ACCESS TO RESOURCES AND PERMISSIONS. SPECIAL GROUPS CANNOT BE ADDED OR DELETED. SPECIAL GROUPS ARE PRE-DEFINED. WHEN A NT WORKSTATION, MEMBER SERVER OR BDC JOINS A DOMAIN, THE BUILT-IN DEFAULT GLOBAL GROUPS BOND WITH THE SAME LOCAL GROUPS IN THE LOCAL SAM. THEREFORE EACH USER ACCOUTN IN A DOMAIN, BELONGS TO A GLOBAL GROUP. 1.LOCAL GROUPS CAN CONTAIN USER ACCOUNTS+GLOBAL GROUPS. 2. GLOBAL GROUPS CAN ONLY BE MEMBERS OF A LOCAL GROUP. 3. GLOBAL GROUP CAN ONLY CONTAIN USER ACCOUNTS! 4. GLOBAL GROUPS CANNOT BE MEMBERS OF ANOTHER GLOBAL GROUP. 5..LOCAL GROUPS CAN NEVER BE MEMBERS OF A GLOBAL GROUP! PUTTING USERS IN LOCAL GROUPS IS NOT GOOD DOMAIN MANAGEMENT. PUTTING USERS IN GLOBAL GROUPS IS GOOD DOMAIN MANAGEMENT. BUILT-IN LOCAL GROUPS ON DOMAIN CONTROLLERS ********************************************** 1.ADMINISTRATORS LG 2.USERS LG 3.GUESTS LG 4.BACKUP OPERATORS LG 5.REPLICATOR LG 6.ACCOUNT OPERATORS LG 7.PRINT OPERATORS LG 8.SERVER OPERATORS LG 1.DOMAIN ADMINS 2.DOMAIN GUEST 3.DOMAIN USERS ADMINISTRATORS LOCAL GROUP RIGHTS ************************************ 1.CREATE OTHER ADMINISTRATOR LEVEL ACCOUNTS 2.MODIFY OR DELETE ANY USER 3.ADMIN BUILTIN GROUPS 4.UNLOCK ANY WORKSTATIONS 5.FORMAT A DRIVE 6.UPGRADE THE OPERATING SYSTEM (ADD PROGRAMS?) 7.BACKUP AND RESTORE 8.CHANGE SECURITY POLICIES 9.ABLE TO CONNECT THE ADMINISTRATIVE SHARES USERS LOCAL GROUP RIGHTS ************************* 1.RUN APPLICATIONS 2.MANAGE THEIR OWN FILES+FOLDERS (BUT NOT SHARE THEM)3 3.USE PRINTERS (NOT MANAGE PRINTERS) 4.CONNECT TO OTHER COMPUTERS AND PRINTERS 5.SAVE THEIR PERSONAL PROFILE SETTINGS NOTE:ANY USER ACCOUNT WHEN CREATED IS ADDED TO THE USERS LOCAL GROUP. ASSIGN USERS TO USERS LOCAL GROUP, UNLESS REQUIRED OTHERWISE. GUESTS LOCAL GROUP RIGHTS ************************** 1. BACKUP OPERATORS LOCAL GROUP RIGHTS ************************************** 1.BACK AND RESTORE ALL FILES 2.LOGON LOCALLY 3.SHUTDOWN THE SERVER ACCOUNT OPERATORS LOCAL GROUP RIGHTS *************************************** 1.ADD/DELETE/MODIFY PRINT SHARES 2.ADD/DELETE/MODIFY USER ACCOUNTS 3.ADD/DEELTE/MODIFY GLOBAL GROUPS 4.ADD/DELETE/MODIFY LOCAL GROUPS NOTE: ACCOUNT OPERATORS CANNOT MODIFY THE ADMINISTRATORS OR SERVER OPERATORS LOCAL GROUP. PRINT OPERATORS LOCAL GROUP **************************** 1. SERVER OPERATORS LOCAL GROUP ****************************** 1.LOGON AT SERVERS 2.LOCK AND UNLOCK SERVERS 3.BACK+RESTORE SERVERS 4.SHUTDOWN SERVERS 5.ADD/DELETE/MODIFY NETWORK SHARES 6.FORMAT A DRIVE ONLY DOMAIN CONTROLLERS HAVE THESE THREE GLOBAL GROUPS 1.DOMAIN ADMINS= A GLOBAL GROUP OF THE DOMAIN ADMINISTRATORS. MEMBER OF THE ADMINISTRATORS LOCAL GROUP ON THE DOMAIN CONTROLLERS MEMBER OF THE ADMINISTRATORS LOCAL GROUP ON EVERY WORKSTATION OR SERVER CONNECTED TO THE DOMAIN. AS LONG AS A COMPUTER IS CONNECTED TO THE DOMAIN, THE DOMAIN ADMINS HAVE ADMINISTRATOR RIGHTS TO THAT MACHINE. ONCE IT IS NOT CONNECTED TO THE DOMAIN, DOMAIN ADMINS ARE NOT ADMINISTRATORS OF THAT MACHINE. 2.DOMAIN USERS= GLOBAL GROUP OF USER ACCOUNTS. ALL DOMAIN USER ACCOUNTS ARE PART OF DOMAIN USERS GLOBAL GROUP 3.DOMAIN GUESTS= GLOBAL GROUP FOR DOMAIN GUESTS SPECIAL BUILTIN GROUPS ON NT SERVER *********************************** 1.CREATOR/OWNER= THIS GROUP INCLUDES THE USER ACCOUNT THAT CREATED OR IS THE CURRENT OWNER OF A RESOURCE. 2.EVERYONE= THIS GROUP INCLUDES EVERYONE WHO ACCESSED THIS COMPUTER EITHER LOCALLY OR REMOTELY 3.INTERACTIVE= THIS GROUP INLCUDES THE USER ACCOUNT WHO LOGS ON LOCALLY 4.NETWORK= THIS GROUP CONTAINS ALL THE USERS CONNECTED TO A SHARE. BUILTIN GROUPS ON NT WORKSTATIONS AND NT MEMBER SERVERS ************************************************************ 1.ADMINISTRATORS LG 2.BCKUP OPERATORS LG 3.POWER USERS LG 4.GUESTS LG 5.REPLICATOR LG 6.USERS LG NOTE BOTH WORKSTATION AND MEMBER SERVERS CAN JOIN A DOMAIN. POWER USERS LOCAL GROUP RIGHTS ******************************** POWER USERS LG GROUP EXISTS ON WORKSTATIONS AND NT MEMBER SERVERS POWER USERS LG DOES NOT EXIST ON DOMAIN CONTROLLERS. 1.ADD/DELETE/MODIFY SHARES 2.ADD/DELETE/MODIFY SHARED PRINTERS 3.ADD/DELETE/MODIFY USER ACCOUNTS (NOT ADMINISTRATOR ACCOUNTS) 4.SETTING DATE AND TIME ON COMPUTER 5.CREATING PROGRAM GROUPS POWER USERS CANNOT DO ANY SECURITY POLICY WORK. WORKSTATION COMPUTER ACCOUNTS MEMBER SERVER COMPUTER ACCOUNTS *****************************************************