Thursday, June 16, 2011

GeeMail, whats this?

You know some times we loss access to internet, and you need to access your mails in gmail. You need to check a mail urgently. This is where GeeMail comes handy, this is a Desktop client for Gmail, its a free download. once you install this you can access your gmail mail account offline. this would be great, right? yes you can have access to all the mail when there no broadband connection. its just a browser, which requires no configuration.
you can download this from the link below:
GeeMail

Use of UPN Suffix in windows 2003?



Suppose you have a company domain as microsoftsccm.com, as users when they log in they many feel the domain name is too long, so we as administrator can set up Alternative UPN 
(user principle name), upn-suffix which is set:

We need to go to AD domains and trusts àright click on AD domains and trusts node-àproperties -à and add UPN suffix as micro.com, so now users can log with this micro.com also.

Now you need to go to each users or select all bunch of users, go to there properties àaccounts tab and select UPN suffix and select micro.com

Define UPN SUFFIX in windows 2003?


Upn suffix(user principle name): can just be used by admins for users to log on easily or it can also be a DNS domain name.

Tuesday, June 14, 2011

Smart card in windows 2003?


Users will be provided smart cards and a smart card reader will be attached to computer, users insert smart cards and login to the domain. For users using smart-cards to login the “Password never expires” option will be enabled automatically.

Monday, June 13, 2011

Define Isa firewall ?


Isa firewall is a statefull packet inspection firewall
Isa will integrate with AD and allows users to authenticate and authorizes them to view sites, ISA server is not only a firewall but also a web caching server and VPN server
Stateful packet inspection means that the firewall will see the TCP conversation

Private IP address


10.0.0.0 – 10.255.255.254
172.16.0.0—172.31.255.254
192.168.0.1—192.168.255.254

Friday, June 10, 2011

What are the new features we get after moving the domain functional level to windows 2003?


Universal groups
Group nesting
Converstion of groups to different types
SID history
Rename domains
Track on time stamp
Inetorgperson object

Windows server 2003 Printer Tutorial


Printer---software device
Printer device—hardware device

Local printer: attached directly to a computer
Network printer: connected to a HUB or switch

The print drivers are installed on a print server and are shared.

Printer priority: 99 highest, ex: if we have 2 printers make the priority for one printer as 10 and the other one 5. So the higher priority will print first, same for the print schedule

Separator page: Create a separator page and which separates bundle of pages, ex: when you want to print 100 pages, but 50/50 should be separated, so once 50 pages are printed out, you will receive a separator page.

We can open the print server using a web browser, but, u need to have IIS installed. On the print server
 From the client machine, http: // izone/printer

When we configure a local printer we can select ports as LPT1 etc, but, when we need to configure a network printer then we need to add tcp/ip port

Group policy—computer settings—printer settings—pre-populate printers in AD
When every any user search for printer they are already pre-populated in AD




Sunday, May 22, 2011

Exchange server 2007 message flow


Message transport components:

Submission queue: stores all messages on disk awaiting processing
Store driver: received messages from outbox, when ever we send mails they are stored in outbox
Ms Exchange mail submission service
Runs on mail box server
Notifies hub transport when MSG is ready to be retrieved from senders outbox
Stores driver picks up the message

Pick up directory

Submits messages to submission queue

Categorizer:
Process messages from submission queue
Handles messages with multiple recipients
Determines routing path
Applies organization message policies

Message flow from outside the organization:

Enters via SMTP receive connector

Edge server or hub server
Message is dropped into submission queue

Message flow from with in organization

Enter via SMTP receive connector
Hub transport server
Pickup directory
Store driver dropping then into the submission queue

SCC: single copy cluster


Clustering technology, similar to earlier exchange versions.
Shared data storage
Fiber channel SAN
Internet SCSI SAN

Monday, April 25, 2011

what are SMS 2003 Software prerequisists?


Windows 2003 enterprsie
IIS for (MP, RP, DP and SLR server locater point)
BITS required for MP and DP
SQL 2000
Clustering for DPs only

Preparing Active Directory for SMS 2003


First we need to ensure that the user we have logged in should have schema admin rights.
Go to AD and add a user who need to be schema admin
Insert the SMS 2003 CD in the drive and go to CMD

>cd smssetup\bin\i386 –then enter
>extadsc.exe –enter

The scheme will be modified.
To check if AD schema was extended properly, go to C drive and check for extadsc file.

Functions of SMS server 2003


To deploy packages
Deploy software
Find hardware and software on the network
Patch management and device management
OS deployment
Remote controlling users
hardware inventory, software inventory, software distribution, and remote client troubleshooting
file path reporting for software inventory,

Saturday, April 9, 2011

Types of distribution groups in Exchange 2007?


Mail enabled distribution groups
Security distribution groups 
Dynamic distribution groups
Mail enabled non-universal groups

Before installing exchnage 2007?

Plan for :
Hardware and software check
DNS and DC
GC and functional level
External domain name
Storage location of transaction log files and database.

Setup /prepareAD /ON:microsoft
setup /prepschema
setup /prepdomain



Thursday, March 3, 2011

To map network drives from command line


Share a folder on file server or any server and open notepad and type

Net use x: \\server1\sales
Net use y: \\server1\HR
And save this file as .bat

the sales and HR folder should be created upfront and then be shared.
So how can you apply this to users.You just need to go to GPMC create a GPO and edit the user settings -- windows settings--scripts and add the batch file create into this scripts. Point to remember : the .bat file should be saved in LOGON folder on SYSVOL folder.

when a user logs on to the computer he or she will receive the respective drives shared and they can save data. the main advantage is that they will never loss there data as the info is saved centrally on another server and they can access this from any client machine they log into.

Tuesday, March 1, 2011

Active Directory backup


Backup AD:

Registry
COM+ class registration database
System boot files
Files protected by windows file protection
Certificate services database
IIS metabase
AD components and SYSVOL folder (on a DC)

DHCP process concept video

How to get a computers IP address?

1. Go to to CMD:
     ipconfig /all

2.
Ping to the client machine
Ex: ping client22
Now the ip address and MAC address are cached.

To view the cache
Arp –a

3.
We can also use:
Cmd
Getmac /s client22



Define Multi homed server?

Server with 2 or more NIC cards.

DHCP Super scope


Combination of 2 scopes. Ex: 192.168.1.1 and 192.168.2.1

We combine these 2 to lease out the ipaddress no matter the network ID
One client can get 192.168.1.1 and another client can get 192.168.2.1

So now when client A wants to talk to client B. they can’t communicate as the network ID’s differ. Now we need to install RRAS on DHCP server.
In a scenario like this we need to have the default gateway as ipaddress of DHCP server.

Fault tolerance in DHCP


Coming to fault tolerance, we can’t have 2 dhcp servers with same scopes. We can only have 2 scopes with ipaddress divided.

If DHCP server 1 as 192.168.1.130 , we can have DHCP server 2 with scope as 192.168.131.254.

Domain controller for domain XYZ.com cannot be connected error message


When we are trying to add a client or server machine to a domain i.e. making a member of domain and when you receive an error message as “domain controller for domain google.com cannot be connected” make sure the preferred DNS ipaddress in the TCP\IP properties is correct, pointing to DNS server. As the DNS server has the srv records to connect to domain controller.

Monday, February 28, 2011

DHCP relay agent concept

DHCP relay agent is configured to provide ipaddress to different segments of network.

Ex: we have 2 segments 192.168.1.1 and 192.168.2.1.. different network IDS.

One connecting to 192.168.1.1 and another card connecting to 192.168.2.1 network. When a client sends a broadcast for ipaddress the relay agent sends it to the DHCP server.

Open RRAS and ip routing, add new protocol, add dhcp relay agent
Add in the dhcp servers ipaddress

To view the DHCP server in a domain and which are authorized

Open command prompt:

netsh dhcp show server

Saturday, February 26, 2011

After 20 years..

If you would like to know how you would look after 20 or 30 years. awesome app..works great.
please download the link below:


http://www.ziddu.com/download/13974391/after20years.txt.html

To check the directory partitions we have in a forest


Cmd
Ntdsutil
Domain management
Domain management :Connections
Server connections: connect to server server01
Exit
Domain management: list
Now we will receive list of domain partitions.

What is round robin in DNS?


Round robin: enables us to set multiple records of a given host name. and distributes the ip address in order. 

Ex:
Create a host name in dns as www. www.izone.com with ipaddress as 192.168.1.100
Create the same hostname with 192.168.1.200
Create the same with 192.168.1.300

When we try to ping the www.zone.com

Reply's as 192.168.1.100, 192.168.1.200, 192.168.1.300

Again ping www.izone.com
192.168.1.200, 192.168.1.300, 192.168.1.100

Again ping www.izone.com
192.168.1.300. 192.168.1.200, 192.168.1.300

So the order keeps on changing.

Monday, February 21, 2011

How to view the cached look ups in DNS 2003?


Open the DNS console ---click on view --- select advanced.

Once we select advanced, we will find another entry as cached look ups

Sunday, February 20, 2011

Configuring UNIX DNS client:


Make sure your logged in as ROOT

Bash-2.03$  su
Password: xxxxxxx

Now use a text editor
# vi /etc/resolve.c
Now enter the domain and then name server

Domain Microsoft.com
Nameserver 192.168.1.2

We can also use search instead of domain, here we have an option to enter in till 6 domains and sub domains.

Ex:
Search  Microsoft.com east.microsoft.com

Now save the etc/resolve.conf file

#w

How the DNS request process works?


When a DNS client sends a request to a DNS server, the DNS server checks to see if it is authoritative for the zone (domain) in the request or the request has been cached and if so, returns the response

Recursion:
When a DNS server is not authoritative for the specified zone it begins the recursion process.

When the local DNS server cannot server the client DNS request, it sends the request to ROOT server on top, ex: .COM, the root retrieves number .COM domains. From that we chose xyz.com and are forwarded to recursion server.

           Once the recursion process is finished, the xyz.com info is cached in local DNS server.

Thursday, February 17, 2011

How to go into recovery console windows 2003?

Run prompt :
\i386\winnt32 /cmdcons

How to resolve Compatibility issues with legacy applications

When a user try's to run old files, they may receive error messages as compatibility issues..

To resolve this:


Right click on the setup.exe file\compatibility\run on xp, 2000, 95 etc

you can chose different OS and try running the file. 
Else you can use Quick Fix Utility Qfixapp.exe, its Application Compatibility toolkit for windows XP. You can download it for free. 


What is NAP?

NAP: network access protection, users must meet the security requirements to log on to the domain, ex: they need have anti-virus up-to date, etc. else the client will be quarantined. untill the computer has these requirements , the user can't log in to the domain.

What is NAC?


NAC—network admission control; NEED only Cisco switches, only application based. Highly secure no virus attached till now.

Windows 2003 File Server Features

Monday, February 14, 2011

Monitoring ESX with HP:


Download the clients file from HP.com, according to the hardware model we have.
HP proliant DL 380 g3 server

After downloading we need to , we need to move these files to ESX server, using putty and pscp.

Platespin power converter:
Power convert will take an image of the old servers and puts it on to a new server and modifies the drivers and upgradation is done behind the scenes.

Lost and found folder in AD users and computers:


Suppose we have a 2 domain controllers, if an admin makes changes to one object and if another admin also makes changes to the same object at same time, these changes are stored in the LOST and Found folder.

3 ways to access a shared resource:


1. Run promt: \\srv1\research

2. My networking places

Offline files : suppose if a server containing the share is offline, the client machine should have offline permissions set already, in XP and windows 2000 prof the offline settings are already ther, goto tools, folder peopertiesàoffline settings

3. We can also use the map network drive and the type in the servers, \\srv1\research
On the server right click on the files in the shared folder make it shared folder.

Administrative shared created by default are:


C$
Admin$
Print$


When we create a share we need to provide it with a $ sign, ex: we share a document named as group policy grouppolicy$, so this folder becomes a hidden share, to access this folder go to run prompt and type grouppolicy$

Friday, February 11, 2011

IIS creating web site video download

Easy steps in creating web site using IIS:


http://www.ziddu.com/download/13766981/iis_webs.avi.html

Scom 2007 monitors types


Monitor types:

Ø      Unit: monitors a specific item, such as single event or performance counter. These can be used as a basis for roll up monitors.
Ø      Aggregate rollup: monitors a group of monitors with the rollup state being either best or worst of reflection.
Ø      Dependency rolls up: a roll up of other monitors on which the parent monitor is dependent. Example, AD is dependent on DNS , you could alert that AD is having a problem is DNS is not available.
Ø      Static threshold: monitors that watch for specific values and compare the result to predefined values
Ø      Self tuning thresh hold: A mini – AI that watches performance counters in an effort to glean what a normal value should be. Thresh holds are created based on ascertained normal values.

Thursday, February 10, 2011

Scom 2007 monitors and there functions


Monitors: determines health information and make sure items are working within specifications. Raise an alert if not.

Monitor can have up-to 3 status:
1. Success
2. Warning
3. Error

Types of monitors:
Roll up monitors
Aggregate rollup monitors, dependency rollup monitors.

Unit monitors:
SNMP, WMI PERFORMANCE, Log files, windows events, windows services, windows performance counters, scripting, WMI events.

Managing monitors:
Monitor types:

Ø      Unit: monitors a specific item, such as single event or performance counter. These can be used as a basis for roll up monitors.
Ø      Aggregate roll-up: monitors a group of monitors with the roll-up state being either best or worst of reflection.

Sunday, February 6, 2011

IIS virtual directory creation video

Management pack components


Object discovery: management packs contains items necessary to discover managed objects. Discovery can be accomplished with registry , WMI, scripting, OLE DB, LDAP or custom code. If too much is discovered use override to limit the object discovery,

Monitors: which determine health information and make sure items are working within specifications. Raise an alert if no. only state change events are stored in the data warehouse for future reporting.

n      Roll up monitors: aggregate rollup monitors, dependency roll up monitors.
n      Unit monitors: SNMP, WMI performance, log files, windows events, windows services, windows performance counters, scripting, WMI events

Aggregate rollup monitors

is a collection of several other monitors, state can be monitored on either a best – case or worst             case basis.

  • Best case – if any one of the child monitors is healthy, the overall aggregate monitor will show up healthy.
  • Worst case – if any one of the child monitors is not healthy, the overall aggregate monitor will not be healthy.
Dependency roll up monitor: very similar to roll up monitor but more flexible and granular
Example: Will raise an alert if 5 or 8 DNS servers are down.

Rules: a rule is capable of raising an alert to an operator, but the objects included in the rule cannot be monitored for health.

Tasks: like the name implies, an MP task is a method that performs some action based on rules that are defined. Among other actions a task can run a program or script or reset a failed service.

Views: customized look at items that might be unique to a particular management pack.

Knowledge: what caused a particular alert? How was it addressed?

Run as profile: discovering objects, running scripts and gathering information requires credentials that can access the appropriate resource. 
 
Windows credentials
SNMP community string
Basic authentication
Digest authentication
Binary authentication
Action account

Overrides: is a way by which an operator can customize a sealed management pack.

Saturday, February 5, 2011

HP ILO (Integrated Lights Out)

ILO STANDS for Integrated Lights Out, it comes with almost every HP server. its an interface on back of your HP server, that allows you to connect an Ethernet connection to it and connect it to your network, once its connect you can remotely connect to the server, you had disk or blue screen or anything, but we can still connect to the server with ILO, WE can also power off and power on the server remotely, you can remotely build a server, you can install a new server, with cd rom on your desktop from home are where.

So in practical scenario, we connect one end of network cable to a switch and other end to ilp port behind the HP server

Thursday, February 3, 2011

SCOM 2007 Agentless Monitoring

Monitoring a system without installing agents.. example : we install an agent on a SQL server and that agent will also monitor other system.. this is called proxy agent.

We need to have only 10 agentless managed computers per management server

When we need to make a computer run as proxy agent..

Operations manager console --- administration --- device management --- right click on agent and select properties --- chose security tab and select agent proxy

SCOM 2007 Agent installation


When we can either install agents by discovery wizard or go manually to each computer with the agent setup file and install. If we install manually we can any one having this setup can install it on any system. This would be a security concern. In order to avoid this situation. SCOM admin needs to approve the request of installation.

Once we have installed the agent on server or client machine, it will be in a pending status until approved by admin.

Practice: operations manager console ---- administration --- device management --- pending management. We can see the pending agent install.We need to right click on the computers and select approve.

Wednesday, February 2, 2011

Post installation recommendations SCOM 2007


1. After installing operations manager 2007, wait for a day before doing any other activities

2. Run the operations manager console from another system other then root management server

3. Verify the health of operations manager management group and related components

Saturday, January 29, 2011

Console scoping:


What is scoping?

Allows you to view objects meeting specific criteria, such as just AD servers or SQL servers,

---- change the scope

Click on scope button
From the list of available items, choose the items on which you would like to focus.

The operations manager console:


GUI console navigation —

Ø      Monitoring : when you want to know the status of your infrastructure, use the monitoring view, which displays aggregate view of monitoring data collected from various sources. Namely management packs that have been imported.
Ø      Authoring: we you eventually modify management pack settings, a task accomplished from authoring view ..it lets you view monitoring settings from any management pack currently in system
Ø      Reporting: If the SCOM reporting components have been deployed, you are able to access the functionality from this view. Reports are available that allow you to analyze data capture from any source.


Friday, January 28, 2011

The SDK and config service account:


The sdk provides data access layer between the agent, console and database. The config service distributes configuration to agents.

The management server uses the SDK account to log on to the SC database.

Define operations manager action account?


Action account gathers, operations data from provides..the provides can be servers, clients or routers..to run responses and to perform actions such as installing and uninstalling agents on managed computers.

How to install POWER SHELL ?


Go to CMD and type:

servermanagercmd –i powershell

Installing operations manager 2007


Pre installation steps:
           
Understand the management server action account:

Can be specific as a local system account or a domain user account, with domain user account preferred
This account is used to gather data and perform actions on your management servers.

Recommended: use a domain user account

----     appropriate permissions will be assigned during the setup process
--      this account should be installed before installing scom  

Create an AD operations manager administrator group

Place into this group the accounts the users that will be allowed to manage all aspects of operations manager 

Add the domain user you have created to local administrator group on scom and database server.

If you forget this step you will have many errors.

What are the roles of management packs?


  1. A management pack is an XML document that extends the monitoring capabilities of operations manager 2007.
  2. Management packs are authored to monitor specific hardware and software elements by indicating, in details, exactly what should be looked at and how it should be looked at.
  3. when you install the operations manager by default we will receive dozens of management packs
  4. Management packs are written by programmers with in-depth system and application knowledge. It’s sort of like expert watching your system.