Windows Server 2008

1. WINDOWS SERVER 2008 2. WINDOWS 2008 Editions 3. WINDOWS 2008 Server Core 4. APPROX. COST OF WINDOWS SERVER 2008 5. Upgrade / Migrate 6. Upgrade from previous OS 7. WINDOWS SERVER 2008 INSTALLATION 8. Windows Server 2008 Activation 9. Activation Method 10. RAID 11. BACKUP and RECOVERY 12. Wbadmin 13. BACKUP Utility 14. Windows Recovery Environment 15. Server Roles for WINDOWS SERVER 2008 16. IP-ADDRESSING and IPV4 17. IPV6 18. Remote Desktop Connection 19. Steps for Remote Desktop Pc from Client PC 20. Remote Desktops 21. MANAGING SERVER CORE 22. TERMINAL SERVICES (TS) 23. TERMINAL SERVICES MANAGER 24. MANGAING FILE AND PRINT SERVERS 25. Share Folder 26. Attrib (Attribute) 27. Windows Registry 28. Disk Quotas 29. Disaster Recovery Tools 30. MMC 31. Remote Assistance 32. Signed & Unsigned Driver 33. Hardware Profile 34. CHKDSK.EXE(Check Disk) 35. Disk Defragmenter (DFRG.MSC) 36. ACTIVE DIRECTORY REVIEW 37. Introduction to AD 38. TRUST 39. FSMO 40. GC (GLOBAL CATALOG) Server 41. Site 42. AD replication 43. Backup of Active Directory (DC) 44. Understanding USER, GROUP & COMPUTER 45. Create Local User & Multiple Users 46. GROUP SCOPE 47. Public and Private key encryption 48. Trust concept of CA working 49. ETHERNET CARDS 50. Availability and Security 51. General Server Security Issues 52. OSI MODEL 53. Data Encapsulation 54. TCP/IP or DoD Model 55. Protocol Working at Host to Host (Transport) layer 56. NETWORK MONITOR 57. Internet Information Services 58. Monitoring Tools 59. DNS [Domain Name System] 60. DNS ZONE 61. Remote Access Authentication Process 62. Remote Access Interview Question & Answer part 1 Tutorials Interview Question & Answer part 2 Tutorials Interview Question & Answer part 3 Tutorials Interview Question & Answer part 4 Tutorials Interview Question & Answer part 5 Tutorials Interview Question & Answer part 6 Tutorials Interview Question & Answer part 7 Tutorials
Pr.Pg Next Pg

Attrib (Attribute) tutorials

If HDD is formatted with FAT32 file have 3 Attributes i.e.

  • Read Only

  • Hidden

  • Archive

 

If HDD is formatted with NTFS file System, file will have 2 + 4 Advance Attributes

  • Read Only

  • Hidden

  • Folder is Ready for Archive

  • For Fast Searching, allow Indexing Services to include this Folder

  • Compress (will show in Blue color)

  • Encrypt (will show in Green color)

Note:- You can Either Compress File OR Encrypt it, not both at a time.

 

Que:- What is Difference between Share Permission and Security Permission

  • Now lets talk about Allowing or Restricting access to network resources.

  • There are 2 types of Permission settings

SHARED PERMISSION

SECURITY PERMISSION

Apply only to Folder

Apply to Folder + Files

Work with FAT / NTFS file system

Work only with NTFS file system

Apply only to Network User (Shared)

Apply to Network user & local user

 

  • Permission can be set by 2 different method

EXPLICITE / DIRECT :- this we have to apply it, for e.g. on FOLDER

IMPLICITE / IN-DIRECT:- you have not applied it, but it gets inherited from Folder on which you have set some permission.

 

RULE for setting NTFS + SHARE PERMISSION

  • Both this permission are Cumulative. For e.g. If you are member of two groups – in One Group you have full control, Second Group you have Read only. You get Full Control – i.e. cumulative of two group (most Liberal).

  • In two combination of NTFS and Shared, if Shared Gives Liberal Permission and Second NTFS gives restrictive permission, then Most Restrictive Permission will be applied.

  • Any where if Deny is set, it always applied First and user will be denied any rights.

 

NTFS (SERCURITY) PERMISSON

  • On NTFS partition, every file and folder is associated with a security descriptor called ACL (Access Control List). Access permission are stored within ACL as ACEs (Access Control Entries). When user attempts to access file or folder it will be checked with user is Allowed or Denied.

  • NTFS permission can be applied to FOLDER as well as FILE.

To apply

select Folder or File and Right click – choose Security Tab page

Top part is used to select GROUP or USER

Bottom part is used to specify PERMISSION

 

NTFS Basic permission for FOLDER

 

PERMISSION

Description

FULL CONTROL

Can read and list folders & Files, write to files, create folders and files, delete folder, files & content, view & change attribute of files and folder, take ownership of folders and files.

MODIFY

Read and list folders and files, write to files, create folders and files, delete folders, files & content, view and change attribute of files and folders

READ & EXECUTE

Permit and execute files, read & list folders and files, view attribute of files and folders

LIST FOLDER CONTENT

Permit reading and listing of folder and files.

WRITE

Permit creating of files in folder

READ

Permit reading and listing of folders and files, viewing attributes and permission of files and folders.

 

NOTE:- The default permission are

þ Read & Execute

þ Read

 

NTFS Permissions for FILES

 

PERMISSION

Description

FULL CONTROL

Can read and list Files, write to files, create files, delete files & content, view & change attribute of files, take ownership of files.

MODIFY

Read and list files, write to files, create files, delete files & content, view and change attribute of files

READ & EXECUTE

Permit and execute files, read & list files, view attribute of files

WRITE

Permit creating of files, creating files, appending data to files, deleting files and content, setting attribute of files

READ

Permit reading & listing of files, viewing attributes & permission of files.

 

Special NTFS Permissions for Folders & Files

 

Sp. Permission

Description

Traverse Folder / Execute file

Traverse folder permits moving through folder to access a folder or file

List Folder / Read Data

List folder permits viewing file and folder names, Read data permits viewing the content of file

Read Attributes

Permit reading of basic attributes of a folder or file. These attributes include Read only (R ), Hidden (H), System (S) and Archive (A)

Read Extended Attributes

Permit reading of extended attributes associated with folder and files

Create Files / Write Data

Create files permits adding files to a folder. Write Data permits overwriting existing data in file (but not adding new data to an existing file as it is covered by Append Data)

Create Folder / Append Data

Create Folders permits creating subfolders within folder. Append data permits adding data to the end of an existing file (but not to overwrite existing data as it is covered by Write Data)

Write Attribute

Permit changes of basic attributes of a folder or file. These attributes include Read only (R ), Hidden (H), System (S) and Archive (A)

Write Extended Attributes

Permit changing of extended attributes of folder or files

Delete subfolder & files

Permits deleting the contents of folder, even if delete permission on subfolder or file isn’t specifically granted

Delete

Permits deleting a folder or file. If a group or user does not have delete permission, the group or user grated the “Delete subfolder and file” can still delete folder or file

Read Permission

Permits reading all basic and special permission assigned to files and folder

Change Permission

Permits changing basic and special permission assigned to folder or files

Take Ownership

Permits taking ownership of a folder or file. The owner of a folder or file can always change permission on it. If other permission were removed. By default administrator can always take ownership of a folderor file and can also grant this permission to others.

 

Taking Ownership

  • You can transfer ownership of files and folders from one user account or group to another user account or group.

  • The owner of the file or folder, or any user with Full Control permission can assign the Full Control standard permission or the Take Ownership special access permission to another user account or group, allowing user to take ownership.

  • An administrator can take ownership of a folder or file, regardless of assigned permissions. If an administrator takes ownership, the Administrators group becomes the owner and any member of the Administrators group can change the permissions for the file or folder & assign Take Ownership permission to another user or group.

  • For e.g. if an employee leaves the company, an administrator can take ownership of the employee's files, assign the Take Ownership permission to another employee, and then that employee can take ownership of the former employee's files.

 

To View or Change the Ownership of a Folder or a file, do as follows.

  • Open Window Explorer Right Click on File or Folder

  • Select “Security” Tab page Click on “Advance” Button

  • Select “Owner” Tab Page here you can change the user or Group.

  • Planning & Configuring PKI that uses Certificate Services

  • You can use certificates for Authentication and Encryption.

  • PKI (Public Key Infrastructure) provides the component and services necessary to use ‘Public’ and ‘Private’ Key with digital signature.

  • 2 types of certificates are used they are

  • SERVER Certificates – these contain identifying information about a server

  • CLIENT Certificate – these contain identifying information about client

Copying and Moving Files and Folders

  • When you copy files or folders from one folder to another folder, or from one volume to another volume, permissions change.

  • When you copy a file within a single NTFS volume or between NTFS volumes:

  • Windows Server 2003 treats it as a new file. As a new file, it takes on the permissions of the destination folder.

  • You must have Write permission for the destination folder to copy files and folders.

  • You become the CREATOR OWNER.

  • Note: When you copy or move files or folders to FAT volumes or to a floppy disk, the folders and files lose their NTFS permissions because FAT volumes and floppy disks do not support NTFS permissions.

When you move a file or folder within a single NTFS volume

  • The file or folder retains the original permissions.

  • You must have the Write permission for the destination folder to move files & folders into it.

  • You must have the Modify permission for the source file or folder. The Modify permission is required to move a file or folder because Windows Server 2003 deletes the file or folder from the source folder after it is copied to the destination folder.


Pr.Pg border                                              Next Pg