11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.

Slides:



Advertisements
Similar presentations
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
Advertisements

Lesson 17: Configuring Security Policies
15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
Khan Rashid Lesson 11-The Best Policy: Managing Computers and Users Through Group Policy.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Thirteen Performing Network.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 10: Server Administration.
11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
Chapter 13 Chapter 13: Managing Internet and Network Interoperability.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Chapter 1 Introducing Windows Server 2012/R2
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
Hands-On Microsoft Windows Server Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.
Terminal Server © N. Ganesan, Ph.D.. Reference Thin-Client Concept Thin-Client concept tutorial.
VMware vCenter Server Module 4.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
CN1176 Computer Support Kemtis Kunanuraksapong MSIS with Distinction MCT, MCTS, MCDST, MCP, A+
Guide to MCSE , Enhanced 1 Activity 10-1: Restarting Windows Server 2003 Objective: to restart Windows Server 2003 Start  Shut Down  Restart Configure.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Guide to MCSE , Second Edition, Enhanced 1 Objectives Understand and use the Control Panel applets Describe the versatility of the Microsoft Management.
1 Chapter Overview Monitoring Server Performance Monitoring Shared Resources Microsoft Windows 2000 Auditing.
1 Chapter Overview Understanding the Windows 2000 Networking Architecture Using Microsoft Management Console.
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
Administering Windows 7 Lesson 11. Objectives Troubleshoot Windows 7 Use remote access technologies Troubleshoot installation and startup issues Understand.
Hands-On Microsoft Windows Server 2008
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Two Deploying Windows Servers.

Module 13: Configuring Availability of Network Resources and Content.
1 Group Account Administration Introduction to Groups Planning a Group Strategy Creating Groups Understanding Default Groups Groups for Administrators.
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
Remote Desktop Services Remote Desktop Connection Remote Desktop Protocol Remote Assistance Remote Server Administration T0ols.
Module 4: Add Client Computers and Devices to the Network.
Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.
5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam Microsoft® Windows® 2000 Directory Services Infrastructure Goals 
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
Network Management Administering Microsoft Server 2003.
Module 7: Fundamentals of Administering Windows Server 2008.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
Module 5: Designing a Terminal Services Infrastructure.
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Four Windows Server 2008 Remote Desktop Services,
Module 9: Preparing to Administer a Server. Overview Introduction to Administering a Server Configuring Remote Desktop to Administer a Server Managing.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
Module 11: Implementing ISA Server 2004 Enterprise Edition.
Introduction to Microsoft Management Console (MMC) MMC is a common console framework for management applications. MMC provides a common environment for.
1 Chapter Overview Publishing Resources in Active Directory Service Redirecting Folders Using Group Policies Deploying Applications Using Group Policies.
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Five Windows Server 2008 Remote Desktop Services,
Remote Administration Remote Desktop Remote Desktop Gateway Remote Assistance Windows Remote Management Service Remote Server Administration Tools.
Working with Users and Groups Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Introducing User Account Control Configure and troubleshoot.
Module 4 Planning for Group Policy. Module Overview Planning Group Policy Application Planning Group Policy Processing Planning the Management of Group.
Lesson 12: Configuring Remote Management
Page 1 Printing & Terminal Services Lecture 8 Hassan Shuja 11/16/2004.
Module 3: Planning Administrative Access. Overview Determining the Appropriate Administrative Model Designing Administrative Group Strategies Planning.
Administering Microsoft Windows Server 2003 Chapter 2.
1 Active Directory Administration Tasks And Tools Active Directory Administration Tasks Active Directory Administrative Tools Using Microsoft Management.
Working with Users and Groups Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Introducing User Account Control Configure and troubleshoot.
1 Chapter Overview Using Group Objects Understanding Default Groups Creating Group Objects Managing Administrative Access.
Managing Servers Lesson 10. Skills Matrix Technology SkillObjective DomainObjective # Using Remote DesktopPlan server management strategies 2.1 Delegating.
Troubleshooting Windows Vista Lesson 11. Skills Matrix Technology SkillObjective DomainObjective # Troubleshooting Installation and Startup Issues Troubleshoot.
Chapter Objectives In this chapter, you will learn:
Module 9: Preparing to Administer a Server
Module Overview Installing and Configuring a Network Policy Server
Module 9: Preparing to Administer a Server
Presentation transcript:

11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES2 OVERVIEW  Manage a server by using Remote Assistance  Manage a server by using Terminal Services Remote Administration mode  Manage a server by using available support tools  Create a plan to offer Remote Assistance to client computers  Manage a server by using Remote Assistance  Manage a server by using Terminal Services Remote Administration mode  Manage a server by using available support tools  Create a plan to offer Remote Assistance to client computers

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES3 OVERVIEW (CONTINUED)  Plan for remote administration using Terminal Services  Diagnose and resolve issues related to Terminal Services security  Diagnose and resolve issues related to client access to Terminal Services  Plan for remote administration using Terminal Services  Diagnose and resolve issues related to Terminal Services security  Diagnose and resolve issues related to client access to Terminal Services

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES4 REMOTE ADMINISTRATION OF WINDOWS SERVER 2003  Microsoft Windows Server 2003 provides a number of tools for remote administration, including the following:  Microsoft Management Console (MMC) snap- ins  HTML Remote Administration tools  Remote Desktop For Administration  Remote Assistance  Microsoft Windows Server 2003 provides a number of tools for remote administration, including the following:  Microsoft Management Console (MMC) snap- ins  HTML Remote Administration tools  Remote Desktop For Administration  Remote Assistance

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES5 THE MICROSOFT MANAGEMENT CONSOLE  The MMC provides a standardized, common interface for one or more tools known as snap-ins.  The MMC provides a window with two panes:  The tree pane  The scope pane  The MMC provides a standardized, common interface for one or more tools known as snap-ins.  The MMC provides a window with two panes:  The tree pane  The scope pane

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES6 NAVIGATING THE MMC

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES7 USING THE MMC MENUS AND TOOLBAR MenuCommands FileCreate a new console, open an existing console, add or remove snap-ins, open recently used consoles, and an Exit command ActionVaries by snap-in ViewVaries by snap-in FavoritesAllows for adding and organizing saved consoles WindowOpen a new window; cascade, tile, and switch between open windows HelpGeneral Help menu for the MMC as well as loaded snap-in Help modules

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES8 EXTENDING THE MMC WITH SNAP-INS  There are two types of snap-ins:  Stand-alone  Extension  There are two types of snap-ins:  Stand-alone  Extension

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES9 BUILDING A CUSTOMIZED MMC

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES10 CONSOLE OPTIONS

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES11 REMOTE ADMINISTRATION WITH THE MMC  Many MMC snap-ins allow you to redirect the focus of the snap-in to another domain or computer system.  Connections to remote systems are achieved by using the remote procedure call (RPC) protocol.  Remote administration using the MMC is limited to what can be performed with the available snap-ins.  Many MMC snap-ins allow you to redirect the focus of the snap-in to another domain or computer system.  Connections to remote systems are achieved by using the remote procedure call (RPC) protocol.  Remote administration using the MMC is limited to what can be performed with the available snap-ins.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES12 HTML REMOTE ADMINISTRATION TOOLS

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES13 MANAGING SERVERS WITH REMOTE DESKTOP FOR ADMINISTRATION  Remote Desktop For Administration has the following characteristics:  Uses Terminal Services  Allows two concurrent Remote Desktop connections  Enables the server to be managed as if the administrator is directly logged on to it at the console  Remote Desktop For Administration has the following characteristics:  Uses Terminal Services  Allows two concurrent Remote Desktop connections  Enables the server to be managed as if the administrator is directly logged on to it at the console

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES14 ENABLING AND CONFIGURING REMOTE DESKTOP FOR ADMINISTRATION

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES15 REMOTE DESKTOP CONNECTION

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES16 CONFIGURING REMOTE DESKTOP

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES17 TERMINAL SERVICES TROUBLESHOOTING  Common causes of failed connections or problematic sessions with Terminal Services include the following:  Network failures  Credentials issues  Policy restrictions  Number of concurrent connections  Common causes of failed connections or problematic sessions with Terminal Services include the following:  Network failures  Credentials issues  Policy restrictions  Number of concurrent connections

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES18 USING REMOTE ASSISTANCE  Allows users to request help from experts.  Experts can view or interact with a user’s session.  Users must issue an invitation to the expert.  Allows users to request help from experts.  Experts can view or interact with a user’s session.  Users must issue an invitation to the expert.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES19 CONFIGURING REMOTE ASSISTANCE  Using Control Panel  Using Group Policy  Using Control Panel  Using Group Policy

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES20 CREATING AN INVITATION

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES21 ACCEPTING AN INVITATION

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES22 OFFERING REMOTE ASSISTANCE TO A USER  You can configure Remote Assistance so that you can initiate troubleshooting without receiving an invitation from the user.  This behavior is configured through the Remote Assistance policy, which can then be deployed by Group Policy.  You can configure Remote Assistance so that you can initiate troubleshooting without receiving an invitation from the user.  This behavior is configured through the Remote Assistance policy, which can then be deployed by Group Policy.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES23 SECURING REMOTE ASSISTANCE  The client can break a Remote Assistance session by pressing Esc.  The user must be present to accept a Remote Assistance session.  Passwords for invitations should be communicated by a different secure means than the invitation.  Invitations should be issued for as short a period of time as possible.  The client can break a Remote Assistance session by pressing Esc.  The user must be present to accept a Remote Assistance session.  Passwords for invitations should be communicated by a different secure means than the invitation.  Invitations should be issued for as short a period of time as possible.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES24 SUPPORTING AND TROUBLESHOOTING TERMINAL SERVICES  Windows Server 2003 Terminal Services supports providing applications to multiple users running concurrent sessions.  Terminal Services allows you to connect old systems to to a Windows Server 2003 system in order to access and use new applications.  Use of Terminal Services can simplify software updates and security patches because the applications need only reside on one system.  Windows Server 2003 Terminal Services supports providing applications to multiple users running concurrent sessions.  Terminal Services allows you to connect old systems to to a Windows Server 2003 system in order to access and use new applications.  Use of Terminal Services can simplify software updates and security patches because the applications need only reside on one system.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES25 INSTALLING AND CONFIGURING A TERMINAL SERVICES ENVIRONMENT  There are several key considerations related to the deployment of a terminal server environment:  The Terminal Server component  Applications  Installation of Remote Desktop Connection  Licensing  There are several key considerations related to the deployment of a terminal server environment:  The Terminal Server component  Applications  Installation of Remote Desktop Connection  Licensing

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES26 THE TERMINAL SERVER COMPONENT  Terminal Services can be installed by using Add Or Remove Programs or the Configure Your Server Wizard.  Best practice dictates that domain controllers are not configured as terminal servers.  Terminal Services is memory and processor intensive.  Terminal Services can be installed by using Add Or Remove Programs or the Configure Your Server Wizard.  Best practice dictates that domain controllers are not configured as terminal servers.  Terminal Services is memory and processor intensive.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES27 APPLICATIONS  Whenever possible, you should always use the Add Or Remove Programs tool in Control Panel to install an application on a terminal server.  While in installation mode, Terminal Services manages the configuration of the application appropriately so that the application can run in multiuser mode.  Whenever possible, you should always use the Add Or Remove Programs tool in Control Panel to install an application on a terminal server.  While in installation mode, Terminal Services manages the configuration of the application appropriately so that the application can run in multiuser mode.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES28 INSTALLATION OF REMOTE DESKTOP CONNECTION  The Remote Desktop Connection (Mstsc.exe) is installed by default on all computers running Windows Server 2003 and Windows XP.  A shortcut to the client is located on the Start menu under All Programs\ Accessories\Communications.  The Remote Desktop Connection client can be installed on systems running Windows 2000 by using Group Policy.  The Remote Desktop Connection (Mstsc.exe) is installed by default on all computers running Windows Server 2003 and Windows XP.  A shortcut to the client is located on the Start menu under All Programs\ Accessories\Communications.  The Remote Desktop Connection client can be installed on systems running Windows 2000 by using Group Policy.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES29 LICENSING  Each user that connects to Terminal Services on a system running Windows Server 2003 requires a Client Access License (CAL).  Use the Windows Components Wizard, which is found in Add Or Remove Programs, to install Terminal Server Licensing.  Terminal Server Licensing is managed by using the Terminal Server Licensing console in Administrative Tools.  Each user that connects to Terminal Services on a system running Windows Server 2003 requires a Client Access License (CAL).  Use the Windows Components Wizard, which is found in Add Or Remove Programs, to install Terminal Server Licensing.  Terminal Server Licensing is managed by using the Terminal Server Licensing console in Administrative Tools.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES30 MANAGING AND TROUBLESHOOTING TERMINAL SERVICES  Several tools exist that can configure terminal servers, Terminal Services user settings, connections, and sessions.  Group Policy Object Editor  Terminal Services Configuration  Active Directory Users And Computers  Remote Desktop Connection client  Several tools exist that can configure terminal servers, Terminal Services user settings, connections, and sessions.  Group Policy Object Editor  Terminal Services Configuration  Active Directory Users And Computers  Remote Desktop Connection client

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES31 POINTS OF ADMINISTRATION

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES32 CONNECTION CONFIGURATION  A user’s ability to connect and log on to a terminal server is determined by a number of factors:  The connection on the terminal server must be accessible.  Remote Desktop must be enabled.  The server must have available connections.  Encryption must be compatible.  The user must have the user logon right to log on to the terminal server.  Allow Logon To Terminal Server must be enabled.  A user’s ability to connect and log on to a terminal server is determined by a number of factors:  The connection on the terminal server must be accessible.  Remote Desktop must be enabled.  The server must have available connections.  Encryption must be compatible.  The user must have the user logon right to log on to the terminal server.  Allow Logon To Terminal Server must be enabled.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES33 DEVICE REDIRECTION  The Remote Desktop Connection client provides a range of device redirection options:  Audio redirection  Drive redirection  Printer redirection  Serial port redirection  Line printer (LPT) and serial communications (COM) port mapping  Clipboard mapping  The Remote Desktop Connection client provides a range of device redirection options:  Audio redirection  Drive redirection  Printer redirection  Serial port redirection  Line printer (LPT) and serial communications (COM) port mapping  Clipboard mapping

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES34 MANAGING SESSIONS AND PROCESSES

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES35 LOAD BALANCING TERMINAL SERVERS  The server clustering abilities of Windows Server 2003 allows terminal server clusters to be created.  A Session Directory is maintained by the servers in the cluster so that a user that is forced to reconnect to the cluster is provided with the open session that user previously had.  Implementing a terminal server cluster requires an excellent knowledge of both server clustering and Terminal Services.  The server clustering abilities of Windows Server 2003 allows terminal server clusters to be created.  A Session Directory is maintained by the servers in the cluster so that a user that is forced to reconnect to the cluster is provided with the open session that user previously had.  Implementing a terminal server cluster requires an excellent knowledge of both server clustering and Terminal Services.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES36 REMOTE CONTROL

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES37 SUMMARY  Some snap-ins can be used to configure remote computers; others are limited to local computer access.  Remote Desktop For Administration allows administrators to administer a server from a remote location just as if they were logged on to the server locally.  To use Remote Desktop For Administration, an account must be a member of the Remote Desktop Users group.  Remote Assistance is available only on Windows XP and Windows Server  Remote Assistance is similar to Remote Desktop For Administration for the desktop, allowing remote viewing and control of remote computers.  Some snap-ins can be used to configure remote computers; others are limited to local computer access.  Remote Desktop For Administration allows administrators to administer a server from a remote location just as if they were logged on to the server locally.  To use Remote Desktop For Administration, an account must be a member of the Remote Desktop Users group.  Remote Assistance is available only on Windows XP and Windows Server  Remote Assistance is similar to Remote Desktop For Administration for the desktop, allowing remote viewing and control of remote computers.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES38 SUMMARY (CONTINUED)  Two users are required for Remote Assistance: one user at the target desktop and the expert helper at another computer.  Port 3389, the same port used by Remote Desktop For Administration, must be open at the firewall for Remote Assistance sessions to be established.  Terminal Services provides applications in a multiuser environment.  A number of criteria must be met for a user to connect to a server using Terminal Services.  The security policy of a domain controller does not, by default, grant the Allow Logon To Terminal Server user right.  Two users are required for Remote Assistance: one user at the target desktop and the expert helper at another computer.  Port 3389, the same port used by Remote Desktop For Administration, must be open at the firewall for Remote Assistance sessions to be established.  Terminal Services provides applications in a multiuser environment.  A number of criteria must be met for a user to connect to a server using Terminal Services.  The security policy of a domain controller does not, by default, grant the Allow Logon To Terminal Server user right.

Chapter 12: SYSTEMS ADMINISTRATION AND TERMINAL SERVICES39 SUMMARY (CONTINUED)  Various Terminal Services settings can be configured on the client, in the user account, on the connection, or on the server.  Windows Server 2003 and the Remote Desktop Connection client support device redirection, including redirection of audio devices, printers, and disks.  To load balance terminal servers, you must configure a load-balancing technology such as Network Load Balancing or Domain Name System (DNS) round robin.  You can monitor and remotely control a user’s Terminal Services session by connecting to the terminal server with the Remote Desktop Connection client.  Remote Desktop For Administration and Terminal Services require permissions and user rights for users to connect with the Remote Desktop Connection client.  Various Terminal Services settings can be configured on the client, in the user account, on the connection, or on the server.  Windows Server 2003 and the Remote Desktop Connection client support device redirection, including redirection of audio devices, printers, and disks.  To load balance terminal servers, you must configure a load-balancing technology such as Network Load Balancing or Domain Name System (DNS) round robin.  You can monitor and remotely control a user’s Terminal Services session by connecting to the terminal server with the Remote Desktop Connection client.  Remote Desktop For Administration and Terminal Services require permissions and user rights for users to connect with the Remote Desktop Connection client.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.