Presentation is loading. Please wait.

Presentation is loading. Please wait.

11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.

Published byScot Shelton Modified over 8 years ago

Similar presentations

Presentation on theme: "11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12."— Presentation transcript:

1 11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12

2 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES2 OVERVIEW  Manage a server by using Remote Assistance  Manage a server by using Terminal Services Remote Administration mode  Manage a server by using available support tools  Create a plan to offer Remote Assistance to client computers  Manage a server by using Remote Assistance  Manage a server by using Terminal Services Remote Administration mode  Manage a server by using available support tools  Create a plan to offer Remote Assistance to client computers

3 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES3 OVERVIEW (CONTINUED)  Plan for remote administration using Terminal Services  Diagnose and resolve issues related to Terminal Services security  Diagnose and resolve issues related to client access to Terminal Services  Plan for remote administration using Terminal Services  Diagnose and resolve issues related to Terminal Services security  Diagnose and resolve issues related to client access to Terminal Services

4 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES4 REMOTE ADMINISTRATION OF WINDOWS SERVER 2003  Microsoft Windows Server 2003 provides a number of tools for remote administration, including the following:  Microsoft Management Console (MMC) snap- ins  HTML Remote Administration tools  Remote Desktop For Administration  Remote Assistance  Microsoft Windows Server 2003 provides a number of tools for remote administration, including the following:  Microsoft Management Console (MMC) snap- ins  HTML Remote Administration tools  Remote Desktop For Administration  Remote Assistance

5 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES5 THE MICROSOFT MANAGEMENT CONSOLE  The MMC provides a standardized, common interface for one or more tools known as snap-ins.  The MMC provides a window with two panes:  The tree pane  The scope pane  The MMC provides a standardized, common interface for one or more tools known as snap-ins.  The MMC provides a window with two panes:  The tree pane  The scope pane

6 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES6 NAVIGATING THE MMC

7 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES7 USING THE MMC MENUS AND TOOLBAR MenuCommands FileCreate a new console, open an existing console, add or remove snap-ins, open recently used consoles, and an Exit command ActionVaries by snap-in ViewVaries by snap-in FavoritesAllows for adding and organizing saved consoles WindowOpen a new window; cascade, tile, and switch between open windows HelpGeneral Help menu for the MMC as well as loaded snap-in Help modules

8 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES8 EXTENDING THE MMC WITH SNAP-INS  There are two types of snap-ins:  Stand-alone  Extension  There are two types of snap-ins:  Stand-alone  Extension

9 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES9 BUILDING A CUSTOMIZED MMC

10 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES10 CONSOLE OPTIONS

11 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES11 REMOTE ADMINISTRATION WITH THE MMC  Many MMC snap-ins allow you to redirect the focus of the snap-in to another domain or computer system.  Connections to remote systems are achieved by using the remote procedure call (RPC) protocol.  Remote administration using the MMC is limited to what can be performed with the available snap-ins.  Many MMC snap-ins allow you to redirect the focus of the snap-in to another domain or computer system.  Connections to remote systems are achieved by using the remote procedure call (RPC) protocol.  Remote administration using the MMC is limited to what can be performed with the available snap-ins.

12 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES12 HTML REMOTE ADMINISTRATION TOOLS

13 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES13 MANAGING SERVERS WITH REMOTE DESKTOP FOR ADMINISTRATION  Remote Desktop For Administration has the following characteristics:  Uses Terminal Services  Allows two concurrent Remote Desktop connections  Enables the server to be managed as if the administrator is directly logged on to it at the console  Remote Desktop For Administration has the following characteristics:  Uses Terminal Services  Allows two concurrent Remote Desktop connections  Enables the server to be managed as if the administrator is directly logged on to it at the console

14 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES14 ENABLING AND CONFIGURING REMOTE DESKTOP FOR ADMINISTRATION

15 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES15 REMOTE DESKTOP CONNECTION

16 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES16 CONFIGURING REMOTE DESKTOP

17 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES17 TERMINAL SERVICES TROUBLESHOOTING  Common causes of failed connections or problematic sessions with Terminal Services include the following:  Network failures  Credentials issues  Policy restrictions  Number of concurrent connections  Common causes of failed connections or problematic sessions with Terminal Services include the following:  Network failures  Credentials issues  Policy restrictions  Number of concurrent connections

18 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES18 USING REMOTE ASSISTANCE  Allows users to request help from experts.  Experts can view or interact with a user’s session.  Users must issue an invitation to the expert.  Allows users to request help from experts.  Experts can view or interact with a user’s session.  Users must issue an invitation to the expert.

19 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES19 CONFIGURING REMOTE ASSISTANCE  Using Control Panel  Using Group Policy  Using Control Panel  Using Group Policy

20 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES20 CREATING AN INVITATION

21 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES21 ACCEPTING AN INVITATION

22 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES22 OFFERING REMOTE ASSISTANCE TO A USER  You can configure Remote Assistance so that you can initiate troubleshooting without receiving an invitation from the user.  This behavior is configured through the Remote Assistance policy, which can then be deployed by Group Policy.  You can configure Remote Assistance so that you can initiate troubleshooting without receiving an invitation from the user.  This behavior is configured through the Remote Assistance policy, which can then be deployed by Group Policy.

23 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES23 SECURING REMOTE ASSISTANCE  The client can break a Remote Assistance session by pressing Esc.  The user must be present to accept a Remote Assistance session.  Passwords for invitations should be communicated by a different secure means than the invitation.  Invitations should be issued for as short a period of time as possible.  The client can break a Remote Assistance session by pressing Esc.  The user must be present to accept a Remote Assistance session.  Passwords for invitations should be communicated by a different secure means than the invitation.  Invitations should be issued for as short a period of time as possible.

24 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES24 SUPPORTING AND TROUBLESHOOTING TERMINAL SERVICES  Windows Server 2003 Terminal Services supports providing applications to multiple users running concurrent sessions.  Terminal Services allows you to connect old systems to to a Windows Server 2003 system in order to access and use new applications.  Use of Terminal Services can simplify software updates and security patches because the applications need only reside on one system.  Windows Server 2003 Terminal Services supports providing applications to multiple users running concurrent sessions.  Terminal Services allows you to connect old systems to to a Windows Server 2003 system in order to access and use new applications.  Use of Terminal Services can simplify software updates and security patches because the applications need only reside on one system.

25 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES25 INSTALLING AND CONFIGURING A TERMINAL SERVICES ENVIRONMENT  There are several key considerations related to the deployment of a terminal server environment:  The Terminal Server component  Applications  Installation of Remote Desktop Connection  Licensing  There are several key considerations related to the deployment of a terminal server environment:  The Terminal Server component  Applications  Installation of Remote Desktop Connection  Licensing

26 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES26 THE TERMINAL SERVER COMPONENT  Terminal Services can be installed by using Add Or Remove Programs or the Configure Your Server Wizard.  Best practice dictates that domain controllers are not configured as terminal servers.  Terminal Services is memory and processor intensive.  Terminal Services can be installed by using Add Or Remove Programs or the Configure Your Server Wizard.  Best practice dictates that domain controllers are not configured as terminal servers.  Terminal Services is memory and processor intensive.

27 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES27 APPLICATIONS  Whenever possible, you should always use the Add Or Remove Programs tool in Control Panel to install an application on a terminal server.  While in installation mode, Terminal Services manages the configuration of the application appropriately so that the application can run in multiuser mode.  Whenever possible, you should always use the Add Or Remove Programs tool in Control Panel to install an application on a terminal server.  While in installation mode, Terminal Services manages the configuration of the application appropriately so that the application can run in multiuser mode.

28 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES28 INSTALLATION OF REMOTE DESKTOP CONNECTION  The Remote Desktop Connection (Mstsc.exe) is installed by default on all computers running Windows Server 2003 and Windows XP.  A shortcut to the client is located on the Start menu under All Programs\ Accessories\Communications.  The Remote Desktop Connection client can be installed on systems running Windows 2000 by using Group Policy.  The Remote Desktop Connection (Mstsc.exe) is installed by default on all computers running Windows Server 2003 and Windows XP.  A shortcut to the client is located on the Start menu under All Programs\ Accessories\Communications.  The Remote Desktop Connection client can be installed on systems running Windows 2000 by using Group Policy.

29 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES29 LICENSING  Each user that connects to Terminal Services on a system running Windows Server 2003 requires a Client Access License (CAL).  Use the Windows Components Wizard, which is found in Add Or Remove Programs, to install Terminal Server Licensing.  Terminal Server Licensing is managed by using the Terminal Server Licensing console in Administrative Tools.  Each user that connects to Terminal Services on a system running Windows Server 2003 requires a Client Access License (CAL).  Use the Windows Components Wizard, which is found in Add Or Remove Programs, to install Terminal Server Licensing.  Terminal Server Licensing is managed by using the Terminal Server Licensing console in Administrative Tools.

30 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES30 MANAGING AND TROUBLESHOOTING TERMINAL SERVICES  Several tools exist that can configure terminal servers, Terminal Services user settings, connections, and sessions.  Group Policy Object Editor  Terminal Services Configuration  Active Directory Users And Computers  Remote Desktop Connection client  Several tools exist that can configure terminal servers, Terminal Services user settings, connections, and sessions.  Group Policy Object Editor  Terminal Services Configuration  Active Directory Users And Computers  Remote Desktop Connection client

31 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES31 POINTS OF ADMINISTRATION

32 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES32 CONNECTION CONFIGURATION  A user’s ability to connect and log on to a terminal server is determined by a number of factors:  The connection on the terminal server must be accessible.  Remote Desktop must be enabled.  The server must have available connections.  Encryption must be compatible.  The user must have the user logon right to log on to the terminal server.  Allow Logon To Terminal Server must be enabled.  A user’s ability to connect and log on to a terminal server is determined by a number of factors:  The connection on the terminal server must be accessible.  Remote Desktop must be enabled.  The server must have available connections.  Encryption must be compatible.  The user must have the user logon right to log on to the terminal server.  Allow Logon To Terminal Server must be enabled.

33 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES33 DEVICE REDIRECTION  The Remote Desktop Connection client provides a range of device redirection options:  Audio redirection  Drive redirection  Printer redirection  Serial port redirection  Line printer (LPT) and serial communications (COM) port mapping  Clipboard mapping  The Remote Desktop Connection client provides a range of device redirection options:  Audio redirection  Drive redirection  Printer redirection  Serial port redirection  Line printer (LPT) and serial communications (COM) port mapping  Clipboard mapping

34 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES34 MANAGING SESSIONS AND PROCESSES

35 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES35 LOAD BALANCING TERMINAL SERVERS  The server clustering abilities of Windows Server 2003 allows terminal server clusters to be created.  A Session Directory is maintained by the servers in the cluster so that a user that is forced to reconnect to the cluster is provided with the open session that user previously had.  Implementing a terminal server cluster requires an excellent knowledge of both server clustering and Terminal Services.  The server clustering abilities of Windows Server 2003 allows terminal server clusters to be created.  A Session Directory is maintained by the servers in the cluster so that a user that is forced to reconnect to the cluster is provided with the open session that user previously had.  Implementing a terminal server cluster requires an excellent knowledge of both server clustering and Terminal Services.

36 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES36 REMOTE CONTROL

37 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES37 SUMMARY  Some snap-ins can be used to configure remote computers; others are limited to local computer access.  Remote Desktop For Administration allows administrators to administer a server from a remote location just as if they were logged on to the server locally.  To use Remote Desktop For Administration, an account must be a member of the Remote Desktop Users group.  Remote Assistance is available only on Windows XP and Windows Server 2003.  Remote Assistance is similar to Remote Desktop For Administration for the desktop, allowing remote viewing and control of remote computers.  Some snap-ins can be used to configure remote computers; others are limited to local computer access.  Remote Desktop For Administration allows administrators to administer a server from a remote location just as if they were logged on to the server locally.  To use Remote Desktop For Administration, an account must be a member of the Remote Desktop Users group.  Remote Assistance is available only on Windows XP and Windows Server 2003.  Remote Assistance is similar to Remote Desktop For Administration for the desktop, allowing remote viewing and control of remote computers.

38 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES38 SUMMARY (CONTINUED)  Two users are required for Remote Assistance: one user at the target desktop and the expert helper at another computer.  Port 3389, the same port used by Remote Desktop For Administration, must be open at the firewall for Remote Assistance sessions to be established.  Terminal Services provides applications in a multiuser environment.  A number of criteria must be met for a user to connect to a server using Terminal Services.  The security policy of a domain controller does not, by default, grant the Allow Logon To Terminal Server user right.  Two users are required for Remote Assistance: one user at the target desktop and the expert helper at another computer.  Port 3389, the same port used by Remote Desktop For Administration, must be open at the firewall for Remote Assistance sessions to be established.  Terminal Services provides applications in a multiuser environment.  A number of criteria must be met for a user to connect to a server using Terminal Services.  The security policy of a domain controller does not, by default, grant the Allow Logon To Terminal Server user right.

39 Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES39 SUMMARY (CONTINUED)  Various Terminal Services settings can be configured on the client, in the user account, on the connection, or on the server.  Windows Server 2003 and the Remote Desktop Connection client support device redirection, including redirection of audio devices, printers, and disks.  To load balance terminal servers, you must configure a load-balancing technology such as Network Load Balancing or Domain Name System (DNS) round robin.  You can monitor and remotely control a user’s Terminal Services session by connecting to the terminal server with the Remote Desktop Connection client.  Remote Desktop For Administration and Terminal Services require permissions and user rights for users to connect with the Remote Desktop Connection client.  Various Terminal Services settings can be configured on the client, in the user account, on the connection, or on the server.  Windows Server 2003 and the Remote Desktop Connection client support device redirection, including redirection of audio devices, printers, and disks.  To load balance terminal servers, you must configure a load-balancing technology such as Network Load Balancing or Domain Name System (DNS) round robin.  You can monitor and remotely control a user’s Terminal Services session by connecting to the terminal server with the Remote Desktop Connection client.  Remote Desktop For Administration and Terminal Services require permissions and user rights for users to connect with the Remote Desktop Connection client.

Download ppt "11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12."

Similar presentations

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
Lesson 17: Configuring Security Policies

Lesson 17: Configuring Security Policies
15.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.

15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
Khan Rashid Lesson 11-The Best Policy: Managing Computers and Users Through Group Policy.

Khan Rashid Lesson 11-The Best Policy: Managing Computers and Users Through Group Policy.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Thirteen Performing Network.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Thirteen Performing Network.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 10: Server Administration.
11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.

11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
Chapter 13 Chapter 13: Managing Internet and Network Interoperability.

Chapter 13 Chapter 13: Managing Internet and Network Interoperability.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.

Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Chapter 1 Introducing Windows Server 2012/R2

Chapter 1 Introducing Windows Server 2012/R2
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
Hands-On Microsoft Windows Server 2008 1 Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.

Hands-On Microsoft Windows Server Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.
Terminal Server © N. Ganesan, Ph.D.. Reference Thin-Client Concept Thin-Client concept tutorial.

Terminal Server © N. Ganesan, Ph.D.. Reference Thin-Client Concept Thin-Client concept tutorial.

Similar presentations

Ads by Google