Internet Administrative Training - January 11, 1997
AGENDA:
- Introduction
- Windows NT 4.0 Server Installation
- Web Server Installation
- Mail Server Installation
- Windows NT 4.0 Server Administration
- Web Server Administration
- Mail Server Administration
- Troubleshooting Tools
1. Introduction
Terms:
- computer network - collection of two or more computers connected together for the purpose of sharing resources and improving
- communications
- Internet - worldwide collection of computers and computer networks
- LAN - local area network (ex. network in LH2)
- WAN - wide area network (ex. Internet)
- TCP/IP (Transmission Control Protocol/Internet Protocol) - rules for transmitting data between computers across a network.
- IP address - Internet address in the form of four period-delimited octets of numerals (ex. 192.132.89.65)
- Domain name - name corresponding to an IP address (ex. frodo.nmhu.edu)
- DNS (Domain Name System) server - resolves domain names to IP addresses
- Internet gateway - network device needed to connect to the Internet
- SMTP (Simple Mail Transfer Protocol) - transports a mail message across a TCP/IP-based network.
- POP3 (Post Office Protocol version 3) - standard for using mailboxes and forwarding mail message to a user's local computer.
- HTML (HyperText Markup Language) - language for creating "web" documents
- HTTP (HyperText Transfer Protocol) - a set of rules for transferring documents across the Internet
- WWW (World Wide Web) - collection of computers that share HTML documents using the TCP/IP and HTTP protocols
- DHCP (Dynamic Host Configuration Protocol) server - dynamically assigns IP addresses to computers on a LAN
- WINS (Windows Internet Name Service) server - provides name resolution for computers on a Windows network.
- Client/Server Architecture - distributed computing environment where one or more server computers provide access to data from one or more client computers
2. Windows NT 4.0 Server Installation
- run the set-up program from the i386 directory(folder) on the CD-ROM.
- convert the partition to NTFS.
- select "per server" with 5 for the Licensing Mode.
- Give the computer a unique name.
- select the computer as a "Stand-Alone Server".
- Select an Administrator Account Password (make sure you can remember it and share it with one other person).
- Prepare an Emergency Repair Disk.
- No changes needed for Windows Components.
- Install the IIS (Internet Information Server).
- Select the correct Network Adapter (network card).
- Check NetBEUI under Network Protocols.
- Select from the Windows NT Server Setup: DHCP Server, DNS Server, & Windows Internet Name Service.
- Under TCP/IP Properties:
- IP Address: set IP Address, Subnet Mode (use 255.255.255.0), Gateway (ours is 192.132.89.1)
- DNS: set Host Name(your computer name), Domain (ours is nmhu.edu), DNS Service (use 192.132.89.65), Domain Suffix.
- WINS Address: enter your computer's IP address for the Primary WINS Server and select "Enable DNS for Windows Resolution"
- Check your computer name & Select a WorkGroup or Domain name
- For Microsoft IIS 2.0 Setup:
- Add Internet Service Manager (HTML) and Remove Gopher Service.
- Select the Publishing Directories (C:\InetPub\wwwroot & C:\InetPub\ftproot)
Select the appropriate Display Properties
3. Web Server Installation
- need server's IP address (and DNS name)
- need an administrator's e-mail address
- choose default home directory and home page
4. Mail Server Installation
- NT Server 4.0 must be installed on a drive formatted using NTFS
- TCP/IP must be configured to use DNS
- Run SETUP.EXE
5. Windows NT 4.0 Server Administration
- DHCP Server
- WINS Server
- DNS Server
- User Accounts - Seting up the User groups, and Basic User Accounts
- 1. In the "Administrative Tools" group, open the User Manager for Domains. Click on the User Menu and choose New Local Group. Type "Students" for Group Name, and "Members of the Student Body" under description. Repeat the process with "Teachers" and "Members of the Faculty and Staff."
- 2. Double click on the group Backup Operators and delete the default description, replacing it with "System Group -not used with Outreach." Do the same with Guests, Replicator, and Users.
- 3. Replace the Power Users description with "Advanced users and Web designers."
- 4. From the User Menu choose New User to create the basic test accounts. Under Username type "student;" for Full Name type "Student User;" and the Description should be "Basic account for Student access." The password/Confirm Password should be "student" for ease of testing. Click an "X" on Password Never Expires so this set will be kept as default, and then choose the Groups button at the bottom to continue.
- 5. The default group for a new user is "Users"--this group is not used by the Outreach configuration, and if you use it the security will not work. You should click once on Users and then choose the Remove button. Scroll down on the Nat member of list till you find the Students group. Click once on it and choose the Add button to move that group over. There should be only one group on the left list, Students. Click OK to return. (NOTE: NT security is based on increasing access being more powerful than the weaker, so if someone was given two groups, for example Administrators, and Power Users, the Administrator priviliges would out weigh the Power Users'. However, Negative security, i.e. No Access, always takes precidence over access. So if the above example were Administrators, and Students, and Students are restricted from certain areas of the hard drive, that Administrator would be restricted too. To prevent this you should keep the groups of a user to one. This configuration is designed simple enough for you to do this.)
- 6. Click on the Profile button, and type e:\student in the Local Path box. This action will create the user's personal directory where all their files will be saved to. Make sure this is the e-drive for teachers and students because students and teachers will not have access to the c-drive; webusers and administrators should be under c:\users\... since they have access to the c-drive. The User Profile box will be used for users, but later when the profiles are created.
- 7. Create a user "teacher" identical to the Student above, with "teacher" replacing all student references.
- 8. Create a user called "webuser" with the Full Name "Web Publisher" and the description "Account for Web Page Designers. The webuser group is Power Users, and the default directory should be "c:\users\webuser."
- 9. Lastly, while you have the User Manager open click on the Policies Menu, choose User Rights..., and find Shut Down the System on the Rights list. Choose the right, and remove all groups but Administrators and Power Users. Students and Teachers will not be able to shut down the system.
6. Web Server Administration
- changing the default homepage
- adding / deleting local web pages
- setting up aliases
7. Mail Server Administration
- Creating user mail accounts
- uses the local user accounts
- mailbox is established the first time the user sends / receives mail
- Deleting user mail accounts
- deleted when the local user account is deleted
- Deleting user spool directories
- the spooled user directory needs to manually deleted by the administrator when the account is deleted
- Adding address rules (transforms)
- Using Event Viewer to monitor Mail Server
8. Troubleshooting Tools
- Event Viewer - Displays the system, security and application logs
- Performance Monitor - measures the computer's efficiency, identifies and troubleshoots possible problems. [plans
- for additional hardware needs]
- Task Manager - monitors active applications and processes on the computer. Can be used to start and stop applications and
- processes.
- NT Diagnostics - enables viewing hardware information in the Registry (loaded device drivers & IRQ values).
- Network Monitor (netmonitor) - determines problems during session initialization and problems related to broadcast storms.
- Troubleshoots network packets for transmission problems between computers.
- TCP/IP Utilities - verifies and debugs TCP/IP networking problems
- ping - used to test if another computer is "alive"
- tracert - traces the route taken to another computer on the Internet
- netstat - shows static information at a given point in time; used to determine status of connections
- nslookup - checks records, domain host aliases, etc. by querying the Internet domain name servers
- route - prints the IP route table
- hostname - prints the name of the current host
- ipconfig - displays the current TCP/IP network configuration values
- arp - displays the ARP (address resolution protocol) table on the local computer